At the end of this case study, a review screen will appear. This screen allows you to review your answers
and to make changes before you move to the next sections of the exam. After you begin a new section,
you cannot return to this section.
To start the case study
To display the first question on this case study, click the Next button. Use the buttons in the left pane to
explore the content of the case study before you answer the questions. Clicking these buttons displays
information such as business requirements, existing environment, and problem statements. If the case
study has an All Information tab, note that the information displayed is identical to the information
displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to
return to the question.
Contoso, Ltd. is a consulting company that has a main office in Montreal and two branch offices in Seattle
and New York.
The company hosts its entire server infrastructure in Azure.
Contoso has two Azure subscriptions named Sub1 and Sub2. Both subscriptions are associated to an
Azure Active Directory (Azure AD) tenant named contoso.com.
Contoso identifies the following technical requirements:
- Deploy Azure Firewall to VNetWork1 in Sub2.
- Register an application named App2 in contoso.com.
- Whenever possible, use the principle of least privilege.
- Enable Azure AD Privileged Identity Management (PIM) for contoso.com
Contoso.com contains the users shown in the following table.