You have five on-premises Linux servers. You have an Azure subscription that uses Microsoft Defender for Cloud. You need to use Defender for Cloud to protect the Linux servers. What should you install on the servers first?
The Azure Connected Machine agent is required to connect the on-premises Linux servers to the Azure subscription and integrate them with Microsoft Defender for Cloud. The agent enables communication between the servers and the Defender for Cloud service, allowing security events and data to be collected and analyzed.
Once the Azure Connected Machine agent is installed, you can then install the Log Analytics agent to collect security data from the servers and send it to the Log Analytics workspace in Azure. This will allow you to use Defender for Cloud to monitor the security of your Linux servers, identify threats, and respond to security incidents.
C for arc, few nuffies floating around on this one: Yes, you could onboard with just AMA agent but with limitations.
You can install only the Azure Monitoring Agent (AMA) on on-prem Linux servers and connect them to Defender for Cloud, but they won’t be fully onboarded as Defender for Servers (Plan 1 or Plan 2) requires Azure Arc for full functionality.
Scaling your QA process for large projects requires robust testing automation tools. These tools allow you to handle extensive test cases efficiently by automating repetitive and time-consuming tasks like regression testing. Automation enables parallel test execution, significantly reducing testing time as the project grows. With the ability to integrate into CI/CD pipelines, these tools ensure continuous testing, providing rapid feedback on code changes. Moreover, automated testing improves accuracy, consistency, and coverage, ensuring that even large, complex systems maintain high quality. By leveraging testing automation tools, you can scale your QA processes without compromising speed or reliability.
Answer is: C
This is an indeed a tricky question. Focus what is the goal in the question.
Log Analytics Agent can be manually installed on an on-premise machine without first installing azure connected machine (ACM) agent. However, the recommended method is to use ACM, as it provides many other features. Because of this reason, I'll go with C.
Ref: https://learn.microsoft.com/en-us/azure/azure-monitor/agents/log-analytics-agent#linux-virtual-machine-on-premises-or-in-another-cloud
The Azure Connected Machine agent package contains several logical components bundled together.
https://learn.microsoft.com/en-us/azure/azure-arc/servers/agent-overview#agent-components
The Log Analytics agent or Azure Monitor Agent for Windows and Linux is required in order to:
Proactively monitor the OS and workloads running on the machine
Manage it using Automation runbooks or solutions like Update Management
Use other Azure services like Microsoft Defender for Cloud
https://learn.microsoft.com/en-us/azure/azure-arc/servers/agent-overview
The Azure Connected Machine agent enables you to manage your Windows and Linux machines hosted outside of Azure on your corporate network or other cloud providers.
*Note
The Azure Monitor agent (AMA) is a separate agent that collects monitoring data, and it does not replace the Connected Machine agent; the AMA only replaces the Log Analytics agent, Diagnostics extension, and Telegraf agent for both Windows and Linux machines.
This document suggests that Azure Arc must be installed before Log Analytics from non-Azure resources.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-machines
The connected machine agent looks to be a component of Arc.
https://learn.microsoft.com/en-us/azure/azure-arc/servers/agent-overview
Log Analytics agent should be installed on your Linux-based Azure Arc machines
source:
https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-machines#:~:text=Log%20Analytics%20agent%20should%20be%20installed%20on%20your%20Linux%2Dbased%20Azure%20Arc%20machines
The Azure Connected Machine agent enables you to manage your Windows and Linux machines hosted outside of Azure on your corporate network or other cloud providers
When you onboard to AMA Azure Machine agent it automatically onboard you to defender. The question is asking for you to protect the machines not ingest logs. You want to protect the servers. The correct answer is C
Arc his overkill here, Defender for Cloud is key. https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-machines#connect-on-premises-machines-by-using-the-azure-portal
As this question has nothing mentioned about Azure ARC and there is an option to onbaord Linux VMs onprem without ARC, I go with B - Log Analytics.
As described in the doc below, the Linux machine get's onboarded after wget-ing the required Workspace package (through Log Analytics) and then it becomes available in Defender for Cloud without ARC (which would have required the Azure Connected Machine agent).
https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-machines#onboard-your-linux-server
This section is not available anymore. Please use the main Exam Page.SC-200 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Lone__Wolf
Highly Voted 2 years, 2 months agoRamye
1 year, 2 months agomfalkjunk
Highly Voted 1 year, 12 months agoNetworkingGuy2
Most Recent 2 months, 2 weeks agoYethi_Consulting56
8 months agouser636
8 months agoalbatros06
1 year agoKRAKE3N
1 year agoSneekygeek
1 year agoOrel123
1 year, 2 months agoMurtuza
1 year, 5 months agokabooze
1 year, 5 months agochepeerick
1 year, 6 months agoMercury02m
1 year, 6 months agoWillmc12
1 year, 6 months agoGurulee
1 year, 6 months agoTeresaCN
1 year, 7 months agocris_exam
1 year, 7 months ago