Free Microsoft Identity SC-300 Actual Exam Questions - Question 12 Discussion
You havean Azure AD tenant that contains the users shown in the following table. 
You add an enterprise application named App1 to Azure AD and set User1 as the owner of App1 requires admin consent to access Azure AD before the app can be used. You configure the Admin consent requests strong as shown in the following exhibit. Admin consent requests. 
A. I think only Admm1 can give admin consent here. User1 is just the owner but that doesn’t automatically include admin consent rights. The question says admin consent is required, and usually only specific admin roles can grant that, so it makes sense it’s limited to Admm1. Admin2 and Admin3 probably don’t have those consent permissions based on the exhibit. User1 being owner doesn’t affect admin consent capabilities directly.
I’m thinking A here. Since the app needs admin consent and the exhibit probably shows only Admm1 with those rights, User1 being just an owner doesn’t grant consent power by default. Admin2 and Admin3 likely don’t have consent privileges unless explicitly stated, so they’re out.
Maybe A. If only Admm1 is set in the consent policy, then Admin2 and Admin3 wouldn’t have the rights, and User1 as owner likely can’t approve admin consent.
B tbh, the exhibit usually limits admin consent to certain admin roles like Admm1 and Admin2, so including Admin3 or User1 seems off. Owners don’t always get consent rights unless specified.
C, since Admin3 also has the necessary roles per the exhibit shown.
B looks right, since Admm1 and Admin2 are usually the ones with the right permissions. Does that match the details from the exhibit?