Exam SC-300 All QuestionsBrowse all questions from this exam
Go to Exam
Question 74

You have an Azure subscription that contains a user-assigned managed identity named Managed1 in the East US Azure region. The subscription contains the resources shown in the following table.

Which resources can use Managed1 as their identity?

    Correct Answer: C

    Managed identities in Azure are created as regional resources, but the associated service principals created in Microsoft Entra ID are available globally. However, not all Azure resources can use managed identities. According to Azure documentation, storage accounts do not have support for managed identities. Therefore, the storage account cannot use Managed1 as its identity. This leaves us with the virtual machine (VM1) and the Azure App Service app (WebApp1), both of which can use managed identities. Hence, the correct answer is VM1 and WebApp1 only.

Discussion
wheeldjOption: D

Answer D is correct I think. see link "In short, yes you can use user assigned managed identities in more than one Azure region. The longer answer is that while user assigned managed identities are created as regional resources the associated service principal (SP) created in Microsoft Entra ID is available globally" https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

AleFerrillo

Storage accounts can't use Managed Identities (https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-status). Correct answer is C

Alcpt

D is correct, you can assign UAMI on all the resources under Identity.

NICKTON81Option: C

C is correct https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-status https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

Panama469

Dude, that second link says that "In short, yes you can use user assigned managed identities in more than one Azure region" So that means 'D' is correct.

klayytechOption: D

https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/overview see the video starting from M 10 storage account also can.

klayytechOption: C

So, the resources that can use Managed1 as their identity are: VM1 WebApp1 (Azure App Service app) note : 1- the Storage account dont have managed identity 2- managed identity assigned to all region Therefore, the correct answer is B. storage1 and WebApp1 only.

bpaccount

How the hell are people supposed to get this question right in an proctored semi closed book exam, if us here, with access to Internet/Google/ChatGPT/CoPilot, can't even find the right answer :-D

NotanAdmin

Yes, Azure Storage accounts can use managed identities. Managed identities for Azure resources provide an automatically managed identity for applications and Azure resources to use when connecting to resources that support Azure Active Directory (Azure AD) authentication.

NielllOption: C

Managed1 is a user-assigned managed identity, it can only be assigned to resources in the same region. So, Managed1 can only be assigned to resources within the East US region. Therefore its C

Nielll

The user-assigned managed identity, Managed1, is located in the East US Azure region. Therefore, it can be used by resources that are in the same region. From the table, we know that both the storage account (storage1) and the Azure App Service app (WebApp1) are located in the East US region. The virtual machine (VM1), however, is located in the West US region. So, the resources that can use Managed1 as their identity are: storage1 (Storage account) WebApp1 (Azure App Service app) Therefore, the correct answer is B. storage1 and WebApp1 only.

jarattdavisOption: B

B is correct Answer: The resources that can use Managed1 are those also in the East US region. Therefore, storage1 and WebApp1 in East US can use Managed1 as their identity

jim85Option: D

D is the answer, user assigned managed identity can be used in other regions: https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq

NotanAdminOption: D

D. VM1, storage1, and WebApp1 Copilot says: User-assigned managed identities can be used by multiple resources in Azure, and they are not restricted to a specific region. Therefore, **Managed1** can be used by **VM1**, **Storage1**, and **WebApp1** as their identity, regardless of the region they are in. The correct answer is: D. VM1, storage1, and WebApp1

spatrick

Explain how to add a user assigned managed identity: https://microsoftlearning.github.io/Secure-storage-for-Azure-Files-and-Azure-Blob-Storage/Instructions/Labs/LAB_04_storage_web_app.html

wheeldjOption: D

Answer D is correct I think. see link "In short, yes you can use user assigned managed identities in more than one Azure region. The longer answer is that while user assigned managed identities are created as regional resources the associated service principal (SP) created in Microsoft Entra ID is available globally" https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identities-faq