Browse Exams Pricing

ExamsAZ-500Questions

AZ-500 Exam Questions

627 real AZ-500 exam questions with expert-verified answers and explanations. Page 8 of 13.

Question #365
You have a Microsoft 365 tenant that uses an Azure Active Directory (Azure AD) tenant. The Azure AD tenant syncs to an on-premises Active Directory domain by using an instance of A...
Question #366
Hotspot Question You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table. You create and enforce an Azure AD Identity Protection s...
Question #367
You have an Azure subscription name Sub1 that contains an Azure Policy definition named Policy1. Policy1 has the following settings: - Definition location: Tenant Root Group - Cate...
Question #368
You have an Azure subscription that contains the resources shown in the following table. You plan to deploy the virtual machines shown in the following table. You need to assign ma...
Question #369
You have an Azure subscription that uses Microsoft Sentinel. You need to create a Microsoft Sentinel notebook that will use the Guided Investigation - Anomaly Lookup template. What...
Question #370
You have an Azure Active Directory (Azure AD) tenant that contains a user named User1. You need to ensure that User1 can create and manage administrative units. The solution must u...
Question #371
You have an Azure subscription that contains the resources shown in the following Table. You plan to enable Microsoft Defender for Cloud for the subscription. Which resources can b...
Question #372
You have the Azure resource shown in the following table. You need to meet the following requirements: - Internet-facing virtual machines must be protected by using network securit...
Question #373
Hotspot Question You have an Azure subscription that has a managed identity named identity and is linked to an Azure Active Directory (Azure AD) tenant. The tenant contains the res...
Question #374
Hotspot Question You have an Azure subscription that contains an Azure SQL database named SQL1. You plan to deploy a web app named App1. You need to provide App1 with read and writ...
Question #375Manage identities and governance in Azure - specifically implementing role-based access control (RBAC) to manage authorization and access to Azure resources (AZ-104 Domain: Manage Azure Identities and Governance)
SIMULATION You need to ensure that a user named user2-12345678 can manage the properties of the virtual machines in the RG1lod12345678 resource group. The solution must use the pri...
Azure RBACRole AssignmentPrinciple of Least PrivilegeAzure Virtual Machines
Question #376Manage Azure Active Directory (Azure AD) identities - specifically creating and configuring new Azure AD tenants and managing users within those tenants, aligning with the AZ-104 exam domain: 'Manage identities and governance in Azure'.
SIMULATION You need to create a new Azure Active Directory (Azure AD) directory named 12345678.onmicrosoft.com. The new directory must contain a new user named [email protected]...
Azure Active DirectoryTenant ManagementUser ManagementIdentity and Access Management
Question #377Manage Azure identities and governance - specifically implementing and managing Azure Policy to enforce organizational standards and assess compliance across Azure resources (AZ-104 Domain: Governance and Compliance)
Hotspot Question You have an Azure subscription that contains the resources shown in the following table. Transparent Data Encryption (TDE) is disabled on SQL1. You assign policies...
Azure Policy EffectsTransparent Data EncryptionARM Template DeploymentAzure SQL Database Compliance
Question #378Manage Azure identities and governance - specifically implementing and managing Azure Policy effects (Audit, Deny, DeployIfNotExists) and understanding how custom RBAC roles interact with policy enforcement on resource groups.
Hotspot Question You have an Azure subscription that contains a resource group named RG1. RG1 contains a virtual machine named VM1 that uses Azure Active Directory (Azure AD) authe...
Azure PolicyPolicy EffectsRBACCompliance
Question #379Manage Azure Active Directory identities and governance - specifically, configuring and managing administrative units and understanding the scope and limitations of delegated administrative roles in Azure AD (Microsoft Entra ID).
Hotspot Question You have an Azure Active Directory (Azure AD) tenant that contains two administrative units named AU1 and AU2. Users are assigned to the administrative units as sh...
Azure AD Administrative UnitsRole-Based Access Control (RBAC)Password Reset PermissionsDelegated Administration
Question #380Implement data security and compliance in Azure SQL, specifically configuring Dynamic Data Masking to protect sensitive data from unauthorized users.
Drag and Drop Question You have an Azure subscription that contains an Azure SQL database named SQLDB1. SQLDB1 contains the columns shown in the following table. For the Email and...
Azure SQL DatabaseDynamic Data MaskingData SecurityDefault Masking Function
