Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

You administer an Azure Kubernetes Service (AKS) cluster that hosts production workloads. Regulatory requirements state that any attempt to "exec" into a running container must be detected at runtime and trigger an alert almost immediately. The solution must use only built-in Azure capabilities and must not require you to manually deploy or maintain additional DaemonSets. Which service should you enable to meet these requirements?

  • Enable Azure Monitor Container insights for the Log Analytics workspace linked to the cluster.

  • Enable the Azure Policy add-on for Kubernetes on the AKS cluster.

  • Enable Microsoft Defender for Containers for the subscription that contains the AKS cluster.

  • Configure diagnostic settings on the AKS cluster to forward Kubernetes audit logs to a Log Analytics workspace.

Microsoft Azure Security Engineer Associate AZ-500
Secure compute, storage, and databases
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot