What this objective tests
AZ-104 Manage Azure Identities and Governance — Key Topics
Manage Azure Identities and Governance tests Azure AD users and groups, RBAC role assignments, management groups, subscriptions, and Azure Policy.
- Azure AD objects: users, groups, service principals, and managed identities.
- RBAC: built-in roles (Owner, Contributor, Reader), custom roles, and scope hierarchy.
- Management groups, subscriptions, resource groups, and how policy inheritance flows down.
- Azure Policy effects: Deny, Audit, Append, DeployIfNotExists, and Modify.