🔥 3-day streak
Microsoft DevOps Engineer Expert48 / 138
Question 48 of 138

Your team maintains an Azure Pipelines YAML pipeline that builds a Docker image and pushes it to a private Azure Container Registry (ACR), then deploys it to Azure Kubernetes Service (AKS). Currently the pipeline stores the ACR admin username and password as pipeline secret variables. Security has flagged that the ACR admin account is enabled and long-lived credentials are being used. You must eliminate stored registry credentials while allowing the pipeline to push images to ACR, following least-privilege and Microsoft-recommended practices. What should you do?

Reviewed for accuracy · Report an issueNext question