Az-500 Key Study Terms Already Passed

Service endpoints secure connectivity {Ans: Resource domains available on public DNS name space, allowed data traffic stays on Azure backbone. CAVEAT: service endpoints not reachable from on-premise networks}Infrastructure encryption {Ans: Encryption of the customer's portion of the disk (at disk level)}Access Reviews - Require approval to activate. If setting multiple approvers... {Ans: approval completes as soon as one of them approves or denies}URL Path Based Routing allows you to route traffic to backend pools based on URL paths {Ans: Azure Front Door}Custom roles can be created using what 4 methods? {Ans: Azure portal, Azure PowerShell, Azure CLI, or the REST API.}If blob auditing is enabled, it always applies? {Ans: True}Azure Active Directory Domain Services (ADDS) {Ans: Provides managed domain services such as domain join, group policy, LDAP and Kerberos compatible with on-prem AD}AAD {Ans: AAD does not have capabilities like Group Policies or Application Containers or extensible schema, which is sometimes required by some workloads, among other capabilities}Azure application gateway vs front door {Ans: App gateway: single region Front door: multiple regions}Azure Security Center (ASC) {Ans: Provides Security posture management and workload protection}Conditional Access mandatory condition {Ans: Users and