Microsoft Azure Architect Design (AZ-301) Practice Exam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Microsoft Azure Architect Design (AZ-301) Exam with interactive quizzes featuring flashcards and multiple-choice questions, each packed with hints and explanations to ace your certification test!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

When setting up a web service on Azure VM, what must be configured to ensure external partner access?

Enable VNet peering
Utilize Azure Front Door
Deploy an Azure API Management service
Set up Azure Bastion

The correct answer is: Deploy an Azure API Management service

Deploying an Azure API Management service is the appropriate choice when configuring access to a web service on an Azure Virtual Machine for external partners. Azure API Management acts as a gateway that allows you to expose your APIs securely to external users while providing several key features such as policies for authentication, rate limiting, logging, and monitoring. This service simplifies the process for external partners to access your web services by providing them with a consistent interface. It allows you to manage the APIs' lifecycle and ensures that the APIs can be accessed securely, with robust mechanisms for validation and authorization, which can enhance overall security posture. While VNet peering allows for connectivity between virtual networks, it does not specifically cater to secure access for external partners. Azure Front Door is a global application delivery network that improves performance and availability but does not inherently provide the API management capabilities required for controlled external access. Azure Bastion, on the other hand, is a secure way to manage your VMs directly through the Azure portal but is not designed for exposing web services to external users.