Practice Free AZ-500 Exam Online Questions
You have an Azure subscription that contains a user named User1. You need to ensure that User1 can create managed identities. The solution must use the principle of least privilege.
What should you do?
- A . Create a resource group and assign User1 to the Managed Identity Contributor role.
- B . Create a management group and assign User1 the Managed Identity Operator role.
- C . Create an organizational unit (OU) and assign User1 the User administrator Azure AD role.
- D . Create management group and assign User1 the Hybrid Identity Administrator Azure AD role.
You have an Azure subscription that contains a user named User1. You need to ensure that User1 can create managed identities. The solution must use the principle of least privilege.
What should you do?
- A . Create a resource group and assign User1 to the Managed Identity Contributor role.
- B . Create a management group and assign User1 the Managed Identity Operator role.
- C . Create an organizational unit (OU) and assign User1 the User administrator Azure AD role.
- D . Create management group and assign User1 the Hybrid Identity Administrator Azure AD role.
You have an Azure subscription that contains a user named User1 and an Azure Container Registry named ConReg1.
You enable content trust for ContReg1.
You need to ensure that User1 can create trusted images in ContReg1. The solution must use the principle of least privilege.
Which two roles should you assign to User1? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
- A . AcrQuarantineReader
- B . Contributor
- C . AcrPush
- D . AcrImageSigner
- E . AcrQuarantineWriter
You have an Azure subscription that contains the subnets shown in the following table.
The subscription contains Azure web app named WebApp1 that has the following configurations.
* Region West Us
* Virtual network VNet1
* VNet integration on: Enabled
* Outbound subnet: Subnet11
* Windows plan (West US): ASP1
You plan to deploy an Azure web app named WebApp2 that will have the following settings:
* Region: West US
* VNet integration on-Enabled
* Windows plan (West UAS): WebApp2?
To which subnets can you integrate WebApp2?
- A . Subnet11 only
- B . Subnet2 only
- C . Subnet11 or subnet12 only
- D . Subnet2 or Subnet21 only
- E . Subnet11, subnet2, or Subnet21
HOTSPOT
You have an Azure subscription that contains the virtual machines shown in the following table.
You have an Azure Cosmos DB account named cosmos1 configured as shown in the following exhibit.
DRAG DROP
You are configuring network connectivity for two Azure virtual networks named VNET1 and VNET2.
You need to implement VPN gateways for the virtual networks to meet the following requirements:
* VNET1 must have six site-to-site connections that use BGP.
* VNET2 must have 12 site-to-site connections that use BGP.
* Costs must be minimized.
Which VPN gateway SKI) should you use for each virtual network? To answer, drag the appropriate SKUs to the correct networks. Each SKU may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point
You have an Azure subscription that contains virtual machines. The subscription uses Microsoft Defender for Cloud with the Foundational Cloud Security Posture Management (CSPM) plan.
You need to enable agentless scanning for the virtual machines.
What should you do in Defender for Cloud?
- A . Add a security solution.
- B . Create a custom standard security policy
- C . Enable the Defender CSPM plan.
- D . Enable Microsoft Defender for Servers Plan1.
Your company recently created an Azure subscription.
You have been tasked with making sure that a specified user is able to implement Azure AD Privileged Identity Management (PIM).
Which of the following is the role you should assign to the user?
- A . The Global administrator role.
- B . The Security administrator role.
- C . The Password administrator role.
- D . The Compliance administrator role.
HOTSPOT
You have an Azure subscription that contains the virtual machines shown in the following table.
You create the Azure policies shown in the following table.
You create the resource locks shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
HOTSPOT
You have an Azure subscription that contains a user named User1. User1 is assigned the Reader role for the subscription.
You plan to create a custom role named Role1 and assign Role1 to User1.
You need to ensure that User1 can create and manage application security groups by using the Azure portal.
Which two permissions should you add to Role1? To answer, select the appropriate permission in the answer area. NOTE: Each correct selection is worth one point.