Question #381Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Hotspot Question Your on-premises network contains the servers shown in the following table. You have an Azure subscription that contains multiple virtual machines that run either...
Microsoft Defender for CloudAdaptive Application ControlsEndpoint protectionLinux security
Question #382Secure networking
You have an Azure subscription that contains an Azure SQL Database logic server named SQL1 and an Azure virtual machine named VM1. VM1 uses a private IP address only. The Firewall...
Question #383Manage Identity and Access - specifically managing authorization for Azure Key Vault using built-in RBAC roles and understanding their scope of permissions for keys, secrets, and certificates (AZ-104 / SC-300 domain)
Hotspot Question You have an Azure subscription that contains an Azure key vault. The role assignments for the key vault are shown in the following exhibit. Use the drop-down menus...
Azure Key VaultRBAC RolesKey Vault Data Plane RolesIdentity and Access Management
Question #384Secure networking
You have an Azure subscription that contains a resource group named RG1 and the network security groups (NSGs) shown in the following table. You create the Azure policy shown in th...
Question #385Secure identity and access
Hotspot Question You have an Azure Active Directory (Azure AD) tenant named contoso.com that has Azure Active Directory Premium Plan 1 licenses. You need to create a group named Gr...
Azure Active DirectoryGlobal reader roleGroup typesAzure AD Admin Center
Question #386Secure compute, storage, and databases
You have an Azure subscription that contains an Azure SQL database named SQL1 and an Azure key vault named KeyVault1. KeyVault1 stores the keys shown in the following table. You re...
Question #387Manage security operations / Configure and manage threat protection using Microsoft Defender for Cloud - specifically understanding which Azure Storage service types and account kinds are supported and monitored by Azure Defender for Storage when enabled at the subscription scope.
Hotspot Question You have an Azure subscription that contains the storage accounts shown in the following table. You enable Azure Defender for Storage. Which storage services of st...
Azure Defender for StorageMicrosoft Defender for CloudStorage Account SecurityAzure Security Center
Question #388Manage Azure identities and governance - specifically implementing and managing Azure Role-Based Access Control (RBAC) to control access to Azure resources at various scopes (subscription, resource group, resource level)
Hotspot Question You have the role assignments shown in the following exhibit. Use the drop-down menus to select the answer choice that completes each statement based on the inform...
Azure RBACRole AssignmentsAzure Storage SecurityAzure Resource Management
Question #389Secure identity and access
Hotspot Question You have an Azure subscription that contains a resource group named RG1. RG1 contains a virtual machine named VM1 that uses Azure Active Directory (Azure AD) authe...
Azure RBACCustom rolesAzure AD authenticationVirtual machine access control
Question #390Secure identity and access
Hotspot Question You have a management group named MG1 that contains an Azure subscription and a resource group named RG1. RG1 contains a virtual machine named VM1. You have the cu...
Azure RBACCustom rolesManagement groupsPermission inheritance
Question #391Secure compute, storage, and databases
You have an Azure subscription that contains a storage account named storage1 and two web apps named app1 and app2. Both apps will write data to storage1. You need to ensure that e...
Question #392Secure identity and access
You have an Azure subscription that contains an Azure Files share named share1 and a user named User1. Identity-based authentication is configured for share1. User1 attempts to acc...
Azure Files AuthenticationSMB ProtocolKerberosIdentity-based Access
Question #393Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure Sentinel workspace. You need to create a playbook. Which two triggers will start the playbook? Each correct answer presents a complete solution. NOTE: Each correc...
Question #394Secure identity and access
You have an Azure Active Directory (Azure AD) tenant that contains a user named User1. You plan to enable passwordless authentication for the tenant. You need to ensure that User1...
Question #395Secure compute, storage, and databases
You are troubleshooting a security issue for an Azure Storage account. You enable Azure Storage Analytics logs and archive it to a storage account. What should you use to retrieve...
Question #396Manage Azure identities and governance - specifically configuring Azure Key Vault security including RBAC role assignments, access policies, and the distinction between control plane (Azure RBAC) and data plane (access policies) permissions in Key Vault.
Hotspot Question You have an Azure subscription that is linked to an Azure Active Directory (Azure AD). The tenant contains the users shown in the following table. You have an Azur...
