Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Microsoft AZ-300

Microsoft AZ-300 Exam Practice Questions (P. 2)

  • Full Access (241 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
You have an Azure subscription named Subscription1 that contains an Azure virtual machine named VM1. VM1 is in a resource group named RG1.
VM1 runs services that will be used to deploy resources to RG1.
You need to ensure that a service running on VM1 can manage the resources in RG1 by using the identity of VM1.
What should you do first?
  1. A
    From the Azure portal, modify the Access control (IAM) settings of RG1.
  2. B
    From the Azure portal, modify the Policies settings of RG1.
  3. C
    From the Azure portal, modify the Access control (IAM) settings of VM1.
  4. D
    From the Azure portal, modify the value of the Managed Service Identity option for VM1.

Correct Answer:
D
References:
https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview

Question #7
HOTSPOT -
You have an Azure subscription named Subscription1. Subscription1 contains the virtual networks in the following table:

Subscription1 contains the virtual machines in the following table:

The firewalls on all the virtual machines are configured to allow all ICMP traffic.
You add the peerings in the following table:

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:


Correct Answer:

 References:
https://docs.microsoft.com/en-us/azure/virtual-network/tutorial-connect-virtual-networks-portal

Question #8
HOTSPOT -
You have an Azure Active Directory (Azure AD) tenant.
You need to create a conditional access policy that requires all users to use multi-factor authentication when they access the Azure portal.
Which three settings should you configure? To answer, select the appropriate settings to the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:


Correct Answer:

 References:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/app-based-mfa

Question #9
You configure Azure AD Connect for Azure Active Directory Seamless Single Sign-On (Azure AD Seamless SSO) for an on-premises network.
Users report that when they attempt to access myapps.microsoft.com, they are prompted multiple times to sign in and are forced to use an account name that ends with onmicrosoft.com.
You discover that there is a UPN mismatch between Azure AD and the on-premises Active Directory.
You need to ensure that the users can use single-sign on (SSO) to access Azure resources.
What should you do first?
  1. A
    From on-premises network, deploy Active Directory Federation Services (AD FS).
  2. B
    From Azure AD, add and verify a custom domain name.
  3. C
    From on-premises network, request a new certificate that contains the Active Directory domain name.
  4. D
    From the server that runs Azure AD Connect, modify the filtering options.

Correct Answer:
B

Question #10
You have an Active Directory forest named contoso.com.
You install and configure AD Connect to use password hash synchronization as the single sign-on(SSO) method. Staging mode is enabled.
You review the synchronization results and discover that the Synchronization Service Manager does not display any sync jobs.
You need to ensure that the synchronization completes successfully.
What should you do?
  1. A
    From Azure PowerShell, run Start-AdSyncSycnCycle ""PolicyType Initial.
  2. B
    Run Azure AD Connect and set the SSO method to Pass-through Authentication.
  3. C
    From Synchronization Service Manager, run a full import.
  4. D
    Run Azure AD Connect and disable staging mode.

Correct Answer:
D
References:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-operations

Previous Questions Next Questions

All Pages