A multinational corporation is embarking on a 6-month project on Azure, involving collaboration with external contractors. The project demands a solution that not only restricts contractors' access to specific resources essential for the project but also ensures automatic revocation of access post-project completion to adhere to internal security policies. Given the requirements for cost-effectiveness, scalability, and compliance, which of the following Azure RBAC features most effectively addresses this scenario? (Choose two options.)

Simulated

Azure RBAC does not support temporary access and requires manual revocation of access for external contractors, potentially leading to security risks if overlooked.

6.7%

Azure RBAC enables the creation of custom roles with precise permissions and supports time-bound access, allowing for automatic revocation of access after a specified duration, thus meeting the project's requirements.

56.7%

Azure RBAC grants permanent access to all resources by default, necessitating periodic manual reviews to revoke unnecessary access, which is time-consuming and prone to errors.

10.0%

Azure RBAC automatically grants all external contractors the same level of access as internal employees, without the ability to restrict access to specific resources or set expiration dates.

13.3%

Azure RBAC integrates with Azure AD to provide conditional access policies that can enforce multi-factor authentication for external contractors, adding an extra layer of security.

13.3%

Microsoft Azure Fundamentals AZ-900

Get started today

Comments