Microsoft Certified: Azure Fundamentals (AZ-900) 2026 – 400 Free Practice Questions to Pass the Exam

The correct answer relates to the ability of Azure Policies to enforce specific compliance rules that ensure access controls are met. Azure Policies provide a way to create, assign, and manage policies to enforce rules and effects over your resources, ensuring that those resources stay compliant with corporate standards and service-level agreements.

By specifying compliance rules in Azure Policies, organizations can control various aspects of their Azure environment, such as requiring certain tags on resources, enforcing resource types, or ensuring that resources are deployed within specific regions. This capability directly aligns with the need to ensure that access controls are maintained according to defined organizational standards.

While options like implementing network security groups and defining user roles in RBAC are essential for managing security and access to resources, they do not facilitate the same level of overarching policy enforcement that Azure Policies do. Selecting permission levels is also part of managing access but is not structured in a way to enforce policy compliance across Azure resources in a holistic manner. Thus, focusing on the compliance rules provided by Azure Policies provides a more comprehensive approach to ensuring access controls align with organizational needs.