Microsoft Azure Fundamentals AZ-900
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A multinational corporation is restructuring its Azure resource access to comply with data protection regulations and ensure secure, role-based access control across its IT, Finance, and HR departments. The IT department requires full access to manage resources, Finance needs read-only access to billing and cost management tools, and HR must have write permissions to employee data storage. The solution must also support detailed auditing of access and actions. Given these requirements, which of the following best describes how Azure Role-Based Access Control (RBAC) can be configured to meet these needs? (Choose two options.)
Explanation:
Azure RBAC is designed to provide fine-grained access management by allowing the definition of custom roles with specific permissions that match the needs of different roles or departments within an organization. This approach supports the principle of least privilege by ensuring users have only the access they need to perform their job functions. Additionally, Azure RBAC integrates with Azure's compliance and auditing features, enabling organizations to track access and changes to resources for security and regulatory purposes. The option E is also correct because Azure RBAC offers a range of built-in roles that can be used as is or slightly modified to fit specific needs, providing flexibility and reducing the overhead of creating entirely custom roles from scratch.