As an Azure architect for a government agency, you are tasked with designing a cloud solution that must adhere to strict compliance standards, including rigorous access controls and detailed auditing capabilities. The solution must also be scalable to accommodate future growth without significant restructuring. Considering these requirements, which of the following strategies best leverages Azure's management groups, subscriptions, and resource groups to enforce access controls and facilitate comprehensive auditing across the entire environment? (Choose one correct option.)

Simulated

Implement a flat structure with minimal management groups, relying heavily on individual resource policies for access control and auditing, which may simplify initial setup but could complicate scalability and compliance management.

0.0%

Design a deep hierarchy with multiple levels of management groups to strictly enforce access controls, and utilize Azure Policy extensively for auditing, potentially increasing complexity and management overhead.

33.3%

Focus exclusively on resource groups and subscriptions for access control and auditing, disregarding management groups, which may limit the ability to enforce policies uniformly across the organization.

0.0%

Adopt a balanced approach with a moderate number of management groups to organize subscriptions and resources logically, complemented by well-defined Azure Policies for access control and auditing, ensuring scalability and compliance without unnecessary complexity.

66.7%

Microsoft Azure Fundamentals AZ-900

Get started today

Comments