Free Microsoft AZ-500 Exam Questions

Question 1

To ensure data resiliency and protection against accidental deletion in Azure Blob Storage, which of the following features can be enabled?

A : Soft delete

B : Immutable storage

C : Blob versioning

D : Customer-Managed Key (CMK)

E : Locally Redundant Storage (LRS)

F : Immutable Blobs

Answer: A,C,E,F

Question 2

You have an Azure subscription that contains an Azure key vault named Vault1.

In Vault1, you create a secret named Secret1.

An application developer registers an application in Azure Active Directory (Azure AD).

You need to ensure that the application can use Secret1.

What should you do?

A : In Azure AD, create a role.

B : In Azure Key Vault, create a key.

C : In Azure Key Vault, create an access policy.

D : In Azure AD, enable Azure AD Application Proxy.

Answer: C

Question 3

You have an Azure subscription that contains an Azure SQL Database logic server named SQL! and an Azure virtual machine named VM1. VM1 uses a private IP address only. The Firewall and virtual networks settings for SQL1 are shown in the following exhibit.You need to ensure that VM1 can connect to SQL1. The solution must use the principle of least privilege. What should you do?

A : Add an existing virtual network.

B : Set Connection Policy to Proxy.

C : Create a new firewall rule.

D : Set Allow Azure services and resources to access this server to Yes.

Answer: C

Question 4

You have an Azure subscription that contains an Azure SQL Database logic server named SQL! and an Azure virtual machine named VM1. VM1 uses a private IP address only. The Firewall and virtual networks settings for SQL1 are shown in the following exhibit.You need to ensure that VM1 can connect to SQL1. The solution must use the principle of least privilege. What should you do?

A : Add an existing virtual network.

B : Set Connection Policy to Proxy.

C : Create a new firewall rule.

D : Set Allow Azure services and resources to access this server to Yes.

Answer: C

Question 5

You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant and a user named User1.

The App registrations settings for the tenant are configured as shown in the following exhibit.

You plan to deploy an app named App1.

You need to ensure that User1 can register App1 in Azure AD. The solution must use the principle of least privilege.

Which role should you assign to User1?

A : App Configuration Data Owner for the subscription

B : Managed Application Contributor for the subscription

C : Cloud application administrator in Azure AD

D : Application developer in Azure AD

Answer: D