Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Microsoft Discussions

Exam AZ-104 topic 2 question 62 discussion

Actual exam question from Microsoft's AZ-104
Question #: 62
Topic #: 2
[All AZ-104 Questions]

You have an Azure Subscription that contains a storage account named storageacct1234 and two users named User1 and User2.
You assign User1 the roles shown in the following exhibit.

Which two actions can User1 perform? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

  • A. Assign roles to User2 for storageacct1234.
  • B. Upload blob data to storageacct1234.
  • C. Modify the firewall of storageacct1234.
  • D. View blob data in storageacct1234.
  • E. View file shares in storageacct1234.
Show Suggested Answer Hide Answer
Suggested Answer: AE 🗳️
by Dannxx at Aug. 30, 2022, 10:50 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
kerimnl
Highly Voted 1 year, 8 months ago
Selected Answer: BD
Correct Answer is:BD
upvoted 74 times
pmsiva
1 year, 6 months ago
For example, if you assign the Storage Blob Data Contributor role to user Mary at the level of a container named sample-container, then Mary is granted read, write, and delete access to all of the blobs in that container. However, if Mary wants to view a blob in the Azure portal, then the Storage Blob Data Contributor role by itself will not provide sufficient permissions to navigate through the portal to the blob in order to view it. The additional permissions are required to navigate through the portal and view the other resources that are visible there.
upvoted 17 times
...
...
virgilpza
Highly Voted 1 year, 8 months ago
Selected Answer: BD
correct answers: BD
upvoted 25 times
cvalladares123
10 months, 1 week ago
Storage Blob Data Contributor --> Read, write, and delete Azure Storage containers and blobs Reader --> View all resources, but does not allow you to make any changes Any permission has been granted at storage account level or file shares directly, so reading access to files share is not possible
upvoted 4 times
Diedo
10 months, 1 week ago
Azure file shares are deployed into storage accounts so I think it is BDE.
upvoted 5 times
Ben756
7 months, 3 weeks ago
E is not the answer. The Reader role only grants User1 the permission to view the properties and metadata of the storage account, not the data inside it.
upvoted 5 times
...
...
...
...
MCLC2021
Most Recent 3 days, 6 hours ago
Selected Answer: BD
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles/storage#storage-blob-data-contributor
upvoted 1 times
...
simplementeluca
1 month, 1 week ago
This question was in exam 22/03/2024. My response BD
upvoted 2 times
MC420
1 month ago
Was it correct?
upvoted 1 times
...
...
Amir1909
1 month, 2 weeks ago
B, D and E
upvoted 1 times
...
1828b9d
2 months, 1 week ago
This question was in exam 01/03/2024
upvoted 3 times
MC420
1 month ago
What’s the answer?
upvoted 1 times
...
...
LovelyGroovey
2 months, 1 week ago
Correct answer: B and D. Why? Here is the answer: User1 can perform the following two actions based on their assigned roles: Upload blob data to storageacct1234: User1 has been assigned the “Storage Blob Data Contributor” role for the storage account named storageacct1234. This role allows them to upload data to blob containers within that storage account. View blob data in storageacct1234: Additionally, User1 has the “Reader” role at the Resource group (inherited) scope. While this role doesn’t provide read permissions to data in Azure Storage, it does allow User1 to view storage account resources, including blob containers. Therefore, User1 can view blob data within the storageacct1234 storage account.
upvoted 3 times
...
LovelyGroovey
2 months, 1 week ago
User1 can perform the following two actions based on their assigned roles: Upload blob data to storageacct1234: User1 has been assigned the “Storage Blob Data Contributor” role for the storage account named storageacct1234. This role allows them to upload data to blob containers within that storage account. View blob data in storageacct1234: Additionally, User1 has the “Reader” role at the Resource group (inherited) scope. While this role doesn’t provide read permissions to data in Azure Storage, it does allow User1 to view storage account resources, including blob containers. Therefore, User1 can view blob data within the storageacct1234 storage account.
upvoted 1 times
...
User65567473
2 months, 3 weeks ago
Was on exam 11/2 2024
upvoted 2 times
...
adilkhan
3 months, 1 week ago
Correct Answer is:BD
upvoted 1 times
...
FrancisLai
4 months, 4 weeks ago
Selected Answer: BD
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#storage-blob-data-contributor
upvoted 1 times
...
MentalTree
5 months ago
AE. Explanation for A Storage Blob Data Contributor: Read, write, and delete Azure Storage containers and blobs. Because Storage Blob Data Contributor can read/write(modify/edit) Azure storage containers, roles for containers can also be changed. Explanation for E. Reader: View all resources, but does not allow you to make any changes. Because you can view all resource inside of the RG, you can see Files Shares in the storage account. File Shares are resources. You WONT see the files/data inside of the File Shares. B. Incorrect: Storage Blob Data Contributor does not let you write/upload blob data. C. Incorrect: You know why. D: Incorrect: Reader lets you see resources only, not data. Storage Blob Data Contributor lets you see/edit blobs & storage containers only, it does not let you see data.
upvoted 3 times
18c2076
1 month, 3 weeks ago
Wellp. You're wrong, and you admitted it in your explanation which is strange enough. Answer A is stating that the user could ASSIGN ROLES to other users. This is inherently wrong.
upvoted 2 times
...
...
simionet
5 months, 2 weeks ago
Selected Answer: BD
right answser b an d
upvoted 1 times
...
Ahkhan
5 months, 3 weeks ago
Reader cannot view blob data. I have tested it. Reader is for accessing Azure portal. It is Storage Blob Data Contributor role that the user will be able to read blob data in the container.
upvoted 1 times
mamtak_2008
4 months, 2 weeks ago
you need reader role to navigate in azure storage
upvoted 1 times
...
Ahkhan
5 months, 3 weeks ago
Storage Blob Data Contributor role alone cannot access Azure portal. Hence we need the combination of Reader and Storage Blob Data Contributor role.
upvoted 2 times
...
...
mattpaul
6 months, 2 weeks ago
I passed with these questions and many friends passed too, all questions appeared in the real exam a great study resource, contact me on [email protected]
upvoted 1 times
...
Fr3ggel
6 months, 2 weeks ago
Selected Answer: BD
Correct Answer is B and D. I just tested in my test subscription. Answer E is not correct. I don't get access to files on a files share.
upvoted 1 times
...
BillDilena
8 months, 2 weeks ago
BD... Contributor or Reader role can't assign role to other users
upvoted 2 times
...
Load full discussion...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel