Designing Azure Infrastructure Solutions — Question 118

You have an Azure subscription that contains 10 web apps. The apps are integrated with Azure AD and are accessed by users on different project teams.

The users frequently move between projects.

You need to recommend an access management solution for the web apps. The solution must meet the following requirements:

• The users must only have access to the app of the project to which they are assigned currently.
• Project managers must verify which users have access to their project’s app and remove users that are no longer assigned to their project.
• Once every 30 days, the project managers must be prompted automatically to verify which users are assigned to their projects.

What should you include in the recommendation?

Answer options

• A. Azure AD Identity Protection
• B. Microsoft Defender for Identity
• C. Microsoft Entra Permissions Management
• D. Azure AD Identity Governance

Correct answer: D

Explanation

The correct choice is D, Azure AD Identity Governance, as it provides the necessary tools for managing user access and ensuring compliance with project assignments. It allows project managers to review and adjust user access periodically, fulfilling the requirement for automatic reminders every 30 days. The other options do not specifically address the management of user access and compliance for web apps in the same way.