Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-500 Exam - Topic 4 Question 87 Discussion

You have an Azure subscription that contains a virtual network. The virtual network contains the subnets shown in the following table.The subscription contains the virtual machines shown in the following table.You enable just in time (JIT) VM access for all the virtual machines.You need to identify which virtual machines are protected by JIT.Which virtual machines should you identify?
C) VM1, VM3 and VM4 only
A) VM4 only
B) VM1 and VM3 only
D) VM1, VM2, VM3, and VM4

Microsoft AZ-500 Exam - Topic 4 Question 87 Discussion

Actual exam question for Microsoft's AZ-500 exam
Question #: 87
Topic #: 4
[All AZ-500 Questions]

You have an Azure subscription that contains a virtual network. The virtual network contains the subnets shown in the following table.

The subscription contains the virtual machines shown in the following table.

You enable just in time (JIT) VM access for all the virtual machines.

You need to identify which virtual machines are protected by JIT.

Which virtual machines should you identify?

Show Suggested Answer Hide Answer
Suggested Answer: C

An NSG needs to be enabled, either at the VM level or the subnet level.


https://docs.microsoft.com/en-us/azure/security-center/security-center-just-in-time

by Susana at Jul 10, 2025, 08:47 AM

Limited Time Offer

25%

Off

Get Premium AZ-500 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Hyman
6 months ago
VM4 is the only one that needs JIT, right?
upvoted 0 times
...
Gary
6 months ago
Nah, it's definitely all four VMs.
upvoted 0 times
...
Reuben
6 months ago
Wait, are you sure about that?
upvoted 0 times
...
Kenneth
6 months ago
I think it's VM1, VM3, and VM4!
upvoted 0 times
...
Chauncey
6 months ago
JIT protects VMs by limiting access time.
upvoted 0 times
...
Huey
7 months ago
I thought all VMs could be protected by JIT if enabled, so maybe it's D? I need to double-check the details.
upvoted 0 times
...
Roosevelt
7 months ago
I feel like VM4 is the only one that might be protected based on the JIT settings, but I could be wrong.
upvoted 0 times
...
Reuben
7 months ago
I think we practiced a similar question where only specific VMs were protected. I need to recall the subnet configurations.
upvoted 0 times
...
Denae
7 months ago
I remember JIT VM access only protects VMs that are enabled for it, but I'm not sure which ones that applies to here.
upvoted 0 times
...
Fatima
7 months ago
Based on the information provided, I think the correct answer is C. VM1, VM3, and VM4 are the ones that should be identified as protected by JIT, since the question states it's enabled for all VMs.
upvoted 0 times
...
In
8 months ago
I'm a bit confused by this one. The question mentions enabling JIT VM access, but it's not clear if that means all VMs are protected or just some of them. I'll need to think this through more carefully.
upvoted 0 times
...
Rosamond
8 months ago
Okay, let's see here. The question says JIT VM access is enabled for all the VMs, so I'm guessing that means they are all protected by JIT. I'll go with option D.
upvoted 0 times
...
Augustine
8 months ago
Hmm, this looks like a tricky one. I'll need to carefully review the information about the virtual network and VMs to determine which ones are protected by JIT.
upvoted 0 times
...
Karrie
10 months ago
Because JIT VM access was enabled for all virtual machines, so VM4 should also be protected.
upvoted 0 times
...
Ardella
10 months ago
Why do you think that?
upvoted 0 times
...
Galen
10 months ago
Option C looks good to me. I mean, if JIT is enabled for all VMs, then the ones that should be identified are the ones in that subnet, right? Easy peasy.
upvoted 0 times
Tish
9 months ago
I think you're right. VM1, VM3, and VM4 are the ones in the subnet with JIT enabled.
upvoted 0 times
...
Marci
10 months ago
Option C looks good to me. I mean, if JIT is enabled for all VMs, then the ones that should be identified are the ones in that subnet, right? Easy peasy.
upvoted 0 times
...
...
Lindsey
10 months ago
Haha, this is a classic Azure networking question. I bet the answer is D - all the VMs are protected by JIT, just like my uncle's fishing boat is protected by his trusty duct tape.
upvoted 0 times
Filiberto
10 months ago
Yeah, I agree. D seems like the correct choice.
upvoted 0 times
...
Therese
10 months ago
I think the answer is D, all the VMs are protected by JIT.
upvoted 0 times
...
...
Karrie
11 months ago
I disagree, I believe the answer is C) VM1, VM3 and VM4 only.
upvoted 0 times
...
Ardella
11 months ago
I think the answer is B) VM1 and VM3 only.
upvoted 0 times
...
Marica
11 months ago
Hmm, this seems straightforward. I'll go with C as well. JIT is enabled for all VMs, so the ones that should be identified are the ones listed in that option.
upvoted 0 times
...
Nieves
11 months ago
I think the answer is C. VM1, VM3, and VM4 are the only virtual machines that should be identified as being protected by JIT access, since the question states that JIT is enabled for all VMs.
upvoted 0 times
Niesha
10 months ago
Yes, VM1, VM3, and VM4 are the correct virtual machines identified for JIT protection.
upvoted 0 times
...
Niesha
10 months ago
I agree, the answer is C. VM1, VM3, and VM4 are the only virtual machines protected by JIT access.
upvoted 0 times
...
...

Save Cancel