Microsoft Azure Architect Design (legacy) — Question 42

Your company purchases an app named App1.
You need to recommend a solution to ensure that App1 can read and modify access reviews.
What should you recommend?

Answer options

• A. From API Management services, publish the API of App1, and then delegate permissions to the Microsoft Graph API.
• B. From API Management services, publish the API of App1. From the Access control (IAM) blade, delegate permissions.
• C. From the Azure Active Directory admin center, register App1, and then delegate permissions to the Microsoft Graph API.
• D. From the Azure Active Directory admin center, register App1. From the Access control (IAM) blade, delegate permissions.

Correct answer: D

Explanation

The correct answer is D because registering App1 in the Azure Active Directory admin center and then using the Access control (IAM) blade allows for the necessary permissions to be delegated effectively. Options A and B do not utilize the Azure Active Directory admin center, which is essential for managing permissions related to access reviews. Option C, while it involves registration, incorrectly suggests delegating permissions to the Microsoft Graph API instead of using the IAM blade.