HOTSPOT
You plan to deploy a disconnected Azure Stack Hub integrated system.
You need to identify which type of certificate to use for the deployment and the file format for the certificate.
The solution must meet the following requirements:
• Minimize administrative effort.
• Maximize security.
What should identify? To answer, select the appropriate options in the answer area. NOTE:
Each correct selection is worth one point.
Answer:
Explanation:
Azure Stack Hub public key infrastructure (PKI) certificate requirements
Azure Stack Hub has a public infrastructure network using externally accessible public IP addresses assigned to a small set of Azure Stack Hub services and possibly tenant VMs. PKI certificates with the appropriate DNS names for these Azure Stack Hub public infrastructure endpoints are required during Azure Stack Hub deployment.
Box 1: A certificate from an internal certification authority (CA)
Your Azure Stack Hub infrastructure must have network access to the certificate authority’s Certificate Revocation List (CRL) location published in the certificate. This CRL must be an http endpoint. Note: for disconnected deployments, certificates issued by a public certificate authority (CA) are not supported, if the CRL endpoint is not accessible.
Features that are impaired or unavailable in disconnected deployments
Azure Stack Hub was designed to work best when connected to Azure, so it’s important to note that there are some features and functionality that are either impaired or completely unavailable in the disconnected mode.
Private/internal Certificate Authority (CA)
No impact – In cases where the deployment uses certificates issued by a private CA, such as an internal CA within an organization, only internal network access to the CRL endpoint is required. Internet connectivity is not required, but you should verify that your Azure Stack Hub infrastructure has the required network access to contact the CRL endpoint defined in the certificates CDP extension.
Box 2: PFX
The certificate format must be PFX, as both the public and private keys are required for Azure Stack Hub installation. The private key must have the local machine key attribute set.
Latest AZ-600 Dumps Valid Version with 73 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund