ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 3 question 60 discussion

Actual exam question from Microsoft's AZ-500
Question #: 60
Topic #: 3
[All AZ-500 Questions]

DRAG DROP -
You have an Azure subscription named Sub1.
You have an Azure Active Directory (Azure AD) group named Group1 that contains all the members of your IT team.
You need to ensure that the members of Group1 can stop, start, and restart the Azure virtual machines in Sub1. The solution must use the principle of least privilege.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
References:
https://www.petri.com/cloud-security-create-custom-rbac-role-microsoft-azure
by LJack at March 15, 2021, 1:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
teehex
Highly Voted 2 years, 7 months ago
Three steps you need: - Create a json file that contains role definition (https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-how-applications-are-added#what-are-service-principals-and-where-do-they-come-from). - Create a new role definitoon by running New-AzRoleDefinition -InputFile "C:\CustomRoles\customrole1.json" (https://docs.microsoft.com/en-us/azure/role-based-access-control/custom-roles-powershell#create-a-custom-role-with-json-template) - Assigning a new role definition to the Group1 in subscription scope by running New-AzRoleAssignment https://docs.microsoft.com/en-us/azure/role-based-access-control/role-assignments-powershell#step-4-assign-role
upvoted 46 times
...
LJack
Highly Voted 2 years, 9 months ago
Correct answer
upvoted 19 times
...
majstor86
Most Recent 9 months, 1 week ago
1. Create a json file that contains role definition 2. Run the New-AzRoleDefinition cmdlet. 3, Run the New-AzRoleAssignment cmdlet.
upvoted 6 times
...
ligu
9 months, 3 weeks ago
Answers are correct
upvoted 1 times
...
sofieejo
10 months, 2 weeks ago
In exam 29/01/2023 + many questions about Microsoft Sentinel
upvoted 4 times
...
Sweet_co
1 year, 4 months ago
In exam: 20-7-2022
upvoted 4 times
...
acexyz
1 year, 5 months ago
# IN EXAM - 30/6/2022
upvoted 3 times
...
alou333
1 year, 6 months ago
# IN EXAM - 3rd june 2022 (online). Lot of new questions. Good luck !
upvoted 4 times
...
[Removed]
2 years, 1 month ago
Kinda logic
upvoted 1 times
...
orallony
2 years, 2 months ago
# IN EXAM - 29/9/2021 - Pass!
upvoted 4 times
...
Sandomj55
2 years, 4 months ago
In Exam 8/4/2021
upvoted 3 times
...
kumax
2 years, 5 months ago
On exam, May 2021.
upvoted 6 times
...
Fred64
2 years, 7 months ago
correct answer we must create a custom role
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel