Microsoft Azure

Microsoft Azure Security Technologies

AZ-500
Popular

The AZ-500 exam assesses your skills in implementing security controls and threat protection on Azure.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 51–60 of 147

Q51

What happens when you set a platform-managed identity for an Azure VM?

  • A It allows network access only.
  • B It automatically configures RBAC.
  • C It enables secure object identity.
  • D It does nothing and fails.
Explanation Platform-managed identities provide secure object identity for Azure resources, while the other options mischaracterize its capabilities.
Q52

Which service enables you to manage Azure secrets securely?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure Security Center
  • D Azure Active Directory
Explanation Azure Key Vault is specifically designed for securely managing secrets, unlike the other options.
Q53

You are configuring Azure Active Directory Domain Services. What must you ensure?

  • A Service endpoints are configured properly
  • B User credentials are stored in Key Vault
  • C Domain controllers are deployed on VMs
  • D Network security groups are applied correctly
Explanation Network security groups must be configured to allow traffic for domain services.
Q54

A company needs to monitor their Azure subscription's security health. Which service should they use?

  • A Azure Monitor
  • B Azure Security Center
  • C Azure Log Analytics
  • D Azure Backup
Explanation Azure Security Center specifically assesses and provides recommendations for security health.
Q55

Which Azure service helps secure API traffic?

  • A Azure API Management
  • B Azure Functions
  • C Azure Logic Apps
  • D Azure App Service
Explanation Azure API Management provides a robust security layer for API traffic, while the others serve different purposes.
Q56

A company needs to enforce conditional access. What should they configure?

  • A Azure Active Directory
  • B Azure Virtual Network
  • C Azure Storage Accounts
  • D Azure Blob Service
Explanation Conditional access policies are configured in Azure Active Directory to manage user access based on conditions like location and device status.
Q57

What happens when you disable the network interface of an Azure VM?

  • A VM stops all operations
  • B Public IP becomes unreachable
  • C Access to Azure Storage lost
  • D VM settings reset
Explanation Disabling the network interface makes the public IP unreachable, but the VM continues running without connectivity issues.
Q58

Which service provides a centralized security management solution in Azure?

  • A Azure Security Center
  • B Azure Monitor
  • C Azure Sentinel
  • D Azure Policy
Explanation Azure Security Center centralizes security management, while others focus on monitoring, incidents, or policies.
Q59

A company needs to securely store and manage keys for their applications. Which Azure service should they use?

  • A Azure Key Vault
  • B Azure Blob Storage
  • C Azure SQL Database
  • D Azure Functions
Explanation Azure Key Vault is specifically designed for key management and secure storage, unlike the other options.
Q60

You are configuring a new Azure virtual network. What happens when you enable DDoS Protection on the network?

  • A All incoming traffic is blocked
  • B Protection against DDoS attacks
  • C Increased bandwidth allocation
  • D Decreased latency for users
Explanation Enabling DDoS Protection helps safeguard against distributed attacks, while other options are incorrect outcomes of enabling this feature.