nerdexam
ExamsAZ-500Questions#63
MicrosoftMicrosoft

AZ-500 · Question #63

AZ-500 Question #63: Real Exam Question with Answer & Explanation

The correct answer is B: No. Option B (No) is correct because the goal requires deploying multiple policy definitions as a group, which is achieved using an Azure Policy Initiative (also called a policy set definition), not a Resource Graph. A Resource Graph is used for querying and exploring Azure resources

Submitted by lukas.cz· Mar 6, 2026Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel

Question

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You use Azure Security Center for the centralized policy management of three Azure subscriptions. You use several policy definitions to manage the security of the subscriptions. You need to deploy the policy definitions as a group to all three subscriptions. Solution: You create a resource graph and an assignment that is scoped to a management group. Does this meet the goal?

Options

  • AYes
  • BNo

Explanation

Option B (No) is correct because the goal requires deploying multiple policy definitions as a group, which is achieved using an Azure Policy Initiative (also called a policy set definition), not a Resource Graph. A Resource Graph is used for querying and exploring Azure resources across subscriptions - it has no capability to group or deploy policy definitions.

Why Option A (Yes) is wrong: While scoping an assignment to a management group is a valid approach for applying policies across multiple subscriptions, the use of a Resource Graph is the incorrect component here. The correct solution would combine a Policy Initiative (policy set) with an assignment scoped to the management group.

The correct solution would be: Create a Policy Initiative (which groups multiple policy definitions together) and then create an assignment scoped to the management group that covers all three subscriptions.

💡 Memory Tip: Think of it this way - Initiative = Group of policies, Management Group scope = Apply to multiple subscriptions, and Resource Graph = Query tool, not a policy tool. Whenever a question asks about deploying multiple policy definitions as a group, your trigger words should be "Initiative" and "Management Group."

Topics

#Azure Policy#Management Groups#Policy Assignment#Azure Governance

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full AZ-500 PracticeBrowse All AZ-500 Questions