Learn how Azure Bastion hosts secure access to virtual machines, web apps, and Azure Active Directory Domain Services in this comprehensive AZ-104 exam question explanation.
Table of Contents
Question
You have an Azure subscription that contains the resources shown in the following table.
| Name | Type |
|---|---|
| VM1 | Virtual machine |
| App1 | Web app |
| contoso.com | Azure Active Directory Domain Services (Azure AD DS) domain |
All the resources connect to a virtual network named VNet1.
You plan to deploy an Azure Bastion host named Bastion1 to VNet1.
Which resources can be protected by using Bastion1?
A. VM1 only
B. contoso.com only
C. App1 and contoso.com only
D. VM1 and contoso.com only
E. VM1, App1, and contoso.com
Answer
A. VM1 only
Explanation
Azure Bastion is a fully managed PaaS service that provides secure and seamless RDP/SSH connectivity to your virtual machines directly through the Azure portal. It allows you to connect to your Azure virtual machines without exposing the VMs directly to the internet, reducing the attack surface and enhancing security.
Azure Bastion can only protect virtual machines (VMs) that are deployed in the same virtual network as the Bastion host. In this scenario, only VM1 is a virtual machine resource that can be accessed and protected using the Azure Bastion host named Bastion1.
App1, being a web app, and contoso.com, an Azure Active Directory Domain Services (Azure AD DS) domain, cannot be directly accessed or protected using Azure Bastion. Azure Bastion is specifically designed for securing access to virtual machines and does not provide direct connectivity to other Azure resources like web apps or Azure AD DS.
Therefore, the correct answer is A. VM1 only, as it is the only resource among the given options that can be protected by using the Azure Bastion host Bastion1.
Microsoft AZ-104 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Microsoft AZ-104 exam and earn Microsoft AZ-104 certification.