Your company purchases an app named App1. You need to recommend a solution to ensure that App1 can read and modify access reviews. What should you recommend?
A.
From API Management services, publish the API of App1, and then delegate permissions to the Microsoft Graph API.
B.
From API Management services, publish the API of App1. From the Access control (IAM) blade, delegate permissions.
C.
From the Azure Active Directory admin center, register App1, and then delegate permissions to the Microsoft Graph API.
D.
From the Azure Active Directory admin center, register App1. From the Access control (IAM) blade, delegate permissions.
Suggested Answer:D🗳️
The app must be registered. You can register the application in the Azure Active Directory admin center. The Azure AD access reviews feature has an API in the Microsoft Graph endpoint. You can register an Azure AD application and set it up for permissions to call the access reviews API in Graph. Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app Design a Data Platform Solution
Correct answer is C.
The application will need to be registered, and then to read and modify access reviews we must allow the application to access to the Graph API:
https://docs.microsoft.com/en-us/graph/api/resources/accessreviews-root?view=graph-rest-beta
Not sure why Graph API comes into the picture when this is about a bought App. Moreover the link you gave also doesn't mention anything that Graph API needs to be used in this case. D is the right answer
Because in order to "read and modify access reviews" we must interact with the Graph API, there are no AIM permissions for Access Reviews as it is a service, not a resource. To interact with the Graph API we need to have permission to do so. Answer D doesnt explain how we would interact with the Graph API. The link provided confirms that the permissions can be granted to an application to interact with Access Reviews via the Graph API.
correct answer is C and proper link to verify
Register the API
You'll need to add additional permissions in order to use Microsoft Graph notifications. Choose Add a permission, and under Microsoft APIs, select Microsoft Graph, and then select Delegated permissions.
Add the following permissions:
AccessReview.Read.All(Allows the app to read access reviews without a signed-in user.)
AccessReview.ReadWrite.Membership(Allows the app to manage access reviews of groups and apps without a signed-in user.)
https://docs.microsoft.com/en-us/graph/permissions-reference#access-reviews-permissions
https://docs.microsoft.com/en-us/graph/notifications-integration-app-registration#api-permissions
https://docs.microsoft.com/en-us/graph/permissions-reference#remarks
I agree, answer is c :
full walkthru :
https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app
https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-configure-app-expose-web-apis
https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-configure-app-access-web-apis
answer is C: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/roles-delegate-app-roles#:~:text=In%20Azure%20AD%2C%20you%20can,aspects%20of%20applications%20they%20create.
I would choose: C.
Azure AD as an Identity Provider recommends Graph, see Link for further Details:
https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-permissions-and-consent
In addition to that, the provided answer below the question it self mentions Graph.
...The Azure AD access reviews feature has an API in the Microsoft Graph endpoint.
You can register an Azure AD application and set it up for permissions to call the access reviews API in Graph....
I am with "admins" here. The correct answer is C). You would have to register the app and then give it access to the access reviews.
See this for more information:
https://docs.microsoft.com/en-us/graph/permissions-reference#access-reviews-permissions
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.AZ-301 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
admins
Highly Voted 4 years, 10 months agoShunya
4 years, 10 months agoMegatonN
4 years, 9 months agoadmins
4 years, 10 months agotartar
4 years, 9 months agohghemant
Most Recent 4 years, 4 months agosejalo
4 years, 4 months agoazurecert2021
4 years, 4 months agosanketshah
4 years, 5 months agocloudycloud
4 years, 9 months agovlu
4 years, 9 months agodenkes
4 years, 10 months agoLFWGD
4 years, 9 months ago[Removed]
4 years, 10 months ago