Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AZ-900 Fundementals > 7. Security > Flashcards

7. Security Flashcards

1
Q

What are the 7 general layers of defense?

Briefly Describe each layer

Topic: Defense in Depth

A
  1. Physical - actual data center, only authorized personnel has access
  2. Identiy and access - relates to Azure AD
  3. Perimiter - protection against attacks
  4. Network - filter of traffic to/from Azure using VNets
  5. Compute - protects from intruders trying to access VMS or databases
  6. App Gateways and Firewalls - provides security to Azure apps
  7. Data - encrpyting data and protecting against unauthorized users
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What security does a firewall offer?

Topic: Securing Network Connectivity

A

Firewalls control data coming in/our of network using rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How do rules relate to firewalls?

Topic: Securing Network Connectivity

A

Firewalls define rules for what kind of traffic can and cannot access the device or service behind it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a Network Security Group (NSG)?

Topic: Securing Network Connectivity

A

A NSG is a more targeted, personal firewall that can be attached to a VNet, subnet, or VM.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a public endpoint, and what are the drawbacks from using one?

Topic: Public and Private Endpoints

A

Public endpoints are default for PaaS services, and public endpoints are able to be reached over the internet (publicly). The drawback is that anyone can attempt to access services over the internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What two solutions are better than using public endpoints?

Topic: Public and Private Endpoints

A
  1. Service endpoints
  2. Private endpoints
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Describe service endpoints.

List 3 drawbacks compared to private endpoints.

Topic: Public and Private Endpoints

A

Service endpoints connect VNet subnets to Azure PaaS Services.
Drawbacks:
1. No private access from on-premisis
2. PaaS public endpoint still exist
3. Only able to access entire services, not instances of services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Describe private endpoints.

What are the 3 beneifts compared to service endpoints.

Topic: Public and Private Endpoints

A

Managed network interface that sits inside of a subnet.
Benefits:
1. Privately access services from on premisis or peered VNets
2. PaaS public endpoint is disabled
3. Private connection to a specific instance of a service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is Microsoft Defender for Cloud?

Topic: Microsoft Defender for Cloud

A

A portal that provides threat alerts that Azure Detects.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the three steps for using Microsoft Defender for Cloud?

Topic: Microsoft Defender for Cloud

A
  1. Define policies for Azure to monitor
  2. Protect resources actively through monitoring policy outcomes
  3. Respond to security alerts
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the Resource Security Hygiene dashboard?

What does hygiene refer to?

Topic: Microsoft Defender for Cloud

A

A dashboard that show’s your resources hygiene. Hygiene refers to how resources are configured in relation to security best practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AZ-900 Fundementals (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions