AZ-900
What features are included in advanced plan for Azure support?
24/7 availability (only standard and professional) Severity and response time (developer, std, and professional) Architecture support Support API?? Operations Support (service reviews and advisory consultation on resources)
ISO
4) ISO - The International Organization for Standardization is an international standard-setting body composed of representatives from various national standards organizations. Founded on 23 February 1947, the organization promotes worldwide proprietary, industrial, and commercial standards
Which of the following statements BEST describes the Modern Lifecycle Policy for Azure products and services? 1. For products governed by the Modern Lifecycle Policy, Microsoft will provide a minimum of 6 months' notification prior to ending support if no successor product or service is offered—excluding free services or preview releases. 2. For products and services governed by the Modern Lifecycle Policy, unless otherwise noted, Microsoft's policy is to provide a minimum 120 days' notification when customers are required to take action in order to avoid significant degradation to the normal use of the product or service. 3. For products and services governed by the Modern Lifecycle Policy, unless otherwise noted, Microsoft's policy is to provide a minimum 90 days' notification when customers are required to take action in order to avoid significant degradation to the normal use of the product or service. 4. For products governed by the Modern Lifecycle Policy, Microsoft will provide a minimum of 12 months' notification prior to ending support if no successor product or service is offered—excluding free services or preview releases.
4. Change notification: min of 30 days notification continuity and migration min 12 months notification
What is the present maximum capacity for storage accounts? 500 TB 5 PB 2 PB 750 TB
5PB
Can resource groups be nested?
ANSWER: *NO*
AZ Security Center vs AZ Sentinal
AZ Security Center has the visibility and the analytics piece for how secure services are... AZ Sentinal takes it a step further and does proactive hunting, incidents where if something happens you can notify someone, and automation where something happens, something takes place
What is an end-to-end, highly secure IoT solution for customers that encompasses everything from the hardware and operating system on the device to the secure method of sending messages from the device to the message hub.
AZ Sphere
What's Elasticity
Ability to scale architecture based on demand EG: VM Scale Set VERTICALLY
Azure Policy
Allow, deny access, or MFA based on user and location, device, application, risk. access,
PostgreSQL
An open source object-relational database system with its powerful uses. Commonly used in Linux. Can scale up or down easily, adjust automatic backup, disk and ssl data encryption. 2 options: single scale (vertical) and hyperscale (horizontally scales)
Which services can be used to host a containerized Webb app? app service Vm Functions Kubernetes Vm scale sets Container instances
App service, kubernetes, and container instances
Application security group
Application security groups sit outside the subnet. Why they're helpful is because in your traditional network security groups, you can set rules based on IPs. Though if your IP changes, then it will mess it up. Application security groups reference the subnet as whole and therefore make IPs of resources dynamic. You then configure your network security group to accept traffic from Application security group.
What's availability?
Avail Set - increase the availability of VMs (multiple in one data center distributed across multiple fault and update domains) Avail Zone - protects against data center failures ; not region level fail Use tools such as Azure Site Recover to replicate data to another region
Your company currently has an Azure subscription. The IT administrator needs to run a PowerShell script that will be used to create a set of Azure virtual machines. Can they run the script on a Linux-based machine that has Azure CLI installed? Yes No
Azure CLI is used for running CLI commands only.
Power BI can access infrequently used data from which of the following? Azure SQL Data warehouse Azure Cosmos DB Azure PostgreSQL Azure Datalake
Azure Datalake Azure SQL Data warehouse
A startup is planning to run a few simulations and needs to deploy pre-configured Virtual Machines in a lab-like environment using ARM templates. These VMs will be used to test app versions and scale up load testing by creating multiple test agents and environments. As the principal consultant, which of the following services would you recommend? Azure Virtual Machine Scale Sets Azure Reserved Virtual Machine (VM) Instances Microsoft Managed Desktop Azure DevTest Labs
Azure DevTest Labs is a service for easily creating, using, and managing infrastructure-as-a-service (IaaS) virtual machines (VMs) and platform-as-a-service (PaaS) environments in labs.
