Valid AZ-500 Dumps shared by ExamDiscuss.com for Helping Passing AZ-500 Exam! ExamDiscuss.com now offer the newest AZ-500 exam dumps, the ExamDiscuss.com AZ-500 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com AZ-500 dumps with Test Engine here:

Access AZ-500 Dumps Premium Version
(497 Q&As Dumps, 35%OFF Special Discount Code: freecram)

Online Access Free AZ-500 Exam Questions

Exam Code:AZ-500
Exam Name:Microsoft Azure Security Technologies
Certification Provider:Microsoft
Free Question Number:183
Version:v2024-06-18
Rating:
# of views:422
# of Questions views:15524
Go To AZ-500 Questions

Recent Comments (The most recent comments are at the top.)

sam rocks - Aug 01, 2024

No.# A:
This is an audit policy with an exception for NSG1. Since Networrk Flow Log is disabled on NSG1 and NSG2 it remains disabled. You need DeployIfNotExists effect to activate NFL.
https://azure.microsoft.com/en-us/updates/nsg-flow-logs-built-in-azure-policy/
We are launching two built-in policies for deploying NSG Flow Logs
• An Audit policy: Flag NSGs without Flow logs enabled
• A DeployIfNotExists policy: Enable Flow logs on NSGs where it is disabled
Get started with our tutorial for using the above policies.

sam rocks - Aug 01, 2024

No.# D. KeyVault1 KeyVault2 and KeyVault3

sam rocks - Aug 01, 2024

No.# A. blob index tags and container names only

sam rocks - Aug 01, 2024

No.# C is correct answer. The context of the question is from a Security/Access/Identities perspective, and not from developer's perspective. Check the answer here, section "Client Secret":

https://docs.microsoft.com/en-us/azure/azure-monitor/app/availability-multistep#dealing-with-sign-in

sam rocks - Jul 28, 2024

No.# An Azure Log Analytics agent on a Linux virtual machine
Sentinel Connector

sam rocks - Jul 28, 2024

No.# ASG1 - VM2

sam rocks - Jul 28, 2024

No.# NYN

1st inter VNET Connection will take priority over default route.
2 nd yes, as there is /24 route to the subnet forwarding to NVA(Firewall)
3rd there is no default route looking towards NVA (Firewall)

sam rocks - Jul 28, 2024

No.# Box1: User1 and User3
Box2: User1 and User4

I have tested this on my lab. user4 also can modify network access

https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#key-vault-contributor

sam rocks - Jul 24, 2024

No.# ested with following results:
A: No
Security Admin cannot manage key vault properties
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#security-admin
B: No
Network Contributor or Key Vault Reader cannot change the key vault firewall
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#network-contributor
C: YES
Key vault contributor can do that
https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#key-vault-contributor
Note: "does not allow you to assign roles" - but here the question is to add access policies which works.

sam rocks - Jul 24, 2024

No.# A. Enable a managed identity on VM1.

sam rocks - Jul 24, 2024

No.# ASG constraint : All network interfaces assigned to an application security group have to exist in the same virtual network that the first network interface assigned to the application security group is in. (Not a regional constraint)
1) NSG2 only
2) VM3 only

sam rocks - Jul 24, 2024

No.# User1 - has ownership at subscription level therefore has access to the control plane of the key vault but not to the data plane. therefore User1 can manage RBAC permissions but cannot create/access keys or secrets (unless bthey can grant themself 'Key Administrator' access and do this, which again does not show up in this RBACs listed so we cannot assume that)
- Therefore User1 has not access to the keys or secrets in this vault

User2 - Is a Key VAult Crypto officer for the KeyVault1. so according to this:https://learn.microsoft.com/en-us/azure/key-vault/general/rbac-guide?tabs=azure-cli#azure-built-in-roles-for-key-vault-data-plane-operations , they can manage keys (but not access secrets or manage permissions)

User3 - Is a Secrets officer for the KeyVault1 scope. they can access secrets data in this key vault

User4 - Here's a tricky one. while they are indeed given 'Key Vault Administrator', notice the scope is set to "../KeyVault1/Keys/Key1". So they should only be able to work with that key.

