You have an Azure subscription that contains the resources shown in the following table. You plan to enable Azure Defender for the subscription. Which resources can be protected by using Azure Defender?
Just confirmed with Microsoft - Azure defender can protect your DNS traffic at network layer, but not the virtual network - answer should be C
https://docs.microsoft.com/en-ca/azure/security-center/azure-defender
A. VM1, VNET1, storage1, and Vault1
https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources#view-your-networking-resources-and-their-recommendations
Answer: A, VM1, VNET1, storage1, and Vault1
Reason: Microsoft Defender for Cloud protects all the listed resource types. While VNETs are primarily secured through NSGs and Azure Firewall, Defender for Cloud does provide network security recommendations and monitoring for VNETs through its Network Security features, including network mapping, adaptive network hardening, and network security monitoring.
Reference: https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources
Defender for Cloud can protect Virtual Networks (VNets) in Azure by providing threat protection, configuration monitoring, vulnerability management, and advanced network security features. However, Defender for Cloud does not act as a firewall itself — it works in tandem with services like Azure Firewall and DDoS Protection to secure the network.
VM1:
Azure Defender for Virtual Machines provides threat protection for virtual machines in Azure. It monitors for suspicious activity, vulnerabilities, and attacks on your VMs.
VNET1:
Azure Defender for Networks provides protection for virtual networks (VNets). It helps identify vulnerabilities, misconfigurations, and potential threats, such as open ports or unprotected network traffic.
STORAGE1:
Azure Defender for Storage offers protection for Azure Storage accounts. It helps detect malicious activity like ransomware, suspicious access patterns, and abnormal file changes.
VAULT1:
Azure Defender for Key Vault provides protection for Azure Key Vaults. It helps detect suspicious activities, such as unauthorized access to secrets, keys, or certificates stored in the Key Vault.
To support the Answer.
Yes, a Virtual Network (VNET) can be protected using Microsoft Defender for Cloud (formerly Azure Defender). Microsoft Defender for Cloud offers several features to enhance the security of VNETs:
Network security recommendations: Defender for Cloud provides recommendations to improve the security posture of your VNETs, such as associating subnets with Network Security Groups (NSGs)
Answer = A
Answer is A - VM1, VNET1, storage and KV.
Defender for cloud can integrate with VNets, including NICs, subnets and NSGs.
Reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-cloud
I would go with A. Defender supports for virtual networks
Link : https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources?WT.mc_id=Portal-Microsoft_Azure_Security
Correct Solution
Answer is A.
Open Azure portal, then access your configured VNET.
Under the security settings you will see Microsoft Defender for Cloud.
And there is the following:
Defender for Cloud continuously monitors the configuration of your virtual networks to identify potential security vulnerabilities and recommends actions to mitigate them.
Perhaps this has changed recently but you can absolutly use Defender for Cloud to protect Virtual Networks.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources
This section is not available anymore. Please use the main Exam Page.AZ-500 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
tim_f
Highly Voted 4 years agoneemz
Highly Voted 3 years, 9 months agomassnonn
1 year, 10 months agoKindFlame
Most Recent 1 month, 3 weeks agomoadabdou
2 months, 2 weeks agostonwall12
3 months agogolitech
3 months, 1 week agogolitech
3 months, 1 week agoITFranz
3 months, 4 weeks agoSrirupam
5 months, 2 weeks agopentium75
9 months, 2 weeks agoxRiot007
9 months, 3 weeks agodc864d4
11 months, 4 weeks agoPamban
1 year agoJaridB
1 year agoWilianCArias
1 year, 5 months agoFeraso
1 year, 6 months agoMrawrrr
1 year, 4 months agoBigShot0
1 year, 7 months agoESAJRR
1 year, 8 months ago