Your company wants to use the various services Azure has to offer. Which of the following can be used for the below requirement? "Provide a fully managed platform to connect, monitor and manage IoT devices as scale" Azure IoT Hub Azure IoT Central Azure Sphere Azure Synapse Analytics
Azure IoT Central
Azure Logic Apps
Azure Logic Apps is a cloud service that helps you automate and orchestrate tasks, business processes, and workflows when you need to integrate apps, data, systems, and services across enterprises or organizations. Logic Apps simplifies how you design and build scalable solutions—whether in the cloud, on premises, or both—for app integration, data integration, system integration, enterprise application integration (EAI), and business-to-business (B2B) integration. Logic Apps are designed in a web-based designer and can execute logic triggered by Azure services without writing any code. To build enterprise integration solutions with Azure Logic Apps, you can choose from a growing gallery of over 200 connectors. These include services such as Salesforce, SAP, Oracle DB, and file shares
One of the teams in your company is looking for a solution for collecting, analyzing, and potentially taking action based on the metric and logging data from your entire Azure and on-premises environment. Which of the following would you recommend? Azure Insights Azure Monitor Azure Logs Azure Advisor
Azure Monitor Azure Monitor is a platform for collecting, analyzing, visualizing, and potentially taking action based on the metric and logging data from your entire Azure and on-premises environment. Azure monitor encompasses metrics and azure logs! Takes in data from applications, OS, resources, Subscription, and Az Tenant, uses metrics / logs to do: Insights, visualize, analyze, respond and integrate. Great depiction of image on Practice test 1!!
Which of the following would you use if you want to keep track of the performance or issues related to your specific VM or container instances, databases, your applications? Azure Monitor Azure Sentinel Azure Advisor Azure Service Health
Azure Monitor If you want to keep track of the performance or issues related to your specific VM or container instances, databases, your applications, and so on, you want to visit Azure Monitor and create reports and notifications to help you understand how your services are performing or diagnose issues related to your Azure usage.
Which of the following would you need to set up alerts for outages or when autoscaling is about to deploy new instances? Azure Service Health Azure Bastion Azure Monitor Azure Advisor
Azure Monitor You can use Azure Monitor to set up alerts for key events that are related to your specific resources.
Which of the following can you use to filter traffic to and from an Azure Virtual Network? Azure DDoS Protection Azure Firewall Azure Advanced Threat Protection (ATP) Azure Network Security Group
Azure Network Security Group ou can use Azure network security group to filter network traffic to and from Azure resources in an Azure virtual network. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. For each rule, you can specify source and destination, port, and protocol. This article describes properties of a network security group rule, the default security rules that are applied, and the rule properties that you can modify to create an augmented security rule.
Which of the following is a collection of Azure Policy definitions? A recommendation An initiative A package A collection
Azure Policy Initiative
Which of the following services can help you decouple components and asynchronous message storage, for communication between application components, whether they are running in the cloud, on the desktop, on-premise, or on mobile devices? Azure Queue Storage Azure Data Box Azure File Sync Azure Asynchronous Communicator
Azure Queue Storage
You need to match the right definition to the description. Which of the following maps to the following description? "This feature datacenters deployed within a latency-defined perimeter. And they are connected through a dedicated regional low-latency network" Load Balancer Region Avail Zone Region Pairs
Azure Region
Azure SQL Data Warehouse
Azure SQL Data Warehouse is a cloud-based Enterprise Data Warehouse (EDW) that leverages MPP to run complex queries quickly across petabytes of data. You can use SQL Data Warehouse as a key component of a big data solution by importing big data into SQL Data Warehouse with simple PolyBase Transact-SQL (T-SQL) queries, and then use the power of MPP to run high-performance analytics. Once data is stored in SQL Data Warehouse, you can run analytics at massive scale. Compared to traditional database systems, analysis queries finish in seconds instead of minutes, or hours instead of days
Break down difference between: AZ Securitycenter AZ advisor AZ Service Health AZ monitor
Azure Security Center looks at how secure your Azure services are. Azure Monitor allows you to monitor your Azure services. Here you can see metrics such as CPU utilization for your Azure virtual machines Azure Service Health is used to see the health of the Azure services. Azure Advisor looks at your resources and can give you recommendations on different aspects such as costing and security. When it comes to security Azure Advisor takes help from the Azure Security Center service.
Which of the following services provides information about Azure service incidents, planned maintenance and can notify you of issues via Email, SMS and push notifications? Azure Monitor Azure Service Health Azure Trust Portal Azure Initiatives
Azure Service Health Azure Service Health notifies you about Azure service incidents and planned maintenance so you can take action to mitigate downtime. We can configure customizable cloud alerts and use your personalized dashboard to analyze health issues, monitor the impact to your cloud resources, get guidance and support, and share details and updates.
