Medium1 markMultiple Choice

Domain 3.2: Features and Tools for Governance and ComplianceDomain 3GovernanceAzure PolicyRBAC

AZ-900 · Question 48 · Domain 3.2: Features and Tools for Governance and Compliance

What is the primary difference between Azure Policy and Role-Based Access Control (RBAC)?

Answer options:

RBAC focuses on user actions at different scopes, while Azure Policy focuses on resource properties during deployment.

Azure Policy is used for billing, while RBAC is used for security.

RBAC applies only to virtual machines, while Azure Policy applies to all resources.

Azure Policy manages identities, while RBAC manages network traffic.

How to approach this question

RBAC is about WHO (identities). Policy is about WHAT (the resources themselves).

Full Answer

A.RBAC focuses on user actions at different scopes, while Azure Policy focuses on resource properties during deployment.✓ Correct

RBAC focuses on user actions at different scopes, while Azure Policy focuses on resource properties during deployment.

RBAC focuses on user actions at different scopes (e.g., 'User A can create VMs'). Azure Policy focuses on resource properties during deployment and for already existing resources (e.g., 'All VMs must be deployed in the UK South region'). Policy ensures the resource state complies with your business rules, regardless of who created it.

Common mistakes

Thinking RBAC can restrict resource sizes or locations. RBAC only grants permission to perform actions; it cannot enforce specific configurations.

Question 47 All questions Question 49

Practice the full Azure Fundamentals AZ-900 Practice Exam 5

60 questions · hints · full answers · grading

What is the primary difference between Azure Policy and Role-Based Access Control (RBAC)?

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Fundamentals AZ-900 Practice Exam 5

More questions from this exam