Free Microsoft AZ-500 Exam Questions

You are working on enhancing the compliance metrics for your organization in Microsoft Defender for Cloud. You need to both evaluate compliance against the GDPR framework and add a custom security measure. Which of the following steps should you undertake?

You are in the process of configuring an Azure policy via the Azure portal.

Your policy will include an effect that will need a managed identity for it to be assigned.

Which of the following is the effect in question?

You have an Azure subscription that contains a virtual machine named VM1.

You create an Azure key vault that has the following configurations:

✑ Name: Vault5

✑ Region: West US

✑ Resource group: RG1

You need to use Vault5 to enable Azure Disk Encryption on VM1. The solution must support backing up VM1 by using Azure Backup.

Which key vault settings should you configure?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You use Azure Security Center for the centralized policy management of three Azure subscriptions. You use several policy definitions to manage the security of the subscriptions. You need to deploy the policy definitions as a group to all three subscriptions. Solution: You create a policy definition and assignments that are scoped to resource groups. Does this meet the goal?

You have an Azure subscription that contains a managed identity named Identity1 and the Azure key vaults shown in the following table.