[&] Which of the following is not a recommended Azure virtual machine hardening technique?
- Disable all services or daemons that are not required for the virtual machine's workload
- Use a complex, randomized password for administrative accounts
- Keep a secret public IP always available for emergency administrative access -- Correct
- Limit administrative access to the virtual machine through Azure RBAC

[&] Which VM protection features are available with the free tier of Azure security center? (choose all that apply)
- Workload specific white-listing
- Security score -- Correct
- Security policy monitoring -- Correct
- Vulnerability scanning
- Security alerts