AZ-220 Question #117: Real Exam Question with Answer & Explanation

The correct answer is A. a private endpoint connection. Ingress connectivity to IoT Hub using Azure Private Link. A private endpoint is a private IP address allocated inside a customer-owned VNet via which an Azure resource is reachable. Through Azure Private Link, you can set up a private endpoint for your IoT hub to allow services i

Question

You have an Azure subscription that contains an Azure IoT hub and two Azure IoT Edge devices named Device1 and Device2. You need to ensure that the IoT hub only accepts connections from Device1 and Device2. What should you configure?

Options

Aa private endpoint connection
BAzure API Management
CAzure Active Directory (Azure AD) Identity Protection
Da gateway device

Explanation

Ingress connectivity to IoT Hub using Azure Private Link. A private endpoint is a private IP address allocated inside a customer-owned VNet via which an Azure resource is reachable. Through Azure Private Link, you can set up a private endpoint for your IoT hub to allow services inside your VNet to reach IoT Hub without requiring traffic to be sent to IoT Hub's public endpoint. Similarly, your on-premises devices can use Virtual Private Network (VPN) or ExpressRoute peering to gain connectivity to your VNet and your IoT Hub (via its private endpoint). As a result, you can restrict or completely block off connectivity to your IoT hub's public endpoints by using IoT Hub IP filter or the public network access toggle. This approach keeps connectivity to your Hub using the private endpoint for devices. https://docs.microsoft.com/en-us/azure/iot-hub/virtual-network-support

Community Discussion

No community discussion yet for this question.

Full AZ-220 Practice