Bash, the Crucial Exams Chat Bot
AI Bot
Implement Platform Protection Flashcards
Microsoft Azure Security Engineer Associate AZ-500 Flashcards
| Front | Back |
| How can you enhance protection for sensitive data in transit within Azure networks | By using encryption options like Azure VPN Gateway with IPsec/IKE protocols. |
| How can you monitor network traffic in Azure Virtual Networks | Using Azure Network Watcher with tools like NSG Flow Logs or packet capture. |
| How can you restrict access to Azure resources in a virtual network | Using Azure Network Security Group rules or application security groups. |
| How does Azure Firewall provide platform protection | It provides centralized network traffic filtering and threat intelligence. |
| How does Azure Policy implement platform protection | By auditing, enforcing compliance, and preventing configurations that deviate from defined rules. |
| How does Azure Private Link enhance security | It enables private access to Azure services by mapping them to private endpoints within a virtual network. |
| How does Azure Service Endpoint Policies improve platform security | They allow for granular control over accessing Azure services through service endpoints. |
| How does Azure Traffic Manager contribute to platform protection | By intelligently distributing traffic to prevent overload and ensure service availability during failures. |
| How does custom routes enhance network protection in Azure Virtual Networks | They help ensure specific traffic is directed securely or blocked based on need. |
| What are Azure Availability Zones | They ensure high availability and fault tolerance for Azure resources by spreading them across physically separate locations. |
| What are Azure Blueprints used for in platform protection | They enforce compliance and deploy predefined policy, role, and resource configurations across subscriptions. |
| What are the main components of Azure Virtual Networks | Subnets, IP Addresses, Route Tables, and DNS settings. |
| What does Azure Firewall Threat Intelligence-based filtering do | It blocks traffic from known malicious IP addresses. |
| What is Azure Bastion | It provides secure RDP and SSH access to virtual machines without exposing them to the public internet. |
| What is Azure DDoS Protection | It protects Azure resources from distributed denial-of-service attacks by absorbing and filtering malicious traffic. |
| What is the benefit of integrating Azure Firewall with Azure Sentinel | It provides advanced threat detection and correlation for network-level security incidents. |
| What is the difference between Standard and Premium DDoS Protection | Premium offers enhanced mitigation capabilities, automatic tuning, and cost protection. |
| What is the function of Application Security Groups in Azure | They group virtual machines for easier management of access controls within network security rules. |
| What is the purpose of Azure Network Security Groups | They filter network traffic to and from Azure resources based on security rules. |
| What is the purpose of Azure NSG Flow Logs | They provide detailed information about network traffic filtered by Network Security Groups to analyze and troubleshoot. |
| What is the purpose of securing Azure VNets with network peering | It enables secure connectivity between virtual networks without public IP exposure. |
| What is the purpose of service endpoints in Azure Virtual Networks | They secure network traffic between virtual networks and Azure services. |
| What role do route tables play in Azure Virtual Networks | They define how packets are routed within and outside virtual networks. |
| Which Azure service helps monitor and troubleshoot connectivity issues | Azure Network Watcher. |
| Why are Azure Policies important for platform protection | They enforce rules and compliance on Azure resources automatically. |
This deck focuses on securing Azure resources, including virtual networks, firewalls, DDoS protection, network security groups, and Azure policies for platform protection.