Home » Microsoft » MS-500 v.2 » You assign the Security Reader role to user1 using the M365 admin portal.
You assign the Security Reader role to user1 using the M365 admin portal. You want to verify what permissions user1 has.
Where do you go to look?
A. Roles and administrators from AAD in the Azure portal
B. Azure AD Roles from PIM in the Azure portal
C. Identity protection from AAD in the Azure portal
D. Manage roles from M365 admin portal
E. Manage groups from the M365 admin portal
F. Conditional access from AAD in the Azure portal
Correct Answer: A
Explanation/Reference:
The only place where you can see details about permissions for a role (built-in or custom) is in AAD roles and administrators.
All the other options are actual places where you can go, but none other than Roles and administrators in AAD can you see the detailed permissions.
You can also see detailed permissions in the documentation about roles.
AAD Roles and Administrators is also the only place where you can create a custom role.
Reference: https://docs.microsoft.com/en-us/azure/role-based-access-control/custom-roles-portal
