Valid AZ-104 Dumps shared by ExamDiscuss.com for Helping Passing AZ-104 Exam! ExamDiscuss.com now offer the newest AZ-104 exam dumps, the ExamDiscuss.com AZ-104 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com AZ-104 dumps with Test Engine here:
Access AZ-104 Dumps Premium Version
(815 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 119/141
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure subscription that contains 10 virtual networks. The virtual networks are hosted in separate resource groups.
Another administrator plans to create several network security groups (NSGs) in the subscription You need to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the virtual networks.
Solution: You assign a built-in policy definition to the subscription.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure subscription that contains 10 virtual networks. The virtual networks are hosted in separate resource groups.
Another administrator plans to create several network security groups (NSGs) in the subscription You need to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the virtual networks.
Solution: You assign a built-in policy definition to the subscription.
Does this meet the goal?
Correct Answer: B
No, this does not meet the goal. Assigning a built-in policy definition to the subscription is not enough to ensure that when an NSG is created, it automatically blocks TCP port 8080 between the virtual networks. This is because there is no built-in policy definition that matches this requirement. The closest built-in policy definition is "Network security groups should not allow unrestricted inbound traffic on well-known ports", but this policy only blocks TCP port 80 and 443, not 80801.
To meet the goal, you need to create a custom policy definition that enforces a default security rule for NSGs. A policy definition is a set of rules and actions that Azure performs when evaluating your resources2. You can use a policy definition to specify the required properties and values for NSGs, such as the direction, protocol, source, destination, and port of the security rule. You can then assign the policy definition to the subscription scope, so that it applies to all the resource groups and virtual networks in the subscription.
To meet the goal, you need to create a custom policy definition that enforces a default security rule for NSGs. A policy definition is a set of rules and actions that Azure performs when evaluating your resources2. You can use a policy definition to specify the required properties and values for NSGs, such as the direction, protocol, source, destination, and port of the security rule. You can then assign the policy definition to the subscription scope, so that it applies to all the resource groups and virtual networks in the subscription.
- Question List (141q)
- 1 commentQuestion 1: You have an Azure subscription that contains the resources s...
- Question 2: You have an Azure subscription that contains the resources s...
- Question 3: Which blade should you instruct the finance department audit...
- Question 4: You have an Azure subscription that contains an Azure Stream...
- Question 5: You have an Azure subscription named Subscription1 that cont...
- Question 6: You have Azure subscriptions named Subscription1 and Subscri...
- Question 7: Note: This question is part of a series of questions that pr...
- Question 8: You develop the following Azure Resource Manager (ARM) templ...
- Question 9: Note: This question is part of a series of questions that pr...
- Question 10: You have an Azure Active Directory (Azure AD) tenant that ha...
- Question 11: You have an Azure Kubernetes Service (AKS) cluster named AKS...
- Question 12: You have an Azure virtual machine named VM1. You use Azure B...
- Question 13: You have an Azure subscription that contains 20 virtual mach...
- Question 14: You have an Azure subscription that contains an Azure SQL da...
- Question 15: You create an Azure Storage account. You plan to add 10 blob...
- Question 16: You have an Azure subscription. The subscription contains a ...
- Question 17: You deploy an Azure Kubernetes Service (AKS) cluster that ha...
- Question 18: You have an Azure subscription named Subscription1 that cont...
- Question 19: You have an Azure Linux virtual machine that is protected by...
- Question 20: You plan to deploy five virtual machines to a virtual networ...
- Question 21: You have an Azure DNS zone named adatum.com. You need to del...
- Question 22: You have several Azure virtual machines on a virtual network...
- Question 23: You have two Azure subscriptions named Sub1 and Sub2. Sub1 i...
- Question 24: You have an Azure subscription. You deploy a virtual machine...
- Question 25: You plan to use Azure Network Watcher to perform the followi...
- Question 26: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 27: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 28: You have an Azure subscription that contains virtual machine...
- Question 29: You have an Azure subscription that contains The storage acc...
- Question 30: You have an Azure subscription that contains a resource grou...
- Question 31: You have an Azure subscription that contains the resources s...
- Question 32: You have an Azure virtual network named VNet1 that contains ...
- Question 33: You have an Azure subscription named Subscription1 that has ...
- Question 34: You have an Azure subscription that contains a virtual machi...
- Question 35: You have an Azure subscription that contains a storage accou...
- Question 36: You have an Azure subscription that contains a virtual netwo...
- Question 37: You need to create container1 and share1. Which storage acco...
- Question 38: You have an Azure subscription that contains the virtual mac...
- Question 39: You have an Azure subscription that contains the virtual net...
- Question 40: You have a Microsoft Entra tenant named adatum.com that cont...
- Question 41: You have an Azure subscription named Sub1 that contains the ...
- Question 42: You have an Azure subscription that has the public IP addres...
- Question 43: You have an Azure subscription. Users access the resources i...
- Question 44: You have an Azure subscription that contains the vaults show...
- Question 45: You have an Azure subscription mat contains a virtual machin...
- Question 46: You have an Azure Resource Manager that is used to deploy an...
- Question 47: After you answer a question in this section, you will NOT be...
- Question 48: You have an Azure AD tenant that contains the groups shown I...
- Question 49: You have an Azure subscription named Subscription1 that cont...
- Question 50: You need to resolve the licensing issue before you attempt t...
- Question 51: You have an Azure Active Directory (Azure AD) tenant. You pl...
- Question 52: You need to prepare the environment to meet the authenticati...
- Question 53: You have an Azure web app named webapp1. You have a virtual ...
- Question 54: You have an Azure subscription. You plan to use an Azure Res...
