Question 1

Contoso Ltd has 50 Azure subscriptions managed via a complex Management Group hierarchy. They are designing a centralized monitoring solution using Azure Monitor and Log Analytics.

The security team requires strict isolation of security logs, accessible only by the SOC team. The application teams require access to their own performance and application logs. You need to design the Log Analytics workspace architecture to minimize administrative overhead while meeting these access requirements.

Which architecture should you recommend?

Accepted Answer

Evaluate centralized vs distributed workspaces. Centralized minimizes overhead. Resource-context RBAC solves the isolation requirement.

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Choosing multiple workspaces (Option C) thinking physical separation is required for security, which ignores the 'minimize administrative overhead' requirement.

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4

More questions from this exam