Practice free →
HomeAzure AZ-500cloudcomputingaz500networking › Which Azure networking feature should a security…

Which Azure networking feature should a security engineer use to give an Azure storage account a VNet-tagged access path for resources inside that VNet — without setting up a Private Endpoint?

AVirtual network Service Endpoint (with storage firewall rules limiting access to that VNet)
BHardcoded credentials in source code
CPublic storage with anonymous read
DAzure DNS
Answer & Solution
Correct answer: A. Virtual network Service Endpoint (with storage firewall rules limiting access to that VNet)
Service Endpoints + storage firewall rules are the simpler VNet-tagged-access pattern (per AZ-500 §2 private access). The other options are insecure.
Solve this in the app — Azure AZ-500 practice & 24k+ MCQs →
Related questions