Browse Exams Pricing

ExamsAZ-500Questions

AZ-500 Exam Questions

627 real AZ-500 exam questions with expert-verified answers and explanations. Page 9 of 13.

Question #415Secure identity and access
You have an Azure Active Directory (Azure AD) tenant that contains 500 users and an administrative unit named AU1. From the Azure Active Directory admin center, you plan to add the...
Question #416Secure identity and access
You have an Azure subscription that contains a user named User1. You need to ensure that User1 can create managed identities. The solution must use the principle of least privilege...
Question #417Manage Azure identities and governance - specifically configuring system-assigned and user-assigned managed identities for Azure resources to enable secure, credential-free access to Azure services.
Drag and Drop Question You have an Azure subscription that contains the resources shown in the following table. You plan to perform the following actions: - Deploy a new app named...
Managed IdentityAzure Key VaultAzure StorageIdentity Management
Question #418
You have an Azure AD tenant that contains the identities shown in the following table. You plan to implement Azure AD Identity Protection. What is the maximum number of user risk p...
Question #419Secure identity and access
You have an Azure subscription that contains a resource group named RG1 and the identities shown in the following table. You assign Group4 the Contributor role for RG1. Which ident...
Azure AD GroupsIdentity ManagementGroup Membership RulesIdentity Types
Question #420Implement and manage storage accounts - Configure Azure Storage security including identity-based authentication for Azure Files and time-limited access using SAS tokens (AZ-104 / AZ-305 Storage Security Domain)
Hotspot Question You have an Azure subscription that contains a storage account named contoso2023. You need to perform the following tasks: - Verify that identity-based authenticat...
Azure StorageAzure Files SMB AuthenticationShared Access Signature (SAS)Identity-Based Access Control
Question #421Secure networking
Hotspot Question You have an Azure subscription that contains the virtual machines shown in the following table. VNET1, VNET2, and VNET3 are peered with each other. You perform the...
Application Security GroupsNetwork SecurityVirtual NetworksAzure Regions
Question #422
You have an Azure subscription that contains an Azure Data Lake Storage Gen2 account named storage1. You deploy an Azure Synapse Analytics workspace named synapsews1 to a managed v...
Question #423
You are troubleshooting a security issue for an Azure Storage account. You enable Azure Storage Analytics logs and archive it to a storage account. What should you use to retrieve...
Question #424Secure networking
Hotspot Question You have an Azure subscription that contains the following Azure firewall: - Name: Fw1 - Azure region: UK West - Private IP address: 10.1.3.4 - Public IP address:...
Azure FirewallUser-Defined Routes (UDR)Network RoutingVirtual Network Peering
Question #425Implement and manage storage security in Azure - specifically configuring and managing Shared Access Signatures (SAS) and understanding how storage account keys affect SAS validity and resource-level access permissions.
Hotspot Question You have an Azure subscription that contains a user named User1 and a storage account named storage1. The storage1 account contains the resources shown in the foll...
Shared Access Signature (SAS)Azure Storage SecurityStorage Account KeysBlob Storage Access Control
Question #426
You have an Azure subscription that contains a managed identity named Identity1 and the Azure key vaults shown in the following table. KeyVault1 contains an access policy that gran...
Question #427
Hotspot Question You have an Azure subscription that contains a user named User1. User1 is assigned the Reader role for the subscription. You plan to create a custom role named Rol...
Question #428Implement and manage data security - specifically configuring Bring Your Own Key (BYOK) Transparent Data Encryption for Azure SQL using Azure Key Vault integration and managed identities.
Drag and Drop Question You have an Azure subscription that contains a Microsoft SQL server named Server1 and an Azure key vault named vault1. Server1 hosts a database named DB1. Va...
Transparent Data EncryptionAzure Key VaultCustomer-Managed KeysManaged Identity
Question #430
You have an Azure subscription that contains the resources shown in the following table. You need to configure storage1 to regenerate keys automatically every 90 days. Which cmdlet...
Question #431
You have an Azure subscription that contains an Azure key vault named Vault1 and a virtual machine named VM1. VM1 has the Key Vault VM extension installed. For Vault1, you rotate t...
