Domain 3.2: Features and Tools for Governance and Compliance — AZ-900 Practice Question 48

How to approach this question

RBAC is about WHO (identities). Policy is about WHAT (the resources themselves).

Full Answer

A.RBAC focuses on user actions at different scopes, while Azure Policy focuses on resource properties during deployment.✓ Correct

RBAC focuses on user actions at different scopes (e.g., 'User A can create VMs'). Azure Policy focuses on resource properties during deployment and for already existing resources (e.g., 'All VMs must be deployed in the UK South region'). Policy ensures the resource state complies with your business rules, regardless of who created it.

Common mistakes

Thinking RBAC can restrict resource sizes or locations. RBAC only grants permission to perform actions; it cannot enforce specific configurations.

What is the primary difference between Azure Policy and Role-Based Access Control (RBAC)?

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Fundamentals AZ-900 Practice Exam 5

More questions from this exam