You are responsible for responding to Azure Defender for Key Vault alerts. During an investigation of an alert, you discover unauthorized attempts to access a key vault from a Tor exit node. What should you configure to mitigate the threat?

Key Vault firewalls and virtual networks

Azure Active Directory (Azure AD) permissions

role-based access control (RBAC) for the key vault

the access policy settings of the key vault

You use Azure Defender. You have an Azure Storage account that contains sensitive information. You need to run a PowerShell script if someone accesses the storage account from a suspicious IP address. Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

From Azure Security Center, enable workflow automation.

Create an Azure logic app that has an Azure Security Center alert trigger.

Create an Azure logic app that has a manual trigger.

Create an Azure logic app that has an HTTP trigger.

From Azure Active Directory (Azure AD), add an app registration.

You have a suppression rule in Azure Security Center for 10 virtual machines that are used for testing. The virtual machines run Windows Server. You are troubleshooting an issue on the virtual machines. In Security Center, you need to view the alerts generated by the virtual machines during the last five days. What should you do?

Modify the filter for the Security alerts page.

Change the rule expiration date of the suppression rule.

Change the state of the suppression rule to Disabled.

View the Windows event logs on the virtual machines.

You create an Azure subscription. You enable Azure Defender for the subscription. You need to use Azure Defender to protect on-premises computers. What should you do on the on-premises computers?

Install the Log Analytics agent.

Configure the Hybrid Runbook Worker role.

Install the Connected Machine agent.

A security administrator receives email alerts from Azure Defender for activities such as potential malware uploaded to a storage account and potential successful brute force attacks. The security administrator does NOT receive email alerts for activities such as antimalware action failed and suspicious network activity. The alerts appear in Azure Security Center. You need to ensure that the security administrator receives email alerts for all the activities. What should you configure in the Security Center settings?

the severity level of email notifications

the integration settings for Threat detection

You have an Azure subscription that contains a virtual machine named VM1 and uses Azure Defender. Azure Defender has automatic provisioning enabled. You need to create a custom alert suppression rule that will suppress false positive alerts for suspicious use of PowerShell on VM1. What should you do first?

On VM1 trigger a PowerShell alert.

From Azure Security Center, add a workflow automation.

On VM1, run the Get-MPThreatCatalog cmdlet.

From Azure Security Center, export the alerts to a Log Analytics workspace.

You have five on-premises Linux servers. You have an Azure subscription that uses Microsoft Defender for Cloud. You need to use Defender for Cloud to protect the Linux servers. What should you install on the servers first?

the Azure Connected Machine agent

the Guest Configuration extension

multi s2

Authored by John Doe

Geography

Professional Development

Used 2+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You use Azure Security Center. You receive a security alert in Security Center. You need to view recommendations to resolve the alert in Security Center. Solution: From Security alerts, you select the alert, select Take Action, and then expand the Prevent future attacks section. Does this meet the goal?

Yes

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You receive an alert from Azure Defender for Key Vault. You discover that the alert is generated from multiple suspicious IP addresses. You need to reduce the potential of Key Vault secrets being leaked while you investigate the issue. The solution must be implemented as soon as possible and must minimize the impact on legitimate users. What should you do first?

Modify the access control settings for the key vault.

Enable the Key Vault firewall.

Create an application security group

Modify the access policy for the key vault.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You have a Microsoft 365 subscription that uses Azure Defender. You have 100 virtual machines in a resource group named RG1. You assign the Security Admin roles to a new user named SecAdmin1. You need to ensure that SecAdmin1 can apply quick fixes to the virtual machines by using Azure Defender. The solution must use the principle of least privilege. Which role should you assign to SecAdmin1?

the Security Reader role for the subscription

the Contributor for the subscription

the Contributor role for RG1

the Owner role for RG1

MULTIPLE SELECT QUESTION

45 sec • 1 pt

You provision a Linux virtual machine in a new Azure subscription. You enable Azure Defender and onboard the virtual machine to Azure Defender. You need to verify that an attack on the virtual machine triggers an alert in Azure Defender. Which two Bash commands should you run on the virtual machine? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

cp /bin/echo ./asc_alerttest_662jfi039n

./alerttest testing eicar pipe

cp /bin/echo ./alerttest

./asc_alerttest_662jfi039n testing eicar pipe

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You create an Azure subscription named sub1. In sub1, you create a Log Analytics workspace named workspace1. You enable Azure Security Center and configure Security Center to use workspace1. You need to collect security event logs from the Azure virtual machines that report to workspace1. What should you do?

From Security Center, enable data collection

In sub1, register a provider.

From Security Center, create a Workflow automation.

In workspace1, create a workbook.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Your company uses Azure Security Center and Azure Defender.
The security operations team at the company informs you that it does NOT receive email notifications for security alerts. What should you configure in Security Center to enable the email notifications?

Security solutions

Security policy

Pricing & settings

Security alerts

Azure Defender

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You use Azure Security Center. You receive a security alert in Security Center. You need to view recommendations to resolve the alert in Security Center. Solution: From Regulatory compliance, you download the report. Does this meet the goal?

Yes

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

States of India

Quiz

•

5th Grade - Professio...

19 questions

klasifikasi Iklim

Quiz

•

1st Grade - Professio...

15 questions

World General Knowledge

Quiz

•

7th Grade - Professio...

15 questions

Dia da Europa - Clube Europeu - ESAS - 2020/2021

Quiz

•

7th Grade - Professio...

20 questions

Geography (countries) very hard

Quiz

•

7th Grade - Professio...

20 questions

Geography (counrties) hard

Quiz

•

6th Grade - Professio...

25 questions

Capital Cities Quiz - Cognita

Quiz

•

9th Grade - Professio...

20 questions

Trivia Time - Flags

Quiz

•

Professional Development

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

14 questions

Boundaries & Healthy Relationships

Lesson

•

6th - 8th Grade

13 questions

SMS Cafeteria Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

12 questions

SMS Restroom Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

10 questions

Pi Day Trivia!

Quiz

•

6th - 9th Grade

Discover more resources for Geography

20 questions

90s Cartoons

Quiz

•

Professional Development

5 questions

Workplace Documents Practice Test: Document 1

Quiz

•

Professional Development

5 questions

Workplace Documents Practice Test: Document 2

Quiz

•

Professional Development

10 questions

March Quiz

Quiz

•

Professional Development

5 questions

Copy of G5_U6_L8_22-23

Lesson

•

KG - Professional Dev...

multi s2

Your company uses Azure Security Center and Azure Defender. The security operations team at the company informs you that it does NOT receive email notifications for security alerts. What should you configure in Security Center to enable the email notifications?

You are responsible for responding to Azure Defender for Key Vault alerts. During an investigation of an alert, you discover unauthorized attempts to access a key vault from a Tor exit node. What should you configure to mitigate the threat?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Geography

Your company uses Azure Security Center and Azure Defender.
The security operations team at the company informs you that it does NOT receive email notifications for security alerts. What should you configure in Security Center to enable the email notifications?