Rbac — Microsoft Azure Security Engineer (AZ-500) Practice Questions
Role-Based Access Control (RBAC) in Azure is the authorization system that controls who can perform what actions on which resources by assigning built-in or custom roles to users, groups, service principals, and managed identities at a defined scope. The AZ-500 exam tests the ability to design and implement least-privilege access models, distinguish between Azure RBAC (resource plane) and Azure AD roles (identity plane), and audit role assignments for excessive permissions. Candidates must understand role assignment scopes such as management group, subscription, resource group, and individual resource, as well as how deny assignments and Azure AD Privileged Identity Management govern just-in-time access.
Free questions on rbac
What is the purpose of service principals in Azure AD?
Free question · medium · full answer + explanation
More rbac questions in the full bank
- Your organization needs to grant a contractor temporary access to specific Azure resources. What is the most secure approach? Unlock answer & explanation →
- You need to restrict database access to specific departments. How should you implement this? Unlock answer & explanation →
- What does RBAC stand for? Unlock answer & explanation →