Which of the following services provides a personalized view of the health of the Azure services, regions, and resources you rely on? Azure Service Health Azure Advisor Azure Resource Health Azure Monitor Explanation
Azure Service Health Azure Service Health provides a personalized view of the health of the Azure services, regions, and resources you rely on. The status.azure.com website, which displays only major issues that broadly affect Azure customers, doesn't provide the full picture. But Azure Service Health displays both major and smaller, localized issues that affect you. Service issues are rare, but it's important to be prepared for the unexpected. You can set up alerts that help you triage outages and planned maintenance. After an outage, Service Health provides official incident reports, called root cause analyses (RCAs), which you can share with stakeholders.
Your company wants to use the various services Azure has to offer. Which of the following can be used for the below requirement? "Provide a solution for communication and security for IoT devices" Azure IoT Hub Azure IoT Central Azure Sphere Azure Synapse Analytics
Azure Sphere
Which of the following is a resource that is required by Azure Cloud Shell?
Azure Storage Accounts
An organization would like to create a web app to allow its employees to enter their vacation / time-off details and then store that information in a backend storage solution. They have noted that Python is their preferred language. As the lead consultant, which service would you recommend? Azure Kubernetes Azure App Service Azure Functions Azure Cosmos DB Explanation
Azure app service Azure App Service is an HTTP-based service for hosting web applications, REST APIs, and mobile back ends. You can develop in your favorite language, be it .NET, .NET Core, Java, Ruby, Node.js, PHP, or Python. Applications run and scale with ease on both Windows and Linux-based environments. Used for: mobile apps api apps web apps function apps
Which of the following services allows you to send events generated from Azure resources to applications? -azure event grid Azure App Service - azure event hub -azure cognitive services
Azure event grid
Where can you obtain up-to-date details about the personal data Microsoft processes, how it processes it and for what purposes? Microsoft Privacy Statement Azure Knowledge Center Compliance Manager Azure Trust Center
Azure trust center
Azure Databricks
Collaborative Apache Spark-based analytics service that unlock insights from all your data and build artificial intelligence solutions.
Which DB grouped under the NoSQL umbrella (ie not relational, no set schema, can store objects) and its globally distributed?
Cosmos DB
Which of the following services allow customers to store semi structured data? CosmosDB SQL db Azure sql for vm Azure table storage Azure blob storage Azure file storage azure cdn Azure sql datawarehouse
Cosmos DB and Table storage
Azure AD & AD Tenant
Create users, create groups, applications, and can give them access to other resources. Automatically get free active directory BUT won't have full access (not free). Can create users and give access If you want more security, go for the premiums It's in the Azure AD tenant that you register and manage your apps, configure their access to data in Microsoft 365 and other web APIs, and enable features like Conditional Access.
Azure Sphere
Creates an end-to-end, highly secure IoT solution for customers that encompasses everything from the hardware and operating system on the device to the secure method of sending messages from the device to the message hub.
Azure tenant or directory
Dedicated and trusted instance of Azure AD. Represents an organization. Contains identities.
Which of the following is provided by the Azure Site Recovery service for Azure virtual machines? Fault Tol. Disaster Reco Scalability High Availability
Disaster Recovery
Customers who need persistent storage can which two storage options? Queue File Blob Disk
Disk storage and file storage
Azure Information Protection (AIP)
Encrypt data in documents, emails...not DBs
Subnets can be nested. T or F
F
Each Azure Subscription can trust multiple Active Directories. False True
False An Azure subscription has a trust relationship with Azure Active Directory (Azure AD). A subscription trusts Azure AD to authenticate users, services, and devices. 1 (AD) to Many (Subscrips)
Azure Synapse Analytics
Fully managed data warehouse and big data analytics tool. You have a unified experience to ingest, prepare, manage, and serve data for immediate business intelligence and machine learning needs.
Azure SQL Database
Fully managed relational database with auto-scale, integral intelligence, and robust security
Azure SQL Managed Instance
Fully-fledged SQL Server managed by a cloud provider. PAAS service DB for MS SQL Server. Extra features compared to Azure - Supports Licenses migration from on-premises using Azure Hybrid Benefit.
azure HDInsight
Fully-managed, open source analytics service for enterprises. Cloud service that makes it easier, faster, and cost effective to process massive amounts of data.
