Practice Test 3 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
A company currently has three Azure subscriptions. They have defined a set of security policy definitions. They want to ensure that these definitions are deployed across all subscriptions.
You decide to create the security definitions and assignments and scope them at the resource group level.
Would this fulfill the requirement?
A. Yes
B. No
In this question, we are asked to decide, whether by creating, a central policy, and then scope it at resource group level, the policy will be applicable to all subscriptions
Answer — B. No
The hierarchy between management group, subscription, and resource group is as follows:
- Management Group
- Subscription
- Resource group.
The policy effect, always, trickle down from top to bottom most level.
The correct answer is B because, if we apply a policy at the resource group level, it will not be applicable on the subscription level.
In order to meet the actual requirements, we need to take following steps
- Create a management group
- Add all the subscription under this management group.
- Now apply the policy at management group level.
Hence, it is clear that The B is the correct answer.
For more information on working with security policies, one can visit the below URL
https://docs.microsoft.com/en-us/azure/security-center/tutorial-security-policy
Comments are closed, but trackbacks and pingbacks are open.