AZ-300 Azure Identity & Security

Question 1

Which Azure AD feature allows you to control access to applications based on user, device, location, and risk signals?

Accepted Answer

Conditional Access

Answer

Multi-Factor Authentication

Answer

Privileged Identity Management

Answer

Identity Protection

Question 2

What is the purpose of Azure AD Privileged Identity Management (PIM)?

Accepted Answer

Provide just-in-time elevation of privileged roles with approval and time limits

Answer

Manage password resets

Answer

Sync on-premises AD with Azure AD

Answer

Monitor sign-in risk

Question 3

Which Azure RBAC role allows full management of all Azure resources but does not allow assignment of roles to others?

Accepted Answer

Contributor

Answer

Owner

Answer

Reader

Answer

User Access Administrator

Question 4

What is a Managed Identity in Azure?

Accepted Answer

An Azure AD identity automatically managed by Azure for authenticating to services without credentials in code

Answer

A third-party identity provider

Answer

A service account with a password

Answer

A federated enterprise identity

Question 5

Which Azure service stores secrets, keys, and certificates with hardware security module (HSM) backing and fine-grained access control?

Accepted Answer

Azure Key Vault

Answer

Azure Active Directory

Answer

Azure Security Center

Answer

Azure Policy

Question 6

Which Azure AD feature detects risky sign-ins and compromised user accounts using machine learning and threat intelligence?

Accepted Answer

Identity Protection

Answer

Conditional Access

Answer

Privileged Identity Management

Answer

Access Reviews