Microsoft AZ-500 Certification Syllabus and Certification Questions

Views:
 
Category: Education
     
 

Presentation Description

Start Here--- https://bit.ly/2S5rwy3 ---Get complete detail on AZ-500 exam guide to crack Microsoft Azure Security Technologies. You can collect all information on AZ-500 tutorial, practice test, books, study material, exam questions, and syllabus. Firm your knowledge on Microsoft Azure Security Technologies and get ready to crack AZ-500 certification. Explore all information on AZ-500 exam with number of questions, passing percentage and time duration to complete test.

Comments

Presentation Transcript

slide 1:

MICROSOFT AZ-500 CERTIFICATION SYLLABUS AND CERTIFICATION QUESTIONS Microsoft AZ-500 Exam EDUSUM.COM Get complete detail on AZ-500 exam guide to crack Microsoft Azure Security Technologies. You can collect all information on AZ-500 tutorial practice test books study material exam questions and syllabus. Firm your knowledge on Microsoft Azure Security Technologies and get ready to crack AZ- 500 certification. Explore all information on AZ-500 exam with number of questions passing percentage and time duration to complete test.

slide 2:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 1 Introduction to Microsoft Certified - Azure Security Engineer Associate Exam The Microsoft AZ-500 Exam is challenging and thorough preparation is essential for success. This exam study guide is designed to help you prepare for the Azure Security Technologies certification exam. It contains a detailed list of the topics covered on the Professional exam as well as a detailed list of preparation resources. These study guides for the Microsoft Azure Security Technologies will help guide you through the study process for your certification. AZ-500 Microsoft Azure Security Technologies Exam Summary ● Exam Name: Microsoft Azure Security Technologies ● Exam Code: AZ-500

slide 3:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 2 ● Exam Price: 165 USD ● Duration: 120 mins ● Number of Questions: 40-60 ● Passing Score: 700 / 1000 ● Books / Training: AZ-500T00-A: Microsoft Azure Security Technologies ● Schedule Exam: Pearson VUE ● Sample Questions: Microsoft Azure Security Technologies Sample Questions ● Recommended Practice: Microsoft AZ-500 Certification Practice Exam Exam Syllabus: AZ-500 Microsoft Certified - Azure Security Engineer Associate 1. Manage identity and access 30-35 ● Manage Azure Active Directory Azure AD identities - create and manage a managed identity for Azure resources - manage Azure AD groups - manage Azure AD users - manage external identities by using Azure AD - manage administrative units ● Manage secure access by using Azure AD - configure Azure AD Privileged Identity Management PIM - implement Conditional Access policies including multifactor Authentication MFA - implement Azure AD Identity Protection - implement passwordless authentication - configure access reviews ● Manage application access - integrate single sign-on SSO and identity providers for authentication - create an app registration - configure app registration permission scopes - manage app registration permission consent - manage API permission to Azure subscriptions and resources - configure an authentication method for a service principal ● Manage access control - configure Azure role permissions for management groups subscriptions resource groups and resources - interpret role and resource permissions - assign built-in Azure AD roles

slide 4:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 3 - create and assign custom roles including Azure roles and Azure AD roles 2. Implement platform protection 15-20 ● Implement advanced network security - secure the connectivity of hybrid networks - secure the connectivity of virtual networks - create and configure Azure Firewall - create and configure Azure Firewall Manager - create and configure Azure Application Gateway - create and configure Azure Front Door - create and configure Web Application Firewall WAF - configure a resource firewall including storage account Azure SQL Azure Key Vault or Azure App Service - configure network isolation for Web Apps and Azure Functions - implement Azure Service Endpoints - implement Azure Private Endpoints including integrating with other services - implement Azure Private Links - implement Azure DDoS Protection ● Configure advanced security for compute - configure Azure Endpoint Protection for virtual machines VMs - Implement and manage security updates for VMs - configure security for container services - manage access to Azure Container Registry - configure security for serverless compute - configure security for an Azure App service - configure encryption at rest - configure encryption in transit 3. Manage security operations 25-30 ● Configure centralized policy management - configure a custom security policy - create a policy initiative - configure security settings and auditing by using Azure Policy ● Configure and manage threat protection - configure Azure Defender for Servers not including Microsoft Defender for Endpoint - evaluate vulnerability scans from Azure Defender - configure Azure Defender for SQL - use the Microsoft Threat Modeling Tool ● Configure and manage security monitoring solutions

