AZ 500- Microsoft Azure Security Technologies Practice Test - 5 - Results
3 views 0 purchase
Course
Advance nursing
Institution
Advance Nursing
AZ 500- Microsoft Azure Security Technologies Practice Test - 5 - ResultsAZ 500- Microsoft Azure Security Technologies Practice Test - 5 - ResultsAZ 500- Microsoft Azure Security Technologies Practice Test - 5 - ResultsAZ 500- Microsoft Azure Security Technologies Practice Test - 5 - ResultsAZ 500-...
- AZ 500: Microsoft Azure Security Technologies
Practice Test - 5 - Results
Attempt 1
All questions
Question 1: Skipped
You have an Azure subscription that contains 10 virtual machines. You need to ensure that you receive an
email message when any virtual machines are powered off, restarted, or deallocated.
What is the minimum number of rules and action groups that you require?
Question 2: Skipped
You have an Azure subscription that contains 10 virtual networks. The virtual networks are hosted in
separate resource groups.
An administrator plans to create several network security groups (NSGs) in the subscription.
You need to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the virtual
networks.
Solution: You create a resource lock, and then you assign the lock to the subscription.
Does this meet the goal?
,Yes
No
(Correct)
Explanation
Resource lock is used to avoid accidental deletion of Azure resources
Question 3: Skipped
You have an Azure subscription that contains 10 virtual networks. The virtual networks are hosted in
separate resource groups.
An administrator plans to create several network security groups (NSGs) in the subscription. You
need to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the
virtual networks.
Solution: Block port 8080 in Azure Firewall.
Does this meet the goal?
Yes
No
(Correct)
Question 4: Skipped
You have an Azure subscription that contains 10 virtual networks. The virtual networks are hosted in
separate resource groups.
An administrator plans to create several network security groups (NSGs) in the subscription.
You need to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the virtual
networks.
Solution: You configure a custom policy definition and then you assign the policy to the subscription.
Does this meet the goal?
Yes
(Correct)
, No
Explanation
Azure policy enables you to establish conventions for resources in your subscription by describing when
the policy is enforced and what effect to take.
Question 5: Skipped
You are working on a solution design for your organization which has developed and deployed several
Azure App Service Web and API applications. The applications use Azure SQL Database to store and
retrieve data. Several departments have the following requests to support the applications:
Development department wants to enable the applications to retrieve x.509 certificates, stored in an
Azure AD-protected resource, by using access token
You need to recommend the appropriate Azure service for Development department request.
What should you recommend?
•
Azure AD Priviliged Identity Management
•
Azure AD Managed Service Identity
Azure Key Vault
(Correct)
•
Azure Security Center
Explanation
Azure Key Vault is a cloud service that provides a secure store for secrets. You can securely store keys,
passwords, certificates, and other secrets. https://docs.microsoft.com/en-us/azure/key-
vault/certificates/quick-create-portal https://docs.microsoft.com/en-us/azure/key-vault/certificates/about-
certificates
Question 6: Skipped
You have an application deployed to Azure App Service. The application uses Azure SQL Database to store
and retrieve data.
Security department wants to protect Azure SQL database connection string and only allow access to the
connection strings during application runtime.
, You need to recommend the appropriate Azure service for security department requests.
What should you recommend?
Azure AD Privileged Identity Management
Azure AD Managed Service Identity
(Correct)
Azure Key Vault
Azure Security Center
Explanation
https://docs.microsoft.com/en-us/azure/app-service/app-service-web-tutorial-connect-msi
Question 7: Skipped
You plan to implement self-service password reset (SSPR) in Azure Active Directory (Azure AD).
You need to select authentication mechanisms that can be used for SSPR.
Which of the below authentication methods you can use?
Mobile app notification (Correct)
Email
(Correct)
Security questions
(Correct)
App passwords
Mobile Phone
(Correct)
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller DoctorKeyah. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $17.99. You're not tied to anything after your purchase.
