Free Microsoft AZ-500 Exam Questions

After creating a new Azure subscription, you are tasked with making sure that custom alert rules can be created in Azure Security Center.

You have created an Azure Storage account.

Which of the following is the action you should take?

You are working on enhancing the compliance metrics for your organization in Microsoft Defender for Cloud. You need to both evaluate compliance against the GDPR framework and add a custom security measure. Which of the following steps should you undertake?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Azure subscription named Sub1.

You have an Azure Storage account named sa1 in a resource group named RG1.

Users and applications access the blob service and the file service in sa1 by using several shared access signatures (SASs) and stored access policies.

You discover that unauthorized users accessed both the file service and the blob service.

You need to revoke all access to sa1.

Solution: You create a new stored access policy.

Does this meet the goal?

You have an Azure subscription that contains an Azure key vault.

You need to configure the maximum number of days for which new keys are valid. The solution must minimize administrative effort.

What should you use?

You want to gather logs from a large number of Windows Server 2016 computers using Azure Log Analytics.

You are configuring an Azure Resource Manager template to deploy the Microsoft Monitoring Agent to all the servers automatically.

Which of the following should be included in the template? (Choose all that apply.)