ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 6 question 31 discussion

Actual exam question from Microsoft's AZ-500
Question #: 31
Topic #: 6
[All AZ-500 Questions]

HOTSPOT
-

You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains the subnets shown in the following table.



The subscription contains the virtual machines shown in the following table.



VM3 contains a service that listens for connections on port 8080.

For VM1, you configure just-in-time (JIT) VM access as shown in the following exhibit.



For each of the following statement, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by Viggy1212 at Oct. 1, 2024, 2:39 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Viggy1212
Highly Voted 8 months, 4 weeks ago
For #1, JIT is set for Vm1, Question is connecting to Vm3 from VM1. Vm3 is not having JIT rule. so Time Rule is applied for VM3. Ans : No For #2, Establishing a RDP Connection from VM2 to Vm1. VM2 is not allowed as per source IP Settings. We dont know anything about NSG rules. Going by the default NSG rules, connection will not be allowed. Ans : No For #3, We can establish a RDP connection from Vm3 to VM1, as per source IP settings, it is allowed. But without requesting access, it is not possible. Hence Answeris no Ans : No, No, No Please correct if I missed anything.
upvoted 7 times
cerifyme85
8 months, 2 weeks ago
I think it is NO for number one because VM3 does not have RDP enabled only port 8080
upvoted 1 times
...
Viggy1212
8 months, 4 weeks ago
For #1, Time Rule is not applied*
upvoted 1 times
...
...
Hot_156
Most Recent 4 months, 1 week ago
This is tricky! VMS are in the same Vnet different Subnets. That means they can talk to each other unless there is information I am missing about anything blocking traffic. VM1 to VM3 – Yes – There is nothing saying RDC is blocked by NSG or XYZ. VM2 to VM1 – No – JIT is configured on VM1 to allow access from 10.10.0.0/24 – 192.168.10.0/24. VM2 IP range is 172.16.0.0/24. VM3 to VM1 – No – Because JIT is enabled on VM!
upvoted 2 times
121961e
4 months ago
Yes: As nothing is mentioned regarding NSGs and the VMs are in the same VNET, they are able to communicate, also via RDP No: 172.16.0.0/24 is not allowed in the JIT configuration, only 10.10.0.0/24 and 192.168.10.0/24 Yes: In the JIT configuration you see that the CIDR blocks 10.10.0.0/24 and 192.168.10.0/24 are allowed and it isn't configured to "Per request".
upvoted 1 times
Hot_156
3 months, 3 weeks ago
From VM1 to VM3 - I could not find anything that says that RDP is enabled by default when a new VM is deployed, so I'm not sure about this one. I would say NO? From VM2 to VM1 - Still No From VM3 to VM1 - VM3 needs to request JIT access first and the question says "establish RDP... without requesting access" Which it goes against how JIT works.
upvoted 1 times
...
...
Hot_156
4 months ago
N - I was wrong on the first one. RDP is not enabled by default and there is nothing saying it is enabled. N - Read above N - Read above - Access need to be requested.
upvoted 2 times
...
...
Nhadipour
4 months, 1 week ago
NO – VM1 cannot RDP to VM3 because VM3 does not have RDP enabled. NO – VM2 is not in the JIT-allowed source IP range. NO – VM3 needs to request JIT access before connecting to VM1.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel