Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

Your company has an AWS Organization that contains about 300 member accounts. As an Azure security engineer, you need to onboard every current AWS account to Microsoft Defender for Cloud while minimizing ongoing administrative effort. Which onboarding approach should you choose?

  • Install Azure Arc-enabled servers agent on every EC2 instance in the organization.

  • Create one single-account AWS connector for each of the 300 member accounts.

  • Use Azure Lighthouse to delegate the AWS accounts to the Azure tenant and then enable Defender for Cloud.

  • Create an AWS Organization connector in Defender for Cloud that uses a CloudFormation StackSet deployed from the management account.

Microsoft Azure Security Engineer Associate AZ-500
Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot