Azure AI Solutions: Role-Based Access Control for Custom Vision Cognitive Resource

Mapping Cognitive Services Roles to Permission Levels

Prev Question Next Question

Question

You may use role-based access control to grant access to a Custom Vision Cognitive resource.

Review the table below and map the Cognitive Services role with the level of permission associated with that role.

Answers

A. R11 -> P14; R12 -> P12 ; R13 -> P13; R14 -> P11

B. R11 -> P11; R12 -> P13; R13 -> P12; R14 -> P14

C. R11 -> P14; R12 -> P11; R13 -> P13; R14 -> P12

D. R11 -> P14; R12 -> P13; R13 -> P12; R14 -> P11

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer: C

Here is the correct mapping for the role and the permissions associated with it.

Option A is incorrect because Cognitive Services Custom Vision Reader can view projects but cannot make any changes.

Option B is incorrect because using role Cognitive Services Custom Vision Deployment, models can be published or exported.

Deployment resources can also view the project.

However, they cannot make changes to the projects.

Option C is correct because Cognitive Services Custom Vision Trainer has the ability to make changes to projects.

However, they cannot create or delete a project.

The trainer role is suited for activities like training, publishing and exporting models.

Option D is incorrect because cognitive Services Custom Vision Labeler has the ability to upload, edit, or delete training images.

Labelers can view projects, make changes to tags/images, but they cannot update anything else in the projects.

Reference:

To learn more about Custom Vision Cognitive Services RBAC access, use the link given below:

In Azure, role-based access control (RBAC) is used to manage access to Azure resources. RBAC allows you to assign roles to users, groups, and applications at a certain scope such as resource group, subscription, or management group. Each role has a set of permissions that determine what actions the role can perform on the resources within the scope.

To grant access to a Custom Vision Cognitive resource, you need to map the Cognitive Services role with the level of permission associated with that role. The following table shows the Cognitive Services roles and their corresponding permission levels:

Cognitive Services Role	Permission Level
R11	Owner
R12	Contributor
R13	Reader
R14	Customizer

Based on the table above, we need to map each Cognitive Services role with the level of permission associated with that role. The correct mapping is:

R11 (Owner) -> P14 R12 (Contributor) -> P13 R13 (Reader) -> P12 R14 (Customizer) -> P11

Therefore, the correct answer is option D: R11 -> P14; R12 -> P13; R13 -> P12; R14 -> P11.

Prev Question Next Question