Register to Better Coder! It's free.
Enjoy the premium features and succeed at every job interview.
You are deploying a couple of virtual machines that will access Azure Key Vault and Azure SQL Database. Later on you plan to add additional virtual machines. What solution will you use to make sure that no secrets will be stored on the virtual machines, you minimize the administrative effort and don't need to assign new roles and permissions when new virtual machines are added?
Experience Level: Senior
Tags: Azure Active DirectoryAzure CloudAzure Key VaultAzure SQL Database
Answer
Use user-assigned identity and configure its permissions. When a new virtual machine is created, make it use the user-assigned identity. This way it will have the previously configured permissions that is shared by all virtual machines that share the user-assigned identity.
Related Azure Cloud job interview questions
How can you review data that is configured to be collected by Diagnostic Setting in Azure SQL Database?
Azure CloudAzure SQL Database SeniorWhat is Azure SQL Analytics?
Azure CloudAzure Log Analytics WorkspaceAzure MonitorAzure SQL Database SeniorHow do you configure Azure SQL Database Diagnostic settings to perform real-time reporting by using Microsoft Power BI?
Azure CloudAzure SQL Database SeniorYou implement Azure AD authentication. How would you explain a difference between synchronized identity and federated identity?
Azure Active DirectoryAzure Cloud SeniorWhat is Azure Active Directory B2C?
Azure Active DirectoryAzure Cloud Senior
