Free Microsoft AZ-500 Exam Questions

You have a hybrid configuration of Azure Active Directory (Azure AD) that has Single Sign-On (SSO) enabled. You have an Azure SQL Database instance that is configured to support Azure AD authentication.

Database developers must connect to the database instance from the domain joined device and authenticate by using their on-premises Active Directory account.

You need to ensure that developers can connect to the instance by using Microsoft SQL Server Management Studio. The solution must minimize authentication prompts.

Which authentication method should you recommend?

You have an Azure virtual machine that runs Windows Server R2.

You plan to deploy and configure an Azure Key vault, and enable Azure Disk Encryption for the virtual machine.

Which of the following is TRUE with regards to Azure Disk Encryption for a Windows VM?

You have an Azure subscription that contains a user named User1.

You need to ensure that User1 can perform the following tasks:

• Create groups.

• Create access reviews for role-assignable groups.

• Assign Azure AD roles to groups.

The solution must use the principle of least privilege.

Which role should you assign to User1?

You have an Azure resource group that contains 100 virtual machines.

You have an initiative named Initiative1 that contains multiple policy definitions. Initiative1 is assigned to the resource group.

You need to identify which resources do NOT match the policy definitions.

What should you do?

When creating and managing sensitive data such as API keys and database connection strings in Azure, which service should you primarily use?