AZ-400 · Question #492
Hotspot Question You have a project in Azure DevOps that includes two users named User1 and User2. You plan to use Azure Monitor to manage logs. You need to ensure that the users can perform the actio
The correct answer is User1:: Monitoring Contributor; User2:: Monitoring Reader. To ensure User1 can 'Create private monitoring dashboards' and 'Search usage data for an Azure Monitor workspace', the Monitoring Contributor role is required. This role grants permissions to create and manage monitoring resources, including dashboards, and access monitoring data
Question
Exhibits
Answer Area
- User1:Monitoring ContributorLog Analytics ReaderMonitoring ContributorMonitoring Metrics PublisherMonitoring Reader
- User2:Monitoring ReaderLog Analytics ReaderMonitoring ContributorMonitoring Metrics PublisherMonitoring Reader
Explanation
To ensure User1 can 'Create private monitoring dashboards' and 'Search usage data for an Azure Monitor workspace', the Monitoring Contributor role is required. This role grants permissions to create and manage monitoring resources, including dashboards, and access monitoring data. For User2, who only needs to 'View autoscale settings' and 'View alert activities and settings', the Monitoring Reader role is sufficient. This role provides read-only access to all monitoring data and settings, adhering to the principle of least privilege as User2 does not require permissions to create or modify resources.
Topics
Community Discussion
No community discussion yet for this question.

