You have an Azure subscription named Subscription1 that contains an Azure virtual machine named VM1. VM1 is in a resource group named RG1.\nVM1 runs services that will be used to deploy resources to RG1.\nYou need to ensure that a service running on VM1 can manage the resources in RG1 by using the identity of VM1.\nWhat should you do first?\nA. From the Azure portal, modify the Access control (IAM) settings of RG1.\nB. From the Azure portal, modify the Policies settings of RG1.\nC. From the Azure portal, modify the Access control (IAM) settings of VM1.\nD. From the Azure portal, modify the value of the Managed Service Identity option for VM1.\nCorrect Answer: D\nSection: (none)\nExplanation\nExplanation/Reference:\nExplanation:
\nThe managed identities for Azure resources feature in Azure Active Directory (Azure AD) solves this problem. The feature provides Azure services with an\nautomatically managed identity in Azure AD. You can use the identity to authenticate to any service that supports Azure AD authentication, including Key Vault,\nwithout any credentials in your code.\nReferences: https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-\nresources/overview