ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 4 question 53 discussion

Actual exam question from Microsoft's AZ-500
Question #: 53
Topic #: 4
[All AZ-500 Questions]

You have an Azure subscription named Sub1 that contains the virtual machines shown in the following table.

You need to ensure that the virtual machines in RG1 have the Remote Desktop port closed until an authorized user requests access.
What should you configure?

  • A. Azure Active Directory (Azure AD) Privileged Identity Management (PIM)
  • B. an application security group
  • C. Azure Active Directory (Azure AD) conditional access
  • D. just in time (JIT) VM access
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Andy998 at June 15, 2020, 5:04 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
gfhbox0083
Highly Voted 4 years, 7 months ago
D, for sure
upvoted 28 times
arytech
3 years, 7 months ago
This is what I call confidence!
upvoted 2 times
...
...
gboyega
Highly Voted 4 years, 6 months ago
D is correct
upvoted 10 times
...
epomatti
Most Recent 1 year, 1 month ago
Selected Answer: D
JIT - "until an authorized user requests access" gives it away.
upvoted 1 times
...
zellck
1 year, 8 months ago
Selected Answer: D
D is the answer. https://learn.microsoft.com/en-us/azure/defender-for-cloud/just-in-time-access-usage You can use Microsoft Defender for Cloud's just-in-time (JIT) access to protect your Azure virtual machines (VMs) from unauthorized network access. Many times firewalls contain allow rules that leave your VMs vulnerable to attack. JIT lets you allow access to your VMs only when the access is needed, on the ports needed, and for the period of time needed.
upvoted 1 times
...
majstor86
1 year, 11 months ago
Selected Answer: D
D. just in time (JIT) VM access
upvoted 1 times
...
ligu
1 year, 11 months ago
The answer is correct
upvoted 1 times
...
F117A_Stealth
2 years, 2 months ago
Selected Answer: D
D - Definitely!
upvoted 1 times
...
LimonS
2 years, 6 months ago
Selected Answer: D
D for sure, since we're specifically talking about the port behavior.
upvoted 1 times
...
cyberexpert23
2 years, 7 months ago
In Exam 30/06/2022. D is correct
upvoted 2 times
...
wongtony
3 years, 6 months ago
It'd be great if this kind of question appears in the real exam
upvoted 2 times
...
prubio
3 years, 10 months ago
Sorry but.... PIM should be activated to enable JIT, shouldn't it? Therefore, I would choose A. What do you think?
upvoted 1 times
OhBee
3 years, 10 months ago
I thought only Security Center was required.
upvoted 2 times
...
kimalto452
3 years, 7 months ago
standart tier >defender for vm
upvoted 1 times
...
Ed2learn
3 years, 7 months ago
You don't have to have PIM for JIT.
upvoted 1 times
Ed2learn
3 years, 7 months ago
I should be more clear - You can use PIM for the required roles but it is not necessary to do so. https://docs.microsoft.com/en-us/azure/security-center/security-center-just-in-time?tabs=jit-config-asc%2Cjit-request-asc
upvoted 1 times
...
...
...
zic04
4 years ago
Correct D
upvoted 2 times
...
tuta
4 years, 1 month ago
D- No doubt
upvoted 2 times
...
Andy998
4 years, 7 months ago
D is correct.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel