A multinational corporation is restructuring its Azure resource access to comply with data protection regulations and ensure secure, role-based access control across its IT, Finance, and HR departments. The IT department requires full access to manage resources, Finance needs read-only access to billing and cost management tools, and HR must have write permissions to employee data storage. The solution must also support detailed auditing of access and actions. Given these requirements, which of the following best describes how Azure Role-Based Access Control (RBAC) can be configured to meet these needs? (Choose two options.)

Simulated

Azure RBAC is limited to providing uniform access levels across all departments, making it unsuitable for organizations with diverse access needs.

0.0%

Azure RBAC enables the creation of custom roles with specific permissions tailored to each department's requirements, such as full access for IT, read-only for Finance, and specific write permissions for HR, while also supporting compliance and auditing capabilities.

85.7%

Azure RBAC only supports predefined roles that cannot be customized, thus failing to address the unique access needs of different departments.

0.0%

Azure RBAC requires all users to have administrator-level access to ensure security and compliance, disregarding the principle of least privilege.

0.0%

Azure RBAC allows for the assignment of built-in roles that closely match the departments' needs, with the possibility of minor adjustments through custom roles for specific scenarios.

14.3%

Microsoft Azure Fundamentals AZ-900

Get started today

Comments