Implement resource management security in Azure Microsoft Quiz Answers

Get Implement resource management security in Azure Microsoft Quiz Answers

Learn how to secure resources using policy, role-based access control, and other Azure services. This learning path can help you prepare for the Microsoft Certified: Azure Security Engineer Associate certification.

This learning path helps prepare you for Exam AZ-103: Microsoft Azure Administrator.

Prerequisites:

None

Enroll on Microsoft

Module 5: Manage access to an Azure subscription by using Azure role-based access control (Azure RBAC)

To grant access to a subscription, identify the appropriate role to assign to an employee. Understand when you might need to temporarily elevate your own access to regain access to a subscription.

Learning objectives:

In this module, you will:

  • Identify the appropriate role to assign to an employee.
  • Identify scenarios where the Global Administrator for Azure Active Directory might need to temporarily elevate their access in Azure.
  • Grant the employee management access to a subscription.

Prerequisites:

  • A basic understanding of how Azure role-based access control (Azure RBAC) works
  • (Optional) Access to an Azure subscription where you have the Global Administrator role for your account

This module is part of these learning paths:

Quiz 1: Understand the difference between Azure roles and Azure AD roles

Q1. You need to grant administrator access for an Azure subscription to someone else in your organization. That person needs to be able to manage Azure resources that were created under that subscription. The person also needs access to the billing information for that subscription. What role should you grant them?

  • Assign the User Access Administrator role at the subscription scope.
  • Assign the Billing Administrator role at the management group scope.
  • Assign the Owner role at the subscription scope.

Q2. What’s the main difference between Azure roles and Azure AD roles?

  • Azure roles apply to Azure resources. Azure AD roles apply to Azure AD resources such as users, groups, and domains.
  • You can assign Azure roles at the root level.
  • Azure AD roles are used to manage access to Azure resources. Azure roles are used to view and manage Azure resources.

Quiz 2: Understand when you might need to elevate your access

Q1. A user who had Owner access to a subscription has left your company. No one else has access to this subscription. How can you grant another employee access to this subscription?

  • Use the Azure portal to elevate your own access.
  • Ask the former employee for their password.
  • Ask the former employee to sign in and select a different employee to grant their permissions to.

Q1. A manager currently has access to the subscription that’s used for the organization’s production environment. This manager also needs Owner access to the subscription that’s used for the organization’s development environment. How can this access be granted?

  • An administrator with Owner or User Access Administrator access to the development environment can grant the manager access to the subscription.
  • The manager should go to the Switch directory option in the Azure portal and select the subscription.
  • The manager should use PowerShell to assign themselves Owner access to the subscription.

Module 6: Create custom roles for Azure resources with role-based access control (RBAC)

Understand the structure of role definitions for access control. Identify the role properties to use that define your custom role permissions. Create an Azure custom role and assign to a user.

Learning objectives:

In this module, you will:

  • Identify role definition structure and properties
  • Create and manage an Azure custom role for resource access management

Prerequisites:

  • Basic knowledge of access management concepts in Azure like Azure role-based access control (RBAC).
  • (Optional) Access to an Azure subscription where you have the User Access Administrator or Owner role for your account

This module is part of these learning paths:

Quiz 1: What are custom roles in Azure?

Q1. What’s included in a custom Azure role definition?

  • Operations allowed for Azure resources and the scope of permissions
  • The assignment of the custom role
  • Actions and DataActions operations that you can scope to the tenant level

Q2. What commands help you determine what operations to add to a custom role definition?

  • Use ‘az provider operation show’ to find resource provider operations.
  • Use ‘List-AzRoleDefinition’ to view a built-in role.
  • Use ‘az role definition list’ to view a built-in role.

Quiz 2: Manage Azure custom roles

Q1. What is the Azure PowerShell cmdlet to update a custom role?

  • New-AzRoleDefinition
  • Set-AzRoleDefinition
  • az role definition create

Q2. What are the steps to remove a custom role?

  • Delete the custom role and then remove the role assignments.
  • Set the role definition status to retired.
  • Delete the role assignments and then delete the custom role.
Conclusion:

I hope this Implement resource management security in Azure Microsoft Quiz Answers would be useful for you to learn something new from this problem. If it helped you then don’t forget to bookmark our site for more Coding Solutions.

This Problem is intended for audiences of all experiences who are interested in learning about Data Science in a business context; there are no prerequisites.

Keep Learning!

More Coding Solutions >>

LeetCode Solutions

Hacker Rank Solutions

CodeChef Solutions

Leave a Reply

Your email address will not be published. Required fields are marked *