Question #432Secure compute, storage, and databases
Hotspot Question You have an Azure SQL database named DB1 that contains a table named Tablet. You need to configure DB1 to meet the following requirements: - Sensitive data in Tabl...
Azure SQL DatabaseData SecurityData Discovery & ClassificationDynamic Data Masking
Question #433
Hotspot Question You have an Azure subscription that contains two users named User1 and User2 and the blob containers shown in the following table. Policy1 is configured as shown i...
Question #434
You have an Azure subscription that contains the resources shown in the following table. Both VM1 and VM2 connect to VNET1 and are configured to use NSG1. You need to ensure that o...
Question #435
You have an Azure AD tenant that contains a user named User1. You purchase an app named App1. User1 needs to publish App1 by using Azure AD Application Proxy. Which role should you...
Question #436
Hotspot Question You have an Azure AD tenant named contoso.com that contains the users shown in the following table. You add enterprise applications to contoso.com as shown in the...
Question #437
You have an Azure subscription that is linked to an Azure AD tenant and contains the resources shown in the following table. Which resources can be assigned the Contributor role fo...
Question #438Implement and Manage Identity and Access in Azure AD - specifically managing authentication methods including passwordless authentication options (Microsoft Authenticator, Windows Hello for Business, FIDO2 security keys)
Drag and Drop Question You have an Azure AD tenant that contains the users shown in the following table. You enable passwordless authentication for the tenant. Which authentication...
Passwordless AuthenticationAzure AD Authentication MethodsWindows Hello for BusinessFIDO2 Security Keys
Question #439Implement and manage identity in Microsoft Entra ID – Configure Microsoft Entra Verified ID and verifiable credentials infrastructure
Drag and Drop Question You have an Azure AD tenant and an application named App1. You need to ensure that App1 can use Microsoft Entra Verified ID to verify credentials. Which thre...
Microsoft Entra Verified IDAzure Key VaultApp RegistrationVerifiable Credentials
Question #440Implement and manage identity and access - Configure and manage Azure Active Directory Conditional Access policies (Microsoft SC-300 / AZ-104)
Drag and Drop Question You have an Azure subscription that contains an Azure web app named App1. You plan to configure a Conditional Access policy for App1. The solution must meet...
Conditional AccessAzure ADDevice ComplianceIdentity Protection
Question #441Secure identity and access
You have an Azure subscription that contains a user named User1. You need to ensure that User1 can perform the following tasks: - Create groups. - Create access reviews for role-as...
Question #442Manage Azure identities and governance - specifically, managing access to Azure resources using Role-Based Access Control (RBAC) and applying the principle of least privilege.
SIMULATION You need to ensure that a user named user2-28681041 can manage the properties of the virtual machines in the RG1lod28681041 resource group. The solution must use the pri...
Azure RBACRole AssignmentsPrinciple of Least PrivilegeVirtual Machine Contributor
Question #443Manage Azure Active Directory (Azure AD) objects - specifically creating and managing Azure AD tenants and user accounts, typically found in the 'Manage Identities and Governance' domain of AZ-104: Microsoft Azure Administrator.
SIMULATION You need to create a new Azure AD directory named 28681041.onmicrosoft.com. The new directory must contain a new user named [email protected]. To complete t...
Azure Active DirectoryTenant ManagementUser AdministrationIdentity Governance
Question #444Secure identity and access
Hotspot Question You have an Azure subscription that contains a user named Admin1 and an Azure key vault named Vault1. You plan to implement Microsoft Entra Verified ID. You need t...
Azure Key VaultAccess policiesMicrosoft Entra Verified IDLeast privilege
Question #445Secure identity and access
You have an Azure AD tenant that contains three users named User1, User2, and User3. You configure Azure AD Password Protection as shown in the following exhibit. The users perform...
Question #446Secure identity and access
You have an Azure subscription that uses Azure AD Privileged Identity Management (PIM). A user named User1 is eligible for the Billing administrator role. You need to ensure that t...
Question #447Secure compute, storage, and databases
You have an Azure subscription that contains a user named User1 and a storage account that hosts a blob container named blob1. You need to grant User1 access to blob1. The solution...
Question #448Secure identity and access
