Microsoft Azure Fundamentals AZ-900

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: a network security group (NSG)

The question asks about controlling which ports on Azure virtual machines are accessible from the Internet. A network security group (NSG) is specifically designed for this purpose, as it contains security rules that allow or deny network traffic based on source/destination IP addresses, ports, and protocols. The community discussion strongly supports this, with 100% of answers selecting A, high upvotes on comments explaining NSG functionality, and references to Microsoft documentation confirming NSGs filter traffic to Azure resources. Other options are unsuitable: Azure AD roles and groups manage user access and permissions, not network traffic, while Azure Key Vault secures secrets, keys, and certificates, not port access.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: a network security group (NSG)

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

You need to control which ports on your Azure virtual machines are accessible from the Internet. What Azure resource should you use?

Exam-Like

a network security group (NSG)

100.0%

an Azure Active Directory (Azure AD) role

0.0%

an Azure Active Directory group

an Azure key vault