Crucial Exams

Microsoft Azure Administrator Associate AZ-104 Practice Question

Your company needs a group of developers to manage virtual machines in a single Azure resource group. They must be able to start, stop, and restart VMs, but must not be able to delete them or assign roles to other identities. Which action should you take to meet the requirement using least-privilege access?

  • Assign the developers the Contributor role on the resource group.

  • Add the developers to a custom "Virtual Machine Operator" role at the subscription level.

  • Create a custom Azure RBAC role that includes only start, stop, and restart VM actions and assign it to the developers at the resource-group scope.

  • Create an Azure AD role with the required permissions and assign it to the developers.

Microsoft Azure Administrator Associate AZ-104
Manage Azure identities and governance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot