AZ-104 - Manage Azure Identities and Governance - Section 1.2

Manage access to Azure resources using Azure role-based access control.

Understand how Azure RBAC role assignments grant permissions at a scope - management group, subscription, resource group, or resource - and how child scopes inherit assignments from parents. Distinguish between built-in roles such as Owner, Contributor, and Reader, and design custom roles when built-in definitions do not satisfy least-privilege requirements.

Examworthy is not affiliated with or endorsed by Microsoft. Original, blueprint-aligned practice material only.