Identity and Governance Flashcards

1
Q

What role is required to create new cloud-only users in Azure AD using the CLI?

A

Global Administrator or User Administrator.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Can a group in Azure AD contain service principals?

A

Yes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What license is required to create a dynamic group in Azure AD?

A

Premium AD license.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What role must you be assigned to enable or disable devices in Azure AD?

A

Global Administrator.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What happens when a device is disabled in Azure AD?

A

It prevents the device from accessing Azure AD resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Who can invite guests to Azure AD by default?

A

All users and admins.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which option should be used for personal devices in Azure AD?

A

Device registration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which option should be used for corporate-owned devices in Azure AD?

A

Device joining.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which option should be used for devices that are joined to on-premises Active Directory and Azure AD?

A

Hybrid AD joined.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What editions of Azure AD include password change for cloud-only users?

A

All editions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What editions of Azure AD support password reset for cloud-only users?

A

Microsoft 365 Business Standard, Microsoft 365 Business Premium, Azure AD Premium P1, Azure AD Premium P2.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What editions of Azure AD support password change/unlock/reset for hybrid users?

A

Microsoft 365 Business Premium, Azure AD Premium P1, Azure AD Premium P2.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the difference between RBAC roles and Azure AD administrative roles?

A

RBAC roles manage access to Azure resources; Azure AD roles manage identity tasks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What permission is required to create a custom role in Azure?

A

Microsoft.Authorization/roleDefinitions/write permission.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How are deny assignments created in Azure IAM blades?

A

By applying a resource lock through Azure Blueprints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the purpose of a CanNotDelete lock in Azure?

A

It prevents the deletion of a resource.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the purpose of a ReadOnly lock in Azure?

A

It prevents users from modifying a resource.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Can resource locks be applied to a subscription?

A

Yes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Are resource locks inherited by child resources in Azure?

A

Yes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is required for tags to be visible in detailed usage exports in Azure?

A

Tags must be applied at the resource scope.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Can a resource group be nested within another resource group in Azure?

A

No.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Can a resource be moved from one resource group to another in Azure?

A

Yes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What must be true for subscriptions to move resources between them?

A

Both subscriptions must be associated with the same Azure AD tenant.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What happens to resources during a move operation in Azure?

A

They are locked, blocking write and delete operations, but the underlying service continues to function.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What is required to move a subscription to a new Azure AD tenant?

A

Transfer ownership of the subscription to another account.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

What is the maximum number of custom roles per directory in Azure AD?

A

5,000 custom roles.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

What is the maximum number of role assignments per subscription in Azure AD?

A

2,000 role assignments.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

What is the maximum number of role assignments per management group in Azure AD?

A

500 role assignments.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

What is the limit for the maximum number of objects synchronized using Azure AD Connect?

A

50,000 objects by default.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

How many NSG rules can you have per NSG in Azure?

A

1,000 NSG rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

What is the maximum number of private endpoints per VNet in Azure?

A

1,000 private endpoints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

What is the maximum number of storage accounts per region per subscription in Azure?

A

250 storage accounts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

What is the maximum size of a file in Azure Files?

A

1 TiB.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

What is the maximum number of keys per Azure Key Vault?

A

4,096 keys.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

What is the maximum number of secrets per Azure Key Vault?

A

10,000 secrets.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

What is the maximum number of certificates per Azure Key Vault?

A

2,000 certificates.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

What are the three types of blobs in Azure Blob Storage?

A

Block Blobs, Page Blobs, Append Blobs.

38
Q

What are the three access tiers in Azure Blob Storage?

A

Hot, Cool, Archive.

39
Q

What is the maximum size of a block blob in Azure?

A

190.7 TiB.

40
Q

What is the maximum size of a page blob in Azure?

A

8 TiB.

41
Q

What is the maximum size of an append blob in Azure?

A

195 GB.

42
Q

What are the performance tiers for Azure Blob Storage?

A

Hot, Cool, Archive.

43
Q

What is the maximum retention period for soft delete in Azure Blob Storage?

A

365 days.

44
Q

What are the access levels for Azure Blob Storage containers?

A

Private, Blob, Container.

45
Q

What is the maximum number of diagnostic settings per resource in Azure Monitor?

A

10 diagnostic settings.

46
Q

What is the maximum number of metrics per subscription in Azure Monitor?

A

500,000 metrics.

47
Q

What is the maximum number of metric alerts per subscription in Azure Monitor?

