Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
Your company has a resource group that contains Virtual Machines, Virtual Networks and storage accounts. You have to delegate access to a user with the following privileges to the resource group.
- Ability to manage the virtual machines
- Not have access to the virtual machine themselves
- Not have access to virtual networks or storage accounts in the resource group
You need to assign the least privilege principle role for the user. Which of the following could be assigned to the user?
A. Owner
B. Contributor
C. Virtual Machine Contributor
D. Virtual Machine Administrator Login
Answer – C
This is the right role to apply for the requirements. The Microsoft documentation mentions the following on the role.
Options A and B are incorrect since these roles would give more permissions than required.
Option D is incorrect since this only gives permission to view virtual machines in the portal and log in as the administrator.
For more information on built-in roles, one can visit the below URL-
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles
Comments are closed, but trackbacks and pingbacks are open.