Your company has an Azure subscription that contains resources in several regions.
You need to create the Azure resource that must be used to meet the policy requirement.
What should you create?
Click on the arrows to vote for the correct answer
A. B. C. D.B
Azure policies can be used to define requirements for resource properties during deployment and for already existing resources. Azure Policy controls properties such as the types or locations of resources.
Azure Policy is a service in Azure that you use to create, assign, and manage policies. These policies enforce different rules and effects over your resources, so those resources stay compliant with your corporate standards and service level agreements. Azure Policy meets this need by evaluating your resources for non- compliance with assigned policies. All data stored by Azure Policy is encrypted at rest.
Azure Policy offers several built-in policies that are available by default. In this question, we would use the 'Allowed Locations' policy to define the locations where resources can be deployed.
https://docs.microsoft.com/en-us/azure/governance/policy/overviewIn this scenario, you have an Azure subscription with resources deployed in multiple regions, and you need to create an Azure resource to meet a policy requirement. The answer to this question is option B, which is to create an Azure Policy.
Azure Policy is a service in Azure that allows you to create, assign, and manage policies that enforce rules and effects for resources in your organization. With Azure Policy, you can enforce compliance with corporate standards and legal regulations across all resources in your Azure environment.
By creating an Azure Policy, you can define the specific requirements and conditions that must be met by the resources deployed in your Azure subscription. For example, you can define policies that ensure all resources are tagged with specific labels or that require resources to be deployed in a specific region.
An Azure Policy is created using JSON and is enforced by the Azure Policy service, which automatically evaluates all resources against the defined policy. If a resource violates the policy, the service takes action, such as denying deployment or triggering an alert.
In contrast, option A, a read-only lock, is a feature in Azure that prevents deletion or modification of a resource, but does not enforce any policy. Option C, a management group, is a hierarchical container that helps manage access, policies, and compliance across multiple subscriptions, but it is not a resource that meets a policy requirement. Option D, a reservation, is a purchasing option that allows you to prepay for a service for a term to get a discount and does not meet a policy requirement.