Therefore, I believe the answer is:
1st box - Only User2
2nd box - Only User3...

sam rocks - Jul 24, 2024

No.# Nick66 Highly Voted 1 year, 6 months ago
Box1 and Box2: AD DS Only
Azure Files supports identity-based authentication for Windows file shares over Server Message Block (SMB) using the Kerberos authentication protocol through the following three methods:
• On-premises Active Directory Domain Services (AD DS)
• Azure Active Directory Domain Services (Azure AD DS)
• Azure Active Directory (Azure AD) Kerberos for hybrid user identities
Note
Azure Files supports authentication for Azure AD DS with full or partial (scoped) synchronization with Azure AD. For environments with scoped synchronization present, administrators should be aware that Azure Files only honors Azure RBAC role assignments granted to principals that are synchronized. Role assignments granted to identities not synchronized from Azure AD to Azure AD DS will be ignored by the Azure Files service.

sam rocks - Jul 24, 2024

No.# Explanation:
Box 1: 4 -
A container can have up to 5 stored access policies.
Maximum number of stored access policies per blob container: 5
Box 2: 1 -
Blob version supports one version-level immutability policy and one legal hold. A policy on a blob version can override a default policy specified on the account or container.

sam rocks - Jul 24, 2024

No.# Conditions,
Grant,
Only allow access to App1 from Windows devices: Conditions Only allow devices that are marked as compliant
to access App1: Grant

sam rocks - Jul 23, 2024

No.# B. From the Policy blade of the Azure Active Directory admin center, select Compliance.

sam rocks - Jul 18, 2024

No.# I agree YNN.
Y - WebApp1 has VNI and VNET1 and VNET2 are peered
N - NSG1 is associated to Subnet1, since Subnet1 contains VM1, WebApp1 is in a different subnet (WebApps must be deployed to an empty subnet). NSG1 as far as this question goes is only associated to Subnet1.
N - WebApp2 does not have VNET integration

sam rocks - Jul 18, 2024

No.# Always Encrypted by Using Azure Key Vault

Create an Access Policy in azure Key vault

https://docs.microsoft.com/en-us/azure/azure-sql/database/always-encrypted-azure-key-vault-configure?tabs=azure-powershell#create-a-key-vault-to-store-your-keys

sam rocks - Jul 18, 2024

No.# Global Administration rights required.

I was thinking MFA, but then the question does not mention MFA, or MFA status it only mentions user 2 has Security Administrator Role. So obviously if User2 needs to implement PIM, PIM needs to be enabled, and it requires Global Administrator role.

sam - Jul 17, 2024

No.# 1) Admin 3
2) Admin 1 and Admin4
User Access Administrator : Manage user access to Azure resources
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Other Version
155 viewsMicrosoft.AZ-500.v2025-08-25.q201
218 viewsMicrosoft.AZ-500.v2025-07-14.q180
554 viewsMicrosoft.AZ-500.v2024-10-14.q195
504 viewsMicrosoft.AZ-500.v2024-07-22.q198
501 viewsMicrosoft.AZ-500.v2024-03-15.q161
952 viewsMicrosoft.AZ-500.v2023-10-07.q157
578 viewsMicrosoft.AZ-500.v2023-09-25.q171
442 viewsMicrosoft.AZ-500.v2023-09-25.q156
1045 viewsMicrosoft.AZ-500.v2023-01-20.q105
847 viewsMicrosoft.AZ-500.v2022-10-26.q103
1640 viewsMicrosoft.AZ-500.v2022-07-09.q105
1913 viewsMicrosoft.AZ-500.v2022-06-01.q156
1103 viewsMicrosoft.AZ-500.v2022-05-31.q107
1515 viewsMicrosoft.AZ-500.v2022-04-19.q106
1542 viewsMicrosoft.AZ-500.v2022-02-17.q105
2131 viewsMicrosoft.AZ-500.v2021-07-23.q87
2066 viewsMicrosoft.AZ-500.v2019-12-31.q55
1903 viewsMicrosoft.AZ-500.v2019-08-17.q27
Exam Question List
1 commentQuestion 1: You have an Azure subscription that contains an Azure key va...
Question 2: You plan to deploy Azure container instances. You have a con...
Question 3: You have an Azure subscription. You need to create and deplo...
1 commentQuestion 4: You have an Azure resource group that contains 100 virtual m...
Question 5: You need to configure WebApp1 to meet the data and applicati...
Question 6: You have Azure virtual machines that have Update Management ...
Question 7: You are testing an Azure Kubernetes Service (AKS) cluster. T...
1 commentQuestion 8: You have an Azure Active Directory (Azure AD) tenant named c...
Question 9: You have a web app named WebApp1. You create a web applicati...
Question 10: You have an Azure Active Directory (Azure AD) tenant. You ha...
Question 11: You have an Azure subscription that contains a Microsoft Sen...
Question 12: You have an Azure subscription that is linked to an Azure Ac...
Question 13: You have an Azure Active Directory (Azure AD) tenant and a r...
1 commentQuestion 14: You have an Azure subscription named Sub1 that contains the ...
1 commentQuestion 15: You have a Microsoft Entra tenant that contains a user named...
1 commentQuestion 16: You have an Azure subscription that contains the following A...
Question 17: You have an Azure subscription named Sub1 that is associated...
1 commentQuestion 18: You create a new Azure subscription that is associated to a ...
Question 19: You have an Azure subscription that uses Microsoft Defender ...
Question 20: You have an Azure Container Registry named ContReg1 that con...
1 commentQuestion 21: You have an Azure subscription that contains an Azure SQL se...
Question 22: You have an Azure subscription that contains four Azure SQL ...
Question 23: You have an Azure subscription named Sub1. You create a virt...
Question 24: You are troubleshooting a security issue for an Azure Storag...
1 commentQuestion 25: You have an Azure subscription that contains the storage acc...
Question 26: You have an Azure subscription that contains a Microsoft Def...
Question 27: You have an Azure subscription that is linked to an Azure AD...
Question 28: Lab Task Task 1 You need to ensure that connections from the...
Question 29: You are evaluating the security of the network communication...
Question 30: You have a network security group (NSG) bound to an Azure su...
Question 31: You have an Azure subscription named Subscription1 that cont...
Question 32: You have an Azure subscription named Sub1 that contains an A...
Question 33: Your network contains an on-premises Active Directory domain...
Question 34: You plan to implement JIT VM access. Which virtual machines ...
Question 35: You have an Azure subscription that contains a web app named...
1 commentQuestion 36: You have an Azure Active Directory (Azure AD) tenant named c...
Question 37: You have an Azure subscription that contains an Azure SQL da...
Question 38: Which virtual networks in Sub1 can User2 modify and delete i...
Question 39: You have an Azure subscription that uses Microsoft Sentinel....
Question 40: You have an Azure subscription that contains the virtual mac...
Question 41: You have an Azure subscription that contains the virtual mac...
1 commentQuestion 42: You have an Azure subscription that uses Microsoft Defender ...
Question 43: You have an Azure subscription that contains the virtual mac...
Question 44: You have an Azure subscription that uses Microsoft Defender ...
Question 45: You have an Azure Active Directory (Azure AD) tenant that co...
Question 46: You need to meet the technical requirements for VNetwork1. W...
Question 47: You have an Azure AD tenant that contains 500 users and an a...
Question 48: You have an Azure subscription. You create an Azure Firewall...
Question 49: You have an Azure Sentinel workspace that has the following ...
Question 50: You have an Azure subscription that contains 100 virtual mac...
1 commentQuestion 51: You have an Azure subscription that contains an Azure web ap...
Question 52: You have an Azure subscription that contains the resources s...
Question 53: You have an Azure subscription that contains a user named Us...
