nerdexam
Microsoft

AZ-400 · Question #94

Your company has a project in Azure DevOps for a new web application. The company identifies security as one of the highest priorities. You need to recommend a solution to minimize the likelihood that

The correct answer is D. Add Azure Key Vault references to Azure Resource Manger templates.. Instead of putting a secure value (like a password) directly in your template or parameter file, you can retrieve the value from an Azure Key Vault during a deployment. https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault- parameter?tabs=azure-cli

Submitted by takeshi77· Mar 6, 2026Design identity, governance, and monitoring solutions

Question

Your company has a project in Azure DevOps for a new web application. The company identifies security as one of the highest priorities. You need to recommend a solution to minimize the likelihood that infrastructure credentials will be leaked. What should you recommend?

Options

  • AAdd a Run Inline Azure PowerShell task to the pipeline.
  • BAdd a PowerShell task to the pipeline and run Set-AzureKeyVaultSecret.
  • CAdd a Azurre Key Vault task to the pipeline.
  • DAdd Azure Key Vault references to Azure Resource Manger templates.

How the community answered

(24 responses)
  • A
    4% (1)
  • B
    8% (2)
  • C
    4% (1)
  • D
    83% (20)

Explanation

Instead of putting a secure value (like a password) directly in your template or parameter file, you can retrieve the value from an Azure Key Vault during a deployment. https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault- parameter?tabs=azure-cli

Topics

#Azure Key Vault#ARM templates#credential security#secrets management

Community Discussion

No community discussion yet for this question.

Full AZ-400 Practice