0
0
Azurecloud

Custom role definitions in Azure - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is a custom role definition in Azure?
A custom role definition is a set of permissions that you create to control access to Azure resources. It lets you specify exactly what actions users can perform.
Click to reveal answer
beginner
Which JSON property defines the actions allowed in a custom role?
The actions property lists the operations that are allowed by the role, such as reading or writing resources.
Click to reveal answer
intermediate
Why use custom roles instead of built-in roles in Azure?
Custom roles let you tailor permissions to your exact needs, avoiding giving too many or too few rights compared to built-in roles.
Click to reveal answer
intermediate
What is the purpose of the notActions property in a custom role definition?
The notActions property lists actions that are excluded from the allowed actions. It helps refine permissions by denying specific operations.
Click to reveal answer
beginner
How do you assign a custom role to a user in Azure?
You assign a custom role by creating a role assignment that links the role definition to a user, group, or service principal at a specific scope.
Click to reveal answer
What JSON property specifies the scope of a custom role definition?
AroleScope
Bscope
CassignableScopes
DresourceScope
Which property in a custom role definition contains the role's unique identifier?
AroleName
BroleId
Cname
Did
What is the minimum required property to create a valid custom role definition?
Aactions
BassignableScopes
CroleName
Ddescription
Which of these is NOT a valid action in a custom role definition?
AMicrosoft.FakeService/fakeAction
BMicrosoft.Compute/virtualMachines/start/action
CMicrosoft.Network/virtualNetworks/delete
DMicrosoft.Storage/storageAccounts/read
How can you prevent a custom role from allowing a specific action?
AAdd it to notActions
BAdd it to assignableScopes
CRemove it from actions
DSet it in description
Explain the key components of an Azure custom role definition JSON and their purposes.
Think about what permissions are allowed, denied, and where the role applies.
You got /5 concepts.
    Describe the process to create and assign a custom role in Azure.
    Consider the steps from writing the role to giving it to someone.
    You got /4 concepts.