You are deploying a couple of virtual machines that will access Azure Key Vault and Azure SQL Database. Later on you plan to add additional virtual machines. What solution will you use to make sure that no secrets will be stored on the virtual machines, you minimize the administrative effort and don't need to assign new roles and permissions when new virtual machines are added?

Experience Level: Senior
Tags: Azure Active DirectoryAzure CloudAzure Key VaultAzure SQL Database

Answer

Use user-assigned identity and configure its permissions. When a new virtual machine is created, make it use the user-assigned identity. This way it will have the previously configured permissions that is shared by all virtual machines that share the user-assigned identity.
Related Azure Cloud job interview questions

Comments

No Comments Yet.
Be the first to tell us what you think.
Azure Key Vault
Azure Key Vault

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
Azure Active Directory
Azure Active Directory

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
Azure SQL Database
Azure SQL Database

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself
AZ-304 Microsoft Azure Architect Design Preparation
AZ-304 Microsoft Azure Architect Design Preparation

Are you learning Azure Cloud ? Try our test we designed to help you progress faster.

Test yourself