az-500 Free Practice Test

- (Exam Topic 4)
From Azure Security, you create a custom alert rule.
You need to configure which users will receive an email message when the alert is triggered. What should you do?

1. A. From Azure Monitor, create an action group.
2. B. From Security Center, modify the Security policy settings of the Azure subscription.
3. C. From Azure Active Directory (Azure AD). modify the members of the Security Reader role group.
4. D. From Security Center, modify the alert rule.

Correct Answer: A

References:
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/action-groups

- (Exam Topic 4)
You have an Azure subscription named Subscription1 that contains the resources shown in the following table.

You need to identify which initiatives and policies you can add to Subscription1 by using Azure Security Center.
What should you identify?

1. A. Policy1 and Policy2 only
2. B. Initiative1 only
3. C. Initiative1 and Initiative2 only
4. D. Initiative1, Initiative2, Policy1, and Policy2

Correct Answer: D
Reference:
https://docs.microsoft.com/en-us/azure/security-center/custom-security-policies

- (Exam Topic 4)
You have an Azure subscription that contains the resources shown in the following table.

An IP address of 10.1.0.4 is assigned to VM5. VM5 does not have a public IP address.
VM5 has just in time (JIT) VM access configured as shown in the following exhibit.

You enable JIT VM access for VM5.
NSG1 has the inbound rules shown in the following exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 4)
You have an Azure Active Din-dory (Azure AD) tenant named contoso.com that contains a user named User1. You plan to publish several apps in the tenant.
You need to ensure that User1 can grant admin consent for the published apps.
Which two possible user roles can you assign to User! to achieve this goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

1. A. Application developer
2. B. Security administrator
3. C. Application administrator
4. D. User administrator
5. E. Cloud application administrator

Correct Answer: CE
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/grant-admin-consent

- (Exam Topic 4)
You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains the users shown in the following table.

You create a resource group named RG1.
Which users can modify the permissions for RG1 and which users can create virtual networks in RG1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Solution:
Box 1: Only an owner can change permissions on resources.
Box 2: A Contributor can create/modify/delete anything in the subscription but cannot change permissions.

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A