🔥 3-day streak
Microsoft Identity and Access Administrator14 / 126
Question 14 of 126
Your company has a backend daemon service that must call a custom internal API (registered in Entra ID) without any signed-in user. The API defines two app roles: 'Orders.Read' and 'Orders.ReadWrite'. The daemon should only be able to read orders. You have already registered the daemon as its own application with a client secret. Which action grants the daemon exactly the read access it needs?
Reviewed for accuracy · Report an issueNext question