Practice Free AZ-500 Exam Online Questions
SIMULATION
Lab Task
Task 5
A user named Debbie has the Azure app installed on her mobile device.
You need to ensure that [email protected] is alerted when a resource lock is deleted.
You have an Azure AD tenant.
You plan to implement an authentication solution to meet the following requirements:
• Require number matching.
• Display the geographical location when signing in.
Which authentication method should you include in the solution?
- A . SMS
- B . Temporary Access Pass
- C . Microsoft Authenticator
- D . FID02 security key
HOTSPOT
You have an Azure subscription named Sub 1 that is associated to an Azure AD Tenant named contoso.com.
The tenant contains the users shown in the following table.
Each user is assigned an Azure AD Premium P2 license.
You plan to onboard and configure Azure AD Identity Protection.
Which users can onboard Azure AD Identity Protection, remediate users, and configure policies? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have an Azure subscription.
You plan to use Microsoft Defender for Cloud to provide AI security posture management capabilities.
You need to recommend a Defender for Cloud plan that supports the deployment requirements. The solution must minimize costs.
What should you recommend?
- A . Microsoft Defender for App Service
- B . Microsoft Defender for APIs
- C . Foundational Cloud Security Posture Management (CSPM)
- D . Defender Cloud Security Posture Management (CSPM)
HOTSPOT
You plan to implement an Azure function named Function1 that will create new storage accounts for containerized application instances.
You need to grant Function1 the minimum required privileges to create the storage accounts. The solution must minimize administrative effort.
What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT
You have an Azure subscription that contains the resources shown in the following table.
VNet1 contains the subnets shown in the following table.
You plan to use the Azure portal to deploy an Azure firewall named AzFW1 to VNet1.
Which resource group and subnet can you use to deploy AzFW1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have an Azure 480zsubscription that contains the resources shown in the following table.
You have the users shown in the following table.
You create an Azure SQL managed instance named SQL! and enable Microsoft Entra-only authentication. You need to ensure that both User! and User2 are set as the Microsoft Entra admin for SQL1.
Solution: You set Group2 as the Microsoft Entra admin for SQL1.
Does this meet the goal?
- A . Yes
- B . No
You have Azure Resource Manager templates that you use to deploy Azure virtual machines.
You need to disable unused Windows features automatically as instances of the virtual machines are provisioned.
What should you use?
- A . device compliance policies in Microsoft Intune
- B . Azure Automation State Configuration
- C . application security groups
- D . Azure Advisor
You have Azure Resource Manager templates that you use to deploy Azure virtual machines.
You need to disable unused Windows features automatically as instances of the virtual machines are provisioned.
What should you use?
- A . device compliance policies in Microsoft Intune
- B . Azure Automation State Configuration
- C . application security groups
- D . Azure Advisor
You have an Azure subscription that contains an Azure key vault.
The role assignments for the key vault are shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic. NOTE: Each correct selection is worth one point.