- Question 55: You have an Azure subscription that contains a virtual netwo...
- Question 56: You sign up for Azure Active Directory (Azure AD) Premium. Y...
- Question 57: Which blade should you instruct the finance department audit...
- Question 58: Note: This question is part of a series of questions that pr...
- Question 59: You have an Azure subscription that contains a virtual netwo...
- Question 60: You have an Azure subscription that contains multiple virtua...
- Question 61: You need to ensure that VM1 can communicate with VM4. The so...
- Question 62: You have an Azure subscription. You have 100 Azure virtual m...
- Question 63: You need to recommend an identify solution that meets the te...
- Question 64: You have an Azure subscription that contains an Azure Storag...
- Question 65: You need to generate a shared access signature (SAS). The so...
- Question 66: You are configuring Azure AD authentication for an Azure Sto...
- Question 67: You have an Azure subscription that contains a storage accou...
- Question 68: You have a Recovery Services vault named RSV1. RSV1 has a ba...
- Question 69: You have an Azure subscription You plan to deploy a new stor...
- Question 70: Your company purchases a new Azure subscription. You create ...
- Question 71: You have an Azure subscription that contains a storage accou...
- Question 72: You plan to deploy three Azure virtual machines named VM1, V...
- Question 73: You have an Azure virtual machine named VM1 that runs Window...
- Question 74: You have an Azure virtual network named VNet1 that contains ...
- Question 75: Note: This question is part of a series of questions that pr...
- Question 76: You have an Azure subscription that contains the virtual net...
- Question 77: You purchase a new Azure subscription named Subscription1. Y...
- Question 78: You have an Azure subscription that contains the hierarchy s...
- Question 79: You have the Azure resources shown on the following exhibit....
- Question 80: You have an Azure subscription. You plan to deploy the Azure...
- Question 81: You have a deployment template named Template1 that is used ...
- Question 82: You have the Azure virtual machines shown in the following t...
- Question 83: You have an Azure subscription named Subscription1. Subscrip...
- Question 84: You need to resolve the Active Directory issue. What should ...
- Question 85: You have an Azure subscription. You plan to create a role de...
- Question 86: You create an Azure VM named VM1 that runs Windows Server 20...
- Question 87: You have an Azure subscription. The subscription contains vi...
- Question 88: You have an Azure subscription named Subscription 1 and an o...
- Question 89: You have an Azure subscription that contains the resources s...
- Question 90: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 91: You are planning the move of App1 to Azure. You create a net...
- Question 92: You have an Azure Storage account named storage1 that contai...
- Question 93: You are evaluating the connectivity between the virtual mach...
- Question 94: You have an Azure subscription that contains a virtual machi...
- Question 95: You plan to use Azure Network Watcher to perform the followi...
- Question 96: You have an Azure subscription that contains the virtual net...
- Question 97: You have an Azure subscription that contains an Azure Availa...
- Question 98: You have two Azure subscriptions named Sub1 and Sub2. Sub! c...
- Question 99: You have an app named App1 that runs on two Azure virtual ma...
- Question 100: You have an Azure subscription that contains the virtual net...
- Question 101: Peering for VNET2 is configured as shown in the following ex...
- Question 102: You need to ensure that you can grant Group4 Azure RBAC read...
- Question 103: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 104: You have a Microsoft Entra tenant that contains 5,000 user a...
- Question 105: You have an Azure subscription that contains a user named Us...
- Question 106: You have an Azure subscription named Subscription1 that is u...
- Question 107: You have an Azure virtual machine named VM1 and an Azure key...
- Question 108: You have an Azure subscription that contains a storage accou...
- Question 109: You have an Azure Storage account named storage1 that contai...
- Question 110: You have an Azure subscription that contains a virtual machi...
- Question 111: You plan to move a distributed on-premises app named App1 to...
- Question 112: You create an Azure Storage account named Contoso storage. Y...
- Question 113: You need to prepare the environment to ensure that the web a...
- Question 114: You have an Azure subscription named Subscription1 that cont...
- Question 115: You have an Azure subscription named Subscription1 that cont...
- Question 116: You have a hybrid deployment of Azure AD that contains the u...
- Question 117: You have an Azure AD tenant that is linked to 10 Azure subsc...
- Question 118: You have the following custom role-based access control (RBA...
- Question 119: Note: This question is part of a series of questions that pr...
- Question 120: You have an Azure subscription that contains two storage acc...
- Question 121: You have an Azure Active Directory (Azure AD) tenant that co...
- Question 122: You have an Azure subscription that contains an Azure Storag...
- Question 123: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 124: You need to define a custom domain name for Azure AD to supp...
- Question 125: You have an Azure subscription that contains the resources s...
- Question 126: Note: This question is part of a series of questions that pr...
- Question 127: You have an Azure Active Directory (Azure AD) tenant named c...
- Question 128: You have an Azure subscription that contains the resources s...
- Question 129: You have peering configured as shown in the following exhibi...
- Question 130: Note: This question is part of a series of questions that pr...
- Question 131: You plan to deploy an Azure container instance by using the ...
- Question 132: You have an Azure subscription that contains the alerts show...
- Question 133: You have an Azure subscription that contains the resources s...
- Question 134: You need to define a custom domain name for Azure AD to supp...
- Question 135: You have an Azure subscription that contains two Log Analyti...
- Question 136: You have a Microsoft Entra tenant that contains the groups s...
- Question 137: You need to create storage5. The solution must support the p...
- Question 138: You need to meet the connection requirements for the New Yor...
- Question 139: Note: This question is part of a series of questions that pr...
- Question 140: You have an Azure subscription named Sub1 that contains two ...
- Question 141: Note: This question is part of a series of questions that pr...
