Your company has an Azure subscription that contains resources in several regions. You need to ensure that administrators can only create resources in those regions. What should you use?
To ensure that administrators can only create resources in specific regions, you should use Azure Policy. Azure Policy is a service in Azure that you use to create, assign, and manage policies. These policies enforce different rules and effects over your resources, so those resources stay compliant with your corporate standards and service level agreements. You can use Azure Policy to enforce policies that limit the regions available for resource creation.
Read-only locks are used to prevent users from deleting or modifying a resource. They do not restrict the creation of new resources.
Management groups are used to organize subscriptions and apply governance conditions to them. They do not restrict the creation of new resources.
Reservations are used to prepay for specific services for a defined period of time. They do not restrict the creation of new resources.
Therefore, option B is the correct answer.
Azure Policy is the answer.
Explanation: Azure Policy evaluates resources and actions in Azure by comparing the properties of those resources to business rules. These business rules, described in JSON format, are known as policy definitions. To simplify management, several business rules can be grouped together to form a policy initiative (sometimes called a policySet). Once your business rules have been formed, the policy definition or initiative is assigned to any scope of resources that Azure supports, such as management groups, subscriptions, resource groups, or individual resources. The assignment applies to all resources within the Resource Manager scope of that assignment. Subscopes can be excluded, if necessary. For more information, see Scope in Azure Policy.
https://learn.microsoft.com/en-us/azure/governance/policy/overview
Policy is correct.
reference:
https://learn.microsoft.com/en-us/azure/governance/management-groups/overview
"For example, you can apply policies to a management group that limits the regions available for virtual machine (VM) creation. This policy would be applied to all nested management groups, subscriptions, and resources, and allow VM creation only in authorized regions."
Answer is Correct 'an Azure policy'.
Explanation: Azure Policy has the capacity to enforces compliance in new resources or in others that already exists.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tecatero2001
Highly Voted 2 years, 9 months agoRaviBanavath
Highly Voted 12 months agodayanandthombare
Most Recent 4 months, 2 weeks agoFutureAdmin
5 months agosj1234567
7 months, 2 weeks agoSunilyaswanth_123
8 months, 3 weeks agoTony081
1 year, 1 month agoazirila
1 year, 1 month agobuiducvu
1 year, 2 months agofguglia
1 year, 3 months agocnuila
1 year, 4 months ago0spn0
1 year, 4 months agoTonyghostR05
1 year, 4 months agoDriyan
1 year, 5 months agophuctran
1 year, 6 months agosilviogremio
1 year, 8 months agoJ55889
2 years, 6 months ago