Your company plans to migrate to Azure.
The company has several departments. All the Azure resources used by each department will be managed by a department administrator.
What are two possible techniques to segment Azure for the departments? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
Click on the arrows to vote for the correct answer
A. B. C. D.AD
An Azure subscription is a container for Azure resources. It is also a boundary for permissions to resources and for billing. You are charged monthly for all resources in a subscription. A single Azure tenant (Azure Active Directory) can contain multiple Azure subscriptions.
A resource group is a container that holds related resources for an Azure solution. The resource group can include all the resources for the solution, or only those resources that you want to manage as a group.
To enable each department administrator to manage the Azure resources used by that department, you will need to create a separate subscription per department. You can then assign each department administrator as an administrator for the subscription to enable them to manage all resources in that subscription.
https://docs.microsoft.com/en-us/azure/cost-management-billing/manage/create-subscription https://docs.microsoft.com/en-us/azure/cost-management-billing/manage/add-change-subscription-administratorTo reduce Azure costs for the company, you should remove the unused resources that are not required for your business operations. Based on the given options, the unused resources that can be removed are:
B. The public IP addresses: Public IP addresses are used to provide internet-facing connectivity to resources in Azure. If you are not using any resources that require a public IP address, you can remove them to save costs.
A. The network interfaces: Network interfaces enable virtual machines and other resources to communicate with each other and with the internet. If you are not using any virtual machines or other resources that require a network interface, you can remove them to save costs.
C. The groups: Groups in Azure AD are used to manage access to resources and applications. If you are not using any groups or if you can consolidate the groups to reduce their number, you can remove them to save costs.
D. The user accounts: User accounts in Azure AD are used to authenticate users and grant access to resources and applications. If you are not using any user accounts or if you can consolidate the user accounts to reduce their number, you can remove them to save costs.
Therefore, the correct answer would be either B or A depending on your specific needs, but C and D are less likely candidates for reducing Azure costs.
To segment Azure for different departments