Crucial Exams

Microsoft DevOps Engineer Expert AZ-400 Practice Question

Your company uses Azure DevOps for work tracking and GitHub for source control. External compliance auditors must be able to create and comment on work items in a private Azure DevOps project but must not access source repositories or pipelines. A third-party localization vendor needs to contribute to a single private repository in your GitHub organization and must not see any other repositories or organization settings. To meet least-privilege and cost requirements, which combination of access levels should you recommend?

  • Assign Basic access in Azure DevOps to the auditors and add the vendor as a member of a team inside the GitHub organization.

  • Assign Stakeholder access in Azure DevOps to the auditors and add the vendor as an organization member with repository-specific permissions in GitHub.

  • Assign Visual Studio subscriber access in Azure DevOps to the auditors and invite the vendor as an outside collaborator while enforcing SAML single sign-on.

  • Assign Stakeholder access in Azure DevOps to the auditors and invite the vendor as an outside collaborator on the required GitHub repository.

Microsoft DevOps Engineer Expert AZ-400
Develop a security and compliance plan
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot