Administering Windows Server Hybrid Core Infrastructure (AZ-800) 2025 – 400 Free Practice Questions to Pass the Exam

The correct choice is AAD DC Administrators because this role is specifically designed to manage Azure Active Directory Domain Services (AD DS). Members of the AAD DC Administrators group have the necessary permissions to perform essential tasks such as administering DNS settings and managing computers within the Azure AD DS domain. This role enables users to create and manage groups, reset passwords, and handle other typical administrative duties that pertain to the operation of Azure AD DS, effectively bridging the functionalities found in traditional Active Directory with the cloud-based capabilities provided by Azure.

While other roles may also have administrative capabilities in different contexts, they do not possess the specialized permissions required to manage Azure AD DS directly. For instance, Enterprise Admins is a role found within on-premises Active Directory environments, offering wide-ranging permissions but not specifically tailored for Azure AD DS. Similarly, Administrators as a role isn't explicitly linked to Azure AD DS functionalities but instead refers to a broader set of administrative capabilities. As for Guest Users, they are users with limited access and permissions, intended for external collaboration, which does not allow for DNS management or computer administration.