Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Azure AZ-305 > App Security > Flashcards

App Security Flashcards

1
Q

Azure Key Vault

A

Helps you safeguard cryptographic keys, secrets, and certificates used by cloud applications and services. It offers a secure and centralized location to store and manage sensitive information such as passwords, connection strings, encryption keys, and certificates, helping you protect your data and comply with regulatory requirements.

-Built for progamatic access

Data Types

-Secrets: Sensitive data that needs to be protected, such as passwords, API keys, or connection strings

-Keys: Cryptographic keys that can be used for encryption, decryption, signing and verification

-Certificates: Digital certificates that can be used for authentication and encryption purposes

Architecture

  1. Key Vault: Vault or Managed HSM for storing secret data (FIPS compliant)
  2. Data: KV data (keys, secrets, certificates) are access via REST
  3. Access Control: Grant Azure AD identities access using RBAC or an Access Policy

Implementation

-An Azure AD Identity is required to access the Key Vault (data/management)
-Managed Identities are recommended for apps (vs app registration + secret)
-Protect data with Soft Delete (recycle bin) and Purge Protection (time-based lock)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Entra Permissions and Consent

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Azure AZ-305 (17 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions