Free Microsoft AZ-305 Actual Exam Questions - Question 15 Discussion

C imo. Resource locks prevent accidental deletion or modification, which is a key part of maintaining compliance and protecting data integrity. Just setting RBAC (D) controls access but doesn’t stop someone with permissions from deleting resources by mistake. Locks add an extra layer of protection specifically for compliance scenarios where data must not be altered or removed without strict oversight. This feels like a better fit when the question focuses on securing data storage itself beyond just access rights.

B vs D? Changing access level (B) seems too blunt; RBAC (D) offers detailed control needed for compliance.

This one’s tricky, but I’d go with D. Creating Azure RBAC assignments gives you fine-grained control over who can do what across resources, not just blobs, which feels more aligned with security and compliance. A’s more about direct blob access, but compliance usually means controlling access at a broader level.

Maybe D is right, but I’m thinking A could also work because creating an access policy for the blob lets you control who can access data directly, which ties into security and compliance. RBAC (D) manages permissions at a broader level, but if the focus is specifically on the storage data itself, access policies might give tighter control. So it depends if they want to manage access at the app level or directly on the data.

Option D.