You are reviewing an Azure Policy definition. What does this policy do?
The policy denies when the field does not equal the specified version.
Why this answer
Option A is correct because the policy denies any storage account that does not have the default service version set to '2020-10-02'. Option B is wrong because it denies, not audits. Option C is wrong because it applies to all storage accounts, not just those with defaultServiceVersion set.
Option D is wrong because it does not set the version; it denies if not set.