Home » Microsoft » 70-486 v.2 » What should you implement?
HOTSPOT
You manage an application that has a custom API. Your company purchases another company. Employees from the purchased company use their own Microsoft Azure Active Directory (Azure AD).
You need to reconfigure the application to ensure that all users can access the application by using the API. You have the following requirements:
Implement authentication for Azure API management.
Configure the API gateway for proper authorization.
Integrate metrics into one dashboard.
Apply additional restrictions to all roles.
What should you implement? To answer, configure the appropriate options in the dialog box in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
Explanation/Reference:
Box 1: Groups
Add an external Azure AD group
After you enable access for users in an Azure AD instance, you can add Azure AD groups in API Management. Then, you can more easily manage the association of the developers in the group with the desired products.
To configure an external Azure AD group, you must first configure the Azure AD instance on the Identities tab by following the procedure in the previous section. You add external Azure AD groups from the Groups tab of your API Management instance.
Box 2: Policies
Policies are applied inside the gateway which sits between the API consumer and the managed API. The gateway receives all requests and usually forwards them unaltered to the underlying API. However a policy can apply changes to both the inbound request and outbound response.
Box 3: Application Insights
Application Insights is an extensible Application Performance Management (APM) service for web developers on multiple platforms. Use it to monitor your live web application.
Box 4: Role-Based Access Control (RBAC) Apply additional restrictions to all roles.
Azure API Management relies on Azure Role-Based Access Control (RBAC) to enable fine-grained access management for API Management services and entities (for example, APIs and policies).
References:
https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-aad https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-policies https://docs.microsoft.com/en-us/azure/api-management/apimanagement-role-based-access-control