ExpertEasy1 markMultiple Choice
AZ-900 · Question 48 · Domain 3.2: Features and Tools for Governance and Compliance
An administrator wants to ensure that a critical production database cannot be accidentally deleted by anyone, even users with the 'Owner' role. What should they apply to the resource?
An administrator wants to ensure that a critical production database cannot be accidentally deleted by anyone, even users with the 'Owner' role. What should they apply to the resource?
Answer options:
A.
A CanNotDelete resource lock
B.
An Azure Policy
C.
A ReadOnly resource lock
D.
A Deny assignment in RBAC
How to approach this question
Identify the feature specifically designed to prevent accidental deletion.
Full Answer
A.A CanNotDelete resource lock✓ Correct
A CanNotDelete resource lock
Resource locks prevent other users in your organization from accidentally deleting or modifying critical resources. A 'CanNotDelete' lock means authorized users can still read and modify a resource, but they can't delete it. Locks override any RBAC permissions.
Common mistakes
Thinking an 'Owner' can bypass a lock. They cannot. An Owner must first remove the lock before they can delete the resource.
Practice the full Azure Fundamentals AZ-900 Practice Exam 7
60 questions · hints · full answers · grading
More questions from this exam
Q1What is the primary definition of cloud computing?EasyQ2True or False: In the shared responsibility model, the customer is always responsible for the sec...EasyQ3Which TWO of the following are characteristics of a public cloud? (Select TWO)MediumQ4Which cloud benefit describes the ability of a system to remain operational for a high percentage...EasyQ5A company wants to transition from purchasing physical servers to paying a monthly fee based on t...Easy