[16-May-2022 Update] Exam AZ-500 VCE Dumps and AZ-500 PDF Dumps from PassLeader

Valid AZ-500 Dumps shared by PassLeader for Helping Passing AZ-500 Exam! PassLeader now offer the newest AZ-500 VCE dumps and AZ-500 PDF dumps, the PassLeader AZ-500 exam questions have been updated and ANSWERS have been corrected, get the newest PassLeader AZ-500 dumps with VCE and PDF here: https://www.passleader.com/az-500.html (380 Q&As Dumps)

BTW, DOWNLOAD part of PassLeader AZ-500 dumps from Cloud Storage: https://drive.google.com/open?id=1CnqNGckypCByp19q05gCYQD-Qai7gnHt

NEW QUESTION 368
You have an Azure subscription that uses Microsoft Sentinel. You need to create a Microsoft Sentinel notebook that will use the Guided Investigation – Anomaly Lookup template. What should you create first?

A.    an analytics rule
B.    a Log Analytics workspace
C.    an Azure Machine Learning workspace
D.    a hunting query

Answer: A

NEW QUESTION 369
You have an Azure Active Directory (Azure AD) tenant that contains a user named User1. You need to ensure that User1 can create and manage administrative units. The solution must use the principle of least privilege. Which role should you assign to User1?

A.    Privileged role administrator.
B.    Helpdesk administrator.
C.    Global administrator.
D.    Security administrator.

Answer: A

NEW QUESTION 370
You have an Azure subscription that uses Azure Active Directory (Azure AD) Privileged Identity Management (PIM). A PIM user that is assigned the User Access Administrator role reports receiving an authorization error when performing a role assignment or viewing the list of assignments. You need to resolve the issue by ensuring that the PIM service principal has the correct permissions for the subscription. The solution must use the principle of least privilege. Which role should you assign to the PIM service principle?

A.    Contributor
B.    User Access Administrator
C.    Managed Application Operator
D.    Resource Policy Contributor

Answer: B

NEW QUESTION 371
You have an Azure Active Directory (Azure AD) tenant that contains a user named Admin1. Admin1 is assigned the Application developer role. You purchase a cloud app named App1 and register App1 in Azure AD. Admin1 reports that the option to enable token encryption for App1 is unavailable. You need to ensure that Admin1 can enable token encryption for App1 in the Azure portal. What should you do?

A.    Upload a certificate for App1.
B.    Modify the API permissions of App1.
C.    Add App1 as an enterprise application.
D.    Assign Admin1 the Cloud application administrator role.

Answer: C
Explanation:
This is a tricky one because uploading a certificate is also required.  However, the QUESTION 3states that the Token Encryption option is unavailable.  This is because the app is not added as an enterprise application. When the app is added as an enterprise application, the Token Encryption option will be available. Then you can upload the certificate.
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/howto-saml-token-encryption

NEW QUESTION 372
You have a Microsoft 365 tenant that uses an Azure Active Directory (Azure AD) tenant. The Azure AD tenant syncs to an on-premises Active Directory domain by using an instance of Azure AD Connect. You create a new Azure subscription. You discover that the synced on-premises user accounts cannot be assigned roles in the new subscription. You need to ensure that you can assign Azure and Microsoft 365 roles to the synced Azure AD user accounts. What should you do fist?

A.    Configure the Azure AD tenant used by the new subscription to use pass-through authentication.
B.    Configure the Azure AD tenant used by the new subscription to use federated authentication.
C.    Change the Azure AD tenant used by the new subscription.
D.    Configure a second instance of Azure AD Connect.

Answer: C

NEW QUESTION 373
You have an Azure subscription name Sub1 that contains an Azure Policy definition named Policy1. Policy1 has the following settings:
– Definition location: Tenant Root Group
– Category: Monitoring
You need to ensure that resources that are noncompliant with Policy1 are listed in the Azure Security Center dashboard. What should you do first?

A.    Change the Category of Policy1 to Security Center.
B.    Add Policy1 to a custom initiative.
C.    Change the Definition location of Policy1 to Sub1.
D.    Assign Policy1 to Sub1.

