You have 15 Azure virtual machines in a resource group named RG1. All the virtual machines run identical applications. You need to prevent unauthorized applications and malware from running on the virtual machines. What should you do?
A.
Apply an Azure policy to RG1.
B.
From Azure Security Center, configure adaptive application controls.
C.
Configure Azure Active Directory (Azure AD) Identity Protection.
To support the answer.
Adaptive Application Controls is an intelligent security feature in Microsoft Defender for Cloud that helps protect Azure and non-Azure virtual machines against malware and unauthorized software. Key aspects include:
1. Machine learning: Uses AI to analyze applications running on VMs and create a baseline of known-safe applications.
2. Automated whitelisting: Generates and maintains a list of allowed applications, reducing manual overhead.
3. Grouping: Automatically groups similar VMs to apply consistent policies across multiple servers.
4. Alerting: Detects and alerts on applications not in the approved list, without enforcing blocking.
5. Multi-platform support: Works on Windows and Linux VMs, both in Azure and on-premises (via Azure Arc).
6. Continuous learning: Adapts to changes in application behavior and usage patterns over time.
Answer: B
B is the answer.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls#what-are-adaptive-application-controls
Adaptive application controls are an intelligent and automated solution for defining allowlists of known-safe applications for your machines.
Often, organizations have collections of machines that routinely run the same processes. Microsoft Defender for Cloud uses machine learning to analyze the applications running on your machines and create a list of the known-safe software. Allowlists are based on your specific Azure workloads, and you can further customize the recommendations using the following instructions.
This question has to come from some b-level "training", as official MS documentation states that this can _not_ enforce, and only serves as an alert & compliance tool.
Adaptive app control by ASC is the best choice , but not 100% correct. Question asks for preventing apps from running. App control only alerts on unsafe applications. There is no enforcement or prevention of unsafe apps.
This section is not available anymore. Please use the main Exam Page.AZ-500 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kristiann21
Highly Voted 4 years, 6 months agogboyega
Highly Voted 4 years, 5 months agoKnighthell
Most Recent 1 week, 2 days agoITFranz
5 months, 2 weeks agoIvan80
11 months agoESAJRR
1 year, 2 months agoESAJRR
1 year, 3 months agoServerBrain
1 year, 4 months agozellck
1 year, 7 months agozellck
1 year, 7 months agoMarMarRaf
1 year, 8 months agomajstor86
1 year, 9 months agostepman
1 year, 8 months agoligu
1 year, 10 months agoF117A_Stealth
2 years, 1 month agoWMG
2 years, 8 months agoEltooth
2 years, 9 months agoSecurityAnalyst
3 years, 3 months agorsharma007
3 years, 4 months ago