You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.
You add an enterprise application named App1 to Azure AD and set User1 as the owner of App1. App1 requires admin consent to access Azure AD before the app can be used.
You configure the Admin consent requests settings as shown in the following exhibit.
Admin1, Admin2, Admin3, and User’ are added as reviewers.
Which users can review and approve the admin consent requests?
The users who can review and approve admin consent requests are Admin1, Admin2, Admin3, and User1. The provided admin consent settings indicate that these users have been selected as reviewers. However, to approve such requests, reviewer roles need specific administrative privileges which can be provided by roles like Cloud Application Administrator, Application Administrator, or Security Administrator. In this scenario, Admin1, Admin2, and Admin3 fit these roles, while User1, being the owner of App1 and explicitly designated as a reviewer, also participates in the approval process.
https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/configure-admin-consent-workflow "To approve requests, a reviewer must be a global administrator, cloud application administrator, or application administrator. The reviewer must already have one of these admin roles assigned; simply designating them as a reviewer doesn't elevate their privileges."
Cloud App Admin and App Admin can grant consent. https://learn.microsoft.com/en-us/azure/active-directory/roles/permissions-reference#cloud-application-administrator
the answer is correct, as user 1 can review , block and deny but not approve.
To approve requests, a reviewer must have the permissions required to grant admin consent for the application requested. Simply designating them as a reviewer doesn't elevate their privileges. To approve requests, a reviewer must be a global administrator, cloud application administrator, or application administrator. The reviewer must already have one of these admin roles assigned; simply designating them as a reviewer doesn't elevate their privileges. https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/configure-admin-consent-workflow
Please ignore. Duplicate.
D. Admin1 and Admin2 only
D. Admin1 and Admin2 only
I go with D.
Answer D is correct. Even though User1 is the app owner, they do not have the needed role to review and approve admin consent requests
D. Admin1 and Admin2 only Admin1 (Cloud Application Administrator) and Admin2 (Application Administrator) have the required permissions to review and approve admin consent requests. Admin3 (Security Administrator) and User1, even if designated as reviewers, do not have the necessary roles to approve admin consent requests