Developing Solutions for Microsoft Azure (AZ-204) Practice Exam

Disable ads (and more) with a membership for a one time $2.99 payment

Developing Solutions for Microsoft Azure Exam. Prepare with flashcards and multiple choice questions, get hints and explanations for each question. Ace your test prep!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

How can Tailwind Traders allow users to control virtual machines but not modify networking resources?

  1. Create a policy in Azure Policy that audits resource usage.

  2. Create a role assignment through Azure role-based access control (Azure RBAC).

  3. Split the environment into separate resource groups.

  4. Limit user access through cost management tools.

The correct answer is: Create a role assignment through Azure role-based access control (Azure RBAC).

The correct answer is to create a role assignment through Azure role-based access control (Azure RBAC). Azure RBAC provides fine-grained access management for Azure resources, allowing administrators to specify permissions at a very granular level. This means that you can assign permissions that allow users to manage virtual machines while restricting them from making any changes to networking resources. With Azure RBAC, you can create custom roles or use built-in roles that provide specific permissions needed for virtual machine management, such as starting, stopping, or configuring VMs without granting permissions to resources related to networking, like virtual networks or network security groups. This approach enables a precise control mechanism tailored to meet organizational needs regarding resource management and security. While auditing resource usage through Azure Policy (the first choice) does promote visibility and governance, it does not directly control user permissions. Splitting the environment into separate resource groups (the third choice) may help with organization, but would not inherently restrict access to specific resources without additional configuration. Limiting user access through cost management tools (the fourth choice) focuses more on budgeting and cost control rather than direct resource management permissions. Thus, Azure RBAC stands out as the most effective approach for allowing controlled access to virtual machines while preventing modifications to networking resources.

More Questions Like This