AZ-500 Question #536: Real Exam Question with Answer & Explanation

Question

Hotspot Question You have an Azure subscription. You plan to deploy the virtual machines shown in the following table. You need to identify the virtual machines and operating systems that can be deployed as confidential virtual machines? Which Windows virtual machines and which Linux virtual machines should you identify? Answer:

Options

• __typehotspot
• variantyes_no

Explanation

This question tests knowledge of Azure Confidential VMs, specifically which VM sizes and operating systems support confidential computing features. Azure Confidential VMs require specific AMD SEV-SNP or Intel TDX-enabled hardware and only certain OS images are supported.

Approach. Azure Confidential VMs are supported on DCasv5, DCadsv5, ECasv5, and ECadsv5 series VM sizes (AMD SEV-SNP) as well as DCesv5 and DCedsv5 (Intel TDX). For Windows, only Windows Server 2019 and Windows Server 2022 Datacenter editions are supported as confidential VMs - Windows Server 2016 is NOT supported. For Linux, supported distributions include Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, RHEL 9.x, and SUSE Linux Enterprise Server 15 SP4 and later. Older Linux versions or unsupported distros cannot be deployed as confidential VMs. The key rule is: the VM must use a confidential-series SKU AND the OS must be from the list of supported confidential VM images available in the Azure Marketplace.

Concept tested. Azure Confidential Virtual Machines - supported VM series (DCasv5, ECasv5, etc.), supported Windows OS versions (Server 2019/2022 Datacenter), and supported Linux distributions (Ubuntu 20.04/22.04, RHEL 9.x, SLES 15 SP4+) for confidential computing workloads using hardware-based Trusted Execution Environments (TEE).

Reference. https://learn.microsoft.com/en-us/azure/confidential-computing/confidential-vm-overview

No community discussion yet for this question.