00:00

QUESTION 1

- (Exam Topic 4)
You have an Azure subscription that uses Microsoft Defender for Cloud.
You need to use Defender for Cloud to review regulatory compliance with the Azure CIS 1.4,0 standard. The solution must minimize administrative effort.
What should you do first?

Correct Answer: A

QUESTION 2

- (Exam Topic 4)
You have an Azure subscription.
You create a new virtual network named VNet1.
You plan to deploy an Azure web app named App1 that will use VNet1 and will be reachable by using private IP addresses. The solution must support inbound and outbound network traffic.
What should you do?

Correct Answer: D

QUESTION 3

- (Exam Topic 4)
You have an Azure subscription that contains the storage accounts shown in the following, table.
AZ-500 dumps exhibit
You enable Microsoft Defender for Storage.
Which storage services of storages are monitored by Microsoft Defender for Storage, and which storage accounts are protected by Microsoft Defender for Storage? To answer, select the appropriate options in the answer area.
AZ-500 dumps exhibit
Solution:
AZ-500 dumps exhibit

Does this meet the goal?

Correct Answer: A

QUESTION 4

- (Exam Topic 4)
You have the Azure virtual machines shown in the following table.
AZ-500 dumps exhibit
Each virtual machine has a single network interface.
You add the network interface of VM1 to an application security group named ASG1.
You need to identify the network interfaces of which virtual machines you can add to ASG1. What should you identify?

Correct Answer: D
Reference:
https://docs.microsoft.com/en-us/azure/virtual-network/application-security-groups

QUESTION 5

- (Exam Topic 4)
You have an Azure subscription that contains four Azure SQL managed instances.
You need to evaluate the vulnerability of the managed instances to SQL injection attacks. What should you do first?

Correct Answer: B