0
0
Azurecloud~20 mins

Built-in roles (Owner, Contributor, Reader) in Azure - Practice Problems & Coding Challenges

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Challenge - 5 Problems
🎖️
Built-in Roles Mastery
Get all challenges correct to earn this badge!
Test your skills under time pressure!
🧠 Conceptual
intermediate
2:00remaining
Role Capabilities: Owner vs Contributor

Which of the following statements correctly describes the difference between the Owner and Contributor built-in roles in Azure?

AContributor can manage access permissions and resources; Owner can only manage resources but not access permissions.
BOwner can manage access permissions and resources; Contributor can only manage resources but not access permissions.
CBoth Owner and Contributor can manage access permissions but only Owner can delete resources.
DOwner can only view resources; Contributor can manage resources and access permissions.
Attempts:
2 left
💡 Hint

Think about who can change who else can access resources.

service_behavior
intermediate
2:00remaining
Reader Role Behavior

What is the expected behavior of a user assigned the Reader role on an Azure resource group?

AThe user can view all resources but cannot make any changes.
BThe user can create and delete resources but cannot assign roles.
CThe user can modify resource configurations but cannot delete them.
DThe user can assign roles to other users but cannot view resources.
Attempts:
2 left
💡 Hint

Consider what 'Reader' implies about permissions.

security
advanced
2:00remaining
Security Implications of Assigning Owner Role

Which security risk is most associated with assigning the Owner role to many users in an Azure subscription?

AUsers will be restricted from assigning roles, causing bottlenecks in access management.
BUsers will be unable to view resources, causing operational delays.
CUsers will only have read access, limiting their ability to manage resources effectively.
DUsers might accidentally delete resources or change access permissions, leading to potential data loss or unauthorized access.
Attempts:
2 left
💡 Hint

Think about what full access means for security.

Architecture
advanced
2:00remaining
Designing Role Assignments for a Team

You have a team where some members need to deploy and manage resources, others only need to monitor resources, and a few need to manage access permissions. Which combination of built-in roles should you assign?

AAssign Reader to those managing access, Contributor to those deploying resources, Owner to those monitoring.
BAssign Contributor to those managing access, Owner to those deploying resources, Reader to those monitoring.
CAssign Owner to those managing access, Contributor to those deploying resources, Reader to those monitoring.
DAssign Contributor to all team members regardless of their tasks.
Attempts:
2 left
💡 Hint

Match roles to the level of access needed for each task.

Best Practice
expert
2:00remaining
Minimizing Risk with Built-in Roles

What is the best practice to minimize security risks when assigning built-in roles like Owner, Contributor, and Reader in Azure?

AAssign the least privilege role necessary for the user's tasks and regularly review role assignments.
BAssign Contributor role to all users so they can manage resources and access permissions freely.
CAssign Owner role to all users to avoid permission issues and simplify management.
DAssign Reader role to all users to prevent accidental changes, regardless of their job function.
Attempts:
2 left
💡 Hint

Think about security principles and ongoing management.