SC-300 Exam QuestionsBrowse all questions from this exam
Go to Exam

SC-300 Exam - Question 74

You have an Azure subscription that contains a user-assigned managed identity named Managed1 in the East US Azure region. The subscription contains the resources shown in the following table.

Which resources can use Managed1 as their identity?

Show Answer
Correct Answer: C

Managed identities in Azure are created as regional resources, but the associated service principals created in Microsoft Entra ID are available globally. However, not all Azure resources can use managed identities. According to Azure documentation, storage accounts do not have support for managed identities. Therefore, the storage account cannot use Managed1 as its identity. This leaves us with the virtual machine (VM1) and the Azure App Service app (WebApp1), both of which can use managed identities. Hence, the correct answer is VM1 and WebApp1 only.

Discussion

11 comments
Sign in to comment
wheeldjOption: D
Apr 1, 2024

Answer D is correct I think. see link "In short, yes you can use user assigned managed identities in more than one Azure region. The longer answer is that while user assigned managed identities are created as regional resources the associated service principal (SP) created in Microsoft Entra ID is available globally" https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

AleFerrillo
May 6, 2024

Storage accounts can't use Managed Identities (https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-status). Correct answer is C

Alcpt
May 30, 2024

D is correct, you can assign UAMI on all the resources under Identity.

NICKTON81Option: C
Apr 19, 2024

C is correct https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-status https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

Panama469
Jul 12, 2024

Dude, that second link says that "In short, yes you can use user assigned managed identities in more than one Azure region" So that means 'D' is correct.

klayytechOption: C
Apr 1, 2024

So, the resources that can use Managed1 as their identity are: VM1 WebApp1 (Azure App Service app) note : 1- the Storage account dont have managed identity 2- managed identity assigned to all region Therefore, the correct answer is B. storage1 and WebApp1 only.

klayytechOption: D
Apr 22, 2024

https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/overview see the video starting from M 10 storage account also can.

NielllOption: C
Mar 29, 2024

Managed1 is a user-assigned managed identity, it can only be assigned to resources in the same region. So, Managed1 can only be assigned to resources within the East US region. Therefore its C

Nielll
Mar 30, 2024

The user-assigned managed identity, Managed1, is located in the East US Azure region. Therefore, it can be used by resources that are in the same region. From the table, we know that both the storage account (storage1) and the Azure App Service app (WebApp1) are located in the East US region. The virtual machine (VM1), however, is located in the West US region. So, the resources that can use Managed1 as their identity are: storage1 (Storage account) WebApp1 (Azure App Service app) Therefore, the correct answer is B. storage1 and WebApp1 only.

bpaccount
Apr 23, 2024

How the hell are people supposed to get this question right in an proctored semi closed book exam, if us here, with access to Internet/Google/ChatGPT/CoPilot, can't even find the right answer :-D

NotanAdmin
May 20, 2024

Yes, Azure Storage accounts can use managed identities. Managed identities for Azure resources provide an automatically managed identity for applications and Azure resources to use when connecting to resources that support Azure Active Directory (Azure AD) authentication.

wheeldjOption: D
Apr 1, 2024

Answer D is correct I think. see link "In short, yes you can use user assigned managed identities in more than one Azure region. The longer answer is that while user assigned managed identities are created as regional resources the associated service principal (SP) created in Microsoft Entra ID is available globally" https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

spatrick
Apr 3, 2024

Explain how to add a user assigned managed identity: https://microsoftlearning.github.io/Secure-storage-for-Azure-Files-and-Azure-Blob-Storage/Instructions/Labs/LAB_04_storage_web_app.html

NotanAdminOption: D
May 20, 2024

D. VM1, storage1, and WebApp1 Copilot says: User-assigned managed identities can be used by multiple resources in Azure, and they are not restricted to a specific region. Therefore, **Managed1** can be used by **VM1**, **Storage1**, and **WebApp1** as their identity, regardless of the region they are in. The correct answer is: D. VM1, storage1, and WebApp1

jim85Option: D
Jun 18, 2024

D is the answer, user assigned managed identity can be used in other regions: https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

jarattdavisOption: B
Jul 13, 2024

B is correct Answer: The resources that can use Managed1 are those also in the East US region. Therefore, storage1 and WebApp1 in East US can use Managed1 as their identity