Most Recent Microsoft AZ-500 Exam Questions & Answers

Prepare for the Microsoft Azure Security Technologies exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Microsoft AZ-500 exam and achieve success.

The questions for AZ-500 were last updated on Nov 21, 2024.

Viewing page 1 out of 85 pages.
Viewing questions 1-5 out of 425 questions

Get All 425 Questions & Answers

Question No. 1

You are collecting events from Azure virtual machines to an Azure Log Analytics workspace.

You plan to create alerts based on the collected events

You need to identify which Azure services can be used to create the alerts.

Which two services should you identify? Each correct answer presents a complete solution

NOTE: Each correct selection is worth one point.

AAzure Monitor

BAzure Security Center

CAzure Analytics Services

DAzure Sentinel

EAzure Advisor

Show Answer

Correct Answer: A, D

https://docs.microsoft.com/en-us/azure/analysis-services/analysis-services-overview

Question No. 2

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company has an Active Directory forest with a single domain, named weylandindustries.com. They also have an Azure Active Directory (Azure AD) tenant with the same name.

You have been tasked with integrating Active Directory and the Azure AD tenant. You intend to deploy Azure AD Connect.

Your strategy for the integration must make sure that password policies and user logon limitations affect user accounts that are synced to the Azure AD tenant, and that the amount of necessary servers are reduced.

Solution: You recommend the use of federation with Active Directory Federation Services (AD FS).

Does the solution meet the goal?

AYes

BNo

Show Answer

Correct Answer: B

A federated authentication system relies on an external trusted system to authenticate users. Some companies want to reuse their existing federated system investment with their Azure AD hybrid identity solution. The maintenance and management of the federated system falls outside the control of Azure AD. It's up to the organization by using the federated system to make sure it's deployed securely and can handle the authentication load.

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-pta

Question No. 3

You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com.

The User administrator role is assigned to a user named Admin1.

An external partner has a Microsoft account that uses the user1@outlook.com sign in.

Admin1 attempts to invite the external partner to sign in to the Azure AD tenant and receives the following

error message: ''Unable to invite user user1@outlook.com Generic authorization exception.''

You need to ensure that Admin1 can invite the external partner to sign in to the Azure AD tenant.

What should you do?

AFrom the Roles and administrators blade, assign the Security administrator role to Admin1.

BFrom the Organizational relationships blade, add an identity provider.

CFrom the Custom domain names blade, add a custom domain.

DFrom the Users blade, modify the External collaboration settings.

Show Answer

Correct Answer: D

You need to allow guest invitations in the External collaboration settings.

Question No. 4

You have an Azure Active Din-dory (Azure AD) tenant named contoso.com that contains a user named User1.

You plan to publish several apps in the tenant.

You need to ensure that User1 can grant admin consent for the published apps.

Which two possible user roles can you assign to User! to achieve this goal? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

AApplication developer

BSecurity administrator

CApplication administrator

DUser administrator

ECloud application administrator

Show Answer

Correct Answer: C, E

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/grant-admin-consent

Question No. 5

You have 10 virtual machines on a single subnet that has a single network security group (NSG).

You need to log the network traffic to an Azure Storage account.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

AInstall the Network Performance Monitor solution.

BEnable Azure Network Watcher.

CEnable diagnostic logging for the NSG.

DEnable NSG flow logs.

ECreate an Azure Log Analytics workspace.

Show Answer

Correct Answer: D

A network security group (NSG) enables you to filter inbound traffic to, and outbound traffic from, a virtual

machine (VM). You can log network traffic that flows through an NSG with Network Watcher's NSG flow log capability. Steps include:

Create a VM with a network security group

Enable Network Watcher and register the Microsoft.Insights provider

Enable a traffic flow log for an NSG, using Network Watcher's NSG flow log capability

Download logged data

View logged data

https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-portal

Unlock All Questions for Microsoft AZ-500 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 425 Questions & Answers