Microsoft Azure Administrator Associate AZ-104
Get started today
Ultimate access to all questions.
With an Azure Policy definition named Policy1 created, identify the assignable scopes and possible exclusions within an Azure subscription hierarchy.
With an Azure Policy definition named Policy1 created, identify the assignable scopes and possible exclusions within an Azure subscription hierarchy.
Exam-Like
Explanation:
The correct answer is that Policy1 can be assigned to the Tenant Root Group, ManagementGroup1, Subscription1, RG1, and VM1. This is because Azure policies can be assigned to various scopes including management groups, subscriptions, resource groups, and individual resources. For exclusions, you can exclude any subscope from the assignment, which includes ManagementGroup1, Subscription1, RG1, and VM1, but not the Tenant Root Group. Therefore, option A covers both the correct assignable scopes and possible exclusions accurately.