Which Azure service is primarily used to manage user identities and control access to resources securely?
Think about the service that handles user sign-in and permissions.
Azure Active Directory (Azure AD) is the core service for identity and access management in Azure. It controls who can sign in and what resources they can access.
Which Azure feature helps isolate network traffic and enforce security policies between different parts of your cloud environment?
Consider the service that controls traffic flow and segmentation.
Azure Virtual Network (VNet) allows you to create isolated networks, and Network Security Groups (NSGs) enforce rules to control traffic between resources.
Which Azure service or feature ensures that data stored in Azure Storage is encrypted automatically without user intervention?
Think about encryption applied directly to stored data.
Azure Storage Service Encryption automatically encrypts data at rest in Azure Storage accounts to protect it from unauthorized access.
Which Azure feature allows assigning only the necessary permissions to users or services to follow the principle of least privilege?
Consider the system that manages permissions and roles.
Azure RBAC lets you assign specific roles with limited permissions to users or services, ensuring they have only what they need.
What is the primary behavior of Azure Security Center when it detects a potential security threat in your Azure environment?
Think about how a security monitoring service helps you respond to threats.
Azure Security Center detects threats, creates alerts, and suggests actions to fix issues, helping you protect your environment.