Azure ExpressRoute
If you want to connect onPrem to cloud in a secure manner then you use Azureexpressroute. Though, there is a cost since you need special hardware. DIRECT CONNECTIVITY
What does SLA of 99.95 mean?
In a year, it will be up and avail 99.95 % of time
What is a fully-managed global IoT software as a service (SaaS) solution that makes it easy to connect, monitor, and manage your IoT assets at scale.
IoT Central
Primary benefits of using a Azure key Vault is: Key management To see and stop threats before they cause hard enforcing organizational standards to assess compliance at-scale automatically masking sensitive information
Key Management Azure Key Vault can be used as a Key Management solution. Azure Key Vault makes it easy to create and control the encryption keys used to encrypt your data
Which of the following is NOT a cost saving solution? Choosing an appropriate instance type for a VM Use Azure Reserved Virtual Machine instances Using a Pay as you go Subscription Load balance your virtual machines to manage incoming traffic
Load balance your virtual machines to manage incoming traffic Load balancing is used for PERFORMANCE OPTIMISATION and not cost saving.
Difference between azure load balancer and azure application gateway?
Load balancer - distribute non http traffic Azure application gateway - distribute http traffic
Azure Logic Apps vs Azure Functions
Logic Apps = Workflow Engine Functions = Compute Power
From which of the following service can you make use of the Just-in-time access feature? Azure Firewall Microsoft Defender for Cloud Azure Load Balancer Azure Monitor
Monitor
When you cancel an Azure Subscription, your resources are immediately deleted permanently to free up space. Yes No
NO!
Explain the difference between Network Security Group and AZ Firewall
NSG - this hooks onto the Virtual Network Interface and blocks / accepts ingoing and outgoing traffic. How it works is you define rules (ingoing: port / IP ; outgoing: source / destination and protocol). CAN ONLY ADD NETWORK RULES. Note: You can add network security group to subnet layer Firewall - a bit intelligent blocker of ingoing and outgoing traffic. Same: Can create network traffic rules ( port, ip, source/destination, and protocol, Difference: AND IT WORKS AT APPLICATION LEVEL (eg websites going out are only certain websites). Inbuilt threat intelligence
Yes or No: An Azure subscription can trust multiple Azure Active Directory (Azure AD) tenants No Yes
No 1:Many relationships!
Your company is planning on using Microsoft Defender for Cloud. Are all of the features free when it comes to using Microsoft Defender for Cloud?
No There are features which need to be paid for when using Microsoft Defender for Cloud.
When a subscription expires, the trusted instance of the Azure AD service remains, but the security principals still maintain access to Azure resources. Yes No
No An Azure subscription has a trust relationship with Azure Active Directory (Azure AD). A subscription trusts Azure AD to authenticate users, services, and devices. Multiple subscriptions can trust the same Azure AD directory. Each subscription can only trust a single directory. One or more Azure subscriptions can establish a trust relationship with an instance of Azure Active Directory (Azure AD) in order to authenticate and authorize security principals and devices against Azure services. ****When a subscription expires, the trusted instance of the Azure AD service remains, but the security principals LOSE access to Azure resources.
Yes or No: Azure HDInsight an example of a Software as a Service (SaaS) offering.
No, Paas offering
Your company has setup an Azure subscription and an Azure AD tenant. They want to manage their Windows 10 and Android devices via Azure Active Directory. Can they join the Android devices to Azure AD?
No, You can only register devices to Azure AD
Your company is planning on using Azure Active Directory. Can you provide access to Azure resources only to identities stored within Azure Active Directory?
No, You can provide access to external identities as well.
Will IT Admins have full access to deployed web apps??
No. The Azure Web App service is a platform as a service. Here the infrastructure is completely managed by the service. The administrators will not have administrative privileges over the underlying system.
Which set of security standards in Azure relates to cardholder data? ISO FedRAMP PCI DSS HIPPA
PCI DSS Azure adheres to security controls for ISO 27001, ISO 27018, SOC 1, SOC 2, SOC3, FedRAMP, HITRUST, MTCS, IRAP and ENS. 1) The security standard relating to cardholder data is - PCI DSS (Payment Card Industry Data Security Standard)
An IT administrator wants to manage a set of Azure virtual machines via his iPhone device. Which of the following can be used for this requirement? Choose 2 answers from the options given below Azure Portal Azure Cloud Shell Azure CLI Azure Powershell
Portal, Cloudshell... From the iPhone device, the IT administrator can launch the browser and use the Azure Portal and Azure Cloud Shell to work with the resources.
As a consultant, which of the following Locks would you recommend to an organization to prevent deletion or modification of mission-critical resources? CanNotModify ReadOnly CanNotChange isCritical Explanation
ReadOnly You can set locks that prevent either deletions or modifications. In the portal, these locks are called: CanNotDelete Read-only. ReadOnly = max security CanNotDelete = can't delete only (can edit)
What are the two types of locks for Azure you can set on a resource?
ReadOnly CanNotDelete
Scalability
Refers to how well a system can adapt to increased demands (scale up or down) VERTICALLY
During live telecasts of football matches, streaming platforms sometimes experience massive spikes in viewerships and users visiting their websites when a goal is scored. Which of the following would be beneficial to deal with such expected demand of resources? Serverless Computing Kubernetes Virtual Machines Containers Explanation
Serverless Computing Serverless computing enables developers to build applications faster by eliminating the need for them to manage infrastructure. With serverless applications, the cloud service provider automatically provisions, scales, and manages the infrastructure required to run the code. it's important to note that servers are still running the code. This approach enables developers to increase their focus on the business logic and deliver more value to the core of the business (IMPORTANT).
What is an Azure function?
Serverless web service hosting platform. It scales nicely and has consumption mode.
How do you connect on prem DB to Azure??
Site to Site VPN - ExpressRoute Connection -
Your company is planning on making use of the Azure Advisor service. Can they use the Azure Advisor service to get recommendations on how to make their Azure AD environment more secure?
So Azure AD is a managed service. You will secure the identities you define in Azure Active Directory. But you will not have access to aspects to making the Azure AD environment secure.
In resource groups, the most restrictive lock in the inheritance takes precedence. T or F
T
There is no SLA for Azure Active Directory. T or F
T
You do not need to stop the VM in order to move it and it should continue to run during the move. T or F
T
BLOB is a synonym for a file. T or F
T - BLOB = binary large object. Every file can be considered a blob!
Azure disk storage is a part of Azure storage account (along with. Lob, file, queue, and table). T or F
T - both managed and I manage disks are apart of it ( azure disk storage = D:/)
Azure Datalake
TBD...
A company is planning on using Azure Cloud services. Which of the following are benefits of using Azure Cloud services? Choose 2 answers from the options given below (MULTIPLE CHOICE) You get dedicated hardware that can be deployed at any point in time. You get a certain amount of storage that be deployed for your application. You get a pay-as-you-go pricing when it comes to using the cloud services You can perform self-service management for the deployment of resources
The core benefit of using the cloud is you can use the pay-as-you-go pricing model. This allows you to pay only based on how much you use. And then you can provision the resources at any point in time.
Your company currently has the following Azure virtual machines defined as part of their subscription Region (same) Size (Same) RG (Same) Would appvm1 and appvm2 generate the same monthly costs?
The costs of the machine can vary on a month-by-month basis. Here the size of the VM's is the same. But if one machine is turned off during some time in the month, the costs for that machine would be less. So, the costs do vary.
MySQL
The most common version of the Structured Query Language, a language for creating, maintaining, and querying a database. It's relational Can migrate existing MySQL db to azure using Azure Database Migration Service
Fault Domain? Update domain?
These relate to availability sets and
Which of the following provides a management layer for creating, updating, and deleting resources in your Azure account? It also helps in implementing consistency across your Azure environment. Azure Resource groups Azure Policies Azure Resource Manager Azure Management groups
This is the prime responsibility of the Azure Resource Manager.
Your company needs to deploy an application on a set of virtual machines. You must ensure that the deployed solution provides an SLA of 99.99%. What is the minimum number of virtual machines that need to be deployed for this requirement? 1 2 3 4
To achieve an availability of 99.99% for your virtual machine infrastructure, you need to deploy a minimum of two virtual machines across two or more Availability zones.
