The latest Microsoft AZ-900 Azure Fundamentals certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Microsoft AZ-900 Azure Fundamentals exam and earn Microsoft AZ-900 Azure Fundamentals certification.
Question 761
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Statement 1: You can add an Azure Resource Manager template to an Azure blueprint: Yes
Statement 2: You can assign an Azure blueprint to a resource group: No
Statement 3: You can use Azure Blueprints to grant permissions to a resource: Yes
Question 762
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Statement 1: General Data Protection Regulation (GDPR) defines data protection and privacy rules: Yes
Statement 2: General Data Protection Regulation (GDPR) applies to companies that offer goods or services to individuals in the EU: Yes
Statement 3: Azure can be used to build a General Data Protection Regulation (GDPR)-compliant infrastructure: Yes
Question 763
To complete the sentence, select the appropriate option in the answer area.
__________ provide organizations with the ability to manage the compliance of Azure resources across multiple subscriptions.
Answer Area:
A. Resource groups
B. Management groups
*C. Azure policies
D. Azure App Service plans
Question 764
To complete the sentence, select the appropriate option in the answer area.
An Azure Policy initiative definition is a __________.
Answer Area:
*A. collection of policy definitions.
B. collection of Azure Policy definition assignments.
C. group of Azure Blueprints definitions.
D. group of role-based access control (RBAC) role assignments.
Question 765
To complete the sentence, select the appropriate option in the answer area.
__________is the process of verifying a user’s credentials.
Answer Area:
A. Authorization
*B. Authentication
C. Federation
D. Ticketing
Explanation
Authentication, not authorization is the process of verifying a user’s credentials.
The difference between authentication and authorization is:
Authentication is proving your identity, proving that you are who you say you are. The most common example of this is logging in to a system by providing credentials such as a username and password.
Authorization is what you’re allowed to do once you’ve been authenticated. For example, what resources you’re allowed to access and what you can do with those resources.
Question 766
To complete the sentence, select the appropriate option in the answer area.
The __________ explains what data Microsoft processes, how Microsoft processes the data, and the purpose of processing the data.
Answer Area:
*A. Microsoft Online Services Privacy Statement
B. Microsoft Online Services Terms
C. Microsoft Online Service Level Agreement
D. Online Subscription Agreement for Microsoft Azure
Explanation
The Microsoft Privacy Statement explains what personal data Microsoft processes, how Microsoft processes the data, and the purpose of processing the data.
Question 767
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Statement 1: You can create Group Policies in Azure Active Directory (Azure AD): Yes
Statement 2: You can join Windows 10 devices to Azure Active Directory (Azure AD): Yes
Statement 3: You can join Android devices to Azure Active Directory (Azure AD): No
Explanation
Azure AD join only applies to Windows 10 devices.
Question 768
This question requires that you evaluate the bold text to determine if it is correct. Review the bold text. If it makes the statement correct, select “No change is needed.” If the statement is incorrect, select the answer choice that makes the statement correct.
From Azure Cloud Shell, you can track your company’s regulatory standards and regulations, such as ISO 27001.
A. No change is needed.
B. the Microsoft Cloud Partner Portal
*C. Compliance Manager
D. the Trust Center
Explanation
Microsoft Compliance Manager (Preview) is a free workflow-based risk assessment tool that lets you track, assign, and verify regulatory compliance activities related to Microsoft cloud services. Azure Cloud Shell, on the other hand, is an interactive, authenticated, browser-accessible shell for managing Azure resources.
Question 769
Your company has an Azure subscription that contains resources in several regions.
A company policy states that administrators must only be allowed to create additional Azure resources in a region in the country where their office is located.
You need to create the Azure resource that must be used to meet the policy requirement.
What should you create?
A. a read-only lock
*B. an Azure policy
C. a management group
D. a reservation
Explanation
Azure policies can be used to define requirements for resource properties during deployment and for already existing resources. Azure Policy controls properties such as the types or locations of resources.
Azure Policy is a service in Azure that you use to create, assign, and manage policies. These policies enforce different rules and effects over your resources, so those resources stay compliant with your corporate standards and service level agreements. Azure Policy meets this need by evaluating your resources for non-compliance with assigned policies. All data stored by Azure Policy is encrypted at rest.
Azure Policy offers several built-in policies that are available by default. In this question, we would use the ‘Allowed Locations’ policy to define the locations where resources can be deployed.
Question 770
To complete the sentence, select the appropriate option in the answer area.
You have an Azure virtual network named VNET1 in a resource group named RG1.
You assigned the Azure Policy definition of Not Allowed Resource Type and specify that virtual networks are not an allowed resource type in RG1.
VNET1 __________
Answer Area:
A. is deleted automatically.
B. is moved automatically to another resource group.
*C. continues to function normally.
D. is now a read-only object.
Explanation
The VNet will be marked as ‘Non-compliant’ when the policy is assigned. However, it will not be deleted and will continue to function normally.
Azure Policy is a service in Azure that you use to create, assign, and manage policies. These policies enforce different rules and effects over your resources, so those resources stay compliant with your corporate standards and service level agreements.
If there are any existing resources that aren’t compliant with a new policy assignment, they appear under Non-compliant resources.