You have an Azure subscription linked to an Azure AD tenant named contoso.com. Contoso.com contains a user named User1 and an Azure web app named App1. You plan to enable User1 to...
Question #449Secure identity and access
You have an Azure AD tenant. You plan to implement an authentication solution to meet the following requirements: - Require number matching. - Display the geographical location whe...
Question #450Manage Azure identities and governance - specifically implementing and managing Azure Policy using PowerShell cmdlets (AZ-104 / AZ-900 governance domain)
Drag and Drop Question You have an Azure subscription that contains a resource group named RG1 and an Azure policy named Policy1. You need to assign Policy1 to RG1. How should you...
Azure PolicyPowerShellResource GovernancePolicy Assignment
Question #451Manage Azure identities and governance - specifically implementing and managing Azure Policy to enforce organizational standards and compliance across Azure subscriptions and resource groups.
Hotspot Question You have an Azure subscription named Sub1 that contains the resource groups shown in the following table. You create the Azure Policy definition shown in the follo...
Azure PolicyNaming ConventionsPolicy AssignmentResource Governance
Question #452Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Your on-premises network contains a Hyper-V virtual machine named VM1. You need to use Azure Arc to onboard VM1 to Microsoft Defender for Cloud. What should you install first?
Question #453Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription named Sub1 that uses Microsoft Defender for Cloud. You have the management group hierarchy shown in the following exhibit. You create the definitions...
Question #454Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription that contains a Microsoft Defender External Attack Surface Management (Defender EASM) resource named EASM1. EASM1 has discovery enabled and contains...
Question #455Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription that uses Microsoft Defender for Cloud. You need to use Defender for Cloud to review regulatory compliance with the Azure CIS 1.4.0 standard. The sol...
Question #456Secure networking
You have an Azure subscription that contains an Azure key vault named Vault1 and a virtual machine named VM1. VM1 is connected to a virtual network named VNet1. You need to allow a...
Question #457Secure networking
You have an Azure subscription. You create a new virtual network named VNet1. You plan to deploy an Azure web app named App1 that will use VNet1 and will be reachable by using priv...
Question #458Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription and the computers shown in the following table. You need to perform a vulnerability scan of the computers by using Microsoft Defender for Cloud. Whic...
Question #459Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription that uses Microsoft Defender for Cloud. The subscription contains the Azure Policy definitions shown in the following table. Which definitions can be...
Question #460Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Hotspot Question On Monday, you configure an email notification in Microsoft Defender for Cloud to notify [email protected] about alerts that have a severity level of Low, Medium,...
Microsoft Defender for Cloudsecurity alertsemail notificationsalert severity
Question #461Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription that uses Microsoft Defender for Cloud. You have accounts for the following cloud services: - Alibaba Cloud - Amazon Web Services (AWS) - Google Clou...
Microsoft Defender for CloudMulti-cloud securityAWS integrationGCP integration
Question #462Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription. You plan to map an online infrastructure and perform vulnerability scanning for the following: - ASNs - Hostnames - IP addresses - SSL certificates...
Question #463Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Hotspot Question You have an Azure subscription that uses Microsoft Defender for Cloud. You plan to use the Secure Score Over Time workbook. You need to configure the Continuous ex...
Microsoft Defender for Cloudcontinuous exportsecure scoreLog Analytics
Question #464Secure compute, storage, and databases
You are troubleshooting a security issue for an Azure Storage account. You enable Azure Storage Analytics logs and archive it to a storage account. What should you use to retrieve...
Question #465Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
You have an Azure subscription that uses Microsoft Defender for Cloud. You have an Amazon Web Services (AWS) account. You need to ensure that when you deploy a new AWS Elastic Comp...

PreviousPage 9 of 13Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.