Home › Azure AZ-900 › cloudcomputing › azuremanagement › Azure resource locks at the "CanNotDelete" level…
Azure resource locks at the "CanNotDelete" level do which of the following?
ABlock all access including read operations until the lock is removed
BEncrypt the resource's disks using Microsoft-managed keys
CAllow authorised users to read and modify the resource but block any delete operation, regardless of RBAC permissions
DAutomatically delete the resource if it goes 30 days without changes
Answer & Solution
Correct answer: C. Allow authorised users to read and modify the resource but block any delete operation, regardless of RBAC permissions
Resource locks are independent of RBAC. CanNotDelete blocks delete actions but permits read and write. ReadOnly is the stricter level (blocks writes too). Locks don't auto-delete or encrypt anything.
Related questions
An Azure subscription is best described as:Which Azure feature gives you tenant-level, personalised information about service issues,Which Azure tool gives you a browser-based shell with the Azure CLI and Azure PowerShell aAn organisation needs centralised data discovery, classification, and lineage tracking acrWhich Azure service extends Azure-style management — policy, RBAC, monitoring — to resourcWhat is Azure Monitor's primary role in an Azure environment?Which Azure tool lets you write and apply infrastructure as code declaratively (defining VWhich Azure service is designed to enforce organisational rules — for example, "all storag