Exam AZ-204 All QuestionsBrowse all questions from this exam
Go to Exam
Question 287

HOTSPOT -

You are creating an app that uses Event Grid to connect with other services. Your app's event data will be sent to a serverless function that checks compliance.

This function is maintained by your company.

You write a new event subscription at the scope of your resource. The event must be invalidated after a specific period of time.

You need to configure Event Grid.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

    Correct Answer:

    Box 1: SAS tokens -

    Custom topics use either Shared Access Signature (SAS) or key authentication. Microsoft recommends SAS, but key authentication provides simple programming, and is compatible with many existing webhook publishers.

    In this case we need the expiration time provided by SAS tokens.

    Box 2: ValidationCode handshake -

    Event Grid supports two ways of validating the subscription: ValidationCode handshake (programmatic) and ValidationURL handshake (manual).

    If you control the source code for your endpoint, this method is recommended.

    Incorrect Answers:

    ValidationURL handshake (manual): In certain cases, you can't access the source code of the endpoint to implement the ValidationCode handshake. For example, if you use a third-party service (like Zapier or IFTTT), you can't programmatically respond with the validation code.

    Reference:

    https://docs.microsoft.com/en-us/azure/event-grid/security-authentication

Discussion
jay158

Dropdowns placement in Answer area is incorrect WebHook Event Delivery ---ValidationCode handsShake Topic publishing --- SAS Tokens https://docs.microsoft.com/en-us/azure/event-grid/concepts https://docs.microsoft.com/en-us/azure/event-grid/webhook-event-delivey

Alex_Wackoo

Agreed and your last link is not working so here: https://docs.microsoft.com/en-us/azure/event-grid/webhook-event-delivery

TonyMel

correct, in 2023Mar24, score: 904/1000.

applepie

got this question today, go with this answer - 7/30/2023, score 895/1000

NightshadeRC

Had this question in today's exam: 2023-07-26. I think the drop-downs were in the order they are here, not 100% on it though. I went with the recommended answer anyway. Passed 940.

warchoon

"The event must be invalidated after a specific period of time." - Asynchronous handshake => validationUrl https://learn.microsoft.com/en-us/azure/event-grid/webhook-event-delivery#:~:text=Asynchronous%20handshake

18Marks

Got this in exam. Use given answer

neelkanths

Got it on 20 April 2024...Marks > 900...All questions from examtopics 400 questions... answer is correct...

lagetronix

were you able to study all 400 questions

jvyas

Below link for Authenticating clients that publish events to Azure Event Grid topics using access key or Shared Access Signature (SAS) token. https://docs.microsoft.com/en-us/azure/event-grid/authenticate-with-access-keys-shared-access-signatures

warchoon

So what's the answer? Keys or tokens? Keys are from SAS too. SAS token can be expired after "specific period of time".

Simbetie

Topic publishing to be matched with the 1st dropdown....the answer must be Management Access Control. Azure Event Grid allows you to control the level of access given to different users to do various management operations such as list event subscriptions, create new ones, and generate keys. Event Grid uses Azure's role-based access control (RBAC).

ning

This question is worded poorly, the handshake only happens when subscription is setup ... If you are talking about how subscription should be authenticated when receiving messages, then webhook should use jwt

ning

For Topic Publishing https://docs.microsoft.com/en-us/azure/event-grid/authentication-overview

ning

For web hook delivery https://docs.microsoft.com/en-us/azure/event-grid/secure-webhook-delivery