nerdexam
ExamsAZ-500Questions#131
MicrosoftMicrosoft

AZ-500 · Question #131

AZ-500 Question #131: Real Exam Question with Answer & Explanation

The correct approach is to deploy the Microsoft Antimalware extension directly on VM1 through the Azure Portal by navigating to the VM's Extensions blade, adding the Microsoft Antimalware extension, and configuring it with scheduled scanning enabled, scan type set to 'Full', scan

Submitted by manish99· Mar 6, 2026Implement and manage security for Azure workloads - specifically configuring antimalware and endpoint protection for Azure IaaS Virtual Machines as part of the AZ-104 or AZ-500 certification domain covering 'Secure Compute, Storage, and Networking'.

Question

SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, place your cursor in the Enter password box and click on the password below. Azure Username: [email protected] Azure Password: Ag1Bh9!#Bd The following information is for technical support purposes only: Lab Instance: 10598168 You need to perform a full malware scan every Sunday at 02:00 on a virtual machine named VM1 by using Microsoft Antimalware for Virtual Machines. To complete this task, sign in to the Azure portal. Answer: Deploy the Microsoft Antimalware Extension using the Azure Portal for single VM deployment 1. In Azure Portal, go to the Azure VM1's blade, navigate to the Extensions section and press Add. 2. Select the Microsoft Antimalware extension and press Create. 3. Fill the "Install extension" form as desired and press OK. Scheduled: Enable Scan type: Full Scan day: Sunday Reference:

Options

  • taskPerform a full malware scan every Sunday at 02:00 on a virtual machine named VM1 by using Microsoft Antimalware for Virtual Machines.
  • prerequisitesAzure Username: [email protected], Azure Password: Ag1Bh9!#Bd, Sign in to the Azure portal.

Explanation

The correct approach is to deploy the Microsoft Antimalware extension directly on VM1 through the Azure Portal by navigating to the VM's Extensions blade, adding the Microsoft Antimalware extension, and configuring it with scheduled scanning enabled, scan type set to 'Full', scan day set to 'Sunday', and scan time set to '120' (representing 02:00 in minutes or the hour value of 2). This is the native Azure mechanism for enabling endpoint protection on IaaS VMs, and the extension integrates with Windows Defender/Microsoft Antimalware to enforce scheduled scans. The configuration must explicitly set the scheduled scan parameters - without enabling the schedule and specifying 'Full' scan type on 'Sunday' at the correct time, the task would not meet the requirements.

Topics

#Microsoft Antimalware Extension#Azure Virtual Machine Security#Endpoint Protection#Azure Extensions

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full AZ-500 PracticeBrowse All AZ-500 Questions