🔥 3-day streak
Microsoft Azure Network Engineer Associate118 / 152
Question 118 of 152
Your company runs analytics VMs in a subnet named 'data-subnet' that already has a Microsoft.Storage service endpoint enabled. Security has discovered that VMs can currently reach any Azure Storage account over the service endpoint, including personal storage accounts used for data exfiltration. You must ensure the VMs in 'data-subnet' can only access the two approved storage accounts in your subscription, while still using the service endpoint path. What should you implement?
Reviewed for accuracy · Report an issueNext question