Free Microsoft AZ-500 Exam Questions

You create a new Azure subscription.

You need to ensure that you can create custom alert rules in Azure Security Center.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Your network contains an on-premises Active Directory domain named corp.contoso.com. You have an Azure subscription named Sub1 that is associated to an Azure Active Directory (Azure AD) tenant named contoso.com. You sync all on-premises identities to Azure AD. You need to prevent users who have a givenName attribute that starts with TEST from being synced to Azure AD. The solution must minimize administrative effort. What should you use?

You have a Azure subscription.You enable Azure Active Directory (Azure AD) Privileged identify (PIM).Your company’s security policy for administrator accounts has the following conditions:* The accounts must use multi-factor authentication (MFA).* The account must use 20-character complex passwords.* The passwords must be changed every 180 days.* The account must be managed by using PIM.You receive alerts about administrator who have not changed their password during the last 90 days.You need to minimize the number of generated alerts.Which PIM alert should you modify?

You plan to implement JIT VM access. Which virtual machines will be supported?

You have an Azure subscription that contains an Azure key vault named Vault1 and a virtual machine named VM1.

VM1 is connected to a virtual network named VNet1.

You need to allow access to Vault1 only from VM1.

What should you do in the Networking settings of Vault1?