Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

You are a security engineer for a subscription protected by Microsoft Defender for Cloud. The alert "Brute force attack against an Azure virtual machine" is triggered several times a day against test VMs. The traffic originates from your organization's approved penetration-testing IP range and should no longer raise alerts, but you must still detect the same attack from other sources. What should you do?

  • Disable the related recommendation in the subscription's Security policy.

  • Create an alert suppression rule in Microsoft Defender for Cloud that targets the alert type and specifies the penetration-testing IP range.

  • Mark the affected virtual machines as exempt items in Secure Score.

  • Configure an Azure Monitor alert rule with a filter that excludes the penetration-testing IP addresses.

Microsoft Azure Security Engineer Associate AZ-500
Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot