Exam PL-200 topic 1 question 8 discussion

The ans should be Groups and Roles

Initially, I was actually thinking about the correct answer is Groups and Roles. After reading this article https://docs.microsoft.com/en-us/power-platform/admin/control-user-access, I feel the original answer is actual correct. You can assign the appropriate security group to control the user access to the sandbox.

Correct Answer should be Licenses and Roles. Licenses because M365 assign licenses but it were Azure AD then we could have used Groups.

I can't recommend this site enough. The study materials provided the foundation I needed, and the exam readiness tips were invaluable. Passed the PL-200 exam with flying colors!

Correct, Question was on exam, July 02, 2024

If a user is assigned the Dynamics 365 Service Admin role, then the user must be part of the security group before they are enabled in the environment. They can't access the environment until they are added to the security group and enabled. Environments support associating the following group types: Security and Microsoft 365. Associating other group types is not supported. in the link of the question I had read it, so I think it is group and group

Groups Access Rights

I think at the MS365 admin level, it should be groups and at the sandbox env level it should be roles

You can prevent environment access with roles so Groups and Groups is correct.

It should be Managed roles because user will access the Environment from the model driven apps/ Canvas apps. if they don't have this things in the place then they can remove the user role, so that user will not able to access the Environment.

Groups and Groups is correct answer. Role should not be in the picture. https://learn.microsoft.com/en-us/power-platform/admin/control-user-access

I believe the answer is correct. I do not understand why many suggest that there are not security groups for instances. All provided documentation here suggest otherwise.

The Answer should be (groups and groups) . Description Says ----------------------------------- If your company has multiple Microsoft Dynamics 365 Guides environments, you can use security groups to control which users can access each environment. A security group restricts access to the environment to people in the security group. If a Microsoft Dataverse environment does not have an associated security group, all users with a Dataverse license (Dynamics 365 Guides, Power Automate, Power Apps, and so on) will be created as users and enabled in the environment. Each environment can have just one security group. For example, you could create three security groups to control access to the following environments. https://learn.microsoft.com/en-us/dynamics365/mixed-reality/guides/admin-security

I think it should be Groups and Roles. what differentiate access to different environment in same tenant is either security group or roles. Security Groups are created in Office admin and can be use to restrict access once associated to environment. roles can be removed to users from in PPAC

Unsure if this question will be relevant anymore. Check https://docs.microsoft.com/en-us/power-platform/admin/control-user-access with a new information updated on the 22nd of June 2022. "New: Security groups cannot be assigned to default and developer environment types. If you've already assigned a security group to your default or developer environment, we recommend removing it since the default environment is intended to be shared with all users in the tenant and the developer environment is intended for use by only the owner of the environment." The sandbox environment should be inaccessible to normal users other than developers now.

The answer is correct. You can control the user access to a Dynamics environment with a security group configured in the Microsoft 365 admin center. Roles only control table-level permissions and app access, not environment access. https://docs.microsoft.com/en-us/power-platform/admin/control-user-access

Groups and Groups. The second is regarding to Security group attached to Dataverse environment. A user that is not a member to group A and is trying to access the Environment A what has Group A security group attached to this environment, this environment would not be showed to the systemuser. Are you confusing about that? Create a trial and follow this train of thought, seeing the doc https://docs.microsoft.com/en-us/power-platform/admin/control-user-access to check the concept used to this functionality.