az-500 exam questions Flashcards
What is a policy initiative
Azure Policy evaluates resources in Azure by comparing the properties of those resources to business rules. These business rules, described in JSON format, are known as policy definitions. To simplify management, several business rules can be grouped together to form a policy initiative (sometimes called a policySet). Once your business rules have been formed, the policy definition or initiative is assigned to any scope of resources that Azure supports, such as management groups, subscriptions, resource groups, or individual resources.
https://docs.microsoft.com/en-us/azure/governance/policy/overview
For which virtual machine can you enable Update Management?
They should be all in running mode, so they can be also linux based
What should you use to retrieve the diagnostics logs
Azure Storage Explorer
What port does powershell use?
PowerShell uses port 5986.
what can you restore ?
We can restore Users and Office 365 groups within 30 days from the deletion date.
to what does MDM Security Baseline apply
Windows 10
Which role can modify permissions on resources.
Owner role
can Pim be used to manage on premise resources?
no
what can be used with External collaboration settings
External collaboration settings let you turn guest invitations on or off for different types of users in your organization
Which signal type should you use when you create the alert rules?
Metric
what do you need with deployIfNotExists statement
a managed identity
describe Azure AD Pass-through Authentication
Azure AD Pass-through Authentication. Provides a simple password validation for Azure AD authentication services by using a software agent that runs on one or more on-premises servers. The servers validate the users directly with your on-premises Active Directory, which ensures that the password validation doesn’t happen in the cloud.
What information should you obtain to register the application if you have setup up authentication already
Provide the Redirect URI. For web applications, this is the base URL of your app where users can sign in. For example, http://localhost:12345. For public client (mobile & desktop), Azure AD uses it to return token responses. Enter a value specific to your application. For example, http://MyFirstAADApp
describe azure lighthouse
Azure Lighthouse allows service providers to perform operations at scale across several tenants at once, making management tasks more efficient.
for what can you use a allow list or a deny list ?
ou can use an allow list or a deny list to allow or block invitations to B2B users from specific organizations. For example, if you want to block personal email address domains, you can set up a deny list that contains domains like Gmail.com and Outlook.com. Or, if your business has a partnership with other businesses like Contoso.com, Fabrikam.com, and Litware.com, and you want to restrict invitations to only these organizations, you can add Contoso.com, Fabrikam.com, and Litware.com to your allow list.
