Browse Exams Pricing

ExamsAZ-500Questions

AZ-500 Exam Questions

626 real AZ-500 exam questions with expert-verified answers and explanations. Page 5 of 13.

Question #210Manage Azure Active Directory (Azure AD) identities and configure Multi-Factor Authentication (MFA) - aligns with the AZ-104 'Manage identities and governance in Azure' domain or SC-900 'Describe identity concepts' domain.
SIMULATION You need to create a new Azure Active Directory (Azure AD) directory named 10317806.onmicrosoft.com. The new directory must contain a user named user10317806 who is conf...
Azure Active DirectoryMulti-Factor AuthenticationIdentity ManagementAzure AD Tenant Creation
Question #211
Hotspot Question You have the hierarchy of Azure resources shown in the following exhibit. You create the Azure Blueprints definitions shown in the following table. To which object...
Question #212
Hotspot Question You have an Azure subscription that contains a user named Admin1 and a resource group named RG1. In Azure Monitor, you create the alert rules shown in the followin...
Question #213
Hotspot Question You have an Azure Sentinel workspace that contains an Azure Active Directory (Azure AD) connector, an Azure Log Analytics query named Query1 and a playbook named P...
Question #214Implement and manage network access and connectivity - specifically configuring and managing Azure Security Center JIT VM access, NSG inbound rules, and Azure Bastion for secure remote access (AZ-104 / SC-900 / AZ-500: Secure network connectivity and VM access)
Hotspot Question You have an Azure subscription that contains the resources shown in the following table. An IP address of 10.1.0.4 is assigned to VM5. VM5 does not have a public I...
Just-In-Time VM AccessNetwork Security GroupsAzure BastionVM Network Security
Question #216Manage Identity and Governance - Implement and manage Azure governance solutions including Azure Blueprints, Policy, and role-based access control (AZ-104 / AZ-500)
Drag and Drop Question You have five Azure subscriptions linked to a single Azure Active Directory (Azure AD) tenant. You create an Azure Policy initiative named SecurityPolicyInit...
Azure BlueprintsAzure PolicyRBACGovernance
Question #217
Hotspot Question You plan to use Azure Sentinel to create an analytic rule that will detect suspicious threats and automate responses. Which components are required for the rule? T...
Question #218
Hotspot Question You have an Azure subscription that contains a web app named App1 and an Azure key vault named Vault1. You need to configure App1 to store and access the secrets i...
Question #219
Hotspot Question You have an Azure key vault named KeyVault1 that contains the items shown in the following table. In KeyVault, the following events occur in sequence: - Item1 is d...
Question #220Secure identity and access
Your network contains an on-premises Active Directory domain named adatum.com that syncs to Azure Active Directory (Azure AD). Azure AD Connect is installed on a domain member serv...
Azure AD ConnectAzure AD RolesHybrid IdentityLeast Privilege
Question #221Secure identity and access
You have an Azure subscription that contains the users shown in the following table. Which users can enable Azure AD Privileged Identity Management (PIM)?
Azure AD PIMAzure AD RolesGlobal AdministratorIdentity Management
Question #222Secure identity and access
You have an Azure subscription. You plan to create a custom role-based access control (RBAC) role that will provide permission to read the Azure Storage account. Which property of...
Azure RBACCustom RolesRole DefinitionManagement Plane Permissions
Question #223Secure identity and access
You have an Azure subscription linked to an Azure Active Directory Premium Plan 1 tenant. You plan to implement Azure Active Directory (Azure AD) Identity Protection. You need to e...
Azure AD Identity ProtectionAzure AD LicensingUser Risk PolicySign-in Risk Policy
Question #224Secure compute, storage, and databases
You have a web app hosted on an on-premises server that is accessed by using a URL of https:// You need to enable HTTPS for the Azure web app. What should you do first?
SSL CertificatesHTTPS ConfigurationAzure App ServiceCertificate Management
Question #225Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription named Subscription1 that contains the resources shown in the following table. You need to identify which initiatives and policies you can add to Subs...
Microsoft Defender for CloudAzure PolicySecurity GovernanceSecurity Initiatives
Question #226Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription named Sub1. In Azure Security Center, you have a workflow automation named WF1. WF1 is configured to send an email message to a user named User1. You...
Azure Security CenterWorkflow AutomationAzure Logic AppsSecurity Operations
Question #227Secure compute, storage, and databases
You have an Azure resource group that contains 100 virtual machines. You have an initiative named Initiative1 that contains multiple policy definitions. Initiative1 is assigned to...
Azure PolicyComplianceGovernanceVirtual Machines
Question #228Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription named Subscription1. You need to view which security settings are assigned to Subscription1 by default. Which Azure policy or initiative definition s...
Azure PolicyMicrosoft Defender for CloudSecurity MonitoringSecurity Initiatives
Question #229Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some q...
Azure PolicyManagement GroupsPolicy InitiativesPolicy Assignment
Question #230Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure environment. You need to identify any Azure configurations and workloads that are non-compliant with ISO 27001 standards. What should you use?
Regulatory complianceISO 27001Microsoft Defender for CloudSecurity posture
Question #231
You have an Azure subscription that contains four Azure SQL managed instances. You need to evaluate the vulnerability of the managed instances to SQL injection attacks. What should...
Question #232Manage identity and access in Azure - specifically understanding RBAC role assignments, scope inheritance (Management Group → Subscription → Resource Group → Resource), and the permissions granted by built-in roles such as Owner, Contributor, and Reader.
Hotspot Question You have the hierarchy of Azure resources shown in the following exhibit. RG1, RG2, and RG3 are resource groups. RG2 contains a virtual machine named VM1. You assi...
Azure RBACRole InheritanceIdentity and Access ManagementAzure Resource Groups
Question #233Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Hotspot Question You have an Azure subscription that contains an Azure Sentinel workspace. Azure Sentinel is configured to ingest logs from several Azure workloads. A third-party s...
