AZ-400 – Question 86

You create a Microsoft ASP.NET Core application.

You plan to use Azure Key Vault to provide secrets to the application as configuration data.
You need to create a Key Vault access policy to assign secret permissions to the application. The solution must use the principle of least privilege.

Which secret permissions should you use?

A. List only
B. Get only
C. Get and List

Correct Answer: B 

Application data plane permissions:
✑ Keys: sign
✑ Secrets: get