Your company uses several bots. The bots use Azure Bot Service.
Several users report that some of the bots fail to return the expected results.
You plan to view the service health of the bot service.
You need to request the appropriate role to access the service health of the bot service. The solution must use the principle of least privilege.
Which role should you request?

A. The Contributor role on the Azure subscription

B. The Reader role on the bot service

C. The Owner role on the bot service

D. The Reader role on the Azure subscription








 

Suggested Answer: B

Use the Reader role on the bot service to limit access and scope.
Note: Access management for cloud resources is a critical function for any organization that is using the cloud. Azure role-based access control (Azure RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.
Azure includes several built-in roles that you can use. The Reader Role can view existing Azure resources.
Scope is the set of resources that the access applies to. When you assign a role, you can further limit the actions allowed by defining a scope. In Azure, you can specify a scope at multiple levels: management group, subscription, resource group, or resource.
Reference:
https://docs.microsoft.com/en-us/azure/role-based-access-control/overview

This question is in AI-100 Designing and Implementing an Azure AI Solution Exam
For getting Microsoft Certified: Azure AI Engineer Associate Certificate





Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Microsoft. 
The website does not contain actual questions and answers from Microsoft's Certification Exams.
Trademarks, certification & product names are used for reference only and belong to Microsoft.