A critical production Azure SQL Database must be protected from accidental deletion by administrators. However, applications must still be able to read and write data to the database. Which feature should you implement?

Answer options:

A ReadOnly resource lock.

A CanNotDelete resource lock.

Azure Policy with a Deny effect.

Azure RBAC custom role.

How to approach this question

Select the lock type that prevents deletion but allows modification.

Full Answer

B.A CanNotDelete resource lock.✓ Correct

A CanNotDelete resource lock.

A CanNotDelete lock prevents authorized users from deleting a resource, but allows them to read and modify it. This is ideal for protecting critical databases from accidental deletion.

Common mistakes

Selecting ReadOnly, which would break the application's ability to write data.

Question 12 All questions Question 14

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 6

55 questions · hints · full answers · grading

More questions from this exam

Q01Contoso Ltd is a global manufacturing company with 50,000 employees. They operate a mix of on-pre...Medium Q02A financial institution has 500 Windows Server VMs on-premises and 200 VMs in Azure. They need to...Hard Q03An enterprise uses Azure Sentinel and Log Analytics. They ingest 500 GB of logs daily. The IT bud...Hard Q04You are designing a monitoring strategy for a new Azure deployment consisting of App Service, Azu...Easy Q05A healthcare company uses Microsoft Entra ID (Azure AD). They need to implement a security policy...Medium

View all 55 questions →