ExpertMedium1 markMultiple Choice
AZ-900 · Question 48 · Domain 3.2: Governance and Compliance
An administrator wants to ensure that a critical production database cannot be accidentally deleted by ANY user, even if they have Owner permissions. What should they apply to the resource?
An administrator wants to ensure that a critical production database cannot be accidentally deleted by ANY user, even if they have Owner permissions. What should they apply to the resource?
Answer options:
A.
An Azure Policy
B.
A CanNotDelete resource lock
C.
A ReadOnly resource lock
D.
A Deny assignment in RBAC
How to approach this question
Identify the feature that protects resources from accidental deletion regardless of user permissions.
Full Answer
B.A CanNotDelete resource lock✓ Correct
A CanNotDelete resource lock
Resource locks prevent accidental deletion or modification of your Azure resources. A 'CanNotDelete' lock means authorized users can still read and modify a resource, but they can't delete it. Locks override any user permissions, even for Owners.
Common mistakes
Choosing ReadOnly lock. A database must be written to; a ReadOnly lock would break the application.
Practice the full Azure Fundamentals AZ-900 Practice Exam 4
60 questions · hints · full answers · grading
More questions from this exam
Q01What is the primary definition of cloud computing?EasyQ02Under the shared responsibility model, which of the following is ALWAYS the responsibility of the...MediumQ03True or False: In a public cloud deployment model, you must purchase and manage your own physical...EasyQ04A company wants to move away from purchasing physical servers and instead pay monthly for the com...MediumQ05Which TWO of the following are primary benefits of using cloud computing? (Select TWO)Easy