Exam-Answer

Home / Microsoft / AZ-300 / Question 238

Prev Question
Next Question

Question 238

You are the architect of the ACME banking group. You have been tasked to manage role-based access control (RBAC) within the ACME.com Azure tenant. Within the ACME.com tenant, there are two subscriptions: one for production labeled ?Prod_US? and one non-prod labeled ?Sandbox?. ACME has the following requirements:

Requirement 1: You need to assign RBAC access to a third party so that they have to view the resources within the production subscription only.

Requirement 2: You need to assign RBAC access internally to the Azure team so that they are only allowed to manage backups but not remove any backups on both subscriptions.

Requirement 3: You need to assign RBAC access to the Dev manager so that he can manage user access to resources within the non-prod environment.

Requirement 4: You need to assign RBAC access to the lead Azure engineer to ensure he has the correct permissions to only test failover operations quarterly in the production environment.

What RBAC role should you assign for requirement 4?

Answers


Advertisement

Explanation

Site Recovery Operator role on the Prod_US subscription only is correct as this RBAC role will allow you to failover and failback but not perform other site recovery management operations.

References

Comments

Load more
Prev Question
Next Question