Azure Active Directory can restrict access attempts to only those coming from known devices. False True
True Azure AD provides services such as: Authentication This includes verifying identity to access applications and resources. It also includes providing functionality such as self-service password reset, multifactor authentication, a custom list of banned passwords, and smart lockout services. Single sign-on SSO enables you to remember only one username and one password to access multiple applications. A single identity is tied to a user, which simplifies the security model. As users change roles or leave an organization, access modifications are tied to that identity, which greatly reduces the effort needed to change or disable accounts. Application management You can manage your cloud and on-premises apps by using Azure AD. Features like Application Proxy, SaaS apps, the My Apps portal (also called the access panel), and single sign-on provide a better user experience. Device management Along with accounts for individual people, Azure AD supports the registration of devices. Registration enables devices to be managed through tools like Microsoft Intune. It also allows for device-based Conditional Access policies to restrict access attempts to only those coming from known devices, regardless of the requesting user account.
Choose 3 components of Azure SLAs: Uptime and Connectivity Guarantees Performance Targets Usage Targets Service Credits
Uptime and Connectivity Guarantees Performance Targets Service Credits
reduce costs up-to 72%) as compared to pay-as-you-go pricing by _______________. Not using a lot of resources Using the free tier Using Reserved Instances Provisioning a lot of resources
Using Reserved Instances When you combine the cost savings gained from Azure RIs (reserved instances) with the added value of the Azure Hybrid Benefit, you can save up to 80 percent**.
Company wants to leverage azure vms. Want to build a unified network infra between in onprem and azure. Which service allows to connect? Azure virtual network VPN gateway Azure load balance Azure application gateway Azure subnet Vnet peering
VPN gateway
Azure Monitor
View metrics for reources View service notification Monitor on prem services Send logs to Log Analytics workspace Can create alerts based on metrics
Your company is planning on using a Software-as-a-service solution. Which of the following would you be responsible for when it comes to the Software-as-a-Service solution? Installation of the solution Configuration of the solution Disaster recovery of the solution High Availability of the solution
When it comes to a Software-as-a-service solution, all aspects such as Installation, Disaster recovery, High Availability is normally provided by the service itself. You just need to configure the solution. Software as a service (SaaS) allows users to connect to and use cloud-based apps over the Internet. Common examples are email, calendaring, and office tools (such as Microsoft Office 365)....all off which u configure
Is it possible to run a PowerShell module directly from a Windows computer with Azure PowerShell installed? No Yes
Yes
Suppose the lead architect in your company has asked your team to implement a PaaS based solution in Azure for a quick Proof-of-Concept (POC) to senior management. One of your colleagues goes ahead and creates an Azure SQL Database and an Azure Load Balancer. Would you agree with this implementation?
Yes
Azure Advisor has the ability to provide recommendations for Azure ExpressRoute. No Yes
Yes Advisor is a personalized cloud consultant that helps you follow best practices to optimize your Azure deployments. It analyzes your resource configuration and usage telemetry and then recommends solutions that can help you improve the cost effectiveness, performance, Reliability (formerly called High availability), and security of your Azure resources. Advisor provides recommendations for: Application Gateway, App Services, availability sets, Azure Cache, Azure Data Factory, Azure Database for MySQL, Azure Database for PostgreSQL, Azure Database for MariaDB, Azure ExpressRoute, Azure Cosmos DB, Azure public IP addresses, Azure Synapse Analytics, SQL servers, storage accounts, Traffic Manager profiles, and virtual machines.
Yes or No: It is possible to deploy Azure resources through a Tablet by using Bash in the Azure Cloud Shell.
Yes Azure Cloud Shell is an interactive, authenticated, browser-accessible (the key to everything since all you need is a browser and the OS doesn't matter) shell for managing Azure resources. It provides the flexibility of choosing the shell experience that best suits the way you work, either Bash or PowerShell. All you need is a browser (not app) on your Tablet, and then:
Azure HDInsight can be used to run popular open-source frameworks including Apache Hadoop, Spark, Hive, Kafka, and more for open-source big data analytics. Yes No
Yes Yes! Azure HDInsight is an enterprise-ready, managed cluster service for open-source analytics. You can run popular open-source frameworks—including Apache Hadoop, Spark, Hive, Kafka, and more—using Azure HDInsight, a customizable, enterprise-grade service for open-source analytics. You can also effortlessly process massive amounts of data and get all the benefits of the broad open-source project ecosystem with the global scale of Azure. Easily migrate your big data workloads and processing to the cloud.
You're configuring a Network Security Group Inbound security rule that is attached to the network interface of an Azure virtual machine. Can you add an Application Security Group as a source in the Network Security Group?
