Microsoft Azure

Microsoft Azure Security Technologies

AZ-500
Popular

The AZ-500 exam assesses your skills in implementing security controls and threat protection on Azure.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 61–70 of 147

Q61

Which Azure service provides advanced threat protection for SQL databases?

  • A Azure Defender for SQL
  • B Azure Security Center
  • C Azure Firewall
  • D Azure Sentinel
Explanation Azure Defender for SQL specifically protects SQL databases, while other options focus on different security aspects or services.
Q62

A company needs to automate enrollment of devices in Azure Active Directory. Which service should they use?

  • A Microsoft Intune
  • B Azure Information Protection
  • C Azure Policy
  • D Azure Active Directory Premium
Explanation Microsoft Intune supports device enrollment automation, whereas the other services serve different purposes.
Q63

What happens when a security policy denies access to a resource while there are also configurations allowing access?

  • A Access granted due to allowance
  • B Access denied due to policy
  • C Access granted based on user group
  • D Access depends on resource type
Explanation Deny policies generally take precedence over allow configurations, making access denied regardless of other settings.
Q64

Which Azure service enables you to manage API security?

  • A Azure API Management
  • B Azure Functions
  • C Azure Logic Apps
  • D Azure Service Bus
Explanation Azure API Management provides tools to secure APIs, while the others are for different purposes.
Q65

A company needs to isolate sensitive data from other resources in Azure. What should they use?

  • A Azure Virtual Network
  • B Azure Data Lake Storage
  • C Azure Blob Storage
  • D Azure Kubernetes Service
Explanation Azure Virtual Network allows isolation, while the others focus on storage and container management.
Q66

What happens when you invalidate a session token in Azure AD?

  • A User automatically logs out
  • B Token becomes invalid only on refresh
  • C All sessions remain active
  • D Users are informed via email
Explanation Invalidating a session token causes immediate logout, unlike options B, C, and D, which suggest different outcomes.
Q67

Which Azure service provides DDoS protection?

  • A Azure DDoS Protection
  • B Azure Firewall
  • C Azure Application Gateway
  • D Azure Security Center
Explanation Azure DDoS Protection specifically protects against DDoS attacks; the others serve different purposes.
Q68

What happens when you delete a resource group in Azure?

  • A All resources are retained
  • B Only empty resource groups get deleted
  • C All resources in the group are deleted
  • D The resources are archived
Explanation Deleting a resource group deletes all included resources; the other options do not reflect this behavior accurately.
Q69

You are configuring RBAC in Azure. What is the purpose of the 'Owner' role?

  • A Read-only access
  • B Manage access and resources
  • C Access data only
  • D Create resources only
Explanation The 'Owner' role provides full management capabilities, including access control; the other roles are more restrictive.
Q70

Which Azure service can help secure API management?

  • A Azure Key Vault
  • B Azure API Management
  • C Azure Security Center
  • D Azure Active Directory
Explanation Azure API Management provides security features to protect APIs; the others serve different purposes.