Manage Windows Servers and workloads in a hybrid environment

By Orin Thomas
11/5/2022

Contents

×

Thought experiment answers

This section contains the solution to the thought experiment. Each answer explains why the answer choice is correct.

Use an Azure AD Service principal delegated the Azure Connected Machine Onboarding role. An Azure AD Service principal is required to perform onboarding in this manner.
Configure a JEA endpoint that allows Sonia to perform a restricted set of tasks related to DNS management. This will ensure that she is able to perform tasks without unnecessary permissions.
Configure Kerberos delegation that allows Rick’s credentials to be used by the jump server. Kerberos delegation allows the jump server to use Rick’s credentials to run the PowerShell scripts.

Save to your account

This chapter is from the book

Exam Ref AZ-800 Administering Windows Server Hybrid Core Infrastructure

Learn more Buy

Related resources

Exam Ref SC-200 Microsoft Security Operations Analyst, 2nd Edition

By Yuri Diogenes, Yuri Diogenes, Sarah Young
eBook $35.19

Exam Ref SC-200 Microsoft Security Operations Analyst, 2nd Edition

By Yuri Diogenes, Yuri Diogenes, Sarah Young
Book $43.99

Exam SC-401 Administering Information Security in Microsoft 365 (Video)

By Sarah Young
Online video $119.99

See related titles