Microsoft Cybersecurity Architect — Question 80

You are planning the security requirements for Azure Cosmos DB Core (SQL) API accounts.
You need to recommend a solution to audit all users that access the data in the Azure Cosmos DB accounts.
Which two configurations should you include in the recommendation? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

Answer options

• A. Send the Azure Active Directory (Azure AD) sign-in logs to a Log Analytics workspace.
• B. Enable Microsoft Defender for Identity.
• C. Send the Azure Cosmos DB logs to a Log Analytics workspace.
• D. Disable local authentication for Azure Cosmos DB.
• E. Enable Microsoft Defender for Cosmos DB.

Correct answer: A, C

Explanation

The correct answers are A and C because sending the Azure AD sign-in logs and the Azure Cosmos DB logs to a Log Analytics workspace allows for comprehensive auditing of user access and activities. Options B, D, and E do not provide direct auditing capabilities for user access to the data in the Azure Cosmos DB accounts.