You have a cognitive search solution in Azure. You are asked to define inbound security rules for admin and query operations. Review the statements given below and select three statements that are true regarding the inbound security of your cognitive search service.

Answer options:

A.Authentication for inbound requests can be provided through AD or an API key.
B.Admin API key grants full access to manage indexers and data sources.
C.Primary and Secondary admin keys can be rolled over one at a time.
D.The maximum limit of admin keys per service is two.
E.Query key provides read-write access to indexes and documents.

Correct Answers: B, C and D
Option A is incorrect. You can provide inbound security authentication through API keys. AD cannot be used for authentication.
Option B is correct. An admin API key provides full access to create, manage, delete indexers, indexes and data sources.
Option C is correct. Here are the steps to regenerate the primary key.
Step 1: Copy the secondary key.
Step 2: Update API key settings to use the secondary key.
Step 3: Regenerate the primary key
Step 4: Update all applications to use the primary key.
Option D is correct. The maximum limit of admin keys per service is two.
Option E is incorrect. Query key only provides read access to indexes and documents.
Reference:
To learn more about inbound security of cognitive search requests, use the link given below: 

https://docs.microsoft.com/en-us/azure/search/search-security-api-keys#regenerate-admin-keys