Microsoft 365 Messaging — Question 94

You have a Microsoft Exchange Online tenant that contains a custom role group named RG1.
You need to prevent users assigned to RG1 from running a specific cmdlet.
Which cmdlet should you run to modify RG1?

Answer options

• A. Remove-ManagementRoleEntry
• B. Disable-CmdletExtensionAgent
• C. Remove-ManagementRoleAssignment
• D. Set-ManagementScope

Correct answer: A

Explanation

The correct answer is A, Remove-ManagementRoleEntry, as it specifically allows you to remove a cmdlet from a role, thereby preventing users from executing it. The other options do not provide the functionality to restrict specific cmdlets: B is for disabling extensions, C removes role assignments, and D manages scopes but does not affect cmdlet permissions.