šŸ”„ Check out my documented journey on how to set up Configuration Manager (MECM) and my updated notes on the Azure AZ-104 Exam! šŸ”„
Posts
Microsoft
Azure
AZ-104
AZ-104 Certification Notes
ExamPro Course Notes
Chapter 4 - Azure Roles
Chapter 4.2 - IAM Access Controls

AZ-104 Certification Notes

Chapter 4.2 - IAM Access Controls

Access Controls (IAM)

Identity Access Management (IAM) allows you to create and assign roles to users

  • Azure Roles (RBAC system)
    • Roles restrict access to resource actions (also known as operations). There are two types of roles:
      • BuiltInRole - Managed Microsoft roles are read only pre-created roles for you to use
      • CustomRole - A role created by you with your own custom logic
  • Role Assignment
    • Is when you apply a role to a:
      • Service principle
      • (User) group
      • User
  • Deny Assignments
    • Block users from performing specific actions even if a role assignment grants them access. The only way to apply Deny assignments is through Azure BluePrints

Practice Quiz

  • What are the types of Azure roles (RBAC system)ā€‹?

    • BuiltInRole
    • MultiRole
    • CustomRole
    • SpecialRole

  • Role Assignment is when you apply a role to a _____

    • service principle
    • (user) group
    • user
    • system

  • What is IAM?

    • Identity Access Management (IAM) allows you to create and assign roles to users.
Chapter 4 - Types of RolesChapter 4.3 - Classic Administrator