Users expense account number must be visible only to logged in users All other

Users expense account number must be visible only to

This preview shows page 11 - 15 out of 20 pages.

in transit. User's expense account number must be visible only to logged in users. All other views of the expense account number should include only the last segment with theremaining parts obscured. In the case of a security breach, access to all summary reports must be revoked without impacting other parts of the system. Issues - Upload format issue -Employees occasionally report an issue with uploading a receipt using the web application. They report that when they upload a receipt using the Azure File Share, the receipt does notappear in their profile. When this occurs, they delete the file in the file share and use the web application, which returns a 500 Internal Server error page. Capacity issue - During busyperiods, employees report long delays between the time they upload the receipt and when it appears in the web application. Log capacity issue - Developers report that the number oflog messages in the trace output for the processor is too high, resulting in lost log messages. Processing.cs -
Image of page 11
Database.cs -
Image of page 12
ReceiptUploader.cs - ConfigureSSE.ps1 -
Image of page 13
Question You need to ensure that the SecurityPin security requirements are met. A. Configure the web application to connect to the database using the WebAppIdentity security principal. Using the Azure Portal, add Data Masking to the SecurityPin column andexclude the WebAppIdentity service principal.B. Using the Azure Portal, add Data Masking to the SecurityPin column, and exclude the dbo user. Add a SQL security policy with a filter predicate based on the user identity.C. Enable Always Encrypted for the SecurityPin column using a certificate based on a trusted certificate authority. Update the Getting Started document with instructions to ensure thatthe certificate is installed on user machines.D. Enable Always Encrypted for the SecurityPin column using a certificate contained in Azure Key Vault and grant the WebAppIdentity service principal access to the certificate.Answer: D Question: 155Introductory Info Case Study - This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, theremay be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources thatprovide more information about the scenario that is described in the case study. Each question is independent of the other question on this case study. At the end of this case study, areview screen will appear. This screen allows you to review your answers and to make changes before you move to the next sections of the exam. After you begin a new section, youcannot return to this section. To start the case study - To display the first question on this case study, click the Next button. Use the buttons in the left pane to explore the content ofthe case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case
Image of page 14
Image of page 15

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture