AZ-204 Certification Practice Question #204

Question

You are developing a set of RESTful APIs that will be consumed by external partners.

You must expose the APIs securely through Azure API Management. You have the following requirements:

•	Only authenticated and authorized clients must be able to access the APIs.
•	Control over the number of API calls to prevent abuse and ensure fair usage must be implemented.
•	Data transformation and validation on incoming requests and outgoing responses must be performed without modifying the back-end services.
•	Insights into API usage patterns, performance metrics, and anomaly detection must be gathered.

You need to implement the APIs.

What should you do?

Accepted Answer

Each component of Option B directly satisfies one requirement: OAuth 2.0 provides authenticated and authorized access for external partners; the rate-limit policy in APIM controls API call volume to prevent abuse; inbound and outbound policies allow request/response transformation and validation at the APIM layer without touching backend services; Azure Monitor provides comprehensive API usage analytics, performance metrics, and anomaly detection. All four requirements are perfectly met. The Suggested Answer and the single community explanation both confirm B.

More AZ-204 practice questions