Exam4Training

What code do you add at line CS07 of ConfigureSSE.ps1?

You need to ensure the security policies are met.

What code do you add at line CS07 of ConfigureSSE.ps1?
A . CPermissionsToKeys create, encrypt, decrypt
B . CPermissionsToCertificates create, encrypt, decrypt
C . CPermissionsToCertificates wrapkey, unwrapkey, get
D . CPermissionsToKeys wrapkey, unwrapkey, get

Answer: B

Explanation:

Scenario: All certificates and secrets used to secure data must be stored in Azure Key Vault.

You must adhere to the principle of least privilege and provide privileges which are essential to perform the intended function.

The Set-AzureRmKeyValutAccessPolicy parameter -PermissionsToKeys specifies an array of key operation permissions to grant to a user or service principal. The acceptable values for this parameter: decrypt, encrypt, unwrapKey, wrapKey, verify, sign, get, list, update, create, import, delete, backup, restore, recover, purge

Reference: https://docs.microsoft.com/en-us/powershell/module/azurerm.keyvault/set-azurermkeyvaultaccesspolicy

Latest AZ-204 Dumps Valid Version with 254 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version