Azure Certificate Storage

C

Azure Key Vault is a secure store for storage various types of sensitive information including passwords and certificates.

Azure Key Vault can be used to Securely store and tightly control access to tokens, passwords, certificates, API keys, and other secrets.

Secrets and keys are safeguarded by Azure, using industry-standard algorithms, key lengths, and hardware security modules (HSMs). The HSMs used are

Federal Information Processing Standards (FIPS) 140-2 Level 2 validated.

Access to a key vault requires proper authentication and authorization before a caller (user or application) can get access. Authentication establishes the identity of the caller, while authorization determines the operations that they are allowed to perform.

The correct answer is C. Azure Key Vault.

Azure Key Vault is a cloud-based service that allows you to securely store and manage cryptographic keys, certificates, and secrets. It provides a central location to store your certificates, which can then be used for authentication and encryption in your applications and services.

Azure Security Center is a cloud-based service that provides unified security management and advanced threat protection across hybrid cloud workloads. While it can help you manage security certificates and keys, it is not specifically designed for that purpose.

An Azure Storage account is a cloud-based service that provides object storage for unstructured data. While you can store files in Azure Storage, it is not the appropriate service for managing certificates.

Azure Information Protection is a cloud-based service that helps organizations classify, label, and protect sensitive data. While it can help you manage security certificates, it is not specifically designed for that purpose.

In summary, Azure Key Vault is the correct answer as it is specifically designed to store and manage certificates in a secure manner, while the other services listed are not primarily designed for that purpose.