Exam CAS-004 All QuestionsBrowse all questions from this exam
Go to Exam
Question 39

A company has hired a third party to develop software as part of its strategy to be quicker to market. The company's policy outlines the following requirements:

✑ The credentials used to publish production software to the container registry should be stored in a secure location.

✑ Access should be restricted to the pipeline service account, without the ability for the third-party developer to read the credentials directly.

Which of the following would be the BEST recommendation for storing and monitoring access to these shared credentials?

    Correct Answer: D

    Key vaults are designed specifically for securely storing and managing sensitive information such as credentials, API keys, passwords, and certificates. They provide a secure and managed environment that controls access to these secrets while allowing monitoring of access patterns. By using a key vault, credentials can be stored securely and access can be restricted to the pipeline service account, ensuring that third-party developers cannot read the credentials directly. This meets the company's requirements for secure storage and restricted access.

Discussion
patinho777Option: D

I think that is D, Key Vault. Any thoughts?

dgfhyjfghfgfkfhdOption: D

https://intellipaat.com/blog/what-is-azure-key-vault/

[Removed]Option: D

We want to securely store our API therefore we go for a Key Vault Key Vault is a cloud service for securely storing and accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, or cryptographic keys. Key Vault service supports two types of containers: vaults and managed hardware security module(HSM)

margomi86Option: D

D. Key vault would be the BEST recommendation for storing and monitoring access to these shared credentials. Key vaults are used to store and manage cryptographic keys and other secrets used in applications. They provide a secure way to store and manage secrets and are designed to help manage and safeguard access to sensitive data. In this case, the company can store the credentials used to publish production software to the container registry in a key vault and restrict access to the pipeline service account. This would allow the company to monitor access to the key vault and maintain control over who has access to the credentials.

ServerBrainOption: D

I like such easy questions.

BiteSizeOption: D

Storing anything in a secure place is a concept that seems to fit in many different parts of life. Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)