az-500 fourth set

Question 1

name the 5 categories of classification of information according to the azure information protection

Answer 1

personal, public, general, confidential, high confidential

Question 2

if you delete your account from Azure, how long do they keep your information?

Answer 2

90 days

Question 3

which roles can you use to upload container registry?

Answer 3

AcrPush, Owner, Contributor

Question 4

if you want to encrypt VM, where does the AKV need to be

Answer 4

in the same region as the VM

Question 5

Dynamic user rules, contains versus match

Answer 5

contains - just contains, match - is exact match

Question 6

what role do you need to transfer subscription?

Answer 6

owner role

Question 7

what three steps are needed for Azure PIM to start

Answer 7

1) consent to PIM 2) verify my ID 3) Sign up the relevant AAD roles

Question 8

active versus eligble

Answer 8

active = directly assigned and eligble = extra mfa, busness justification, approval before can be used

Question 9

which role can setup the approvers for azure pim

Answer 9

priviledge role admin

Question 10

which port is DNS

Answer 10

Port 53

Question 11

what are the three main protocols for Azure AD

Answer 11

SAML, WS Federatopm, OAuth

Question 12

What 2 items do you need to provide to setup identify provider?

Answer 12

application ID and app secret

Question 13

how do name the single sign of for saas?

Answer 13

federates single sign on

Question 14

which level does azure front door operate

Answer 14

level 7

Question 15

what azure service do you need for security playbooks?

Answer 15

azure logic app

Question 16

for JIM what tier do you need for security center?

Answer 16

standard tier

Question 17

what is high risk level

Answer 17

leaked credentials

Question 18

what is medium risk level

Answer 18

sign in annonious ip, impossible travel

Question 19

wath is low risk level

Answer 19

effected devices