Home › Azure AZ-104 › cloudcomputing › az104identitygovernance › Which Azure feature lets administrators temporar…
Which Azure feature lets administrators temporarily revoke all changes to a resource — protecting it from delete and (optionally) write — at the resource group or resource scope?
AAzure resource locks (CanNotDelete or ReadOnly)
BAzure Service Health alerts
CAzure Network Security Groups
DAzure Container Apps
Answer & Solution
Correct answer: A. Azure resource locks (CanNotDelete or ReadOnly)
Resource locks block destructive operations independent of RBAC. NSGs are network firewalls; Service Health surfaces incident notifications; Container Apps is serverless containers.
Related questions
Which approach satisfies a compliance requirement that admin-level activity on a critical Which Entra ID feature lets you require additional verification for a user the moment theiAn organisation has 50 Azure subscriptions and wants to enforce policy and roll up billingWhich Azure construct lets you enforce a rule that "only resources tagged with a `cost-cenAn admin wants to give a contractor read-only access to ONE specific resource group for 30Which Entra ID feature lets an organisation invite external users (partners, contractors) Which combination represents the correct Azure resource hierarchy from highest scope to loWhich Azure construct lets administrators enforce "all storage accounts must require HTTPS