You have applied a Delete lock on an Azure Storage Account. What happens if you try to delete this storage account?
Think about what a Delete lock is designed to prevent.
A Delete lock prevents the resource from being deleted. Any attempt to delete the resource will fail with an error, protecting it from accidental deletion.
You apply a Read-Only lock on an Azure Virtual Machine. Which of the following actions will be blocked?
Consider what Read-Only lock means for resource changes.
A Read-Only lock prevents any modifications or deletions of the resource. However, operations like starting or stopping the VM, which do not change the resource's configuration, are allowed.
You manage a production Azure environment with critical resources. Which lock strategy is best to prevent accidental deletion but still allow necessary updates?
Think about allowing updates but preventing deletion.
A Delete lock prevents accidental deletion but allows updates and modifications. A Read-Only lock blocks all changes, which may be too restrictive for production resources that need updates.
If a user has Owner role on a resource but a Read-Only lock is applied, what is the effective permission for that user?
Consider how locks and RBAC permissions interact.
Resource locks apply on top of RBAC permissions. Even if a user has Owner role, a Read-Only lock prevents modifications and deletions, effectively limiting the user's actions.
You apply a Delete lock at the resource group level. Which statement is true about the lock's effect on resources inside that group?
Think about how locks propagate in Azure hierarchy.
Locks applied at a parent scope like a resource group inherit down to all child resources, preventing deletion of any resource inside until the lock is removed.