Win IT Exam with Last Dumps 2025

Microsoft AZ-500 Exam

Page 45/45
Viewing Questions 441 443 out of 443 Questions
100.00%

Question 441
HOTSPOT -
You assign User8 the Owner role for RG4, RG5, and RG6.
In which resource groups can User8 create virtual networks and NSGs by using the Azure portal? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
AZ-500_441Q.png related to the Microsoft AZ-500 Exam
Image AZ-500_441R.png related to the Microsoft AZ-500 Exam



Box 1: RG6 only -
The policy does not allow the creation of virtual networks/subnets in RG5. Only NSGs can be created in RG4.
Box 2: The policy does not allow the creation of NSGs in RG5.
AZ-500_441E.png related to the Microsoft AZ-500 Exam
Reference:
https://docs.microsoft.com/en-us/azure/governance/policy/overview

Question 442
HOTSPOT -
Which virtual networks in Sub1 can User9 modify and delete in their current state? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
AZ-500_442Q.jpg related to the Microsoft AZ-500 Exam
Image AZ-500_442R.jpg related to the Microsoft AZ-500 Exam



Box 1: VNET4 and VNET1 only -
RG1 has only Delete lock, while there are no locks on RG4.
RG2 and RG3 both have Read-only locks.
Box 2: VNET4 only -
There are no locks on RG4, while the other resource groups have either Delete or Read-only locks.
Note: As an administrator, you may need to lock a subscription, resource group, or resource to prevent other users in your organization from accidentally deleting or modifying critical resources. You can set the lock level to CanNotDelete or ReadOnly. In the portal, the locks are called Delete and Read-only respectively.
- CanNotDelete means authorized users can still read and modify a resource, but they can't delete the resource.
- ReadOnly means authorized users can read a resource, but they can't delete or update the resource. Applying this lock is similar to restricting all authorized users to the permissions granted by the Reader role.
Scenario:
Sub1 contains six resource groups named RG1, RG2, RG3, RG4, RG5, and RG6.
User9 creates the virtual networks shown in the following table.
AZ-500_442E_1.png related to the Microsoft AZ-500 Exam
Sub1 contains the locks shown in the following table.
AZ-500_442E_2.png related to the Microsoft AZ-500 Exam
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-lock-resources

Question 443
You need to ensure that you can meet the security operations requirements. What should you do first?



The Standard tier extends the capabilities of the Free tier to workloads running in private and other public clouds, providing unified security management and threat protection across your hybrid cloud workloads. The Standard tier also adds advanced threat detection capabilities, which uses built-in behavioral analytics and machine learning to identify attacks and zero-days exploits, access and application controls to reduce exposure to network attacks and malware, and more.
Scenario: Security Operations Requirements
Litware must be able to customize the operating system security configurations in Azure Security Center.
Reference:
https://docs.microsoft.com/en-us/azure/security-center/security-center-pricing