Container Security — Microsoft Azure Security Engineer (AZ-500) Practice Questions
Container security encompasses the practices and controls needed to protect containerized applications across the build, registry, orchestration, and runtime stages. The AZ-500 exam addresses securing container images through minimal base images and signed content, locking down Kubernetes cluster configurations with Azure Policy and admission controllers, and applying least-privilege network policies between pods. Candidates must also understand runtime threat protection for containers and how misconfigurations in Kubernetes RBAC or exposed API servers create exploitable attack surfaces.
Free questions on container security
Which service provides vulnerability scanning for container images?
Free question · medium · full answer + explanation
More container security questions in the full bank
- What is a pod security policy in AKS? Unlock answer & explanation →
- What is the purpose of image base scanning in Defender? Unlock answer & explanation →
- Your container images contain sensitive data. How should you protect them? Unlock answer & explanation →