Ultimate access to all questions.
A multinational corporation is undergoing a digital transformation to migrate its IT operations to Microsoft Azure, aiming to enhance collaboration and efficiency across its global teams. The corporation comprises three main departments: Development, Operations, and Finance. The Development team requires comprehensive access to deploy, manage, and scale applications. The Operations team needs permissions to monitor, maintain, and troubleshoot Azure resources without the ability to alter configurations. The Finance department requires access solely for auditing and cost analysis purposes, with no permissions to modify resources. The corporation prioritizes a secure, scalable, and compliant access management solution that minimizes administrative overhead. Considering these requirements, which of the following statements accurately describe how Azure Role-Based Access Control (RBAC) can be implemented to meet the corporation's needs? (Choose two options)
A
Azure RBAC does not support the granularity required for the corporation's diverse teams, necessitating a one-size-fits-all access level for simplicity and security.
B
Azure RBAC enables the creation of custom roles with precisely defined permissions, allowing the corporation to tailor access levels to each team's specific responsibilities and requirements.
C
Azure RBAC is restricted to a set of predefined roles that cannot be modified, making it unsuitable for the corporation's need for differentiated access levels across teams.
D
Azure RBAC provides built-in roles such as 'Owner', 'Contributor', and 'Reader' that can be assigned to teams based on their needs, offering a balance between control and simplicity without custom role creation.
E
Azure RBAC allows for both the use of built-in roles and the creation of custom roles, providing flexibility to meet the corporation's specific access management requirements.