Azure Key VaultAzure RBACKey Vault Access PoliciesControl Plane vs Data Plane
Question #397Implement and manage storage in Azure - specifically configuring blob storage access controls, stored access policies, and immutable storage compliance policies (AZ-104 / AZ-305)
Hotspot Question You have an Azure subscription that contains a blob container named cont1. Cont1 has the access policies shown in the following exhibit. Use the drop-down menus to...
Azure Blob StorageStored Access PoliciesImmutable StorageAzure Storage Security
Question #398Secure compute, storage, and databases
You have an Azure subscription that contains an Azure SQL database named DB1 in the East US Azure region. You create the storage accounts shown in the following table. You plan to...
Question #399Secure compute, storage, and databases
Hotspot Question You have a hybrid Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named User1 and the servers shown in the following table. The ten...
Azure FilesSMB protocolHybrid identityKerberos
Question #400Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an on-premises network and an Azure subscription. You have the Microsoft SQL Server instances shown in the following table. You plan to implement Microsoft Defender for SQ...
Question #401Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure environment. You need to identify any Azure configurations and workloads that are non-compliant with ISO 27001:2013 standards. What should you use?
Question #402Secure compute, storage, and databases
Hotspot Question You have an Azure subscription that contains the key vaults shown in the following table. The subscription contains the users shown in the following table. On June...
Azure Key VaultSoft-deletePurge protectionRBAC
Question #403Secure identity and access
You have an Azure AD tenant. The tenant contains users that are assigned Azure AD Premium P2 licenses. You have a partner company that has a domain named fabrikam.com. The fabrikam...
Question #404Secure identity and access
You have an Azure Active Directory (Azure AD) tenant that contains a group named Group1. You need to ensure that the members of Group1 sign in by using passwordless authentication....
Question #405Secure identity and access
You have an Azure subscription that contains a web app named App1. Users must be able to select between a Google identity or a Microsoft identity when authenticating to App1. You n...
Question #406Secure compute, storage, and databases
You have an Azure key vault named Vault1 that stores the resources shown in following table. Which resources support the creation of a rotation policy?
Question #407Secure identity and access
You have an Azure subscription that contains a a blob container named blob1. You need to grant user1 access to blob1. The solution must ensure that the access expires after six day...
Question #408Secure compute, storage, and databases
You have an Azure subscription that contains an Azure key vault. You need to configure the maximum number of days for which new keys are valid. The solution must minimize administr...
Question #409Secure networking
Hotspot Question You have an Azure subscription that contains the virtual machines shown in the following table. You have an Azure Cosmos DB account named cosmos1 configured as sho...
Azure Cosmos DBVirtual networksService endpointsFirewall rules
Question #410Manage Azure identities and governance - specifically configuring role-based access control (RBAC) with custom roles and understanding Azure resource provider namespaces
Drag and Drop Question You have an Azure subscription. You plan to create two custom roles named Role1 and Role2. The custom roles will be used to perform the following tasks: - Me...
Azure RBACCustom RolesResource ProvidersAzure Networking
Question #411Secure identity and access
You have an Azure subscription linked to an Azure Active Directory Premium Plan 1 tenant. You plan to implement Azure Active Directory (Azure AD) Identity Protection. You need to e...
Question #412Secure identity and access
Hotspot Question You have an Azure subscription that contains the resources shown in the following table. You perform the following tasks: - Create a managed identity named Managed...
Managed identitiesService principalsEnterprise applicationsRBAC
Question #413Secure identity and access
Hotspot Question You have an Azure Active directory tenant that syncs with an Active Directory Domain Services (AD DS) domain. You plan to create an Azure file share that will cont...
Azure FilesIdentity storesAzure ADFile share permissions
Question #414Secure identity and access
You have an Azure subscription. You plan to deploy a new Conditional Access policy named CAPolicy1. You need to use the What if tool to evaluate how CAPolicy1 wall affect users. Th...
Conditional AccessReport only modePolicy evaluationAzure AD

PreviousPage 8 of 13Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.