You have an Azure Active Directory (Azure AD) tenant that contains the objects shown in the following table. Which objects can you add as eligible in Azure AD Privileged Identity Management (PIM) for an Azure AD role?
B.
Note: You cannot assign service principals as eligible to Azure AD roles, Azure roles, and Privileged Access groups but you can grant a time limited active assignment to all three.
For Azure AD Privileged Identity Management (PIM), you can assign eligible roles to Azure AD user accounts but not to Managed Identities, as they are used for service-to-service authentications and do not require interactive access rights like human users.
In the options provided:
- User1 and Guest1 are both types of user accounts (regular and guest, respectively), so they can be added as eligible in PIM.
- Identity1, being a Managed Identity, is not suitable for assignment in PIM.
Therefore, the correct answer is **B. User1 and Guest1 only**.
This section is not available anymore. Please use the main Exam Page.SC-300 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Opemi
Highly Voted 3 years, 1 month agostromnessian
Highly Voted 2 years, 8 months agoObi_Wan_Jacoby
Most Recent 1 week, 2 days agoSc300ExamDemo
5 months, 1 week agoEmnCours
1 year, 2 months agodule27
1 year, 4 months agozmlapq99
2 years, 9 months agoPravda
2 years, 9 months ago