Microsoft Certified: Azure Fundamentals (AZ-900) Practice Exam

Which Azure service is specifically designed for authorization management?

• A. Azure Active Directory
• B. Azure Monitor
• C. Azure Policy
• D. Azure Key Vault

The correct answer is: Azure Active Directory

Azure Active Directory is specifically designed for authorization management. It serves as a cloud-based identity and access management service, providing functionalities such as user authentication, single sign-on, and role-based access controls. Azure Active Directory enables organizations to manage who has access to what resources within Azure and other connected applications, ensuring that only authorized users can access sensitive information or perform specific actions. This service plays a crucial role in securing applications and resources in Azure by allowing administrators to define permissions and policies governing user access. Azure Active Directory supports various protocols for secure and flexible authentication, making it foundational for managing authorizations in any Azure-based environment. The other options, such as Azure Monitor, Azure Policy, and Azure Key Vault, serve different purposes. Azure Monitor is primarily focused on monitoring the performance and health of Azure resources. Azure Policy helps enforce specific rules and effects over your resources, ensuring compliance with organizational standards. Azure Key Vault is designed for securely storing and managing cryptographic keys and other secrets. Each of these services complements Azure's security and management capabilities but does not specifically handle authorization management in the way Azure Active Directory does.