RBAC

Question 1

What does the Contributor role do?

Answer 1

Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC, manage assignments in Azure Blueprints, or share image galleries.

Question 2

What does the Owner Role do?

Answer 2

Grants full access to manage all resources, including the ability to assign roles in Azure RBAC.

Question 3

What does the Reader role do?

Answer 3

View all resources, but does not allow you to make any changes.

Question 4

What does RBAC administrator do?

Answer 4

Manage access to Azure resources by assigning roles using Azure RBAC. This role does not allow you to manage access using other ways, such as Azure Policy.

Question 5

What does User Access Control Administrator do?

Answer 5

Lets you manage user access to Azure resources.

Question 6

What are the three elements of an Azure Role?

Answer 6

security principal, role definition, and scope.

Question 7

What is Security Prinicpal?

Answer 7

an object that represents a user, group, service principal, or managed identity that is requesting access to Azure resources.

Question 8

What is Role Definition?

Answer 8

Collection of permissions

Question 9

What is Scope?

Answer 9

The set of Resources a Role applies to.

Question 10

What is a Role Assignment?

Answer 10

Attaching a role to a user, group, or Service Principal

Question 11

How does Azure handle denying access to a Resource?

Answer 11

Deny assignments are attached to a user, group, or Service Principal at a particular Scope.

Question 12

Where is RBAC data stored?

Answer 12

RBAC data is stored globally