How well do you know Azure API Management Question Title * 1. Azure API Management provides a common way to communicate over the internet, allowing your organization to provide services in a secure manner. What use cases can APIM can be used - pick up one or more of the uses cases from the list below. Gateway service with developer and publisher portal. Exposing on-premise services to Public cloud in secure manner Exposing Public cloud services to 3rd party consumers. Exposing micro-services to multitude of services. OK Question Title * 2. API Management allows developers to easily consume APIs identify the various ways of integrating with APIM from the following list. Open API WADL XML representation of API's WSDL Logic Apps Function Apps API Apps OK Question Title * 3. APIM has the ability to consume other authentication services, pick the identity providers supported by APIM. Azure AD Azure B2C Facebook Google Microsoft Twitter accounts OK Question Title * 4. Identity native APIM security feature secure APIs from the following list. OpenID Connect OAuth 2.0. Keycloak OK Question Title * 5. OAuth authentication protocol that's used with APIM. When you use OAuth users need to provide their secure password. Is the statement true or false? False True OK Question Title * 6. Does OAuth cover authentication. Identity if the statement is True or False True False OK Question Title * 7. A user can obtain a token, which they give to an application to use as proof of that user's identity. Using tokens means third party services, once configured, can validate a user with their identity provider, and provide access to privileged or secure resources. What is the name of the token? API Token Bearer Token OK Question Title * 8. What is the document format of policy definition? XML JSON OK Question Title * 9. What is the difference between OAuth 2.0 and OpenID Connect? The OAuth 2.0 protocol was designed to allow authorization to occur over HTTP and OpenID connect does exactly the same in a much more streamlined fashion and there is no authentication layer - similar to OAuth 2.0 OpenID Connect was designed to be an additional layer on top of the OAuth 2.0 protocol, and adds authentication. OK Question Title * 10. What are the different types of OAuth grants Authorization code Implicit Password Client credentials Device code Refresh token OK Question Title * 11. Policies can be configured at different levels. Identify areas where you can define policies. API Policy globally (Global Scope) Scope of a given product Specific API Scope Individual operation OK Question Title * 12. Policy scopes are evaluated in the following order: Pick the correct order from the list below. Global scope (All APIs), Product scopes, like a starter, API scope, like a demo API or all operations, and operation scope, which is an individual operation. Global scope (All APIs), Operation scopes, which is an individual operation, API scopes, like a demo API or all operations and Product scope like a starter. Operation scopes, which is an individual operation, API scopes, like a demo API or all operations and Product scope like a starter, Global scope (All APIs), OK DONE