AZ-500 Exam Details

  • Exam Code
    :AZ-500
  • Exam Name
    :Microsoft Azure Security Technologies
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :626 Q&As
  • Last Updated
    :Jul 12, 2026

Microsoft AZ-500 Online Questions & Answers

  • Question 581:

    You have an Azure subscription that contains the Azure App Service apps shown in the following table.

    You purchase custom SSL certificates from a trusted third-party authority.

    To which apps can you assign the custom SSL certificates?

    A. App4 only
    B. App3 and App4 only
    C. App2. App3. and App4 only
    D. App1. App2, App3. and App4

  • Question 582:

    HOTSPOT

    You have an Azure subscription that contains the storage accounts shown in the following table.

    You need to configure authorization access.

    Which authorization types can you use for each storage account? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.

  • Question 583:

    You need to ensure that User2 can implement PIM.

    What should you do first?

    A. Assign User2 the Global administrator role.
    B. Configure authentication methods for contoso.com.
    C. Configure the identity secure score for contoso.com.
    D. Enable multi-factor authentication (MFA) for User2.

  • Question 584:

    You have an Azure subscription named Sub1 that contains the Azure key vaults shown in the following table:

    In Sub1, you create a virtual machine that has the following configurations:

    1. Name: VM1

    2. Size: DS2v2

    3. Resource group: RG1

    4. Region: West Europe

    5. Operating system: Windows Server 2016

    You plan to enable Azure Disk Encryption on VM1.

    In which key vaults can you store the encryption key for VM1?

    A. Vault1 or Vault3 only
    B. Vault1, Vault2, Vault3, or Vault4
    C. Vault1 only
    D. Vault1 or Vault2 only

  • Question 585:

    DRAG DROP

    You have an Azure subscription.

    You plan to create a storage account.

    You need to use customer-managed keys to encrypt the tables in the storage account.

    From Azure Cloud Shell, which three cmdlets should you run in sequence? To answer, move the appropriate cmdlets from the list of cmdlets to the answer area and arrange them in the correct order.

    Select and Place:

  • Question 586:

    From Azure Security Center, you create a custom alert rule.

    You need to configure which users will receive an email message when the alert is triggered.

    What should you do?

    A. From Azure Monitor, create an action group.
    B. From Security Center, modify the Security policy settings of the Azure subscription.
    C. From Azure Active Directory (Azure AD), modify the members of the Security Reader role group.
    D. From Security Center, modify the alert rule.

  • Question 587:

    HOTSPOT

    You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.

    The tenant contains the named locations shown in the following table.

    You create the conditional access policies for a cloud app named App1 as shown in the following table.

    For each of the following statements, select Yes if the statement is true. Otherwise, select No.

    NOTE: Each correct selection is worth one point.

  • Question 588:

    You have an Azure subscription that contains a storage account and an Azure web app named App1.

    App1 connects to an Azure Cosmos DB database named Cosmos1 that uses a private endpoint named Endpoint1. Endpoint1 has the default settings.

    You need to validate the name resolution to Cosmos1.

    Which DNS zone should you use?

    A. endpoint1.privatelink.documents.azure.com
    B. endpoint1.privatelink.blob.core.windows.net
    C. endpoint1.privatelink.azurewebsites.net
    D. endpoint1.privatelink.database.azure.com

  • Question 589:

    HOTSPOT

    You have an Azure subscription that contains a storage account named contoso2023.

    You need to perform the following tasks:

    1. Verify that identity-based authentication over SMB is enabled.

    2. Only grant users access to contoso2023 in the year 2023.

    Which two settings should you use? To answer, select the appropriate settings in the answer area.

    NOTE: Each correct selection is worth one point.

  • Question 590:

    You have been tasked with applying conditional access policies for your company's current Azure Active Directory (Azure AD).

    The process involves assessing the risk events and risk levels.

    Which of the following is the risk level that should be configured for users that have leaked credentials?

    A. None
    B. Low
    C. Medium
    D. High

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your AZ-500 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.