What should you conclude?

AZ-720 V1 1 Comment

A company enables just-in-time (JIT) virtual machine (VM) access in Azure.

An administrator observes a list of VMs on the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal.

You need to determine why some VMs are not supported for JIT VM access.

What should you conclude?
A . The administrator is using the Microsoft Defender for Cloud free tier.
B. The VMs were provisioned by using a classic deployment.
C. The administrator does not have the SecurityReader role.
D. The administrator does not have permissions to request JIT access to the VMs.

Answer: B

Explanation:

JIT VM access is only supported for VMs that are deployed using the Azure Resource Manager (ARM) deployment model. VMs that are provisioned using the classic deployment model are not compatible with JIT VM access and will be displayed under the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal.

Latest AZ-720 Dumps Valid Version with 81 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download AZ-720 PDF     AZ-720 Questions Online Training
Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
HENRY DSOUZA
HENRY DSOUZA
1 year ago

Correct : here are the causes

  • Unsupported – VMs that don’t support JIT because:
  • Missing network security group (NSG) or Azure Firewall – JIT requires an NSG to be configured or a Firewall configuration (or both)
  • Classic VM – JIT supports VMs that are deployed through Azure Resource Manager. Learn more about classic vs Azure Resource Manager deployment models.
  • Other – The JIT solution is disabled in the security policy of the subscription or the resource group.
0
Reply