You are designing a Microsoft Power Platform solution for a company that has multiple Microsoft Dataverse environments. You need to prevent specific users from accessing specific environments. What should you do?
A.
Remove all security roles from the users of the specific environments.
The problem with option A though, is that you need to ensure the user is in no teams that have security roles applied. If the user is in an AAD synchronised team, then option A only works if it also includes removing users from AAD synchronized groups.
Option D doesn't work due to the exact opposite scenario, a user can be assigned a role directly.
Option B is nonsense.
Option C only makes sense if by "Remove the user from all security groups" means "remove the user from all security groups on the specified environments".
Option A is the best answer of the bunch, but I don't like the way this question is structured.
You are right, I was convinced that removing the users from the security group was the right answer until I read your response which calls out, remove users from all security groups. If you did this then the user would not have access to any environments. So I agree with A and the closest best case answer.
B is nonsense in the sense of playing with words, because you cannot actually remove the BU. However, if you change the user's BU, they will automatically lose all security roles.
Why the other options are not correct:
A. Remove all security roles from the users of the specific environments: This would prevent them from performing actions, but not from accessing the environment itself.
B. Remove the user from the business unit: Users must belong to a business unit to exist in Dataverse, and removing them would cause issues with record ownership and access—not a recommended method.
D. Remove the user from all teams: Teams grant additional access, but removing a user from teams does not prevent environment access.
I would've said C if the answer was worded as removing the user from the security group for the specific environments, as opposed to ALL environments. With that said, I agree the answer is A based on options provided.
This section is not available anymore. Please use the main Exam Page.PL-600 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
petertwilliams
Highly Voted 2 years, 8 months agoDude
2 years agoelka88
1 year, 5 months agoHamed64
Most Recent 1 week, 4 days agoloftuscheek
3 months, 1 week agoLenny001
7 months, 2 weeks agoAcrious
1 year, 11 months agokantishwar
2 years agoRalphE
2 years, 7 months agoSW85
2 years, 9 months agoDynamic_MD
3 years, 1 month agoYoussefB
3 years, 1 month agoDaniel1992
3 years, 2 months ago