DP-300 · Question #72
DP-300 Question #72: Real Exam Question with Answer & Explanation
The correct answer is B: Create users in each database.. On Azure SQL databases, you do not have to create a Login for the user unless he needs to access several databases within the server. The requirement is each user will only be allowed to access his own database. So with the principle of least privilege, we just need to a containe
Question
You have 40 Azure SQL databases, each for a different customer. All the databases reside on the same Azure SQL Database server. You need to ensure that each customer can only connect to and access their respective database. Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
Options
- AImplement row-level security (RLS).
- BCreate users in each database.
- CConfigure the database firewall.
- DConfigure the server firewall.
- ECreate logins in the master database.
- FImplement Always Encrypted.
Explanation
On Azure SQL databases, you do not have to create a Login for the user unless he needs to access several databases within the server. The requirement is each user will only be allowed to access his own database. So with the principle of least privilege, we just need to a contained user. The database firewall is additional security to limit access on each database. https://docs.microsoft.com/en-us/azure/azure-sql/database/secure-database-tutorial
Community Discussion
No community discussion yet for this question.