AZ-500 · Question #299
AZ-500 Question #299: Real Exam Question with Answer & Explanation
The correct answer is D: a dynamic group query. Explanation Option D is correct because Azure Automation Update Management supports dynamic group queries that automatically discover and include virtual machines based on defined criteria (such as OS type, resource group, or tags). This means any new Windows Server 2019 VMs adde
Question
You have an Azure subscription that contains two virtual machines named VM1 and VM2 that run Windows Server 2019. You are implementing Update Management in Azure Automation. You plan to create a new update deployment named Update1. You need to ensure that Update1 meets the following requirements: - Automatically applies updates to VM1 and VM2. - Automatically adds any new Windows Server 2019 virtual machines to Update1. What should you include in Update1?
Options
- Aa security group that has a Membership type of Dynamic Device
- Ba security group that has a Membership type of Assigned
- Ca Kusto query language query
- Da dynamic group query
Explanation
Explanation
Option D is correct because Azure Automation Update Management supports dynamic group queries that automatically discover and include virtual machines based on defined criteria (such as OS type, resource group, or tags). This means any new Windows Server 2019 VMs added to the subscription will automatically be picked up by Update1 without manual intervention, satisfying both requirements.
Option A and B are wrong because security groups with "Dynamic Device" or "Assigned" membership types are features of Azure Active Directory (Entra ID) and are not used within Azure Automation Update Management deployments - they serve identity and access management purposes, not patch management targeting.
Option C is wrong because while Kusto Query Language (KQL) is used in Azure Monitor Logs and Log Analytics, it is not the mechanism used to define dynamic targeting within an Update Management deployment schedule - that role belongs to dynamic group queries specifically.
🧠 Memory Tip: Think "Dynamic Group = Dynamic Discovery" - whenever an exam question asks about automatically including new VMs in Azure Automation Update Management, the answer involves a dynamic group query, which continuously evaluates and adds matching machines without manual updates.
Topics
Community Discussion
No community discussion yet for this question.