You need to ensure the security policies are met.
What code do you add at line CS07 of ConfigureSSE.ps1?
A . CPermissionsToKeys create, encrypt, decrypt
B . CPermissionsToCertificates create, encrypt, decrypt
C . CPermissionsToCertificates wrapkey, unwrapkey, get
D . CPermissionsToKeys wrapkey, unwrapkey, get
Answer: B
Explanation:
Scenario: All certificates and secrets used to secure data must be stored in Azure Key Vault.
You must adhere to the principle of least privilege and provide privileges which are essential to perform the intended function.
The Set-AzureRmKeyValutAccessPolicy parameter -PermissionsToKeys specifies an array of key operation permissions to grant to a user or service principal. The acceptable values for this parameter: decrypt, encrypt, unwrapKey, wrapKey, verify, sign, get, list, update, create, import, delete, backup, restore, recover, purge
Reference: https://docs.microsoft.com/en-us/powershell/module/azurerm.keyvault/set-azurermkeyvaultaccesspolicy
Latest AZ-204 Dumps Valid Version with 254 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund