Most Recent Microsoft AZ-500 Exam Dumps

Prepare for the Microsoft Azure Security Technologies exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Microsoft AZ-500 exam and achieve success.

The questions for AZ-500 were last updated on May 3, 2025.

Viewing page 1 out of 91 pages.
Viewing questions 1-5 out of 457 questions

Get All 457 Questions & Answers

Question No. 1

You have an Azure subscription that contains a resource group named RG1 and a security group serverless RG1 contains 10 virtual machine, a virtual network VNET1, and a network security group (NSG) named NSG1. ServerAdmins can access the virtual machines by using RDP.

You need to ensure that NSG1 only RDP connections to the virtual for a maximum of 60 minutes when a member of ServerAdmins requests access.

What should you configure?

Aan Azure Active Directory (Azure AD) Privileged identity Management (PIM) role assignment.

Ba just in time (JIT) VM access policy in Azure Security Center

Can azure policy assigned to RG1.

Dan Azure Bastion host on VNET1.

Show Answer

Correct Answer: B

https://docs.microsoft.com/en-us/azure/security-center/just-in-time-explained

Question No. 2

You have a hybrid configuration of Azure Active Directory (Azure AD). You have an Azure SQL Database

instance that is configured to support Azure AD authentication.

Database developers must connect to the database instance and authenticate by using their on-premises

Active Directory account.

You need to ensure that developers can connect to the instance by using Microsoft SQL Server Management

Studio. The solution must minimize authentication prompts.

Which authentication method should you recommend?

AActive Directory - Password

BActive Directory - Universal with MFA support

CSQL Server Authentication

DActive Directory - Integrated

Show Answer

Correct Answer: D

https://docs.microsoft.com/en-us/azure/sql-database/sql-database-aad-authentication-configure

Question No. 3

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You use Azure Security Center for the centralized policy management of three Azure subscriptions.

You use several policy definitions to manage the security of the subscriptions.

You need to deploy the policy definitions as a group to all three subscriptions.

Solution: You create a policy definition and assignments that are scoped to resource groups.

Does this meet the goal?

AYes

BNo

Show Answer

Correct Answer: B

https://4sysops.com/archives/apply-governance-policy-to-multiple-azure-subscriptions-with-management-groups/

Question No. 4

You have an Azure subscription named Sub1. Sub1 contains a virtual network named VNet1 that contains one subnet named Subnet1.

You create a service endpoint for Subnet1.

Subnet1 contains an Azure virtual machine named VM1 that runs Ubuntu Server 18.04.

You need to deploy Docker containers to VM1. The containers must be able to access Azure Storage resources and Azure SQL databases by using the service endpoint.

ACreate an application security group and a network security group (NSG).

BEdit the docker-compose.yml file.

CInstall the container network interface (CNI) plug-in.

Show Answer

Correct Answer: C

The Azure Virtual Network container network interface (CNI) plug-in installs in an Azure Virtual Machine. The plug-in supports both Linux and Windows platform.

The plug-in assigns IP addresses from a virtual network to containers brought up in the virtual machine, attaching them to the virtual network, and connecting them directly to other containers and virtual network resources. The plug-in doesn't rely on overlay networks, or routes, for connectivity, and provides the same performance as virtual machines.

The following picture shows how the plug-in provides Azure Virtual Network capabilities to Pods:

https://docs.microsoft.com/en-us/azure/virtual-network/container-networking-overview

Question No. 5

You have a Microsoft 365 tenant that uses an Azure Active Directory (Azure AD) tenant The Azure AD tenant syncs to an on-premises Active Directory domain by using an instance of Azure AD Connect.

You create a new Azure subscription

You discover that the synced on-premises user accounts cannot be assigned rotes in the new subscription.

You need to ensure that you can assign Azure and Microsoft 365 roles to the synced Azure AD user accounts.

What should you do first?

AChange the Azure AD tenant used by the new subscription.

BConfigure the Azure AD tenant used by the new subscription to use pass-through authenticate

CConfigure the Azure AD tenant used by the new subscription to use federated authentication.

DConfigure a second instance of Azure AD Connect.

Show Answer

Correct Answer: A

Unlock All Questions for Microsoft AZ-500 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 457 Questions & Answers