Exam SC-500 Topic 1 Question 64 Discussion

Actual exam question for Microsoft's SC-500 exam
Question #: 64
Topic #: 1
You use Azure Virtual Network Manager to manage multiple virtual networks in a network group named Group1.
You discover that the virtual machines in Group1 are accessible from the internet by using TCP port 3389.
You need to block inbound TCP 3389 from the internet across all the virtual networks in Group1.
The solution must minimize administrative effort.
What should you use?

Suggested Answer: B Vote an answer

A security admin configuration in Azure Virtual Network Manager applies centralized security admin rules to all virtual networks in a targeted network group. A deny inbound rule for TCP port
3389 from the internet blocks RDP exposure across Group1 with minimal administrative effort and is evaluated before NSG rules.
Reference:
https://learn.microsoft.com/en-us/azure/virtual-network-manager/concept-security-admins

by Gill at Jun 10, 2026, 02:00 PM

Limited Time Offer

15%

Off

Get Premium SC-500 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10