You have an Azure Stack integrated system.
A tenant requires assistance managing a subscription.
The tenant needs to create a custom RBAC role definition.
What should you instruct the tenant to do?
A. Establish a PowerShell session to the Azure Resource Manager (user) endpoint.
Run the New-AzureRmPolicySetDefinition cmdlet and the New-AzureRoleTemplate cmdlet.
B. Establish a PowerShell session to the Azure Resource Manager (user) endpoint.
Create a JSON file that contains the permission definitions. Run the New-AzureRmRoleDefinition cmdlet.
C. Establish a PowerShell session to the Azure Resource Manager (administrator) endpoint.
Create an XML file that contains the permission definitions. Run the New-AzureRmRoleDefinition cmdlet
D. Establish a PowerShell session to the Azure Resource Manager (administrator) endpoint.
Run the New-AzureRmPolicySetDefinition cmdlet and the New-AzureRoletemplate cmdlet.
Explanation:
The New-AzureRmRoleDefinition cmdlet creates a custom role in Azure Role-Based Access Control. Provide a role definition as an input to the command as a JSON file or a PSRoleDefinition object.
Incorrect Answers:
A: New-AzureRoleTemplate creates web and worker role templates. This has nothing to do with RBAC.
C: The permission definitions should be contained in a JSON file, not an XML file.
D: New-AzureRoleTemplate creates web and worker role templates. This has nothing to do with RBAC.