Back

Practice Free AZ-500 Exam Online Questions

Question #51

You have an Azure subscription that contains the subnets shown in the following table.

The subscription contains Azure web app named WebApp1 that has the following configurations.

* Region West Us

* Virtual network VNet1

* VNet integration on: Enabled

* Outbound subnet: Subnet11

* Windows plan (West US): ASP1

You plan to deploy an Azure web app named WebApp2 that will have the following settings:

* Region: West US

* VNet integration on-Enabled

* Windows plan (West UAS): WebApp2?

To which subnets can you integrate WebApp2?

  • A . Subnet11 only
  • B . Subnet2 only
  • C . Subnet11 or subnet12 only
  • D . Subnet2 or Subnet21 only
  • E . Subnet11, subnet2, or Subnet21

Reveal Solution Hide Solution

Correct Answer: C
Question #52

HOTSPOT

You have an Azure subscription that contains an Azure key vault named KeyVault1 and the virtual machines shown in the following table.

You enable the Azure Disk Encryption for volume encryption KeyVault1 setting.

KeyVault1 is configured as shown in the following exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Reveal Solution Hide Solution

Correct Answer:


Question #53

HOTSPOT

You have an Azure subscription.

You need to create and deploy an Azure policy that meets the following requirements:

– When a new virtual machine is deployed, automatically install a custom security extension.

– Trigger an autogenerated remediation task for non-compliant virtual machines to install the extension.

What should you include in the policy? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Reveal Solution Hide Solution

Correct Answer:

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/governance/policy/how-to/remediate-resources

Question #54

You have an Azure subscription that contains the resources shown in the following table.

You plan to enable Azure Defender for the subscription.

Which resources can be protected by using Azure Defender?

  • A . VM1, VNET1, storage1, and Vault1
  • B . VM1, VNET1, and storage1 only
  • C . VM1, storage1, and Vault1 only
  • D . VM1 and VNET1 only
  • E . VM1 and storage1 only

Reveal Solution Hide Solution

Correct Answer: A
A

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/security-center/azure-defender
Question #55

HOTSPOT

Your company has an Azure subscription named Subscription1.

Subscription1 is associated with the Azure Active Directory tenant that includes the users shown in the following table.

The company is sold to a new owner.

The company needs to transfer ownership of Subscription1.

Which user can transfer the ownership and which tool should the user use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Reveal Solution Hide Solution

Correct Answer:

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/cost-management-billing/manage/billing-subscription-transfer

Question #56

You need to recommend which virtual machines to use to host App1. The solution must meet the technical requirements for KeyVault1.

Which virtual machines should you use?

  • A . VM1 only
  • B . VM1 and VM2 only
  • C . VM1, VM2, and VM4 only
  • D . VM1, VM2, VM3. and VM4

Reveal Solution Hide Solution

Correct Answer: D
Question #57

DRAG DROP

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Azure Subscription named Sub1. Sub1 contains an Azure virtual machine named VM1 that runs Windows Server 2016.

You need to encrypt VM1 disks by using Azure Disk Encryption.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Reveal Solution Hide Solution

Correct Answer:

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/encrypt-disks

Question #58

HOTSPOT

You have an Azure subscription mat contains a resource group named RG1. RG1 contains a storage account named storage1.

You have two custom Azure rotes named Role1 and Role2 that are scoped to RG1.

The permissions for Role1 are shown in the following JSON code.

Reveal Solution Hide Solution

Correct Answer:


Question #59

You have a web app named WebApp1.

You create a web application firewall (WAF) policy named WAF1.

You need to protect WebApp1 by using WAF1.

What should you do first?

  • A . Deploy an Azure Front Door.
  • B . Add an extension to WebApp1.
  • C . Deploy Azure Firewall.

Reveal Solution Hide Solution

Correct Answer: A
A

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/frontdoor/quickstart-create-front-door
Question #60

HOTSPOT

You have an Azure subscription named Subscription1 that contains the resources shown in the following table.

You create a custom RBAC role in Subscription1 by using the following JSON file.

You assign Role1 to User1 on RG1.

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Reveal Solution Hide Solution

Correct Answer:

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/role-based-access-control/resource-provider-operations#microsoftcompute