A

5,000 metric alerts.

48
Q

What is the maximum number of action groups per subscription in Azure Monitor?

A

2,000 action groups.

49
Q

What is the maximum number of activity log alerts per subscription in Azure Monitor?

A

1,000 activity log alerts.

50
Q

What is the maximum number of application insights resources per subscription in Azure?

A

1,000 application insights resources.

51
Q

What is the maximum number of Azure Monitor workbooks per subscription?

A

500 workbooks.

52
Q

What is the maximum number of alerts per subscription in Azure Security Center?

A

1,000 alerts.

53
Q

What is the maximum number of Azure Security Center policies per subscription?

A

100 policies.

54
Q

What is the maximum number of recommendations per subscription in Azure Security Center?

A

1,000 recommendations.

55
Q

What is the maximum number of assessments per subscription in Azure Security Center?

A

100 assessments.

56
Q

What is the maximum number of Azure Blueprints per subscription?

A

200 blueprints.

57
Q

What is the maximum number of blueprint assignments per subscription?

A

400 blueprint assignments.

58
Q

What is the maximum number of Azure Resource Manager (ARM) templates per subscription?

A

1,000 ARM templates.

59
Q

What is the maximum number of ARM template deployments per subscription?

A

800 deployments.

60
Q

What is the maximum size of an ARM template parameter file?

A

4 MB.

61
Q

What is the maximum number of Azure Key Vaults per subscription?

A

500 key vaults.

62
Q

What is the maximum number of Key Vault access policies per key vault?

A

1,024 access policies.

63
Q

What is the maximum number of Azure Policy definitions per subscription?

A

1,000 policy definitions.

64
Q

What is the maximum number of Azure Policy assignments per subscription?

A

500 policy assignments.

65
Q

What is the maximum number of Azure Policy initiatives per subscription?

A

100 initiatives.

66
Q

What is the maximum number of Azure Policy parameters per policy definition?

A

20 parameters.

67
Q

What is the maximum number of Azure Policy non-compliant resources per subscription?

A

10,000 non-compliant resources.

68
Q

What is the maximum number of Azure Policy compliance reports per subscription?

A

1,000 compliance reports.

69
Q

What is the maximum number of Azure Service Health alerts per subscription?

A

500 alerts.

70
Q

What is the maximum number of Azure Service Health action groups per subscription?

A

200 action groups.

71
Q

What is the maximum number of Azure Advisor recommendations per subscription?

A

1,000 recommendations.

72
Q

What is the maximum number of Azure Advisor action groups per subscription?

A

100 action groups.

73
Q

What is the maximum number of virtual machine scale sets (VMSS) per subscription?

A

2,000 VMSS.

74
Q

What is the maximum number of instances per VMSS?

A

1,000 instances.

75
Q

What is the maximum number of tags per resource in Azure?

A

50 tags.

76
Q

What is the maximum number of virtual networks (VNets) per region per subscription?

A

500 VNets.

77
Q

What is the maximum number of subnets per VNet in Azure?

A

3,000 subnets.

78
Q

What is the maximum number of IP configurations per network interface in Azure?

A

50 IP configurations.

79
Q

What is the maximum number of private IP addresses per subscription in Azure?

A

10,000 private IP addresses.

80
Q

What is the maximum number of public IP addresses per subscription in Azure?

A

1,000 public IP addresses.

81
Q

What is the maximum number of route tables per subscription in Azure?

A

400 route tables.

82
Q

What is the maximum number of user-defined routes per route table in Azure?

A

400 user-defined routes.

83
Q

What is the maximum number of VNets per subscription in Azure?

A

1,000 VNets.

84
Q

What is the maximum number of public IP prefixes per subscription in Azure?

A

100 public IP prefixes.

85
Q

What is the maximum number of virtual network gateways per subscription in Azure?

A

50 virtual network gateways.

86
Q

What is the maximum number of VPN connections per virtual network gateway in Azure?

A

30 VPN connections.

87
Q

What is the maximum number of VPN gateways per subscription in Azure?

A

50 VPN gateways.

88
Q

What is the maximum number of Azure AD B2C tenants per subscription?

A

1,000 B2C tenants.

89
Q

What is the maximum number of Azure AD B2B guest users per tenant?

A

5 million guest users.

90
Q

What is the maximum number of Azure AD B2C users per tenant?

A

100 million B2C users.