Want to practice some free Microsoft AZ-500 exam questions? You can study the following Microsoft AZ-500 exam online questions. Killtest provides 402 Q&As for Microsoft AZ-500 exam, which has been proven effective in the AZ-500 exam preparation. Besides, you can get full payment fee refund if you fail AZ-500 exam by using Killtest AZ-500 practice exam questions. Ready? Go!
Microsoft AZ-500 Online Practice Exam Questions
The questions of AZ-500 were last updated on May 07,2024 .
Viewing page 1 out of 22 pages.
Viewing questions 1 out of 110 questions
HOTSPOT You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table. In Azure AD Privileged Identity Management (PIM), the Role settings for the Contributor role are configured as shown in the exhibit. (Click the Exhibit tab.) You assign users the Contributor role on May 1, 2019 as shown in the following table. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation: References: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-resource-roles-assign-roles
DRAG DROP You are implementing conditional access policies. You must evaluate the existing Azure Active Directory (Azure AD) risk events and risk levels to configure and implement the policies. You need to identify the risk level of the following risk events: ✑ Users with leaked credentials ✑ Impossible travel to atypical locations ✑ Sign ins from IP addresses with suspicious activity Which level should you identify for each risk event? To answer, drag the appropriate levels to the correct risk events. Each level may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.
Explanation: Medium High Medium Refer https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-risk-events#sign-ins-from-ip-addresses-with-suspicious-activity
You have an Azure subscription named Subcription1 that contains an Azure Active Directory (Azure AD) tenant named contosos.com and a resource group named RG1. You create a custom role named Role1 for contoso.com. You need to identify where you can use Role1 for permission delegation. What should you identify?
You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant and a user named User1. The App registrations settings for the tenant are configured as shown in the following exhibit. You plan to deploy an app named App1. You need to ensure that User1 can register App1 in Azure AD. The solution must use the principle of least privilege. Which role should you assign to User1?
Explanation: Reference: https://docs.microsoft.com/en-us/azure/active-directory/roles/delegate-by-task
HOTSPOT You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains the users shown in the following table. You create and enforce an Azure AD Identity Protection user risk policy that has the following settings: ✑ Assignment: Include Group1, Exclude Group2 ✑ Conditions: Sign-in risk of Medium and above ✑ Access: Allow access, Require password change For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation: Box 1: Yes User1 is member of Group1. Sign in from unfamiliar location is risk level Medium. Box 2: Yes User2 is member of Group1. Sign in from anonymous IP address is risk level Medium. Box 3: No Sign-ins from IP addresses with suspicious activity is low. Note: Azure AD Identity protection can detect six types of suspicious sign-in activities: ✑ Users with leaked credentials ✑ Sign-ins from anonymous IP addresses ✑ Impossible travel to atypical locations ✑ Sign-ins from infected devices ✑ Sign-ins from IP addresses with suspicious activity ✑ Sign-ins from unfamiliar locations These six types of events are categorized in to 3 levels of risks C High, Medium & Low: References: http://www.rebeladmin.com/2018/09/step-step-guide-configure-risk-based-azure-conditional-access-policies/
Exam Code: AZ-500Q & A: 402 Q&AsUpdated: May 07,2024
[email protected]
GMT+8: Mon-Sat 8:00-18:00
GMT: Mon-Sat 0:00-10:00