This page was exported from Exams Labs Braindumps [ http://blog.examslabs.com ] Export date:Sat Sep 21 11:37:20 2024 / +0000 GMT ___________________________________________________ Title: [Q28-Q44] Free Sales Ending Soon - Use Real AZ-500 PDF Questions [Feb 03, 2023] --------------------------------------------------- Free Sales Ending Soon - Use Real AZ-500 PDF Questions [Feb 03, 2023] Updated Feb-2023 Exam AZ-500 Dumps - Pass Your Certification Exam Microsoft Azure Security Technologies AZ-500 Exam The Azure Security Technologies AZ-500 exam is a Microsoft certification exam that was first made available in 2010. This exam is designed to validate your expertise in cloud security. With this exam, you can demonstrate your skills as a Cloud Services Engineer and Cloud Services Architect. Journey men who are just starting out with the Microsoft cloud can take this exam to show their mastery of core security technologies. Guides for this exam are available online, so you can study on your own time. Learning how to take this exam can help you prepare for other Microsoft certification exams that require an Azure technical certification. Monitor your progress with these Azure Security Technologies AZ-500 exam dumps. Accounts that are associated with the Azure cloud are protected using Azure Active Directory. Microsoft AZ-500 exam dumps can help you validate your understanding of these security features. Feel free to send comments if you have any questions about Azure Security Technologies AZ-500 certification exam. Paying attention to Azure security technologies AZ-500 exam is a must. Measure your security skills against the Azure Security Technologies AZ-500 requirements. Build your reputation for competence in the complex field of cloud security technologies. Learners who demonstrate their mastery at the AZ-500 exam gain a competitive advantage as IT professionals. Options for validating your understanding of cloud security technologies include taking an exam or solving a series of problems. Comment if you have any questions about Azure security technologies AZ-500 exam. Focus first on the AZ-500 objectives and then study for other Azure technical exams including AZ-200, AZ-200, and AZ-510. Existing Azure users can work toward certification on Azure technologies. How much AZ-500 Exam Cost The exam cost of the Microsoft AZ-500 exam is 165 USD.   NEW QUESTION 28You have an Azure Active Directory (Azure AD) tenant named contoso1812.onmicrosoft.com that contains the users shown in the following table.You create an Azure Information Protection label named Label1. The Protection settings for Label1 are configured as shown in the exhibit. (Click the Exhibit tab.)Label1 is applied to a file named File1.For each of the following statements, select Yes if the statement is true, Otherwise, select No.NOTE: Each correct selection is worth one point. ExplanationNEW QUESTION 29You have an Azure subscription.You need to create and deploy an Azure policy that meets the following requirements:When a new virtual machine is deployed, automatically install a custom security extension.Trigger an autogenerated remediation task for non-compliant virtual machines to install the extension.What should you include in the policy? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/governance/policy/how-to/remediate-resourcesNEW QUESTION 30You have an Azure Sentinel workspace that has the following data connectors:Azure Active Directory Identity ProtectionCommon Event Format (CEF)Azure FirewallYou need to ensure that data is being ingested from each connector.From the Logs query window, which table should you query for each connector? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. NEW QUESTION 31Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You have a hybrid configuration of Azure Active Directory (Azure AD).You have an Azure HDInsight cluster on a virtual network.You plan to allow users to authenticate to the cluster by using their on-premises Active Directory credentials.You need to configure the environment to support the planned authentication.Solution: You deploy Azure Active Directory Domain Services (Azure AD DS) to the Azure subscription.Does this meet the goal?  Yes  No Section: [none]Explanation:Instead, you connect HDInsight to your on-premises network by using Azure Virtual Networks and a VPN gateway.Note: To allow HDInsight and resources in the joined network to communicate by name, you must perform the following actions:* Create Azure Virtual Network.* Create a custom DNS server in the Azure Virtual Network.* Configure the virtual network to use the custom DNS server instead of the default Azure Recursive Resolver.