HOTSPOT - You have an Azure subscription that contains the resources shown in the following table. You plan to create a linked service in DF1. The linked servic...


Microsoft AZ-400 Exam

Questions Number: 129 out of 535 Questions
24.11%

Question 129
HOTSPOT -
You have an Azure subscription that contains the resources shown in the following table.
AZ-400_129Q_1.png related to the Microsoft AZ-400 Exam
You plan to create a linked service in DF1. The linked service will connect to SQL1 by using Microsoft SQL Server authentication. The password for the SQL
Server login will be stored -
in KV1.
You need to configure DF1 to retrieve the password when the data factory connects to SQL1. The solution must use the principle of least privilege.
How should you configure DF1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
AZ-400_129Q_2.jpg related to the Microsoft AZ-400 Exam



Box 1: Secret -
Store credential in Azure Key Vault by reference secret stored in key vault.
To reference a credential stored in Azure Key Vault, you need to:
1. Retrieve data factory managed identity
2. Grant the managed identity access to your Azure Key Vault. In your key vault -> Access policies -> Add Access Policy, search this managed identity to grant
Get permission in Secret permissions dropdown. It allows this designated factory to access secret in key vault.
3. Create a linked service pointing to your Azure Key Vault.
4. Create data store linked service, inside which reference the corresponding secret stored in key vault.
Box 2: Access policy -
Reference:
https://docs.microsoft.com/en-us/azure/data-factory/store-credentials-in-key-vault





Previous Questions Next Questions