Answer-first summary for fast verification
Answer: Azure RBAC enables the creation of custom roles with specific permissions tailored to each department's requirements, such as full access for IT, read-only for Finance, and specific write permissions for HR, while also supporting compliance and auditing capabilities., Azure RBAC allows for the assignment of built-in roles that closely match the departments' needs, with the possibility of minor adjustments through custom roles for specific scenarios.
Azure RBAC is designed to provide fine-grained access management by allowing the definition of custom roles with specific permissions that match the needs of different roles or departments within an organization. This approach supports the principle of least privilege by ensuring users have only the access they need to perform their job functions. Additionally, Azure RBAC integrates with Azure's compliance and auditing features, enabling organizations to track access and changes to resources for security and regulatory purposes. The option E is also correct because Azure RBAC offers a range of built-in roles that can be used as is or slightly modified to fit specific needs, providing flexibility and reducing the overhead of creating entirely custom roles from scratch.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A multinational corporation is restructuring its Azure resource access to comply with data protection regulations and ensure secure, role-based access control across its IT, Finance, and HR departments. The IT department requires full access to manage resources, Finance needs read-only access to billing and cost management tools, and HR must have write permissions to employee data storage. The solution must also support detailed auditing of access and actions. Given these requirements, which of the following best describes how Azure Role-Based Access Control (RBAC) can be configured to meet these needs? (Choose two options.)
A
Azure RBAC is limited to providing uniform access levels across all departments, making it unsuitable for organizations with diverse access needs.
B
Azure RBAC enables the creation of custom roles with specific permissions tailored to each department's requirements, such as full access for IT, read-only for Finance, and specific write permissions for HR, while also supporting compliance and auditing capabilities.
C
Azure RBAC only supports predefined roles that cannot be customized, thus failing to address the unique access needs of different departments.
D
Azure RBAC requires all users to have administrator-level access to ensure security and compliance, disregarding the principle of least privilege.
E
Azure RBAC allows for the assignment of built-in roles that closely match the departments' needs, with the possibility of minor adjustments through custom roles for specific scenarios.