Home / Microsoft / AZ-400 / Question 82

You create a Microsoft ASP.NET Core application.

You plan to use Azure Key Vault to provide secrets to the application as configuration data.

You need to create a Key Vault access policy to assign secret permissions to the application. The solution must use the principle of least privilege.

Which secret permissions should you use?

• A. List only

• B. Get only

• C. Get and List

Application data plane permissions:

Keys: sign

Secrets: get

Secure access to a key vault