Crucial Exams

Microsoft Azure Security Engineer Associate AZ-500 Practice Question

Your company hosts multiple workloads in Azure SQL Managed Instance. The security team wants to centralize audit records with virtual machine logs that are already collected in an Azure Monitor Log Analytics workspace. They also require that every existing and future database in the managed instance be audited without additional configuration effort. What should you do first to meet these requirements?

  • Enable Microsoft Defender for SQL (Advanced Threat Protection) on the managed instance and send alerts to Azure Monitor.

  • Create an Azure Monitor diagnostic setting for the managed instance to stream SQLInsights metrics to an Azure Storage account.

  • Configure database-level auditing on each database and set the destination to an Event Hub.

  • Enable Azure SQL Auditing at the managed-instance level and configure the destination as the existing Log Analytics workspace.

Microsoft Azure Security Engineer Associate AZ-500
Secure compute, storage, and databases
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot