Summer Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Free Microsoft AZ-500 Practice Exam with Questions & Answers | Set: 4

Questions 31

From Azure Security Center, you need to deploy SecPol1.

What should you do first?

Options:
A.

Enable Azure Defender.

B.

Create an Azure Management group.

C.

Create an initiative.

D.

Configure continuous export.

Microsoft AZ-500 Premium Access
Questions 32

You need to configure WebApp1 to meet the data and application requirements.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Options:
A.

Upload a public certificate.

B.

Turn on the HTTPS Only protocol setting.

C.

Set the Minimum TLS Version protocol setting to 1.2.

D.

Change the pricing tier of the App Service plan.

E.

Turn on the Incoming client certificates protocol setting.

Questions 33

You need to configure the AKS1 and ID1 managed identities to meet the technical requirements. The solution must follow the principle of least privilege.

Which role should you assign to each identity? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-500 Question 33

Options:
Questions 34

You need to implement the planned change for WAF1.

The solution must minimize administrative effort

What should you do?

Options:
A.

Create an Azure policy.

B.

Modify the Azure-managed DRS.

C.

Add a custom rule.

D.

Modify the Bot Manager 1.1 rule set.

Questions 35

You implement the planned changes for the key vaults.

To which key vaults can you restore AKV1 backups?

Options:
A.

AKV4only

B.

AKV3 and AKV4 only

C.

AKV4 and AKV5 only

D.

AKV2, AKV3, and AKV4 only

E.

AKV2, AKV3, AKV4, and AKV5

Questions 36

You need to delegate a user to implement the planned change for Defender for Cloud.

The solution must follow the principle of least privilege.

Which user should you choose?

Options:
A.

Admin1

B.

Admin2

C.

Admin3

D.

Admin4

Questions 37

You need to recommend an encryption solution for the planned ExpressRoute implementation. The solution must meet the technical requirements.

Which ExpressRoute circuit should you recommend for each type of encryption? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-500 Question 37

Options:
Questions 38

You need to implement the planned change for SQLdb1.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Options:
A.

Create a compliance policy.

B.

Configure Microsoft Entra authentication for SQLServer1.

C.

Create a Conditional Access policy.

D.

Configure a user-assigned managed identity for SQLdb1.

E.

Configure Federated client identity for SQLdb1.

Exam Code: AZ-500
Certification Provider: Microsoft
Exam Name: Microsoft Azure Security Technologies
Last Update: Oct 16, 2025
Questions: 492

Microsoft Related Exams

SC-401 - Administering Information Security in Microsoft 365
AZ-140 - Configuring and Operating Microsoft Azure Virtual Desktop
MB-330 - Microsoft Dynamics 365 Supply Chain Management
MS-900 - Microsoft 365 Fundamentals
MO-101 - Microsoft Word Expert (Word and Word 2019)
AZ-204 - Developing Solutions for Microsoft Azure
SC-400 - Microsoft Information Protection Administrator
77-725 - Microsoft Word 2016 Core: Document Creation, Collaboration and Communication (MOS)
GH-100 - GitHub Administration
MB-240 - Microsoft Dynamics 365 for Field Service
GH-500 - GitHub Advanced Security Exam
GH-300 - GitHub Copilot Exam
MS-203 - Microsoft 365 Messaging
MB-820 - Microsoft Dynamics 365 Business Central Developer
AZ-400 - Microsoft Azure DevOps Solutions
Microsoft Free Access
Get Microsoft Full Access

Microsoft Free Exams
Microsoft Free Exams
Prepare effectively for Microsoft certification exams with free study resources and practice tests from Examstrack.