slide 5:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 4 - create and customize alert rules by using Azure Monitor - configure diagnostic logging and log retention by using Azure Monitor - monitor security logs by using Azure Monitor - create and customize alert rules in Azure Sentinel - configure connectors in Azure Sentinel - evaluate alerts and incidents in Azure Sentinel 4. Secure data and applications 25-30 ● Configure security for storage - configure access control for storage accounts - configure storage account access keys - configure Azure AD authentication for Azure Storage and Azure Files - configure delegated access ● Configure security for data - enable database authentication by using Azure AD - enable database auditing - configure dynamic masking on SQL workloads - implement database encryption for Azure SQL Database - implement network isolation for data solutions including Azure Synapse Analytics and Azure Cosmos DB ● Configure and manage Azure Key Vault - create and configure Key Vault - configure access to Key Vault - manage certificates secrets and keys - configure key rotation - configure backup and recovery of certificates secrets and keys Microsoft AZ-500 Certification Sample Questions and Answers To make you familiar with Microsoft Azure Security Technologies AZ-500 certification exam structure we have prepared this sample question set. We suggest you to try our Sample Questions for MCA Azure Security Engineer AZ-500 Certification to test your understanding of Microsoft AZ-500 process with real Microsoft certification exam environment. AZ-500 Microsoft Azure Security Technologies Sample Questions:-

slide 6:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 5 01. You manage an Azure subscription named Sub1 that is currently associated with an Azure AD tenant named company1.com. Sub1 contains a key vault named kv1 and four system-assigned managed identities named m1 m2 m3 and m4. The subscriptions billing administrator is kentcompanylcom. You need to migrate Sub1 and the key vault to a new Azure AD tenant named company2.com. You start by transferring Sub1 to company2.com. What should you do next a Change the tenant ID of kv1. b Update the billing administrator. c Recreate the system-assigned managed identities. d Re-register all resource providers. 02. From the Azure portal you are configuring an Azure policy. You plan to assign policies that use the DeployIfNotExist AuditIfNotExist Append and Deny effects. Which effect requires a managed identity for the assignment a AuditIfNotExist b Append c DeployIfNotExist d Deny 03. You have an Azure subscription named Sub1 that contains an Azure Log Analytics workspace named LAW1. You have 100 on-premises servers that run Windows Server 2012 R2 and Windows Server 2016. The servers connect to LAW1. LAW1 is configured to collect security-related performance counters from the connected servers. You need to configure alerts based on the data collected by LAW1. The solution must meet the following requirements: - Alert rules must support dimensions. - The time it takes to generate an alert must be minimized. - Alert notifications must be generated only once when the alert is generated and once when the alert is resolved. Which signal type should you use when you create the alert rules a Log b Log Saved Query c Metric d Activity Log 04. You are securing access to the resources in an Azure subscription. A new company policy states that all the Azure virtual machines in the subscription must use managed disks. You need to prevent users from creating virtual machines that use unmanaged disks. What should you do

slide 7:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 6 a Azure Monitor b Azure Policy c Azure Security Center d Azure Service Health 05. You company has an Azure subscription named Sub1. Sub1 contains an Azure web app named WebApp1 that uses Azure Application Insights. WebApp1 requires users to authenticate by using OAuth 2.0 client secrets. Developers at the company plan to create a multi-step web test app that preforms synthetic transactions emulating user traffic to Web App1. You need to ensure that web tests can run unattended. What should you do first a Register the web test app in Azure AD b Upload the .webtest file to Application Insights c In Microsoft Visual Studio modify the .webtest file d Add a plug-in to the web test app 06. You create an Azure Log Analytics workspace named Analytics1 in RG1 in the East US region. Which virtual machines can be enrolled in Analytics1 a VM1 only b VM1 VM2 and VM3 only c VM1 VM2 VM3 and VM4 d VM1 and VM4 only 07. You are configuring and securing a network environment. You deploy an Azure virtual machine named VM1 that is configured to analyze network traffic. You need to ensure that all network traffic is routed through VM1. What should you configure a a system route b a network security group NSG c a user-defined route d a security center 08. You have an Azure subscription named Sub1. In Azure Security Center you have a security playbook named Play1. Play1 is configured to send an email message to a user named User1. You need to modify Play1 to send email messages to a distribution group named Alerts. What should you use to modify Play1 a Azure DevOps b Azure Application Insights c Azure Monitor d Azure Logic Apps Designer

slide 8:

WWW.EDUSUM.COM PDF AZ-500: Microsoft Azure Security Technologies 7 09. From Azure Security Center you create a custom alert rule. You need to configure which users will receive an email message when the alert is triggered. What should you do a From Azure Monitor create an action group b From Security Center modify the Security policy settings of the Azure subscription c From Azure Active Directory Azure AD modify the members of the Security Reader role group d From Security Center modify the alert rule 10. Your company uses Azure DevOps. You need to recommend a method to validate whether the code meets the company’s quality standards and code review standards. What should you recommend implementing in Azure DevOps a branch folders b branch permissions c branch policies d branch locking Answers:- Answer 1:- a Answer 2:- c Answer 3:- c Answer 4:- b Answer 5:- b Answer 6:- a Answer 7:- c Answer 8:- d Answer 9:- a Answer 10:- c

authorStream Live Help