Labour Day Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Master the Microsoft Azure Security Technologies AZ-500 Exam with Confidence!

Questions 21

You need to ensure that User2 can implement PIM.

What should you do first?

Options:

A.

Assign User2 the Global administrator role.

B.

Configure authentication methods for contoso.com.

C.

Configure the identity secure score for contoso.com.

D.

Enable multi-factor authentication (MFA) for User2.

Buy Now
Questions 22

: 2 HOTSPOT

Which virtual networks in Sub1 can User2 modify and delete in their current state? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-500 Question 22

Options:

Buy Now
Questions 23

You need to meet the technical requirements for VNetwork1.

What should you do first?

Options:

A.

Create a new subnet on VNetwork1.

B.

Remove the NSGs from Subnet11 and Subnet13.

C.

Associate an NSG to Subnet12.

D.

Configure DDoS protection for VNetwork1.

Buy Now
Questions 24

You are evaluating the security of the network communication between the virtual machines in Sub2.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

AZ-500 Question 24

Options:

Buy Now
Questions 25

You are evaluating the effect of the application security groups on the network communication between the virtual machines in Sub2.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

AZ-500 Question 25

Options:

Buy Now
Questions 26

You assign User8 the Owner role for RG4, RG5, and RG6.

In which resource groups can User8 create virtual networks and NSGs? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-500 Question 26

Options:

Buy Now
Questions 27

You have an Azure subscription.

You need to create and deploy an Azure policy that meets the following requirements:

  • When a new virtual machine is deployed, automatically install a custom security extension.
  • Trigger an autogenerated remediation task for non-compliant virtual machines to install the extension.

What should you include in the policy? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-500 Question 27

Options:

Buy Now
Questions 28

You have an Azure subscription that contains a user named User1. You need to ensure that User1 can create managed identities. The solution must use the principle of least privilege.

What should you do?

Options:

A.

Create a resource group and assign User1 to the Managed Identity Contributor role.

B.

Create a management group and assign User1 the Managed Identity Operator role.

C.

Create an organizational unit (OU) and assign User1 the User administrator Azure AD role.

D.

Create management group and assign User1 the Hybrid Identity Administrator Azure AD role.

Buy Now
Questions 29

You have a Azure subscription that contains an Azure Container Registry named Registry1. The subscription uses the Standard use tier of Azure Security Center.

You upload several container images to Register1.

You discover that vulnerability security scans were not performed

You need to ensured that the images are scanned for vulnerabilities when they are uploaded to Registry1.

What should you do?

Options:

A.

From the Azure portal modify the Pricing tier settings.

B.

From Azure CLI, lock the container images.

C.

Upload the container images by using AzCopy

D.

Push the container images to Registry1 by using Docker

Buy Now
Questions 30

You have an Azure Kubernetes Service (AKS) cluster that will connect to an Azure Container Registry.

You need to use automatically generated service principal for the AKS cluster to authenticate to the Azure Container Registry.

What should you create?

Options:

A.

a secret in Azure Key Vault

B.

a role assignment

C.

an Azure Active Directory (Azure AD) user

D.

an Azure Active Directory (Azure AD) group

Buy Now
Exam Code: AZ-500
Exam Name: Microsoft Azure Security Technologies
Last Update: May 17, 2024
Questions: 404

PDF + Testing Engine
$169.99
$68
Add to Cart

Testing Engine
$129.99
$52
Add to Cart

PDF (Q&A)
$109.99
$44
Add to Cart

How to Pass AZ-500 Exams