Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure subscription named Project1. Only a group named Project1admins is assigned roles in the Project1 subscription. The Project1 subscription contains all the resources for an application named Application1.
Your company is developing a new application named Application2. The members of the Application2 development team belong to an Azure Active Directory
(Azure AD) group named App2Dev.
You identify the following requirements for Application2:
✑ The members of App2Dev must be prevented from changing the role assignments in Azure.
✑ The members of App2Dev must be able to create new Azure resources required by Application2.
✑ All the required role assignments for Application2 will be performed by the members of Project1admins.
You need to recommend a solution for the role assignments of Application2.
Solution: In Project1, create a network security group (NSG) named NSG1. Assign Project1admins the Owner role for NSG1. Assign the App2Dev the Contributor role for NSG1.
Does this meet the goal?
azlopaz
Highly Voted 5 years, 1 month agobabacandy
Highly Voted 4 years, 11 months agoglam
Most Recent 4 years, 4 months agosanketshah
4 years, 5 months agohfchenryha
4 years, 10 months agoTheCloudNavigator
4 years, 10 months agoRajuuu
5 years, 2 months agoAvanade2023
5 years, 1 month agolevo017
4 years, 4 months agosayu
5 years, 3 months agotartar
4 years, 9 months ago