Most Recent Microsoft AZ-500 Exam Questions & Answers

Prepare for the Microsoft Azure Security Technologies exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Microsoft AZ-500 exam and achieve success.

The questions for AZ-500 were last updated on Dec 18, 2024.

Viewing page 1 out of 85 pages.
Viewing questions 1-5 out of 425 questions

Get All 425 Questions & Answers

Question No. 1

You have an Azure subscription.

You plan to map an online infrastructure and perform vulnerability scanning for the following:

* ASNs

* Hostnames

* IP addresses

* SSL certificates

What should you use?

AMicrosoft Defender for Cloud

BMicrosoft Defender for Identity

CMicrosoft Defender for Endpoint

DMicrosoft Defender External Attack Surface Management (Defender EASM)

Show Answer

Correct Answer: D

Question No. 2

You have an Azure Kubernetes Service (AKS) cluster that will connect to an Azure Container Registry.

You need to use automatically generated service principal for the AKS cluster to authenticate to the Azure Container Registry.

What should you create?

Aa secret in Azure Key Vault

Ba role assignment

Can Azure Active Directory (Azure AD) user

Dan Azure Active Directory (Azure AD) group

Show Answer

Correct Answer: B

https://docs.microsoft.com/en-us/azure/aks/kubernetes-service-principal

Question No. 3

You plan to create an Azure Kubernetes Service (AKS) cluster in an Azure subscription.

The manifest of the registered server application is shown in the following exhibit.

You need to ensure that the AKS cluster and Azure Active Directory (Azure AD) are integrated.

Which property should you modify in the manifest?

AaccessTokenAcceptedVersion

BkeyCredentials

CgroupMembershipClaims

DacceptMappedClaims

Show Answer

Correct Answer: C

https://docs.microsoft.com/en-us/azure/aks/azure-ad-integration-cli

https://www.codeproject.com/Articles/3211864/Operation-and-Maintenance-of-AKS-Applications

Question No. 4

You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant and a user named User1.

The App registrations settings for the tenant are configured as shown in the following exhibit.

You plan to deploy an app named App1.

You need to ensure that User1 can register App1 in Azure AD. The solution must use the principle of least privilege.

Which role should you assign to User1?

AApp Configuration Data Owner for the subscription

BManaged Application Contributor for the subscription

CCloud application administrator in Azure AD

DApplication developer in Azure AD.

Show Answer

Correct Answer: D

https://docs.microsoft.com/en-us/azure/active-directory/roles/delegate-by-task

Question No. 5

Lab Task

Task 3

You need to ensure that a user named Danny-31330471 can sign in to any SQL database on a Microsoft SQL server named web31330471 by using SQL Server Management Studio (SSMS) and Azure AD credentials.

Asee the task answer with step by step below

Show Answer

Correct Answer: A

Create and register an Azure AD application. You can use the Azure portal, Azure PowerShell, or the Azure CLI to do this. You need to specify a name, such as SQLServerCTP1, and select the supported account types, such as Accounts in this organization directory only.

Grant application permissions. You can use the Azure portal, Azure PowerShell, or the Azure CLI to do this. You need to assign theDirectory.Read.Allpermission to the application and grant admin consent for your organization.

Create and assign a certificate. You can use the Azure portal, Azure PowerShell, or the Azure CLI to do this. You need to create a self-signed certificate and upload it to the application. You also need to store the certificate in Azure Key Vault and grant access policies to the application and your SQL Server.

Configure Azure AD authentication for SQL Server through Azure portal. You can use the Azure portal to do this. You need to select your SQL Server resource and enable Azure AD authentication. You also need to select your Azure AD application as theAzure AD adminfor your SQL Server.

Create logins and users. You can use SSMS or Transact-SQL to do this. You need to connect to your SQL Server as the Azure AD admin and create a login for Danny-31330471. You also need to create a user for Danny-31330471 in each database that he needs access to.

Connect with a supported authentication method. You can use SSMS or SqlClient to do this. You need to specify theAuthenticationconnection property in the connection string asActive Directory PasswordorActive Directory Integrated. You also need to provide the username and password of Danny-31330471.

Unlock All Questions for Microsoft AZ-500 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 425 Questions & Answers