Answer: D
Explanation:
https://docs.microsoft.com/en-us/azure/governance/policy/overview

NEW QUESTION 374
You have an Azure subscription that contains the resources shown in the following table:
AZ-500-Exam-Dumps-3741
You plan to deploy the virtual machines shown in the following table:
AZ-500-Exam-Dumps-3742
You need to assign managed identities to the virtual machines. The solution must meet the following requirements:
– Assign each virtual machine the required roles.
– Use the principle of least privilege.
What is the minimum number of managed identities required?

A.    1
B.    2
C.    3
D.    4

Answer: B
Explanation:
We have two different sets of required permissions. VM1 and VM2 have the same permission requirements. VM3 and VM4 have the same permission requirements. A user-assigned managed identity can be assigned to one or many resources. By using user-assigned managed identities, we can create just two managed identities: one with the permission requirements for VM1 and VM2 and the other with the permission requirements for VM3 and VM4.
https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview

NEW QUESTION 375
You have an Azure subscription that contains the resources shown in the following table:
AZ-500-Exam-Dumps-3751
You plan to enable Microsoft Defender for Cloud for the subscription. Which resources can be protected by using Microsoft Defender for Cloud?

A.    VM1, VNET1, and storage1 only.
B.    VM1, storage1, and Vault1 only.
C.    VM1, VNET1, storage1, and Vault1.
D.    VM1 and storage1 only.
E.    VM1 and VNET1 only.

Answer: C

NEW QUESTION 376
You have the Azure resource shown in the following table:
AZ-500-Exam-Dumps-3761
You need to meet the following requirements:
– Internet-facing virtual machines must be protected by using network security groups (NSGs).
– All the virtual machines must have disk encryption enabled.
What is the minimum number of security that you should create in Azure Security Center?

A.    1
B.    2
C.    3
D.    4

Answer: D

NEW QUESTION 377
HotSpot
You have an Azure subscription that contains the resources shown in the following table:
AZ-500-Exam-Dumps-3771
Transparent Data Encryption (TDE) is disabled on SQL1. You assign policies to the resource groups as shown in the following table:
AZ-500-Exam-Dumps-3772
You plan to deploy Azure SQL databases by using an Azure Resource Manager (ARM) template. The databases will be configured as shown in the following table:
AZ-500-Exam-Dumps-3773
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
AZ-500-Exam-Dumps-3774

Answer:
AZ-500-Exam-Dumps-3775
Explanation:
https://docs.microsoft.com/en-us/azure/governance/policy/concepts/effects

NEW QUESTION 378
HotSpot
You have an Azure subscription that contains an Azure SQL database named SQL1. You plan to deploy a web app named App1. You need to provide App1 with read and write access to SQL1. The solution must meet the following requirements:
– Provide App1 with access to SQL1 without storing a password.
– Use the principle of least privilege.
– Minimize administrative effort.
Which type of account should App1 use to access SQL1, and which database roles should you assign to App1? (To answer, select the appropriate options in the answer area.)
AZ-500-Exam-Dumps-3781

Answer:
AZ-500-Exam-Dumps-3782
Explanation:
https://docs.microsoft.com/en-us/azure/app-service/tutorial-connect-msi-sql-database?tabs=windowsclient%2Cdotnet

NEW QUESTION 379
Drag and Drop
You have an Azure subscription that contains an Azure SQL database named SQLDB1. SQLDB1 contains the columns shown in the following table:
AZ-500-Exam-Dumps-3791
For the Email and Birthday columns, you implement dynamic data masking by using the default masking function. Which value will the users see in each column? (To answer, drag the appropriate values to the correct columns. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.)
AZ-500-Exam-Dumps-3792

Answer:
AZ-500-Exam-Dumps-3793

NEW QUESTION 380
……


Get the newest PassLeader AZ-500 VCE dumps here: https://www.passleader.com/az-500.html (380 Q&As Dumps)

And, DOWNLOAD the newest PassLeader AZ-500 PDF dumps from Cloud Storage for free: https://drive.google.com/open?id=1CnqNGckypCByp19q05gCYQD-Qai7gnHt