Azure SentinelAnalytics rulesPlaybooksIncident management
Question #235Mitigate threats using Microsoft Sentinel - Configure and use threat hunting capabilities including bookmarks and the investigation graph
Drag and Drop Question You have an Azure Sentinel workspace that has an Azure Active Directory (Azure AD) data connector. You are threat hunting suspicious traffic from a specific...
Azure SentinelThreat HuntingBookmarksEntity MappingInvestigation Graph
Question #236Secure identity and access
Hotspot Question You have 20 Azure subscriptions and a security group named Group1. The subscriptions are children of the root management group. Each subscription contains a resour...
Azure BlueprintsRBACResource LocksAzure Governance
Question #238Secure identity and access
Hotspot Question You have an Azure subscription that contains an Azure key vault named ContosoKey1. You create users and assign them roles as shown in the following table. You need...
Azure Key VaultRBACKey Vault networkingPermissions
Question #239Secure compute, storage, and databases
You work for an organization that has above 100 Windows Server 2016 virtual machines (VMs). Those VMs are running in the Azure West Europe region. Azure Automation runbook is used...
Question #240Secure identity and access
You work for an organization as an Azure administrator. There is one subscription having all Azure resources and all of them are in a single region. The organization has an Active...
Question #241Secure compute, storage, and databases
You are working for an organization as an Azure administrator. You are tasked to migrate an on- premises SQL Server to four Azure SQL databases in a single Azure SQL Server. The SQ...
Question #242Secure identity and access
There is an Azure App Service app you are managing. This app hosts website artifacts in a general purpose v2 storage account. You are required to execute the App Service app config...
Question #243Secure identity and access
You are working for an organization managing its Azure subscription. The subscription is called Sub1 and is associated with Company1, an Azure Active Directory (Azure AD) tenant. T...
Question #244Secure identity and access
You are working for an organization as an Azure administrator. The keys for Azure Service Bus are stored and accessed by Azure Key Vault used by several applications that organizat...
Question #245Secure compute, storage, and databases
You work for a company managing its Azure Virtual Machine (VM). The VM is running Windows Server named and is called VM1. You are tasked to perform emergency security configuration...
Question #246Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You work for an organization as an Azure administrator. There was an audit exercise that surfaced the fact that numerous privileged users have accounts without multi-factor authent...
Question #247Secure networking
You work for an organization that has offices in multiple regions across the world. There is a local file server at each office where departmental data is stored. Your company crea...
Question #248Secure compute, storage, and databases
Your organization wants to share some confidential drawings of a new design project with a customer. You are asked to provide read-only access to the files containing drawings, wit...
Question #249Secure identity and access
There is a web application being developed by your company. The app requires API access to a general purpose v2 storage account in Azure. You want to regenerate the access keys fro...
Question #250Secure networking
VNet1 is an Azure virtual network (VNet) where several development servers of the company are running. There development team has numerous Docker images stored in a private reposit...
Question #251Secure identity and access
You work for an organization using Azure Active Directory (Azure AD) Privileged Identity Management (PIM). You want Abby Brown, a user, to request administrative role elevation bef...
Question #252Secure compute, storage, and databases
Your organization stores Docker images for internal development using Azure Container Registry. You are required to configure the registry in such a way that a registry name is nee...
Question #253Secure networking
There are four Azure virtual machines (VMs) in your company. Windows Server 2016 is run on all the VMs and located on a subnet named web1 in a virtual network (VNet) named vnet1. T...
Question #254Secure compute, storage, and databases
There are six Azure virtual machines (VMs)in your organization. The VMs are running Linux. Your organization has a line-of-business (LOB) application and these six VMs form the web...
Question #255Secure compute, storage, and databases
You work for a company running five Windows Server 2012 R2 virtual machines (VMs). The VMs are located in the Azure West Europe region. The VMs were originally deployed from the Az...
Question #256Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You are working for a company as an Azure administrator. There are above 100 virtual machines (VMs) and all running on a single tenant. That one tenant has three subscriptions. Sec...
Question #257Secure compute, storage, and databases
There is a team of developers and data scientists and you are a security administrator on that team. It is planned to use Azure Databricks to perform data analysis. You are tasked...
Question #258Secure compute, storage, and databases
Your organization has a Microsoft SQL Server 2019 database. The database is hosted on an Azure virtual machine (VM). There is a web application that uses the database as its data s...
Question #259Secure compute, storage, and databases
Your company has an Azure SQL database. The database also consists of sensitive data. You want the prevent sensitive data from appearing as plain text inside the database system. W...
Question #260Secure identity and access
A company has a single Azure subscription on resources are deployed. There is a resource group where company's production resources are created. That resource group is called produ...
Question #261Secure identity and access
You work for a company as an Azure administrator. There is a third party email scanning system used by the organization. The system scans email every time an email is sent to or re...
Question #262Secure identity and access
You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant. From the Azure portal, you register an enterprise application. Which additional resour...
Azure Active DirectoryApplication RegistrationService PrincipalIdentity Management

PreviousPage 5 of 13Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.