Microsoft Azure Security Technologies (AZ-500)

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft Azure Security Technologies (AZ-500) exam. Prepare with well-structured questions and detailed explanations. Enhance your understanding and improve your readiness for the certification exam!

Practice this question and more.

If creating different subscriptions linked to a single Azure Active Directory (Azure AD) tenant, which is the accurate option if each subscription needs identical role assignments?

No adjustment required
Azure Blueprints
Conditional access policies
Azure DevOps

The correct answer is: Azure Blueprints

When creating different subscriptions linked to a single Azure Active Directory (Azure AD) tenant and needing identical role assignments across those subscriptions, Azure Blueprints is the most suitable option. Azure Blueprints enable you to define a repeatable set of Azure resources, policies, and role assignments that can be deployed across multiple subscriptions in a consistent manner. With Azure Blueprints, you can create a blueprint that encapsulates the specific roles, policies, and resource configurations necessary for your subscriptions. This ensures that each subscription inherits the same role assignments, making it easier to manage security and compliance across your organization’s Azure environment. Other options do not directly facilitate the deployment of consistent role assignments across multiple subscriptions. Conditional access policies, for instance, are mainly focused on securing user access to applications and do not apply role assignments at the subscription level. Azure DevOps primarily supports the workflow and processes for development and delivery of applications rather than resource governance or role management in Azure subscriptions. Hence, Azure Blueprints stands out as the optimal choice for this scenario as it directly addresses the need for uniformity in role assignments across multiple Azure subscriptions.