Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

Your company deploys several Azure Container Instances (ACI) that run sensitive line-of-business workloads. You must ensure that:

  • Security analysts can investigate shell activity and application output from every container.
  • The data must be available in Microsoft Sentinel for query and alert rules without deploying any additional agents inside the containers.

You create a Log Analytics workspace that is already connected to a Microsoft Sentinel workspace.

Which action should you perform on each container group to meet the monitoring requirements?

  • Configure the container group to export resource Activity Logs to the Log Analytics workspace.

  • Create a diagnostic setting that sends all logs to an Azure Storage account, then configure Microsoft Sentinel to import the storage data.

  • Enable a diagnostic setting and route the ContainerInstanceLogs and ContainerInstanceConsoleLogs categories to the Log Analytics workspace.

  • Install the Log Analytics agent as a sidecar container inside each container group.

Microsoft Azure Security Engineer Associate AZ-500
Secure compute, storage, and databases
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot