You have the Azure resources shown in the following table. You need to meet the following requirements: - Internet-facing virtual machines must be protected by ...


Microsoft AZ-500 Exam

Questions Number: 288 out of 443 Questions
65.01%

Question 288
You have the Azure resources shown in the following table.
AZ-500_288Q.jpg related to the Microsoft AZ-500 Exam
You need to meet the following requirements:
- Internet-facing virtual machines must be protected by using network security groups (NSGs).
- All the virtual machines must have disk encryption enabled.
What is the minimum number of security policies that you should create in Microsoft Defender for Cloud?



Azure Policy definition Internet-facing virtual machines should be protected with network security groups. We need a security for each of the VMs for Internet- facing protection.
Note: A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. For each rule, you can specify source and destination, port, and protocol.
We only need one security policy for disk encryption to apply on both for VM1 and VM2 (on all VMs).
Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/policy-reference
https://docs.microsoft.com/en-us/azure/virtual-network/network-security-groups-overview





Previous Questions Next Questions