Microsoft Azure Administrator — Question 52

You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com and an Azure Kubernetes Service (AKS) cluster named AKS1.
An administrator reports that she is unable to grant access to AKS1 to the users in contoso.com.
You need to ensure that access to AKS1 can be granted to the contoso.com users.
What should you do first?

Answer options

• A. From contoso.com, modify the Organization relationships settings.
• B. From contoso.com, create an OAuth 2.0 authorization endpoint.
• C. Recreate AKS1.
• D. From AKS1, create a namespace.

Correct answer: B

Explanation

Creating an OAuth 2.0 authorization endpoint is essential for enabling access control for users in Azure AD. The other options do not directly address the access issue; modifying organization relationships or creating a namespace does not facilitate the necessary authorization mechanism needed for AKS1 access.