DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Microsoft AZ-500 Dumps & Mock Exam for Success, Microsoft Azure Security Engineer Associate | SPOTO

High-quality practice tests can help you succeed in your first attempt to pass the certification exam. The Microsoft AZ-500 certification validates skills in implementing security controls, maintaining security posture, and identifying vulnerabilities. It covers security aspects like identity and access management, platform protection, security operations, and data security. Our practice tests, free tests, exam practice resources, online exam questions, sample questions, exam dumps, exam questions and answers, mock exams, and comprehensive exam materials are designed to effectively prepare you for the AZ-500 exam. These resources provide a thorough understanding of the topics and ensure you're well-equipped to achieve certification success.
Take other online exams

Question #1
You need to configure WebApp1 to meet the data and application requirements. Which two actions should you perform? Each correct answer presents part of the solution. Each correct selection is worth one point.
A. Upload a public certificate
B. Turn on the HTTPS Only protocol setting
C. Set the Minimum TLS Version protocol setting to 1
D. Change the pricing tier of the App Service plan
E. Turn on the Incoming client certificates protocol setting
View answer
Correct Answer: A
Question #2
Platform Metrics are collected by default and typically stored in the _____ databasE.
A. Azure Managed SQL Server
B. Azure CosmosDB
C. Azure Synapse
D. Azure Monitor Metrics
View answer
Correct Answer: d
Question #3
How can applications obtain a service principle in order to authenticate with Azure Key Vault?
A. Access policies
B. Using password vault
C. Using system-assigned managed identity
D. Registering the application with Azure identity platform
View answer
Correct Answer: c, d
Question #4
You have an Azure subscription that contains an Azure key vault named Vault1. In Vault1, you create a secret named Secret1. An application developer registers an application in Azure Active Directory (Azure AD). You need to ensure that the application can use Secret1. What should you do?
A. In Azure AD, create a role
B. In Azure Key Vault, create a key
C. In Azure Key Vault, create an access policy
D. In Azure AD, enable Azure AD Application Proxy
View answer
Correct Answer: A
Question #5
What is the key difference between Azure Front Door and Azure Application Gateway?
A. There is no difference
B. Front Door is a global service, whereas Application Gateway is a regional service
C. Front Door is a regional service, whereas Application Gateway is a global service
D. None of the above
View answer
Correct Answer: b
Question #6
Azure Key Vault Certificates support provides for management of _______ certificates.
A. SPKI
B. RFC2440
C. RFC4212
D. x509
E. None of the above
View answer
Correct Answer: d
Question #7
You are evaluating the security of the network communication between the virtual machines in Sub2. For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point. Hot Area:
A. Mastered
B. Not Mastered
View answer
Correct Answer: A
Question #8
You have an Azure subscription named Sub1. You create a virtual network that contains one subnet. On the subnet, you provision the virtual machines shown in the following table. Currently, you have not provisioned any network security groups (NSGs). You need to implement network security to meet the following requirements: Allow traffic to VM4 from VM3 only. Allow traffic from the Internet to VM1 and VM2 only. Minimize the number of NSGs and network security rules. How many NSGs and network security rules s
A. Mastered
B. Not Mastered
View answer
Correct Answer: A
Question #9
Your company plans to create separate subscriptions for each department. Each subscription will be associated to the same Azure Active Directory (Azure AD) tenant. You need to configure each subscription to have the same role assignments. What should you use?
A. Azure Security Center
B. Azure Blueprints
C. Azure AD Privileged Identity Management (PIM)
D. Azure Policy
View answer
Correct Answer: A
Question #10
DRAG DROP You have an Azure subscription that contains 100 virtual machines. Azure Diagnostics is enabled on all the virtual machines. You are planning the monitoring of Azure services in the subscription. You need to retrieve the following details: Identify the user who deleted a virtual machine three weeks ago. Query the security events of a virtual machine that runs Windows Server 2016. What should you use in Azure Monitor? To answer, drag the appropriate configuration settings to the correct details. Ea
A. Mastered
B. Not Mastered
View answer
Correct Answer: BD
Question #11
With the _____ feature, you can tailor an alert's appearance to its content.
A. Azure Functions
B. JSON
C. CLI
D. Key Vault
E. Alert details
View answer
Correct Answer: e
Question #12
You have a hybrid configuration of Azure Active Directory (Azure AD). All users have computers that run Windows 10 and are hybrid Azure AD joined. You have an Azure SQL database that is configured to support Azure AD authentication. Database developers must connect to the SQL database by using Microsoft SQL Server Management Studio (SSMS) and authenticate by using their on-premises Active Directory account. You need to tell the developers which authentication method to use to connect to the SQL database fro
A. SQL Login
B. Active Directory – Universal with MFA support
C. Active Directory – Integrated
D. Active Directory – Password
View answer
Correct Answer: A
Question #13
Which of the following are the new standards for enabling passwordless authentication?
A. WebAuthN
B. FIDO2
C. PKI
D. SSL
E. All of the above
View answer
Correct Answer: a, b
Question #14
In Azure, without _____ assigned to the Virtual Machines, or the Subnets in the Virtual Network, the expected network traffic flow is all traffic inbound and outbound is alloweD.
A. Firewall
B. Tunnel
C. Link
D. NSG
E. SG
View answer
Correct Answer: d
Question #15
Which property controls who can create, delete, update, or view the custom role?
A. Assignments
B. Scopes
C. AssignableScopes
D. Permissions
E. AssignableRoles
View answer
Correct Answer: c
Question #16
DRAG DROP You need to configure an access review. The review will be assigned to a new collection of reviews and reviewed by resource owners. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Select and Place:
A. Mastered
B. Not Mastered
View answer
Correct Answer: A
Question #17
Which of the following are valid architecture options for Azure Firewall Manager?
A. Hub virtual network
B. Virtual network
C. Virtual WAN Hub
D. Secured virtual hub
View answer
Correct Answer: a, d
Question #18
You have Azure virtual machines that have Update Management enabled. The virtual machines are configured as shown in the following table. You schedule two update deployments named Update1 and Update2. Update1 updates VM3. Update2 updates VM6. Which additional virtual machines can be updated by using Update1 and Update2? To answer, select the appropriate options in the answer area. Each correct selection is worth one point. Hot Area:
A. Mastered
B. Not Mastered
View answer
Correct Answer: BE

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number: