Question 1

Your company is expanding its Azure footprint to Europe. Due to strict GDPR requirements, you must ensure that no Azure resources can be deployed outside of the 'West Europe' and 'North Europe' regions for a specific set of subscriptions.

You need to design a governance solution to enforce this requirement. The solution must automatically prevent non-compliant deployments and provide a dashboard showing compliance status.

Which TWO components should you include in your design? (Select TWO)

Accepted Answer

Identify the tool for enforcing rules (Azure Policy), the effect needed to block actions (Deny), and the best scope for multiple subscriptions (Management Group).

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Choosing RBAC. RBAC is for authorization (can user X create a VM?), while Policy is for governance (can a VM be created in region Y?).

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4

More questions from this exam