Which Azure service should you use to correlate events from multiple resources?
Answer is a Files service in a storage account Show
Azure Files is Microsoft's easy-to-use cloud file system. Azure file shares can be seamlessly used in Windows and Windows Server. References: The latest Microsoft AZ-900 Azure Fundamentals certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Microsoft AZ-900 Azure Fundamentals exam and earn Microsoft AZ-900 Azure Fundamentals certification. AZ-900 Question 221Exam QuestionWhich Azure service should you use to correlate events from multiple resources into a centralized repository? A. Azure Event Hubs Correct AnswerD. Azure Log Analytics. ExplanationLog Analytics is a web tool used to write and execute Azure Monitor log queries. Open it by selecting Logs in the Azure Monitor menu. It starts with a new blank query. ReferenceAzure Monitor AZ-900 Question 222Exam QuestionYour company has an Azure Active Directory (Azure AD) tenant named contoso.com that is configured for hybrid coexistence with the on-premises Active Directory Domain. A. User1 only. Correct AnswerD. User1, User2, User3, and User4. ExplanationThe security of two-step verification lies in its layered approach. Compromising multiple authentication factors presents a significant challenge for attackers. Even if an attacker manages to learn the user’s password, it is useless without also having possession of the additional authentication method. It works by requiring two or more of the following authentication methods:
Multi-Factor Authentication comes as part of the following offerings:
ReferenceMicrosoft Docs > How it works: Azure Multi-Factor Authentication AZ-900 Question 223Exam QuestionYou have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com. A. From the Roles and administrators blade, assign the Security administrator role to Admin1. Correct AnswerD. From the Users blade, modify the External collaboration settings. ExplanationBy default, all users and guests in your directory can invite guests even if they’re not assigned to an admin role. External collaboration settings let you turn guest invitations on or off for different types of users in your organization. You can also delegate invitations to individual users by assigning roles that allow them to invite guests.
ReferenceMicrosoft Docs > Enable B2B external collaboration and manage who can invite guests AZ-900 Question 224Exam QuestionYou have an Azure DNS zone named adatum.com. A. Create an A record named *.research in the adatum.com zone. Correct AnswerD. Create an NS record named research in the adatum.com zone. ExplanationYou need to create a name server (NS) record for the zone. ReferenceMicrosoft Docs > Overview of DNS zones and records AZ-900 Question 225Exam QuestionYour company has a main office in London that contains 100 client computers. A. From the Device settings blade, modify the Users may join devices to Azure AD setting. Correct AnswerB. From the Device settings blade, modify the Maximum number of devices per user setting. ExplanationMaximum number of devices – This setting enables you to select the maximum number of devices that a user can have in Azure AD. If a user reaches this quota, they are not be able to add additional devices until one or more of the existing devices are removed. The device quota is counted for all devices that are either Azure AD joined or Azure AD registered today. The default value is 20. Maximum number of devices setting does not apply to hybrid Azure AD joined devices. ReferenceMicrosoft Docs > Manage device identities using the Azure portal AZ-900 Question 226Exam QuestionYou set the multi-factor authentication status for a user named [email protected] to Enabled. A. A phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app. Correct AnswerA. A phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app. ExplanationVerification methods: Call to phon, Text message to phone, Notification through mobile app, and Verification code from mobile app or hardware token.
ReferenceMicrosoft Docs > Configure Azure Multi-Factor Authentication settings AZ-900 Question 227Exam QuestionYou have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. A. Yes Correct AnswerA. Yes ExplanationYou can permit only specific users or groups to run specific operations, such as managing, editing, and viewing logic apps. To control their permissions, use Azure Role-Based Access Control (RBAC) to assign customized or built-in roles to members in your Azure subscription:
To prevent others from changing or deleting your logic app, you can use Azure Resource Lock, which prevents others from changing or deleting production resources. ReferenceMicrosoft Docs > Built-in roles for Azure resources AZ-900 Question 228Exam QuestionYou have an Azure subscription named Subscription1 that contains an Azure Log Analytics workspace named Workspace1. A. Get-Event Event | where ($_.EventType ?eq “error”). Correct AnswerD. Search in (Event) “error”. ExplanationTable scoping: To search a term in a specific table, add in (table-name) just after the search operator: ReferenceMicrosoft Docs > Search queries in Azure Monitor logs AZ-900 Question 229Exam QuestionYou have an Azure subscription named Subscription1. Subscription1 contains the resource groups in the following table. A. The App Service plan for WebApp1 moves to North Europe. Policy2 applies to WebApp1. Correct AnswerB. The App Service plan for WebApp1 remains in West Europe. Policy2 applies to WebApp1. ExplanationYou can move an app to another App Service plan, as long as the source plan and the target plan are in the same resource group and geographical region. The region in which your app runs is the region of the App Service plan it’s in. However, you cannot change an App Service plan’s region. ReferenceMicrosoft Docs > Manage an App Service plan in Azure AZ-900 Question 230Exam QuestionYou have an Azure subscription that contains a resource group named RG1. RG1 contains 100 virtual machines. A. Configure locks for the virtual machine. Correct AnswerC. Assign tags to the virtual machines. ExplanationBilling Tags Policy Initiative: Requires specified tag values for cost center and product name. Uses built-in policies to apply and enforce required tags. You specify the required values for the tags. What is event hub used for?Event Hubs is a fully managed, real-time data ingestion service that's simple, trusted, and scalable. Stream millions of events per second from any source to build dynamic data pipelines and immediately respond to business challenges.
Which Azure service can you use as security information and event management?Microsoft Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyze large volumes of data across an enterprise—fast.
Which Azure service requires the use of two or more elements for full authentication?Azure AD Multi-Factor Authentication works by requiring two or more of the following authentication methods: Something you know, typically a password. Something you have, such as a trusted device that's not easily duplicated, like a phone or hardware key. Something you are - biometrics like a fingerprint or face scan.
Which Azure service should you use from the Azure portal to view service failure?Which Azure service should you use from the Azure portal to view service failure notifications that can affect the availability of VM1? In the Azure virtual machines page in the Azure portal, there is a named Maintenance Status. This column will display service issues that could affect your virtual machine.
|