Microsoft AZ-500 Quiz 16 Topic 2 Questions 76-80

Question: 1

From Azure Security Center, you enable Azure Container Registry vulnerability scanning of the images in

Registry1.

You perform the following actions:

* Push a Windows image named Image1 to Registry1.

* Push a Linux image named Image2 to Registry1.

* Push a Windows image named Image3 to Registry1.

* Modify Image1 and push the new image as Image4 to Registry1.

* Modify Image2 and push the new image as Image5 to Registry1.

Which two images will be scanned for vulnerabilities? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

AImage4

BImage2

CImage1

DImage3

EImage5

Show Answer

Question: 2

You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant and a user named User1.

The App registrations settings for the tenant are configured as shown in the following exhibit.

q2_AZ-500

You plan to deploy an app named App1.

You need to ensure that User1 can register App1 in Azure AD. The solution must use the principle of least privilege.

Which role should you assign to User1.

AApp Configuration Data Owner for the subscription

BManaged Application Contributor for the subscription

CCloud application administrator in Azure AD

DApplication developer in Azure AD.

Show Answer

Question: 3

You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant.

When a developer attempts to register an app named App1 in the tenant, the developer receive the error message shown in the following exhibit.

q3_AZ-500

AModify the User settings

BSet Enable Security default to Yes.

CModify the Directory properties.

DConfigure the Consent and permissions settings for enterprise applications.

Show Answer

Question: 4

You have an Azure subscription named Sub1 that contains an Azure Log Analytics workspace named LAW1.

You have 100 on-premises servers that run Windows Server 2012 R2 and Windows Server 2016. The servers connect to LAW1. LAW1 is configured to collect security-related performance counters from the connected servers.

You need to configure alerts based on the data collected by LAW1. The solution must meet the following

requirements:

* Alert rules must support dimensions.

* The time it takes to generate an alert must be minimized.

* Alert notifications must be generated only once when the alert is generated and once when the alert is

* resolved.

Which signal type should you use when you create the alert rules?A. Log

BLog (Saved Query)

CMetric

DActivity Log

Show Answer

Question: 5

You have an Azure subscription that contains a virtual machine named VM1.

You create an Azure key vault that has the following configurations:

* Name: Vault5

* Region: West US

* Resource group: RG1

You need to use Vault5 to enable Azure Disk Encryption on VM1. The solution must support backing up VM1 by using Azure Backup.

Which key vault settings should you configure?

AAccess policies

BSecrets

CKeys

DLocks

Show Answer

Microsoft AZ-500 Quiz:16 Topic:2 Questions:76-80