az-500 Free Practice Test

- (Exam Topic 4)
Your on-premises network contains the servers shown in the following table.

You have an Azure subscription That contains multiple virtual machines that run either Windows Server 2019 Of SLES.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 4)
You have an Azure subscription that contains the virtual machines shown in the following table.

All the virtual networks are peered. You deploy Azure Bastion to VNET2.
Which virtual machines can be protected by the bastion host?

1. A. VM1, VM2, VM3, and VM4
2. B. VM1, VM2, and VM3 only
3. C. VM2 and VM4 only
4. D. VM2 only

Correct Answer: A
https://docs.microsoft.com/en-us/azure/bastion/vnet-peering

- (Exam Topic 4)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You use Azure Security Center for the centralized policy management of three Azure subscriptions. You use several policy definitions to manage the security of the subscriptions.
You need to deploy the policy definitions as a group to all three subscriptions.
Solution: You create an initiative and an assignment that is scoped to a management group. Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A
References:
https://docs.microsoft.com/en-us/azure/governance/policy/overview

- (Exam Topic 4)
You have an Azure subscription that contains an Azure Blob storage account bolb1. You need to configure attribute-based access control (ABAC) for blob1.
Which attributes can you use in access conditions?

1. A. blob index tags only
2. B. blob index tags and container names only
3. C. file extensions and container names only
4. D. blob index tags, file extensions, and container names

Correct Answer: A

- (Exam Topic 4)
You have a web app hosted on an on-premises server that is accessed by using a URL of https://www.contoso.com. You plan to migrate the web app to Azure. You will continue to use https://www.contoso.com. You need to enable HTTPS for the Azure web app. What should you do first?

1. A. Export the public key from the on-premises server and save the key as a P7b file.
2. B. Export the private key from the on-premises server and save the key as a PFX file that is encrypted by using TripleDES.
3. C. Export the public key from the on-premises server and save the key as a CER file.
4. D. Export the private key from the on-premises server and save the key as a PFX file that is encrypted by using AES256.

Correct Answer: B
https://docs.microsoft.com/en-us/azure/app-service/configure-ssl-certificate#private-certificate-requirements