Exam AZ-500 topic 4 question 44 discussion

Answer is clearly A. We use this daily basis in our system. You go to security center -> Under Cloud Security -> Regulatory Compliance. You see all information you need to see there. I cannot understand why people here "Blindly" say the answer is B. B is wrong because it says "Azure AD Admin Centre", the Azure AD Admin Center has nothing to do with Regulatory compliance and there is no option there. Please read the answer completely before confusing others. Thanks.

Answer is wrong. I think A is the best fit.

WHY NOT A?? Azure Security Center Regulatory compliance assessment, while useful for overall security compliance, it doesn't specifically show detailed information about non-compliance related to your custom Azure policie

A. From Azure Security Center, view the Regulatory compliance assessment. Explanation: The Regulatory compliance assessment in Azure Security Center (now part of Microsoft Defender for Cloud) provides a comprehensive view of your environment's compliance posture against various regulatory standards, including policy definitions in initiatives. Regulatory Compliance: This feature helps you understand the compliance state of your resources by evaluating them against a set of predefined compliance standards (such as Azure Security Benchmark, CIS, ISO 27001, etc.) and custom policy initiatives. Non-compliant Resources: You can drill down into the regulatory compliance dashboard to identify which resources are non-compliant with the policies defined in Initiative1. This is a direct way to find out which resources (including the 100 virtual machines in the resource group) are not matching the policy definitions.

https://learn.microsoft.com/en-us/azure/governance/policy/how-to/get-compliance-data#portal Portal The Azure portal showcases a graphical experience of visualizing and understanding the state of compliance in your environment. On the Policy page, the Overview option provides details for available scopes on the compliance of both policies and initiatives. Along with the compliance state and count per assignment, it contains a chart showing compliance over the last seven days. The Compliance page contains much of this same information (except the chart), but provide additional filtering and sorting options. Since a policy or initiative can be assigned to different scopes, the table includes the scope for each assignment and the type of definition that was assigned. The number of non-compliant resources and non-compliant policies for each assignment are also provided. Selecting on a policy or initiative in the table provides a deeper look at the compliance for that particular assignment. Answer = B

The answer is B.

We want to check compliance with policies (not regulations) -> B

Correct answer : B Reference: https://learn.microsoft.com/en-us/azure/governance/policy/how-to/determine-non-compliance#compliance-details Regulatory compliance is something else. Reference: https://learn.microsoft.com/en-us/azure/defender-for-cloud/update-regulatory-compliance-packages

it could not be A: In the Azure Security Center regulatory compliance blade, you can get an overview of key portions of your compliance posture with respect to a set of supported standards. Currently supported standards are Azure CIS, PCI DSS 3.2, ISO 27001, and SOC TSP. https://azure.microsoft.com/en-us/blog/regulatory-compliance-dashboard-in-azure-security-center-now-available/

Azure Portal > Policy > Compliance

Go to the Azure portal. Navigate to Policy. In the Authoring section, select Assignments. Select the assignment for Initiative1. In the assignment details page, select Remediation. In the Remediation page, you can see the resources that do not comply with the policy definitions.

A is the best answer B. AAD admin Center > Compliance send you to Purview, DLP topics. (Be careful guys)

If you're here answering "A" you're clearly stupid and don't even take the time to open the Portal to see what's happening.

Technically you should be going to Policy now to review which resource fail to be compliant

B. From the Policy blade of the Azure Active Directory admin center, select Compliance.

B is correct: The Azure Active Directory (Azure AD) admin center is a web-based management console that allows administrators to manage their organization's Azure AD resources. Here's how to access the Azure AD admin center: Go to the Azure portal (https://portal.azure.com). In the left-hand menu, click on "Azure Active Directory" (under "Services"). This will take you to the Azure AD overview page. From there, you can access the Azure AD admin center by clicking on "Azure AD admin center" in the left-hand menu. Alternatively, you can access the Azure AD admin center directly by going to the following URL: https://aad.portal.azure.com/. You'll need to sign in with an account that has administrative access to your organization's Azure AD resources.

The resources by compliance state can be found in Policy-Compliance. https://portal.azure.com/#view/Microsoft_Azure_Policy/PolicyMenuBlade/~/Compliance