🔥 3-day streak
Microsoft Azure Virtual Desktop Specialty (AZ-140)53 / 86
Question 53 of 86

Your organization deploys an AVD host pool in a subnet that is locked down by a network security group (NSG). The security team wants to deny all outbound internet traffic by default but must still allow the session hosts to reach the AVD control plane (agent registration, broker, gateway, and diagnostics) without maintaining a manually updated list of public IP addresses. Which NSG outbound rule configuration best meets this requirement?

Reviewed for accuracy · Report an issueNext question