* Configure forwarding between the custom DNS server and your on-premises DNS server.Reference:https://docs.microsoft.com/en-us/azure/hdinsight/connect-on-premises-networkNEW QUESTION 32You need to configure SQLDB1 to meet the data and application requirements.Which three actions should you recommend be performed in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. ExplanationStep 1: Connect to SQLDB1 by using Microsoft SQL Server Management Studio (SSMS) Step 2: In SQLDB1, create contained database users.Create a contained user in the database that represents the VM’s system-assigned identity.Step 3: In Azure AD,create a system-assigned managed identity.A system-assigned identity for a Windows virtual machine (VM) can be used to access an Azure SQL server.Managed Service Identities are automatically managed by Azure and enable you to authenticate to services that support Azure AD authentication, without needing to insert credentials into your code.References:https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/tutorial-windows-vmNEW QUESTION 33You have an Azure subscription that contains the following resources:A network virtual appliance (NVA) that runs non-Microsoft firewall software and routes all outbound traffic from the virtual machines to the internet An Azure function that contains a script to manage the firewall rules of the NVA Azure Security Center standard tier enabled for all virtual machines An Azure Sentinel workspace30 virtual machinesYou need to ensure that when a high-priority alert is generated in Security Center for a virtual machine, an incident is created in Azure Sentinel and then a script is initiated to configure a firewall rule for the NVA.How should you configure Azure Sentinel to meet the requirements? To answer, drag the appropriate components to the correct requirements. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/sentinel/create-incidents-from-alertshttps://docs.microsoft.com/en-us/azure/sentinel/connect-azure-security-centerNEW QUESTION 34You have the Azure virtual networks shown in the following table.You have the Azure virtual machines shown in the following table.The firewalls on all the virtual machines allow ping traffic.NSG1 is configured as shown in the following exhibit.Inbound security rulesOutbound security rulesFor each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point. NEW QUESTION 35You need to deploy an Azure firewall to a virtual network named VNET3.To complete this task, sign in to the Azure portal and modify the Azure resources.This task might take several minutes to complete. You can perform other tasks while the task completes. To add an Azure firewall to a VNET, the VNET must first be configured with a subnet named AzureFirewallSubnet (if it doesn’t already exist).Configure VNET3.In the Azure portal, type Virtual Networks in the search box, select Virtual Networks from the search results then select VNET3. Alternatively, browse to Virtual Networks in the left navigation pane.In the Overview section, note the Location (region) and Resource Group of the virtual network. We’ll need these when we add the firewall.Click on Subnets.Click on + Subnet to add a new subnet.Enter AzureFirewallSubnet in the Name box. The subnet must be named AzureFirewallSubnet.Enter an appropriate IP range for the subnet in the Address range box.Click the OK button to create the subnet.Add the Azure Firewall.In the settings of VNET3 click on Firewall.Click the Click here to add a new firewall link.The Resource group will default to the VNET3 resource group. Leave this default.Enter a name for the firewall in the Name box.In the Region box, select the same region as VNET3.In the Public IP address box, select an available public IP address if one exists, or click Add new to add a new public IP address.Click the Review + create button.Review the settings and click the Create button to create the firewall.Reference:https://docs.microsoft.com/en-us/azure/firewall/tutorial-firewall-deploy-portalNEW QUESTION 36You network contains an on-premises Active Directory domain that syncs to an Azure Active Directory (Azure AD) tenant. The tenant contains the users shown in the following table.The tenant contains the groups shown in the following table.You configure a multi-factor authentication (MFA) registration policy that and the following settings:Assignments:Include: Group1Exclude Group2Controls: Require Azure MFA registrationEnforce Policy: OnFor each of the following statements, select Yes if the statement is true. Otherwise, select No. NEW QUESTION 37You have Azure virtual machines that have Update Management enabled. The virtual machines are configured as shown in the following table.You schedule two update deployments named Update1 and Update2. Update1 updates VM3. Update2 updates VM6.Which additional virtual machines can be updated by using Update1 and Update2? