AZ-500 Exam QuestionsBrowse all questions from this exam
Go to Exam

AZ-500 Exam - Question 258

HOTSPOT -

You plan to use Azure Sentinel to create an analytic rule that will detect suspicious threats and automate responses.

Which components are required for the rule? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Show Answer
Correct Answer:

Reference:

https://docs.microsoft.com/en-us/azure/sentinel/tutorial-detect-threats-custom https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook

Discussion

12 comments
Sign in to comment
cfsxtuv33
Dec 15, 2021

The answers are...wait for it... CORRECT!!!!!!

Johnvic
Apr 22, 2023

Exam.6 case studies. 3 true/false questions. 47 multiple questions and no simulations. Alot of new questions thats not up here

brooklyn510
Jan 10, 2024

On exam 1/2/24!

majstor86
Mar 4, 2023

A Kusto query language query An Azure Sentinel Playbook

zaqwsx
Oct 17, 2021

Correct

zioggs
Nov 4, 2021

Exam - 4/11/21

Eltooth
Mar 24, 2022

Correct - KQL & playbook.

itbrpl
Oct 20, 2021

Today's exam 20/10/21..

hanyahmed
Jan 28, 2022

correct

F117A_Stealth
Nov 11, 2022

Answers are 100% CORRECT!!

ligu
Feb 27, 2023

The answers are correct. KQL to detect and Playbook to response

scottyboy23
Jul 15, 2024

exam 20240715 correct