Free Microsoft AZ-500 Exam Questions

You have an Azure subscription named Sub1 that has Security defaults disabled. The subscription containsthe following users:• Five users that have owner permissions for Sub1.• Ten users that have owner permissions for Azure resources.None of the users have multi-factor authentication (MFA) enabled.Sub1 has the secure score as shown in the Secure Score exhibit. (Click the Secure Score tab.)You plan to enable MFA for the following users:• Five users that have owner permissions for Sub1.• Five users that have owner permissions for Azure resources.By how many points will the secure score increase after you perform the planned changes?

You have a Azure subscription.You enable Azure Active Directory (Azure AD) Privileged identify (PIM).Your company’s security policy for administrator accounts has the following conditions:* The accounts must use multi-factor authentication (MFA).* The account must use 20-character complex passwords.* The passwords must be changed every 180 days.* The account must be managed by using PIM.You receive alerts about administrator who have not changed their password during the last 90 days.You need to minimize the number of generated alerts.Which PIM alert should you modify?

You have an Azure subscription that contains an Azure SQL database named sql1.

You plan to audit sql1.

You need to configure the audit log destination. The solution must meet the following requirements:

✑ Support querying events by using the Kusto query language.

✑ Minimize administrative effort.

What should you configure?

In Entra ID, when should you consider using external identities?

You have an Azure subscription that contains a resource group named RG1 and the network security groups (NSGs) shown in the following table.