Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

You administer an Azure Key Vault named ContosoVault that contains an RSA key named AppKey. Several applications reference the key by using the base URI (https://contosovault.vault.azure.net/keys/AppKey). Compliance requires that AppKey be rotated automatically every 30 days while the existing URI remains valid. You want a solution that involves the least ongoing administrative effort. What should you do?

  • Set the key's activation and expiration dates so that it expires 30 days after creation.

  • Configure a key rotation policy on AppKey with a lifetime action of Rotate set to 30 days.

  • Enable soft delete and purge protection on ContosoVault.

  • Create an Azure Automation runbook that calls az keyvault key rotate on AppKey every 30 days.

Microsoft Azure Security Engineer Associate AZ-500
Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot