Microsoft Azure Security Technologies (AZ-500) Exam Preparation

Everything you need to pass the Microsoft Azure Security Technologies (AZ-500) exam

Microsoft Azure Security Technologies (AZ-500) Practice Exam Test Sets.

Use these 700 questions and answers with explanations help to you for preparation and pass the Microsoft Azure Security Technologies (AZ-500) Exams, You can take the exam as many times as you need to the master of the Microsoft Azure Security Technologies (AZ-500) Exams, Thank You.

Microsoft Azure Security Technologies (AZ-500) Practice Exam

About Microsoft Azure Security Technologies (AZ-500)

The Microsoft Azure Security Technologies (AZ-500) exam is suitable for Azure Security Engineers who serve as part of a larger team dedicated to cloud-based management and security and may also secure or hybrid environments as part of an end-to-end infrastructure. Responsibilities for an Azure Security Engineer include maintaining the security posture, identifying and remediating vulnerabilities by using a variety of security tools, implementing threat protection, and responding to security incident escalations.

Who should take the exam?

Candidates for this exam should have subject matter expertise implementing security controls and threat protection, managing identity and access, and protecting data, applications, and networks in cloud and hybrid environments as part of an end-to-end infrastructure.

Skills Required

A candidate for this exam should be familiar with scripting and automation, and should have a deep understanding of networking and virtualization. A candidate should also have a strong familiarity with cloud capabilities, Azure products and services, and other Microsoft products and service

Course Outline

The content of this exam will be updated on October 1st, 2021.

Microsoft Azure Security Technologies (AZ-500) Exam covers the following topics -

Manage identity and access (30-35%)

Manage Azure Active Directory identities

  • configure security for service principals
  • manage Azure AD directory groups
  • manage Azure AD users
  • manage administrative units
  • configure password writeback
  • configure authentication methods including password hash and Pass Through

Authentication (PTA), OAuth, and passwordless

  • transfer Azure subscriptions between Azure AD tenants

Configure secure access by using Azure AD

  • monitor privileged access for Azure AD Privileged Identity Management (PIM)
  • configure Access Reviews
  • activate and configure PIM
  • implement Conditional Access policies including Multi-Factor Authentication (MFA)
  • configure Azure AD identity protection

Manage application access

  • create App Registration
  • configure App Registration permission scopes
  • manage App Registration permission consent
  • manage API access to Azure subscriptions and resources

Manage access control

  • configure subscription and resource permissions
  • configure resource group permissions
  • configure custom RBAC roles
  • identify the appropriate role
  • apply principle of least privilege
  • interpret permissions
  • check access

Implement platform protection (15-20%)

Implement advanced network security

  • secure the connectivity of virtual networks (VPN authentication, Express Route encryption)
  • configure Network Security Groups (NSGs) and Application Security Groups (ASGs)
  • create and configure Azure Firewall
  • configure Azure Front Door service as an Application Gateway
  • configure a Web Application Firewall (WAF) on Azure Application Gateway
  • configure Azure Bastion
  • configure a firewall on a storage account, Azure SQL, KeyVault, or App Service
  • implement Service Endpoints
  • implement DDoS protection

Configure advanced security for compute

  • configure endpoint protection
  • configure and monitor system updates for VMs
  • configure authentication for Azure Container Registry
  • configure security for different types of containers
  • implement vulnerability management
  • configure isolation for AKS
  • configure security for container registry
  • implement Azure Disk Encryption
  • configure authentication and security for Azure App Service
  • configure SSL/TLS certs
  • configure authentication for Azure Kubernetes Service
  • configure automatic updates

Manage security operations (25-30%)

Monitor security by using Azure Monitor

  • create and customize alerts
  • monitor security logs by using Azure Monitor
  • configure diagnostic logging and log retention

Monitor security by using Azure Security Center

  • evaluate vulnerability scans from Azure Security Center
  • configure Just in Time VM access by using Azure Security Center
  • configure centralized policy management by using Azure Security Center
  • configure compliance policies and evaluate for compliance by using Azure Security Center
  • configure workflow automation by using Azure Security Center

Monitor security by using Azure Sentinel

  • create and customize alerts
  • configure data sources to Azure Sentinel
  • evaluate results from Azure Sentinel

Configure security policies

  • configure security settings by using Azure Policy
  • configure security settings by using Azure Blueprint
  • configure a playbook by using Azure Sentinel
  • Secure data and applications (20-25%)

Configure security for storage

  • configure access control for storage accounts
  • configure key management for storage accounts
  • configure Azure AD authentication for Azure Storage
  • configure Azure AD Domain Services authentication for Azure Files
  • create and manage Shared Access Signatures (SAS)
  • create a shared access policy for a blob or blob container
  • configure Storage Service Encryption

Configure security for databases

  • enable database authentication
  • enable database auditing
  • configure Azure SQL Database Advanced Threat Protection
  • implement database encryption
  • implement Azure SQL Database Always Encrypted

Configure and manage Key Vault

  • manage access to Key Vault
  • manage permissions to secrets, certificates, and keys
  • configure RBAC usage in Azure Key Vault
  • manage certificates
  • manage secrets
  • configure key rotation
  • backup and restore of Key Vault items

Your Instructor


DFSS_Institute Instructors:-

We are experts in our respective fields of area. These trainings and quizzes are designed to make you successful in passing the exams.

We have developed industry agnostic training. The training is applicable for any industry including:-

  • Aerospace | Automotive | Consumer products | Electronics | Agribusiness,
  • Education, | Food and Food Services, | Financial and Insurance Services,
  • Government, | Healthcare (Medical and Pharmaceutical),
  • Manufacturing, | Industrial equipment, | Non-Profit, | Process industries,
  • Golf Courses, Dentists, Doctors, Car Dealerships, Lawyers etc...

if you have any questions, please contact us.

Frequently Asked Questions

When does the course start and finish?
It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
After enrolling, you have access to this course for the duration you selected- across any and all devices you own.
What if I am unhappy with the course?
We would never want you to be unhappy! If you are not happy let us know within 48 hours to get full refund. Thanks

Get started now!