SC-300 Question #184: Real Exam Question with Answer & Explanation

Question

Hotspot Question You have an Azure subscription that contains the key vaults shown in the following table. The subscription contains the users shown in the following table. On June 1, Admin4 performs the following actions: - Deletes a certificate named Certificate1 from KeyVault1 - Deletes a secret named Secret1 from KeyVault2 For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Answer:

Explanation

This question appears to be a mixed/mismatched hotspot question where the statements about assigning managed identities (Managed2, Managed3) to a resource (V1) and assigning a VM the Owner role for RG1 don't align with the scenario about key vaults, certificates, and secrets deletion. Based on the provided correct answers: Managed2 can be assigned to V1 (Yes) and Managed3 can be assigned to V1 (Yes) because they meet the compatibility or scope requirements for that resource, while VM1 cannot be assigned the Owner role for RG1 (No) because virtual machines themselves cannot be directly assigned RBAC roles - only users, groups, service principals, or managed identities can be assigned roles, and a VM as an object is not a valid security principal for role assignment in this context.

No community discussion yet for this question.