Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft Exam AZ-500 Topic 1 Question 56 Discussion

Actual exam question for Microsoft's AZ-500 exam
Question #: 56
Topic #: 1
[All AZ-500 Questions]

You have an Azure Kubernetes Service (AKS) cluster that will connect to an Azure Container Registry.

You need to use the automatically generated service principal for the AKS cluster to authenticate to the Azure Container Registry.

What should you create?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Leah
6 months ago
I'm leaning towards creating a secret in Azure Key Vault. That way we can securely store the authentication information for the AKS cluster.
upvoted 0 times
...
Dorian
6 months ago
I don't think creating an Azure AD user is the right choice in this scenario. A role assignment would make more sense.
upvoted 0 times
...
Loise
6 months ago
But I heard some people say that we should create an Azure AD user instead.
upvoted 0 times
...
Antonio
6 months ago
I agree with Dorian. A role assignment will allow the AKS cluster to authenticate to the Azure Container Registry.
upvoted 0 times
...
Dorian
7 months ago
I think we need to create a role assignment for the AKS cluster.
upvoted 0 times
...
Cristen
8 months ago
I'm with Leonardo and 2 on this one. D is definitely the way to go. Although, I do like the idea of Minna about using Key Vault, it's not what the question is asking for.
upvoted 0 times
...
Minna
8 months ago
Hmm, I was leaning towards B. Storing the service principal credentials in Azure Key Vault would be a secure way to authenticate. But you both make a good point about the role assignment being the correct answer.
upvoted 0 times
...
Valentin
8 months ago
I agree with Leonardo. The question specifically mentions using the automatically generated service principal, so we don't need to create a new user or group. A role assignment is the way to go.
upvoted 0 times
...
Leonardo
8 months ago
I'm pretty sure the answer is D. We need to create a role assignment to grant the AKS service principal access to the Azure Container Registry. The service principal is automatically generated, so we don't need to create a new user or group.
upvoted 0 times
Ernie
8 months ago
Exactly, creating a role assignment is the right choice in this scenario.
upvoted 0 times
...
Jillian
8 months ago
So, we should go with option D then.
upvoted 0 times
...
Tandra
8 months ago
No, we don't need to create a new user. The AKS service principal is automatically generated.
upvoted 0 times
...
Emilio
8 months ago
But wouldn't creating an Azure AD user also work?
upvoted 0 times
...
Mabel
8 months ago
That's correct! We need to create a role assignment to allow the AKS service principal access to the Azure Container Registry.
upvoted 0 times
...
Cheryl
8 months ago
D) a role assignment
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77