Azure RBAS and Entra ID Roles Flashcards

1
Q

What capabilities has a ‘Owner’ role in Azure RBAC?

A

Grants full access to manage all resources within the scope and also assign roles to users to manage resources within the scope.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which role allows viewing all resources without making changes?

A

Reader

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the responsibility of the ‘Contributor’ role?

A

Full access to manage all resources except role assignments.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What can the ‘User Access Administrator’ role manage?

A

Ability to assign roles and set RBAC permissions but can’t make changes to resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which role is specifically used to manage Azure reservations?

A

Reservations Administrator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What permissions does the ‘Virtual Machine Contributor’ role provide?

A

Manage VMs, disks, software installation, password resets; excludes network and storage management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does the ‘Compute Gallery Artifacts Publisher’ role do?

A

Publishes gallery artifacts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which role allows managing classic networks but not accessing them?

A

Classic Network Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What actions are allowed by the ‘Storage Blob Data Contributor’ role?

A

Read, write, and delete blob containers and data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the responsibility of the ‘Backup Contributor’ role?

A

Manage backup services without creating vaults or assigning access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which role can manage Traffic Manager profiles but not control access?

A

Traffic Manager Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What permissions does the ‘Elastic SAN Owner’ role have?

A

Full access to Azure Elastic SAN resources and security policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the role of ‘Desktop Virtualization Workspace Contributor’?

A

Manage the Desktop Virtualization Workspace.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What actions does ‘Azure Front Door Profile Reader’ role allow?

A

View profiles and endpoints without making changes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which role can create, modify, and delete media accounts in Azure?

A

Media Services Account Administrator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What permissions does the ‘DNS Zone Contributor’ role allow?

A

Manage DNS zones and records without controlling access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the responsibility of the ‘SignalR App Server’ role?

A

Allows app server access to SignalR Service with AAD auth options.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which role provides permissions to manage storage accounts?

A

Storage Account Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What does the ‘Classic Storage Account Key Operator Service’ role allow?

A

List and regenerate keys for Classic Storage Accounts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is the responsibility of the ‘Azure Maps Data Contributor’ role?

A

Read, write, and delete access to map data in Azure Maps account.

21
Q

Which role can submit and manage own jobs in Data Lake Analytics?

A

Data Lake Analytics Developer

22
Q

What permissions does the ‘Network Contributor’ role allow?

A

Manage networks without access to them; excludes VM deployment.

23
Q

What is the responsibility of the ‘Role Based Access Control Administrator’ role?

A

Manage access to resources by assigning roles in Azure RBAC.

24
Q

Which role grants full access to manage reservations in a tenant?

A

Reservations Administrator

25
What permissions does 'Virtual Machine Data Access Administrator' provide?
Manage role assignments for VM Admin and User Login roles.
26
What is the primary role of 'Azure Spring Cloud Config Server Contributor'?
Manage Azure Spring Cloud Config Server with full permissions.
27
What is the function of 'Virtual Machine Administrator Login'?
View VMs and login as administrator.
28
What is the responsibility of the 'Storage File Data SMB Share Contributor'?
Read, write, and delete access to files in Azure file shares.
29
Which role allows for read-only access to backup services?
Backup Reader
30
What is the function of 'Desktop Virtualization Power On Off Contributor'?
Start and stop VMs in Azure Virtual Desktop.
31
What permissions does the 'Private DNS Zone Contributor' role provide?
Manage private DNS zones without linked virtual network control.
32
Which role can manage CDN profiles and endpoints?
CDN Profile Contributor
33
What is the function of 'Elastic SAN Network Admin'?
Access to create private endpoints and read SAN resources.
34
What does the 'Azure Maps Data Reader' role allow?
Read access to Azure Maps data.
35
Which role allows viewing SignalR service access keys?
SignalR AccessKey Reader
36
What is the 'Desktop Virtualization Application Group Contributor' role responsible for?
Manage the Desktop Virtualization Application Group.
37
What actions are allowed by 'Storage Queue Data Contributor'?
Read, write, and delete Azure Storage queues and messages.
38
What permissions does 'Classic Storage Account Contributor' provide?
Manage classic storage accounts without access to data.
39
What is the function of 'Azure Front Door Domain Contributor'?
Manage Front Door domains without granting access.
40
Which role grants read access to Azure Front Door secrets?
Azure Front Door Secret Reader
41
What does the 'Compute Gallery Sharing Admin' role allow?
Share gallery to other subscriptions or tenants.
42
What is the 'Elastic SAN Volume Group Owner' role?
Full access to volume group in Elastic SAN including security policies.
43
What permissions does the 'Storage Blob Data Owner' role provide?
Full access to blob containers and data, including POSIX control.
44
What is the responsibility of the 'Media Services Streaming Endpoints Administrator' role?
Manage streaming endpoints in Media Services.
45
What does the 'Traffic Manager Contributor' role allow?
Manage Traffic Manager profiles without access control.
46
What actions does 'Virtual Machine Local User Login' role permit?
Login to VMs as a local user.
47
Which role provides manage access to media streaming policies?
Media Services Policy Administrator
48
What is the function of 'Azure Spring Cloud Service Registry Reader'?
Read access to Azure Spring Cloud Service Registry.
49
What permissions does 'Azure Spring Cloud Job Log Reader' allow?
Read real-time logs for jobs in Azure Spring Apps.