AZ-204 · Question #338
AZ-204 Question #338: Real Exam Question with Answer & Explanation
The correct answer is C: Managed identity. Use the authentication-managed-identity policy to authenticate with a backend service using the managed identity of the API Management service. This policy essentially uses the managed identity to obtain an access token from Azure Active Directory for accessing the specified reso
Question
Your company is developing an Azure API. You need to implement authentication for the Azure API. You have the following requirements: - All API calls must be secure. - Callers to the API must not send credentials to the API. Which authentication mechanism should you use?
Options
- ABasic
- BAnonymous
- CManaged identity
- DClient certificate
Explanation
Use the authentication-managed-identity policy to authenticate with a backend service using the managed identity of the API Management service. This policy essentially uses the managed identity to obtain an access token from Azure Active Directory for accessing the specified resource. After successfully obtaining the token, the policy will set the value of the token in the Authorization header using the Bearer scheme. https://azure.microsoft.com/en-us/blog/keep-credentials-out-of-code-introducing-azure-ad- managed-service-identity/ https://docs.microsoft.com/en-us/azure/api-management/api-management-authentication-policies
Community Discussion
No community discussion yet for this question.