Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

You need to publish an e-commerce site through a single public endpoint (https://www.contoso.com/). Origins:

  • Azure Storage static website for product images
  • Azure App Service for the web application Requirements:
  1. Route /images and /app paths to the correct origin.
  2. Cache only /images at Microsoft edge POPs.
  3. Inspect all traffic with a built-in WAF.
  4. Deploy the fewest Azure services.

Which design meets all requirements?

  • Deploy Azure Front Door Standard, add both origins, create a cached /images route to Storage and an uncached /app route to the App Service, and attach a Front Door WAF policy.

  • Use Azure CDN Standard for the Storage site and place an Azure Application Gateway with WAF in front of the App Service, publishing both through the same DNS zone.

  • Configure Azure Traffic Manager to direct traffic to separate Azure CDN endpoints for images and application content, each secured by its own WAF.

  • Create an Azure Front Door (classic) profile with origin groups for the Storage account and App Service, relying on default caching for both paths.

Microsoft Azure Security Engineer Associate AZ-500
Secure networking
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot