You download an Azure Resource Manager template based on an existing virtual machine. The template will be used to deploy 100 virtual machines.
You need to modify the template to reference an administrative password. You must prevent the password from being stored in plain text.
What should you create to store the password?
Click on the arrows to vote for the correct answer
A. B. C. D.A
The correct answer is A. an Azure Key Vault and an access policy.
Explanation: When deploying virtual machines using an Azure Resource Manager template, it is common to use a parameter file to provide values for various settings such as the virtual machine name, size, and network configuration. In this case, the template needs to be modified to reference an administrative password for the virtual machines.
Storing passwords in plain text is not secure, so the solution is to store the password in a secure location. Azure Key Vault is a cloud-based service that provides secure storage of secrets such as passwords, cryptographic keys, and certificates. Access to the Key Vault can be controlled using access policies, which allow you to grant permissions to users or applications based on their identity.
To use Azure Key Vault in an Azure Resource Manager template, you can define a parameter for the Key Vault URI and use the GetSecret function to retrieve the password. The Key Vault URI can be provided as a parameter to the template when it is deployed.
In summary, the correct answer is A. an Azure Key Vault and an access policy, because it provides a secure way to store the administrative password and control access to it. Azure Storage account and Azure AD Identity Protection are not relevant to this scenario, and a Recovery Services vault is used for backup and disaster recovery, not for storing secrets.