AZ-104 – Question 60

0
1305

You have an Azure subscription named Subscription1 that contains an Azure virtual machine named VM1. VM1 is in a resource group named RG1.

VM1 runs services that will be used to deploy resources to RG1.
You need to ensure that a service running on VM1 can manage the resources in RG1 by using the identity of VM1.
What should you do first?

  • A. From the Azure portal, modify the Managed Identity settings of VM1 
  • B. From the Azure portal, modify the Access control (IAM) settings of RG1
  • C. From the Azure portal, modify the Access control (IAM) settings of VM1
  • D. From the Azure portal, modify the Policies settings of RG1

Correct Answer: A 
Managed identities for Azure resources provides Azure services with an automatically managed identity in Azure Active Directory. You can use this identity to authenticate to any service that supports Azure AD authentication, without having credentials in your code.
You can enable and disable the system-assigned managed identity for VM using the Azure portal.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/qs-configure-portal-windows-vm