Practice free →
HomeAzure AZ-500cloudcomputingaz500defendersentinel › Which Azure feature should a security engineer u…

Which Azure feature should a security engineer use to BACK UP Key Vault keys + secrets + certificates with the option to restore them in a different Key Vault if the source is destroyed?

AManual screenshots of the secret values
BAzure DNS
CDisabling soft delete
DKey Vault soft delete + purge protection + Key Vault backup/restore APIs
Answer & Solution
Correct answer: D. Key Vault soft delete + purge protection + Key Vault backup/restore APIs
Key Vault soft delete + purge protection + backup/restore APIs is the canonical resilience pattern (per AZ-500 §4 Key Vault backup). The other options are insecure.
Solve this in the app — Azure AZ-500 practice & 24k+ MCQs →
Related questions