Microsoft Azure Architect Design (AZ-301) Practice Exam

Creating an Azure Automation runbook is the most appropriate solution for automatically revoking permissions if they are not verified. Azure Automation runbooks allow you to write scripts and automate processes within Azure. By leveraging Azure Automation, you can create workflows that check for compliance or permission verification at defined intervals. If the permissions are found to be unauthorized or not in line with the organization's policies, the runbook can execute the necessary commands to revoke those permissions automatically.

Using Azure Policy, while effective for managing compliance at a broader level, typically focuses on enforcing rules and can indicate non-compliance rather than automatically revoking permissions. Azure Functions are suitable for executing code in response to events but may require additional orchestration to perform permission checks and revocations. Azure Logic Apps can automate workflows and integrate services, but they may not specifically handle the security aspect of automatically revoking access rights without additional complexity.

Thus, an Azure Automation runbook is specifically designed for this type of task, providing a robust and efficient way to manage access permissions based on verification outcomes.