Azure RBAS and Entra ID Roles Flashcards

1
Q

What capabilities has a ‘Owner’ role in Azure RBAC?

A

Grants full access to manage all resources within the scope and also assign roles to users to manage resources within the scope.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which role allows viewing all resources without making changes?

A

Reader

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the responsibility of the ‘Contributor’ role?

A

Full access to manage all resources except role assignments.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What can the ‘User Access Administrator’ role manage?

A

Ability to assign roles and set RBAC permissions but can’t make changes to resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which role is specifically used to manage Azure reservations?

A

Reservations Administrator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What permissions does the ‘Virtual Machine Contributor’ role provide?

A

Manage VMs, disks, software installation, password resets; excludes network and storage management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does the ‘Compute Gallery Artifacts Publisher’ role do?

A

Publishes gallery artifacts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which role allows managing classic networks but not accessing them?

A

Classic Network Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What actions are allowed by the ‘Storage Blob Data Contributor’ role?

A

Read, write, and delete blob containers and data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the responsibility of the ‘Backup Contributor’ role?

A

Manage backup services without creating vaults or assigning access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which role can manage Traffic Manager profiles but not control access?

A

Traffic Manager Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What permissions does the ‘Elastic SAN Owner’ role have?

A

Full access to Azure Elastic SAN resources and security policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the role of ‘Desktop Virtualization Workspace Contributor’?

A

Manage the Desktop Virtualization Workspace.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What actions does ‘Azure Front Door Profile Reader’ role allow?

A

View profiles and endpoints without making changes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which role can create, modify, and delete media accounts in Azure?

A

Media Services Account Administrator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What permissions does the ‘DNS Zone Contributor’ role allow?

A

Manage DNS zones and records without controlling access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the responsibility of the ‘SignalR App Server’ role?

A

Allows app server access to SignalR Service with AAD auth options.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which role provides permissions to manage storage accounts?

A

Storage Account Contributor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What does the ‘Classic Storage Account Key Operator Service’ role allow?

A

List and regenerate keys for Classic Storage Accounts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is the responsibility of the ‘Azure Maps Data Contributor’ role?

A

Read, write, and delete access to map data in Azure Maps account.

21
Q

Which role can submit and manage own jobs in Data Lake Analytics?

A

Data Lake Analytics Developer

22
Q

What permissions does the ‘Network Contributor’ role allow?

A

Manage networks without access to them; excludes VM deployment.

23
Q

What is the responsibility of the ‘Role Based Access Control Administrator’ role?

A

Manage access to resources by assigning roles in Azure RBAC.

24
Q

Which role grants full access to manage reservations in a tenant?

A

Reservations Administrator

25
Q

What permissions does ‘Virtual Machine Data Access Administrator’ provide?

A

Manage role assignments for VM Admin and User Login roles.

26
Q

What is the primary role of ‘Azure Spring Cloud Config Server Contributor’?

A

Manage Azure Spring Cloud Config Server with full permissions.

27
Q

What is the function of ‘Virtual Machine Administrator Login’?

A

View VMs and login as administrator.

28
Q

What is the responsibility of the ‘Storage File Data SMB Share Contributor’?

A

Read, write, and delete access to files in Azure file shares.

29
Q

Which role allows for read-only access to backup services?

A

Backup Reader

30
Q

What is the function of ‘Desktop Virtualization Power On Off Contributor’?

A

Start and stop VMs in Azure Virtual Desktop.

31
Q

What permissions does the ‘Private DNS Zone Contributor’ role provide?

A

Manage private DNS zones without linked virtual network control.

32
Q

Which role can manage CDN profiles and endpoints?

A

CDN Profile Contributor

33
Q

What is the function of ‘Elastic SAN Network Admin’?

A

Access to create private endpoints and read SAN resources.

34
Q

What does the ‘Azure Maps Data Reader’ role allow?

A

Read access to Azure Maps data.

35
Q

Which role allows viewing SignalR service access keys?

A

SignalR AccessKey Reader

36
Q

What is the ‘Desktop Virtualization Application Group Contributor’ role responsible for?

A

Manage the Desktop Virtualization Application Group.

37
Q

What actions are allowed by ‘Storage Queue Data Contributor’?

A

Read, write, and delete Azure Storage queues and messages.

38
Q

What permissions does ‘Classic Storage Account Contributor’ provide?

A

Manage classic storage accounts without access to data.

39
Q

What is the function of ‘Azure Front Door Domain Contributor’?

A

Manage Front Door domains without granting access.

40
Q

Which role grants read access to Azure Front Door secrets?

A

Azure Front Door Secret Reader

41
Q

What does the ‘Compute Gallery Sharing Admin’ role allow?

A

Share gallery to other subscriptions or tenants.

42
Q

What is the ‘Elastic SAN Volume Group Owner’ role?

A

Full access to volume group in Elastic SAN including security policies.

43
Q

What permissions does the ‘Storage Blob Data Owner’ role provide?

A

Full access to blob containers and data, including POSIX control.

44
Q

What is the responsibility of the ‘Media Services Streaming Endpoints Administrator’ role?

A

Manage streaming endpoints in Media Services.

45
Q

What does the ‘Traffic Manager Contributor’ role allow?

A

Manage Traffic Manager profiles without access control.

46
Q

What actions does ‘Virtual Machine Local User Login’ role permit?

A

Login to VMs as a local user.

47
Q

Which role provides manage access to media streaming policies?

A

Media Services Policy Administrator

48
Q

What is the function of ‘Azure Spring Cloud Service Registry Reader’?

A

Read access to Azure Spring Cloud Service Registry.

49
Q

What permissions does ‘Azure Spring Cloud Job Log Reader’ allow?

A

Read real-time logs for jobs in Azure Spring Apps.