AZ 104 RENEWAL CERTIFICATION
EVALUATION EXAMS 2026 TEST BANK
WITH FULL SOLUTION
⩥ What is an Azure AD tenant? Answer: A dedicated, isolated instance
of Azure AD for an organization.
⩥ What type of identities does Azure AD manage? Answer: Users,
groups, devices, service principals, managed identities.
⩥ What is a Service Principal? Answer: An identity used by
apps/services to access Azure resources with specific permissions.
⩥ What is a Managed Identity? Answer: An automatically managed
identity for Azure resources with no need for stored credentials.
⩥ Two types of Managed Identities? Answer: System-assigned and user-
assigned.
⩥ Azure AD group types? Answer: Security groups & Microsoft 365
groups
,⩥ Use case for Security Groups? Answer: Assigning access to Azure
resources or apps.
⩥ Use case for Microsoft 365 groups? Answer: Collaboration resources
like Teams/SharePoint.
⩥ What is Conditional Access? Answer: Adaptive policies requiring
MFA, blocking risky sign-ins, enforcing device compliance.
⩥ What is MFA? Answer: Multi-factor authentication requiring
additional verification beyond username/password.
⩥ What is Self-Service Password Reset? Answer: Feature allowing users
to reset passwords without admin involvement.
⩥ What is PIM (Privileged Identity Management)? Answer: Service for
just-in-time privilege elevation and tracking privileged role usage.
⩥ What is RBAC? Answer: Role-based access control for fine-grained
permissions on Azure resources.
⩥ Three major built-in RBAC roles? Answer: Owner, Contributor,
Reader.
, ⩥ What does Owner do? Answer: Full access, including granting access
to others
⩥ What does Contributor do? Answer: Manage resources but cannot
assign permissions.
⩥ What does Reader do? Answer: Read-only access.
⩥ What is User Access Administrator? Answer: Manages who has
access to resources.
⩥ What is Identity Protection? Answer: Detects risks like leaked
credentials or suspicious activity.
⩥ What is a Management Group? Answer: A container for grouping
subscriptions and applying governance at scale.
⩥ Order of Azure hierarchy? Answer: Management Group →
Subscription → Resource Group → Resources.
⩥ What is a Subscription? Answer: A billing container for Azure
resources
EVALUATION EXAMS 2026 TEST BANK
WITH FULL SOLUTION
⩥ What is an Azure AD tenant? Answer: A dedicated, isolated instance
of Azure AD for an organization.
⩥ What type of identities does Azure AD manage? Answer: Users,
groups, devices, service principals, managed identities.
⩥ What is a Service Principal? Answer: An identity used by
apps/services to access Azure resources with specific permissions.
⩥ What is a Managed Identity? Answer: An automatically managed
identity for Azure resources with no need for stored credentials.
⩥ Two types of Managed Identities? Answer: System-assigned and user-
assigned.
⩥ Azure AD group types? Answer: Security groups & Microsoft 365
groups
,⩥ Use case for Security Groups? Answer: Assigning access to Azure
resources or apps.
⩥ Use case for Microsoft 365 groups? Answer: Collaboration resources
like Teams/SharePoint.
⩥ What is Conditional Access? Answer: Adaptive policies requiring
MFA, blocking risky sign-ins, enforcing device compliance.
⩥ What is MFA? Answer: Multi-factor authentication requiring
additional verification beyond username/password.
⩥ What is Self-Service Password Reset? Answer: Feature allowing users
to reset passwords without admin involvement.
⩥ What is PIM (Privileged Identity Management)? Answer: Service for
just-in-time privilege elevation and tracking privileged role usage.
⩥ What is RBAC? Answer: Role-based access control for fine-grained
permissions on Azure resources.
⩥ Three major built-in RBAC roles? Answer: Owner, Contributor,
Reader.
, ⩥ What does Owner do? Answer: Full access, including granting access
to others
⩥ What does Contributor do? Answer: Manage resources but cannot
assign permissions.
⩥ What does Reader do? Answer: Read-only access.
⩥ What is User Access Administrator? Answer: Manages who has
access to resources.
⩥ What is Identity Protection? Answer: Detects risks like leaked
credentials or suspicious activity.
⩥ What is a Management Group? Answer: A container for grouping
subscriptions and applying governance at scale.
⩥ Order of Azure hierarchy? Answer: Management Group →
Subscription → Resource Group → Resources.
⩥ What is a Subscription? Answer: A billing container for Azure
resources