Question 54: Note: This question is part of a series of questions that pr...
Question 55: You have an Azure Active Directory (Azure AD) tenant named c...
1 commentQuestion 56: You have an on-premises datacenter. You have an Azure subscr...
Question 57: You have an Azure SQL Database server named SQL1. You plan t...
2 commentQuestion 58: You have an Azure subscription that contains the virtual mac...
1 commentQuestion 59: You have an Azure subscription. You plan to implement Azure ...
Question 60: You plan to implement an Azure function named Function1 that...
Question 61: Note: This question is part of a series of questions that pr...
Question 62: You have an Azure subscription. The subscription contains Az...
1 commentQuestion 63: You company has an Azure subscription named Sub1. Sub1 conta...
1 commentQuestion 64: You have an Azure subscription that contains a user named Us...
Question 65: You have an Azure AD turned that contains a user named User1...
1 commentQuestion 66: You have an Azure subscription that contains an Azure Blob s...
Question 67: You have an Azure subscription that uses Microsoft Defender ...
Question 68: Lab Task use the following login credentials as needed: To e...
Question 69: You have an Azure Active Directory (Azure AD) tenant named C...
Question 70: You create a new Azure subscription. You need to ensure that...
1 commentQuestion 71: You need to encrypt storage1 to meet the technical requireme...
Question 72: You have an Azure Active Directory (Azure AD) tenant that co...
Question 73: You have an Azure subscription that contains a storage accou...
Question 74: You have an Azure subscription that contains an Azure Data L...
Question 75: You have an Azure subscription named Subscription1 that cont...
Question 76: You have an Azure subscription that uses Azure AD Privileged...
Question 77: You need to ensure that the Azure AD application registratio...
Question 78: You have an Azure key vault named Vault1 that stores the res...
Question 79: You have an Azure Active Directory (Azure AD) tenant named c...
Question 80: You have multiple development teams that will create apps in...
Question 81: You have an Azure Storage account named storage1 that has a ...
Question 82: You have an Azure subscription. You create an Azure web app ...
Question 83: You need to deploy AKS1 to meet the platform protection requ...
Question 84: You have an Azure subscription. You plan to create a storage...
Question 85: You have a hybrid configuration of Azure Active Directory (A...
1 commentQuestion 86: You have an Azure subscription that contains a Microsoft Def...
Question 87: You have an Azure subscription that contains several Azure S...
Question 88: Your company has an Azure subscription named Sub1 that is as...
Question 89: You have an Azure Active Directory (Azure AD) tenant that co...
1 commentQuestion 90: You have an Azure subscription that contains the subnets sho...
1 commentQuestion 91: You have an Azure subscription that contains a resource grou...
Question 92: You have an Azure subscription that contains an Azure web ap...
Question 93: You have an Azure subscription that contains the resources s...
Question 94: You have an Azure subscription. You plan to map an online in...
Question 95: You have an Azure subscription that contains an app named Ap...
Question 96: You need to create Role1 to meet the platform protection req...
Question 97: You have an Azure subscription that contains an Azure SQL da...
Question 98: You have an Azure subscription named Sub 1 that is associate...
Question 99: You have an Azure Subscription that is connected to an on-pr...
Question 100: You have an Azure Active Directory (Azure AD) tenant named c...
Question 101: You have an Azure subscription. You configure the subscripti...
1 commentQuestion 102: You have an Azure subscription that contains a blob containe...
Question 103: Lab Task use the following login credentials as needed: To e...
Question 104: You have an Azure Sentinel workspace that contains an Azure ...
1 commentQuestion 105: You have an Azure subscription. That contains the virtual ma...
Question 106: You have an Azure Storage account named storage1 and an Azur...
Question 107: You have an Azure subscription named Sub1 that contains the ...
Question 108: You have the role assignments shown in the following exhibit...
Question 109: You have the hierarchy of Azure resources shown in the follo...
Question 110: You have an Azure subscription named Sub1 that contains the ...
1 commentQuestion 111: You have an Azure Active directory tenant that syncs with an...
1 commentQuestion 112: You have an Azure subscription that contains an Azure key va...
Question 113: You have an Azure subscription that contains a user named Ad...
Question 114: Lab Task use the following login credentials as needed: To e...
Question 115: Lab Task Task 4 You need to ensure that when administrators ...
Question 116: Your company has an Azure Active Directory (Azure AD) tenant...
Question 117: You have an Azure subscription named Sub1 that contains the ...
Question 118: You have an Azure subscription that contains the resources s...
