Microsoft Certified: Azure Fundamentals (AZ-900) Practice Exam 2025 - Free AZ-900 Practice Questions and Study Guide

Implementing role-based access control (RBAC) is the correct approach for managing access to resources at various scopes in Azure. RBAC allows you to assign specific roles to users, groups, or applications at different levels of the Azure hierarchy, such as the subscription, resource group, or specific resources. This granular control enables organizations to restrict access based on the principle of least privilege, ensuring that users only have permissions necessary for their roles.

Using RBAC, you can effectively manage who has access to various Azure resources and what actions they can perform. For instance, you could assign read-only access to certain users while granting full administrative privileges to others, all based on their assigned roles.

In contrast, while Azure Advisor, locks, and Azure Policies are important tools within Azure governance, they serve different purposes. Azure Advisor provides best practice recommendations, locks prevent accidental deletion or modification of resources, and Azure Policies enforce rules on resources to ensure compliance with the organization's standards. However, they do not specifically address the need for managing access to resources, which is the primary focus of the question.