Question 1

Fabrikam Inc. is a Managed Service Provider (MSP) managing Azure environments for 50 different enterprise customers. Each customer has their own Microsoft Entra ID (Azure AD) tenant and multiple Azure subscriptions.

Fabrikam needs to implement a centralized security monitoring and incident response solution. The Fabrikam Security Operations Center (SOC) team must be able to view alerts, hunt for threats, and run automated playbooks across all 50 customer tenants from a single pane of glass. Customers must retain ownership of their data, and Fabrikam must not require guest accounts in customer tenants.

Which combination of Azure services should you recommend?

Accepted Answer

Identify the requirement for cross-tenant management without guest accounts (Azure Lighthouse) and the requirement for SIEM/SOAR capabilities (Microsoft Sentinel).

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Confusing Azure B2B (which creates guest users) with Azure Lighthouse (which uses delegated access).

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 3

More questions from this exam