Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named
Developers. Subscription1 contains a resource group named Dev.
You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group.
Solution: On Dev, you assign the Contributor role to the Developers group.
Does this meet the goal?
Click on the arrows to vote for the correct answer
A. B.A
The Contributor role lets you manage everything except access to resources. It allows you to create and manage resources of all types, including creating Azure logic apps.
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#contributorThe given solution of assigning the Contributor role to the Developers group on the Dev resource group will allow the Developers group to create Azure logic apps in that resource group. Therefore, the solution meets the stated goal of providing the Developers group with the ability to create Azure logic apps in the Dev resource group.
To elaborate further, the Contributor role provides users with the ability to manage all resources within a resource group, including creating and deleting resources. By assigning this role to the Developers group on the Dev resource group, the group members will be able to create, modify, and delete resources in that specific resource group. However, they will not be able to perform these actions on resources in other resource groups or subscriptions unless they are explicitly granted the necessary permissions.
It is worth noting that while the solution meets the stated goal, it is important to consider the security implications of granting the Contributor role to a group. This role grants significant privileges and should be assigned carefully to only trusted users or groups. It is recommended to follow the principle of least privilege and grant only the necessary permissions required for a specific task or resource.