Yes You can add an IP address, a Service Tag or an Application Security Group as the source.
Every Azure region is composed of a set of datacenters. No Yes
Yes Each has a min of three
Is there a default spending limit for the Azure Free account? Yes No
Yes 200 credit
Does Azure have the ability to both authenticate and authorize to use Azure resources?
Yes, Azure AD within Azure provides both authentication and authorization services.
Can on use tools from within Windows Server 2016 (i.e. VM) to encrypt traffic from the virtual machine to the Internet?
Yes, with the right tools installed at the operating system level, it can be possible to encrypt traffic from the virtual machine to the Internet.
Your company has setup an Azure subscription and an Azure tenant. Can you assign multiple licenses to a user defined in Azure AD?
Yes, you can assign multiple licenses to a user defined in Azure AD.
Your company has just setup an Azure subscription and an Azure AD tenant. They want to setup access permissions for the various users defined in their Azure AD tenant. Can you create custom roles to control the way access is given to resources?
Yes, you can create your own custom roles.
Your company has set the following Azure General Purpose V2 storage accounts Region (Different), RG (Different) Would you be charged only for data stored in the storage accounts? Yes No
You are also charged on other aspects for storage accounts , such as the read and write requests made to the storage account.
Your company is setting up multiple Azure subscriptions and multiple Azure AD tenants. Can they link an Azure subscription to multiple Azure AD tenants?
You can only link an Azure subscription to one Azure AD tenant at a time.
Your team has an Azure virtual machine. You need to enable Azure Disk Encryption for the virtual machine. Which of the following is required to enable Azure Disk Encryption? A storage account An Azure SQL database An Azure Key Vault A Cosmos DB account
You need to have an Azure Key vault in place to enable Azure Disk Encryption.
Your company wants to use the various services Azure has to offer. Which of the following can be used for the below requirement?
Your company wants to use the various services Azure has to offer. Which of the following can be used for the below requirement?
Azure Logs
a
You're planning on using an Azure Free account. Do you only get access to a subset of services when using the Azure Free account?
all services when using the Azure Free Account
azureDevtest labs
allows devs to manages VMs and other PasS resources without the need or approval of others. Provision Linux/Windows machines via reusable templates
Azure IoT Central
builds on top of IoT Hub by adding a dashboard that allows you to connect, monitor, and manage your IoT devices
Which of the following statements is True? You have a mission critical deployment on the Azure cloud consisting of an Azure SQL Database that has a Service Level Agreement (SLA) of 99.99 percent and a Web App that has an SLA of 99.95 percent. -The composite SLA for the application is the product of both SLAs, which equals 99.94 percent. -The composite SLA for the application is the difference between the two SLAs, which is 0.05 percent -The composite SLA for the application is the lowest SLA associated to the application, which is 99.95 percent -The given statement is correct without any changes needed. -The composite SLA for the application is the highest SLA associated to the application, which is 99.99 percent
he given statement is correct without any changes needed. If either service fails, the WHOLE application fails. The probability of each service failing is independent, so the composite SLA for this application is 0.9995% * 0.9999% = 99.94%. That's lower than the individual SLAs, which isn't surprising because an application tha
Different Azure Support plans
https://azure.microsoft.com/en-us/support/plans/
Your company wants to deploy a set of Azure Web Apps as part of their Azure subscription. Which of the following URL must be used to manage the Azure Web Apps?
https://portal.azure.com
Azure Monitor
maximizes the availability and performance of your applications by delivering a comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud and on-premises environments. It helps you understand how your applications are performing and proactively identifies issues affecting them and the resources they depend on.
Characteristics of the public cloud? Select all which apply: metered pricing applications can be quickly provisioned and deprovisioned unsecured connections no capital expenditure to scale up hardware must be purchased for start-up and maintenance organizations are responsible for hardware maintenance and updates
metered pricing applications can be quickly provisioned and deprovisioned no capital expenditure to scale up
Yes or no? All resource types support Tags in Azure.
no No, according to the official documentation, Tags CANNOT be applied to all resource types. See below:
Company wants to move to the cloud. They find their application cannot be containerized. Which service should they choose: a) app service, kubernetes service, vm scale sets, vm, functions or container instances
vm
If VM is in stop (deallocated) state, will you stay pay for storage??
yes