Domain 2.5: Azure Identity, Access, and Security

Which Azure service is a cloud-based identity and access management service that helps employees sign in and access resources?

A user logs into the Azure Portal using a password and then receives a prompt on their mobile phone to approve the sign-in. What security feature is being used?

Microsoft Entra Conditional Access uses 'signals' to make decisions about whether to allow or block a user's login attempt. Which TWO of the following are examples of these signals? (Select TWO)

What is the primary difference between Azure Role-Based Access Control (RBAC) and Azure Policy?

What is Microsoft Entra ID (formerly Azure Active Directory)?

Which security feature requires users to provide two or more forms of identification to access an application?

Which Azure feature allows you to grant a user the exact permissions they need to restart a specific Virtual Machine, without giving them permission to delete it?

Which TWO of the following are guiding principles of the Zero Trust security model? (Select TWO)

What is Microsoft Entra ID (formerly Azure Active Directory)?

Which security model assumes that every request is a potential breach and verifies it regardless of where it originates?

What is the primary purpose of Azure Role-Based Access Control (RBAC)?

Select TWO authentication methods supported by Microsoft Entra ID Multifactor Authentication (MFA).

What is the primary purpose of Microsoft Entra ID (formerly Azure Active Directory)?

A company wants to require users to perform Multi-Factor Authentication (MFA) ONLY when they are logging in from outside the corporate network. Which Microsoft Entra ID feature should they use?

Which THREE of the following are the guiding principles of the Zero Trust security model? (Select THREE)

True or False: Azure Role-Based Access Control (RBAC) is used to determine what actions an authenticated user can perform on an Azure resource.

What is Microsoft Entra ID (formerly Azure Active Directory)?

A company wants to require users to perform Multi-Factor Authentication (MFA) ONLY when they are logging in from outside the corporate office network. Which feature of Microsoft Entra ID should they use?

Which security model assumes breach and verifies each request as though it originates from an open network, regardless of where the request comes from?

Select TWO primary capabilities of Microsoft Defender for Cloud.

Which Azure service provides cloud-based identity and access management, allowing employees to sign in and access internal and external resources?

What security feature requires users to provide two or more forms of identification before granting access to an application?

Which TWO of the following are examples of signals that Microsoft Entra Conditional Access can use to make access decisions? (Select TWO)

What is Microsoft Entra ID (formerly Azure Active Directory)?

Which Microsoft Entra feature allows you to require Multi-Factor Authentication (MFA) ONLY when a user attempts to log in from an unfamiliar location or device?

Which TWO of the following are valid authentication methods that can be used as a second factor in Microsoft Entra Multi-Factor Authentication (MFA)? (Select TWO)

Which Azure feature allows you to grant a user the exact permissions they need to manage virtual machines in a specific resource group, without granting them access to other resources?