Examice

Exam AZ-500 All QuestionsBrowse all questions from this exam

Go to Exam

Question 454

You have an Azure subscription that contains an Azure Blob storage account named blob1.

You need to configure attribute-based access control (ABAC) for blob1.

Which attributes can you use in access conditions?

blob index tags only

blob index tags and container names only

file extensions and container names only

blob index tags, file extensions, and container names

Correct Answer: A

Attribute-based access control (ABAC) in Azure Blob storage allows you to define fine-grained access policies based on attributes associated with the blobs. As of the current Azure documentation, the primary attribute that can be used in access conditions is blob index tags. These tags can be added to individual blobs and serve as part of the access control rules. Other options such as file extensions and container names are not mentioned as valid attributes for ABAC in Azure Blob storage.

Discussion

saturation97Option: D

Here are some of the blob storage attributes you can use in your conditions. Account name Blob index tags Blob path Blob prefix Container name Encryption scope name Is Current Version Is hierarchical namespace enabled Is private link Snapshot UTC now (the current date and time in Coordinated Universal Time) Version ID https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview

Ed2learn

saturation97 is absolutely correct. the link spells it out. B is correct.

c12Option: B

Correct answer: B. blob index tags and container names only https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview

Anarchira

Based on c12 link answer is b

evaldivia99Option: B

Answer is B https://learn.microsoft.com/en-us/azure/storage/blobs/storage-auth-abac-attributes#azure-blob-storage-attributes

mrgreatOption: B

Answer is correct: https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview

MalikusmanrasheedOption: B

As per doco shared by saturation97.

vxlOption: A

ttribute-based access control (ABAC) in Azure Blob storage allows you to define fine-grained access policies based on attributes associated with the blobs. Blob index tags are the specific attributes that can be used to define access conditions. These tags can be added to individual blobs and used as part of the access control rules to grant or deny access.

Jimmy500Option: B

Answer is B , please use this ref and scroll a bit: https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview BR

JaridBOption: A

Azure Attribute-Based Access Control (ABAC) for Blob storage, as of today, May 14, 2024, only supports blob index tags as the attribute for defining access conditions.

dc864d4

This is a bad answer. I'll save you the research. Look at the top answer. This is probably an "Infiltrator" The answer shown is correct and can be found here: https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview

TheCloudGuruuOption: A

Previous comments are referring to RBAC, the question is asking about ABAC so answer is A

Ed2learn

This article is about ABAC. https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview Clearly states that blob tags and blob containers are included in the list.

flavius2Option: B

It's B: https://learn.microsoft.com/en-us/azure/role-based-access-control/conditions-overview