Microsoft AZ-500 Exam Practice Test Instant Access

Question 1

You have a Microsoft Entra tenant that uses Microsoft Entra Permissions Management and contains the accounts shown in the following table:

Which accounts will be listed as assigned to highly privileged roles on the Azure AD insights tab in the Entra Permissions Management portal?

AAdmin1 only

BAdmin2 and Admin3 only

CAdmin2 and Admin4 only

DAdmin1. Admin2, and Admin3 only

EAdmin2. Admin3, and Admin4 only

FAdmin1. Admin2, Admin3. and Admin4

Answer : D

Question 2

You have an Azure subscription that contains an Azure key vault named Vault1 and a virtual machine named VM1. VM1 has the Key Vault VM extension installed.

For Vault1, you rotate the keys, secrets, and certificates.

What will be updated automatically on VM1?

Athe keys only

Bthe secrets only

Cthe certificates only

Dthe keys and secrets only

Ethe secrets and certificates only

Fthe keys, secrets, and certificates

Answer : C

Question 3

You have a Microsoft Entra tenant that contains three users named User1, User2, and User3.

You configure Microsoft Entra Password Protection as shown in the following exhibit.

The users perform the following tasks:

* User1 attempts to reset her password to COntOsO

* User2 attempts to reset her password to F@brikamHQ

* User3 attempts to reset her password to PrOduct123.

Which password reset attempts fail?

AUser1 only

BUser2only

CUser3 only

DUser1 and User3 only

EUser1, User2, and User3

Answer : E

Question 4

You have an Azure subscription named Sub1 that has Security defaults disabled. The subscription contains the following users:

* Five users that have owner permissions for Sub1.

* Ten users that have owner permissions for Azure resources.

None of the users have multi-factor authentication (MFA) enabled.

Sub1 has the secure score as shown in the Secure Score exhibit. (Click the Secure Score tab.)

You plan to enable MFA for the following users:

* Five users that have owner permissions for Sub1.

* Five users that have owner permissions for Azure resources.

By how many points will the secure score increase after you perform the planned changes?

C7.5

D10

E14

Answer : C

Question 5

You have an Azure subscription that contains the virtual machines shown in the following table.

You are configuring Microsoft Defender for Servers.

You plan to enable adaptive application controls to create an allowlist of known-safe apps on the virtual machines. Which virtual machines support the use of adaptive application controls?

AVM1 and VM2 only

BVM2 and VM4 only

CVM2 and VM3 only

DVM1, VM2, VM3, and VM4

Answer : D

Question 6

You have an Azure AD tenant that contains the users shown in the following table.

You need to ensure that the users cannot create app passwords. The solution must ensure that User1 can continue to use the Mail and Calendar app.

What should you do?

AAssign User! the Authentication Policy Administrator role.

BEnable Azure AD Password Protection.

CConfigure a multi-factor authentication (MFA) registration policy.

DCreate a new app registration.

Answer : C

Question 7

You have an Azure subscription that contains a resource group named RG1 and a security group named ServerAdmins. RG1 contains 10 virtual machines, a virtual network named VNET1, and a network security group JNSG) named NSG1. ServerAdmins can access the virtual machines by using RDP.

You need to ensure that NSG1 only allows RDP connections to the virtual machines for a maximum of 60 minutes when a member of ServerAdmins requests access.

What should you configure?

Aan Azure policy assigned to RGl

Ba just in time (JIT) VM access policy in Microsoft Defender for Cloud

Can Azure AD Privileged Identity Management (PiM) role assignment

Dan Azure Bastion host on VNET1

Answer : B

Microsoft AZ-500 Microsoft Azure Security Technologies Exam Practice Test