Microsoft Azure Administrator (AZ104) Complete Practice Exam 2025

Creating an access review from Azure AD Privileged Identity Management is an effective method for verifying whether users still require the Security Administrator role. Access reviews allow administrators to regularly evaluate and confirm the necessity of access permissions for users. This process is critical for maintaining security hygiene and ensuring that users have appropriate access based on their current job responsibilities.

When you initiate an access review, you can specify the role in question—in this case, the Security Administrator role—and assess whether users still need it. The review can prompt managers or users to confirm their ongoing need for the role, which helps identify and revoke unnecessary permissions, reducing the attack surface and aligning with the principle of least privilege.

In contrast, other options such as setting up a user risk policy, enabling a weekly digest, or implementing a conditional access policy, serve different purposes within Azure Active Directory. User risk policies and identity protection focus more on detecting and responding to potential security risks related to user accounts, while conditional access policies are designed to enforce security requirements based on user conditions and access scenarios. These options do not specifically evaluate the necessity of role assignments, making them less suitable for assessing ongoing role requirements.