You are designing the Azure resource organization for a large enterprise. The enterprise has three main divisions: Retail, Manufacturing, and Finance.

The Finance division requires strict compliance policies (e.g., PCI-DSS) that must not affect the other divisions. The Retail and Manufacturing divisions share common security policies. All divisions must inherit a baseline set of corporate policies (e.g., allowed regions).

How should you design the Management Group hierarchy?

Answer options:

Apply all policies at the Root Management Group and use policy exemptions for the Retail and Manufacturing divisions.

Create a Root Management Group for corporate policies. Create a Finance Management Group and a Shared Management Group under the Root. Place Retail and Manufacturing under the Shared Management Group.

Create three separate Management Groups at the root level for Finance, Retail, and Manufacturing. Apply corporate policies to each individually.

Place all subscriptions in a single Management Group and use Resource Group tags to assign policies dynamically.

How to approach this question

Design the hierarchy top-down: Root (baseline) -> Branches (unique policy boundaries). Finance needs isolation, Retail/Mfg share policies.

Full Answer

B.Create a Root Management Group for corporate policies. Create a Finance Management Group and a Shared Management Group under the Root. Place Retail and Manufacturing under the Shared Management Group.✓ Correct

Management Groups are designed to manage access, policy, and compliance efficiently. The Root Management Group should contain baseline policies applicable to the entire enterprise. Creating a dedicated Finance Management Group allows for strict PCI-DSS policies without impacting others. Grouping Retail and Manufacturing under a 'Shared' Management Group allows their common policies to be applied once, minimizing administrative overhead.

Common mistakes

Structuring Management Groups strictly by organizational chart (Option C) rather than by policy boundaries, leading to duplicated policy assignments.

Question 13 All questions Question 15

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4

55 questions · hints · full answers · grading

More questions from this exam

Q01CASE STUDY: Tailspin Toys Tailspin Toys is a global manufacturing company with 50,000 employees ...Medium Q02CASE STUDY: Tailspin Toys Tailspin Toys is a global manufacturing company with 50,000 employees ...Medium Q03CASE STUDY: Tailspin Toys Tailspin Toys is a global manufacturing company with 50,000 employees ...Hard Q04CASE STUDY: Tailspin Toys Tailspin Toys is a global manufacturing company with 50,000 employees ...Medium Q05CASE STUDY: Tailspin Toys Tailspin Toys is a global manufacturing company with 50,000 employees ...Hard

View all 55 questions →