Home › Azure AZ-104 › cloudcomputing › az104identitygovernance › Which Azure mechanism scopes permissions to a sp…
Which Azure mechanism scopes permissions to a specific scope (management group, subscription, resource group, or resource) via predefined or custom roles?
AAzure NSGs
BAzure Container Registry
CAzure role-based access control (RBAC)
DAzure Front Door
Answer & Solution
Correct answer: C. Azure role-based access control (RBAC)
Azure RBAC is principal + role + scope. NSGs are network firewalls; Front Door is global routing; ACR stores container images.
Related questions
Which approach satisfies a compliance requirement that admin-level activity on a critical Which Entra ID feature lets you require additional verification for a user the moment theiAn organisation has 50 Azure subscriptions and wants to enforce policy and roll up billingWhich Azure construct lets you enforce a rule that "only resources tagged with a `cost-cenAn admin wants to give a contractor read-only access to ONE specific resource group for 30Which Azure feature lets administrators temporarily revoke all changes to a resource — proWhich Entra ID feature lets an organisation invite external users (partners, contractors) Which combination represents the correct Azure resource hierarchy from highest scope to lo