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Explanation:Update1: VM1 and VM2 onlyVM3: Windows Server 2016 West US RG2Update2: VM4 and VM5 onlyVM6: CentOS 7.5 East US RG1For Linux, the machine must have access to an update repository. The update repository can be private or public.References:https://docs.microsoft.com/en-us/azure/automation/automation-update-managementNEW QUESTION 38You have an Azure subscription that contains a storage account named storage1 and several virtual machines. The storage account and virtual machines are in the same Azure region. The network configurations of the virtual machines are shown in the following table.The virtual network subnets have service endpoints defined as shown in the following table.You configure the following Firewall and virtual networks settings for storage1:Allow access from: Selected networksVirtual networks: VNET3Subnet3Firewall – Address range: 52.233.129.0/24For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point. NEW QUESTION 39You create an alert rule that has the following settings:Resource: RG1Condition: All Administrative operationsActions: Action groups configured for this alert rule: ActionGroup1Alert rule name: Alert1You create an action rule that has the following settings:Scope: VM1Filter criteria: Resource Type = “Virtual Machines”Define on this scope: SuppressionSuppression config: From now (always)Name: ActionRule1For each of the following statements, select Yes if the statement is true. Otherwise, select No.Note: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/azure-monitor/platform/alerts-activity-loghttps://docs.microsoft.com/en-us/azure/azure-monitor/platform/alerts-action-rulesNEW QUESTION 40You have an Azure subscription that contains the Azure Active Directory (Azure AD) resources shown in the following table.You create the groups shown in the following table.Which resources can you add to Group5 and Group6? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. NEW QUESTION 41You have an Azure subscription that contains the resources shown in the following table.An IP address of 10.1.0.4 is assigned to VM5. VM5 does not have a public IP address.VM5 has just in time (JIT) VM access configured as shown in the following exhibit.You enable JIT VM access for VM5.NSG1 has the inbound rules shown in the following exhibit.For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point. ExplanationNEW QUESTION 42You have an Azure subscription that contains the virtual machines shown in the following table.From Azure Security Center, you turn on Auto Provisioning.You deploy the virtual machines shown in the following table.On which virtual machines is the Log Analytics agent installed?  VM3 only  VM1 and VM3 only  VM3 and VM4 only  VM1, VM2, VM3, and VM4 When automatic provisioning is On, Security Center provisions the Log Analytics Agent on all supported Azure VMs and any new ones that are created.Supported Operating systems include: Ubuntu 14.04 LTS (x86/x64), 16.04 LTS (x86/x64), and 18.04 LTS (x64) and Windows Server 2008 R2, 2012, 2012 R2, 2016, version 1709 and 1803 Reference:https://docs.microsoft.com/en-us/azure/security-center/security-center-enable-data-collectionNEW QUESTION 43You create an Azure subscription with Azure AD Premium P2.You need to ensure that you can use Azure Active Directory (Azure AD) Privileged Identity Management (PIM) to secure Azure roles.Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Explanation1. Verify your identity with MFA2. Consent to PIM3. Sign up PIM for AAD RolesNEW QUESTION 44Your company has an Azure subscription named Subscription1 that contains the users shown in the following table.The company is sold to a new owner.The company needs to transfer ownership of Subscription1.Which user can transfer the ownership and which tool should the user use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/billing/billing-subscription-transfer#transfer-billing-ownership-of-an-azure-subscription Loading … AZ-500 Dumps To Pass Microsoft Azure Security Engineer Associate Exam in One Day: https://www.examslabs.com/Microsoft/Microsoft-Azure-Security-Engineer-Associate/best-AZ-500-exam-dumps.html --------------------------------------------------- Images: https://blog.examslabs.com/wp-content/plugins/watu/loading.gif https://blog.examslabs.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2023-02-03 14:38:38 Post date GMT: 2023-02-03 14:38:38 Post modified date: 2023-02-03 14:38:38 Post modified date GMT: 2023-02-03 14:38:38