FREE Microsoft AZ-500 Questions and Answers

Question 1

Recently, your business started an Azure subscription.
You are responsible for ensuring that a particular user may utilize Azure AD Privileged Identity Management (PIM).
Which of the following roles should you provide the user?

Accepted Answer

The Global administrator role.

Answer

The Security administrator role.

Answer

The Password administrator role.

Answer

The Compliance administrator role

Question 2

Your business has an Active Directory forest with just the weylandindustries.com domain. Additionally, they have a tenant with the same name in Azure Active Directory (Azure AD).
The integration of Active Directory with the Azure AD tenancy is your responsibility. You want to introduce Azure AD Connect.
Your integration approach must ensure that user accounts that are synchronized to the Azure AD tenant are affected by password rules and user login limitations, and that the number of required servers is kept to a minimum.
You suggest using seamless SSO with password hash synchronization and pass-through authentication. Is the aim being met by the solution?

Accepted Answer

No

Answer

Yes

Answer

Maybe

Question 3

Your business has an Active Directory forest with just the weylandindustries.com domain. Additionally, they have a tenant with the same name in Azure Active Directory (Azure AD).
The integration of Active Directory with the Azure AD tenancy is your responsibility. You want to introduce Azure AD Connect.
Your integration approach must ensure that user accounts that are synchronized to the Azure AD tenant are affected by password rules and user login limitations, and that the number of required servers is kept to a minimum.
You suggest using Active Directory Federation Services (AD FS) for federation as a solution.
Is the aim being met by the solution?

Accepted Answer

No

Answer

Yes

Answer

Maybe

Question 4

Your business has an Active Directory forest with just the weylandindustries.com domain. Additionally, they have a tenant with the same name in Azure Active Directory (Azure AD).
The integration of Active Directory with the Azure AD tenancy is your responsibility. You want to introduce Azure AD Connect.
Your integration approach must ensure that user accounts that are synchronized to the Azure AD tenant are affected by password rules and user login limitations, and that the number of required servers is kept to a minimum.
You suggest using seamless SSO and password hash synchronization as a fix.
Is the aim being met by the solution?

Accepted Answer

Yes

Answer

No

Answer

Maybe

Question 5

Your business has an Active Directory forest with just the weylandindustries.com domain. Additionally, they have a tenant with the same name in Azure Active Directory (Azure AD).
You are informed that users with a givenName attribute commencing with LAB should not be permitted to sync to Azure AD once all on-premises identities have been synced to it.
Cloud AD.
Which of the subsequent actions ought you to perform?

Accepted Answer

You should make use of the Synchronization Rules Editor to create an attribute-based filtering rule.

Answer

You should configure a network traffic filtering rule on the Firewall.

Answer

You should make use of Active Directory Users and Computers to create an attribute-based filtering rule.

Answer

You should configure a DNAT rule on the Firewall.

Question 6

You are responsible for implementing conditional access restrictions for the current Azure Active Directory (Azure AD) of your firm.
Assessing risk occurrences and risk levels is a step in the process.
Which of the following should be specified as the risk level for users whose credentials have been compromised?

Accepted Answer

High

Answer

Low

Answer

Medium

Answer

None

Question 7

You have been tasked with setting up an access review that will be added to a fresh group of reviews.
Additionally, you must guarantee that resource owners may see the reviews.
You begin by developing an access review program and control.
The Reviewers need to be configured immediately.
Which option should you choose for Reviewers?

Accepted Answer

Group Owners.

Answer

Anyone.

Answer

Selected users.

Answer

Members (Self).