Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft Exam MB-820 Topic 5 Question 13 Discussion

Actual exam question for Microsoft's MB-820 exam
Question #: 13
Topic #: 5
[All MB-820 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear on the review screen.

A company creates a Business Central app and a table named MyTable to store records when sales orders are posted.

Users report the following issues:

* The users receive permission errors related to MyTable.

* Users are no longer able to post sales orders since installing the new app.

* The users cannot access the list page created in MyTable.

You need to resolve the user issues without creating new permission sets. You must use the principle of least privilege.

Solution: Assign a SUPER permission set.

Does the solution meet the goal?

Show Suggested Answer Hide Answer
Suggested Answer: B

Assigning a SUPER permission set to all users would indeed resolve the permission errors and access issues reported by the users, as it grants full permissions across all objects and data in Business Central. However, this approach contradicts the principle of least privilege, which advocates for providing only the minimum levels of access necessary for users to perform their jobs. The SUPER permission set would excessively elevate user privileges, potentially leading to security risks and unintended modifications to critical data. Therefore, while assigning the SUPER permission set might technically resolve the immediate issues, it does not meet the goal of adhering to the principle of least privilege and is not a recommended solution.


Contribute your Thoughts:

Lashandra
6 months ago
The question specifically says 'without creating new permission sets' and to use the principle of least privilege. Assigning a SUPER set is the opposite of that.
upvoted 0 times
...
Evangelina
6 months ago
Haha, 'SUPER' permission set? Might as well just give them admin access and call it a day! Not very subtle, is it?
upvoted 0 times
Josephine
5 months ago
No, that would not meet the goal of using the principle of least privilege.
upvoted 0 times
...
Dorian
5 months ago
No
upvoted 0 times
...
...
Corinne
6 months ago
Yikes, a SUPER permission set? That's like giving the keys to the kingdom! I don't think that's the right way to go about this.
upvoted 0 times
...
Jules
6 months ago
Assigning a SUPER permission set doesn't sound like the principle of least privilege to me. Shouldn't we be granting the minimum permissions required?
upvoted 0 times
Ty
5 months ago
Definitely, we need to ensure users have the minimum permissions necessary to avoid security risks.
upvoted 0 times
...
Karl
5 months ago
I think we should only grant the specific permissions needed for MyTable.
upvoted 0 times
...
Charisse
5 months ago
Assigning a SUPER permission set would give users more access than they need, causing security risks.
upvoted 0 times
...
Frederic
5 months ago
Agreed, assigning a SUPER permission set goes against the principle of least privilege.
upvoted 0 times
...
Emerson
5 months ago
I agree, we should only grant the minimum permissions necessary for the users to perform their tasks.
upvoted 0 times
...
Mozell
6 months ago
No, we should not assign a SUPER permission set. It goes against the principle of least privilege.
upvoted 0 times
...
...
Eden
6 months ago
I agree with Krissy. We should find a solution that follows the principle of least privilege.
upvoted 0 times
...
Krissy
6 months ago
No, that solution does not meet the goal. It's giving too much access.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77