ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 2 question 115 discussion

Actual exam question from Microsoft's SC-300
Question #: 115
Topic #: 2
[All SC-300 Questions]

HOTSPOT
-

You have an Azure subscription named Sub1 that contains two resource groups named RG1 and RG2. Sub1 contains the users shown in the following table.



Sub1 contains the resources shown in the following table.



You create the role-based access control (RBAQ role assignments shown in the following table.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by northgaterebel at Jan. 15, 2025, 4:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
northgaterebel
Highly Voted 3 months, 2 weeks ago
1. No. Must be Key Vault Secrets User. User1 is only a Reader. 2. Yes. User2 is a Key Vault Secrets User! :D 3. Yes. User3 is the Owner of RG1 and has god-like powers. >:-) https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles
upvoted 7 times
Oskarma
2 months, 3 weeks ago
I think 1 is Yes too. User1 is in Group1 & Group2. Group2 is assigned to the role Key Vault Secrets User.
upvoted 2 times
Sunth65
2 months, 3 weeks ago
But Scope is limited only to RG2 !!
upvoted 5 times
...
...
...
Obi_Wan_Jacoby
Most Recent 3 weeks, 1 day ago
NYY (as others stated) Key Vault Administrator: Can perform all data plane operations on a key vault and its objects, including certificates, keys, and secrets. Key Vault Reader: Can read metadata of key vaults and their certificates, keys, and secrets, but cannot read sensitive values such as secret contents or key material1. Key Vault Secrets User: Can read secret contents from a key vault1. Key Vault Certificates Officer: Can perform actions on the certificates of a key vault, excluding reading the secret and key portions1. Key Vault Certificates User: Can read certificate contents from a key vault1. Key Vault Contributor: Can manage key vaults but does not allow access to keys, secrets, and certificates. Key Vault Crypto Officer: Can perform cryptographic operations using keys in a key vault2. Key Vault Crypto User: Can perform cryptographic operations using keys in a key vault but cannot manage keys2. Key Vault Purge Operator: Allows permanent deletion of soft-deleted vaults
upvoted 2 times
...
d1e85d9
1 month, 2 weeks ago
NO Yes Yes
upvoted 2 times
...
ethhacker
2 months, 2 weeks ago
NYY, key: look at scope
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago