Exam AZ-400 topic 2 question 51 discussion

Actual exam question from Microsoft's AZ-400

Question #: 51
Topic #: 2

SIMULATION
-

You need to write a KQL query that will count the number of inbound requests for each source IP address, for any connection made during the last three months of 2021.

On Azure Data Explorer by using the following link:

https://dataexplorer.azure.corn/clusters/help/databases/SecurityLogs

The requests are contained in a table named InboundBrowsing in the SecurityLogs connection.

The query must return two columns named NumberOfRequests and SourceIP.

Export the query result to C:\Samples.

Show Suggested Answer

Suggested Answer:

by Renci at Sept. 10, 2024, 2:25 p.m.

Comments

Submit Cancel

oumax_

3 months, 1 week ago

InboundBrowsing | extend timestamp = todatetime(timestamp) | where timestamp between ( datetime(2021-10-01)..datetime(2021-12-31)) | summarize NumberOfRequests=count() by SourceIP = src_ip | project SourceIP, NumberOfRequests

upvoted 3 times

414ae6a

3 months ago

It works, confirmed

upvoted 2 times

...

kashif86

4 months, 1 week ago

InboundBrowsing | where Timestamp between (datetime(2021-10-01) .. datetime(2021-12-31)) | summarize NumberOfRequests = count() by SourceIP | project SourceIP, NumberOfRequests

upvoted 1 times

414ae6a

3 months ago

This doesn't work with erroe - 'where' operator: Failed to resolve scalar expression named 'Timestamp'. Example provided by @oumax_ works good

upvoted 1 times

...

Renci

7 months, 2 weeks ago

InboundBrowsing | summarize NumberOfRequests=count() by SourceIP=src_ip | project NumberOfRequests, SourceIP

upvoted 4 times

...

Exam AZ-400 All Questions

View all questions & answers for the AZ-400 exam

Exam AZ-400 topic 2 question 51 discussion

Comments

oumax_

414ae6a

kashif86

414ae6a

Renci

SY0-701