1 commentQuestion 119: You have an Azure subscription named Subscription1 that cont...
Question 120: You have an Azure subscription that contains a user named Us...
Question 121: You have an Azure subscription that contains virtual machine...
Question 122: Your company has an Active Directory forest with a single do...
Question 123: You have an Azure subscription that is linked to an Azure AD...
Question 124: You have an Azure subscription. You plan to create a custom ...
1 commentQuestion 125: You implement the planned changes for ASG1 and ASG2. In whic...
1 commentQuestion 126: You are implementing an Azure Application Gateway web applic...
Question 127: Note: This question is part of a series of questions that pr...
Question 128: You have an Azure subscription that contains an Azure Active...
Question 129: You have an Azure subscription that uses Azure Active Direct...
Question 130: You have a web app hosted on an on-premises server that is a...
Question 131: Your network contains an Active Directory forest named conto...
Question 132: You have an Azure Active Directory (Azure AD) tenant that co...
Question 133: You have an Azure subscription that contains the virtual net...
1 commentQuestion 134: You have the hierarchy of Azure resources shown in the follo...
Question 135: You assign User8 the Owner role for RG4, RG5, and RG6. In wh...
Question 136: You have an Azure key vault named KeyVault1 that contains th...
Question 137: You have an Azure Kubernetes Service (AKS) cluster that will...
Question 138: You have an Azure subscription that contains an Azure key va...
Question 139: You have an on-premises network and an Azure subscription. Y...
Question 140: Lab Task use the following login credentials as needed: To e...
1 commentQuestion 141: You have an Azure subscription named Subscription1 that cont...
Question 142: You need to meet the technical requirements for the finance ...
Question 143: You have 10 virtual machines on a single subnet that has a s...
Question 144: Note: This question is part of a series of questions that pr...
Question 145: You have three Azure subscriptions and a user named User1. Y...
Question 146: You have an Azure subscription that contains 100 virtual mac...
Question 147: You are evaluating the security of VM1, VM2, and VM3 in Sub2...
Question 148: You have a Microsoft Entra tenant that contains the users sh...
Question 149: You have an Azure environment. You need to identify any Azur...
Question 150: You have an Azure subscription that contains a virtual machi...
Question 151: You create an alert rule that has the following settings: Re...
Question 152: You have an Azure subscription named Sub1 that contains the ...
1 commentQuestion 153: You need to delegate the creation of RG2 and the management ...
Question 154: You have the Azure virtual machines shown in the following t...
Question 155: On Monday, you configure an email notification in Microsoft ...
1 commentQuestion 156: You have an Azure subscription named Sub1 that contains the ...
Question 157: You have an Azure subscription that contains the alerts show...
Question 158: You have an Azure subscription that contains a virtual netwo...
Question 159: You have an Azure Kubernetes Service (AKS) cluster that will...
Question 160: You have an Azure Active Directory (Azure AD) tenant that co...
Question 161: Note: This question is part of a series of questions that pr...
Question 162: You have an Azure subscription named Subscription1 that cont...
Question 163: Note: This question is part of a series of questions that pr...
1 commentQuestion 164: You have an Azure Subscription that is linked to an Azure Ac...
Question 165: You have an Azure subscription that contains an Azure Data L...
Question 166: You have two Azure subscriptions named Sub1 and Sub2. Sub1 c...
Question 167: You have an Azure subscription that contains a storage accou...
Question 168: You have an Azure subscription that contains 100 virtual mac...
Question 169: You plan to create an Azure Kubernetes Service (AKS) cluster...
Question 170: You have an Azure Active Din-dory (Azure AD) tenant named co...
Question 171: You need to ensure that you can meet the security operations...
Question 172: You have an Azure subscription that contains a web app named...
Question 173: You have an Azure Active Directory (Azure AD) tenant named c...
Question 174: You have an Azure subscription that contains the resources s...
Question 175: Your on-premises network contains the servers shown in the f...
Question 176: You have an Azure subscription named Subscription1. You need...
1 commentQuestion 177: You need to ensure that User2 can implement PIM. What should...
Question 178: You have an Azure Storage account that contains a blob conta...
1 commentQuestion 179: You have an Azure subscription that contains the following r...
1 commentQuestion 180: You have an Azure subscription that contains the virtual net...
Question 181: You have an Azure subscription that contains the resources s...
Question 182: You have an Azure subscription that contains the resources s...
Question 183: Lab Task use the following login credentials as needed: To e...