ExpertMedium1 markMultiple Choice
AZ-900 · Question 49 · Domain 3.2: Features and Tools for Governance and Compliance
Select TWO statements that accurately describe Azure Resource Locks.
Select TWO statements that accurately describe Azure Resource Locks.
Answer options:
A.
Locks apply to all users regardless of their RBAC permissions
B.
Locks can only be applied to individual resources
C.
Locks can be applied at the subscription, resource group, or resource level
D.
Locks are used to restrict which regions a resource can be deployed to
E.
A CanNotDelete lock prevents users from reading the resource
How to approach this question
Recall how locks interact with permissions and scopes.
Full Answer
Locks apply to all users regardless of their RBAC permissions, Locks can be applied at the subscription, resource group, or resource level
Resource Locks override RBAC permissions; even if a user is an Owner, they cannot delete a resource with a CanNotDelete lock. Furthermore, locks can be applied at the subscription, resource group, or individual resource level. When applied at a parent scope, all child resources inherit the lock.
Common mistakes
Thinking an Owner can bypass a lock. The Owner must explicitly delete the lock first before deleting the resource.
Practice the full Azure Fundamentals AZ-900 Practice Exam 3
60 questions · hints · full answers · grading
More questions from this exam
Q01What is the best definition of cloud computing?EasyQ02True or False: In a public cloud model, you are responsible for managing and maintaining the phys...EasyQ03Which cloud model allows a company to maintain strict control over highly sensitive data on-premi...MediumQ04What is the primary benefit of 'high availability' in cloud computing?EasyQ05Which term describes the ability to automatically increase or decrease compute resources based on...Easy