Microsoft Azure Administrator Associate AZ-104 Practice Question
You are an Azure administrator for your company. The company has a critical resource group named ProdRG that contains production workloads. You need to protect resources within ProdRG from accidental deletion without restricting authorized users from modifying them as needed. What should you do?
Applying a CanNotDelete lock to the resource group ProdRG is the appropriate action. A CanNotDelete lock prevents users from deleting the resource group or any resources within it but allows modifications. This ensures that critical resources are protected from accidental deletion while remaining editable. Applying a Read-only lock would be too restrictive, as it prevents any modifications to the resources, which might hinder normal operations. Assigning the Owner role to yourself does not prevent others with sufficient permissions from deleting resources. Enabling soft delete is not a feature that applies universally to all resources within a resource group.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a CanNotDelete lock in Azure?
Open an interactive chat with Bash
What are the differences between a Read-only lock and a CanNotDelete lock?
Open an interactive chat with Bash
How does the Owner role interact with locks in Azure?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Manage Azure identities and governance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Oh snap!
Loading...
Loading...
Loading...
Information Technology Package Join Premium for Full Access