ExpertMedium1 markMultiple Choice
AZ-900 · Question 48 · Domain 3.2: Features and Tools for Governance and Compliance
An administrator applies a 'CanNotDelete' resource lock to a critical database. What effect does this have on a user who has the 'Owner' role for that database?
An administrator applies a 'CanNotDelete' resource lock to a critical database. What effect does this have on a user who has the 'Owner' role for that database?
Answer options:
A.
The user can delete the database because the Owner role overrides resource locks.
B.
The user can read and modify the database, but cannot delete it.
C.
The user can only read the database; they cannot modify or delete it.
D.
The user loses all access to the database.
How to approach this question
Understand how resource locks interact with RBAC permissions.
Full Answer
B.The user can read and modify the database, but cannot delete it.✓ Correct
Resource locks override RBAC permissions. A 'CanNotDelete' lock means authorized users can still read and modify a resource, but they can't delete it. To delete it, the lock must first be removed.
Common mistakes
Assuming that an 'Owner' or 'Global Admin' can bypass a lock without removing it first.
Practice the full Azure Fundamentals AZ-900 Practice Exam 2
60 questions · hints · full answers · grading
More questions from this exam
Q01What is the primary definition of cloud computing?EasyQ02According to the shared responsibility model, which component is ALWAYS the responsibility of the...EasyQ03A company wants to transition from purchasing physical servers to a model where they only pay for...MediumQ04Which TWO of the following are primary benefits of using cloud services? (Select TWO)EasyQ05True or False: Moving to the cloud typically shifts IT spending from an Operational Expenditure (...Easy