AZ-900 exam dump

¡Supera tus tareas y exámenes ahora con Quizwiz!

A network security group will encrypt all the network traffic sent from Azure to the internet - YES or NO=?

No A PaaS solution does not provide access to the operating system. The Azure Web Apps service provides an environment for you to host your web applications.Behind the scenes, the web apps are hosted on virtual machines running IIS. However, you have no direct access to the virtual machine, the operating system orIIS.

A platform as a service (PaaS) solution that hosts web apps in Azure provides full control of the operating systems that host applications - YES or NO?

Yes PaaS provides a framework that developers can build upon to develop or customize cloud-based applications. PaaS development tools can cut the time it takes to code new apps with pre-coded application components built into the platform, such as workflow, directory services, security features, search and so on.

A platform as a service (PaaS) solution that hosts web apps in Azure provides professional development services to continuously add features to custom applications - YES or NO?

yes

A premier support plan can only be purchased by companies that have an enterprise agreement (EA) - yes or no?

Yes

A resource group can contain resources from multiple Azure regions - YES or NO?

A resource group can have the owner role assigned to multiple users - Yes or NO?

no, basic is

A standard support plan is included in an Azure free account - yes or no?

A. Command Prompt C. Windows PowerShell

A support engineer plans to perform several Azure management tasks by using the Azure CLI. You install the CLI on a computer. You need to tell the support engineer which tools to use to run the CLI. Which two tools should you instruct the support engineer to use? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point. A. Command Prompt B. Azure Resource Explorer C. Windows PowerShell D. Windows Defender Firewall E. Network and Sharing Center

C. Basic

A support plan solution that gives you best practice information, health status and notifications, and 24/7 access to billing information at the lowest possible cost is a Standard support plan.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. Developer C. Basic D. Premier

C. Azure DevTest Labs DevTest Labs creates labs consisting of pre-configured bases or Azure Resource Manager templates.By using DevTest Labs, you can test the latest versions of your applications by doing the following tasks: ✑ Quickly provision Windows and Linux environments by using reusable templates and artifacts. ✑ Easily integrate your deployment pipeline with DevTest Labs to provision on-demand environments. ✑ Scale up your load testing by provisioning multiple test agents and create pre-provisioned environments for training and demos.

A team of developers at your company plans to deploy, and then remove, 50 customized virtual machines each week. Thirty of the virtual machines run WindowsServer 2016 and 20 of the virtual machines run Ubuntu Linux. You need to recommend which Azure service will minimize the administrative effort required to deploy and remove the virtual machines. What should you recommend? A. Azure Reserved Virtual Machines (VM) Instances B. Azure virtual machine scale sets C. Azure DevTest Labs D. Microsoft Managed Desktop

Yes

A user acount can be assigned to multiple Azure Roles - Yes or NO?

A user who is assigned the owner role can transfer ownership of an azure sub - yes or no?

No For Max session limit, enter the maximum number of users you want load-balanced to a single session host.

A windows virtual desktop host pool that includes 20 session hosts supports a maximum of 20 simultaneous user connections - YES or NO?

No Supported O/Ses are Windows 10 Enterprise multi-session or Windows 10 Enterprise, Windows 7 Enterprise, Windows Server 2012 R2, 2016, 2019

A windows virtual desktop session host can run windows 10 only - YES or NO?

Adding resource groups in an Azure sub generates addtional costs - yes or no?

After an Azure service becomes generally avilable, the service is no longer updated with new features - yes or no?

a) network security group

After you create a virtual machine, you need to modify the ___________ to allow connections to TCP port 8080 on the virtual machines. a) network security group b) virtual network gateway c) virtual network d) route table

yes

All azure free accounts expire after a specific period - yes or no?

All azure security center features are free - YES or NO?

All azure services in private preview must be accessed by using a separate azure portal - yes no?

c) excluded from SLAs

All azure services that are in public preview are: a) provided without any documentation b) configurable from Azure CLI c) excluded from SLAs d) only configurable from the azure portal

No Data is not backed up automatically to another Azure Data Center although it can be depending on the replication option configured for the account. LocallyRedundant Storage (LRS) is the default which maintains three copies of the data in the data center.Geo-redundant storage (GRS) has cross-regional replication to protect against regional outages. Data is replicated synchronously three times in the primary region, then replicated asynchronously to the secondary region.

All data that is copied to an Azure Storage account is backed up automatically to another azure data center - YES or NO?

yes

All paying azure customers receive a credit if their monthly uptime percentage is below the guaranteed amount in the SLA - yes or no?

No The limits are much higher than that. The current storage limit is 2 PB for US and Europe, and 500 TB for all other regions (including the UK) with no limit on the number of files.

An Azure Storage account can contain up to 2 TB of data and up to one million files - YES or NO?

Yes if powershell is installed.

An Azure administrator plans to run a PowerShell script that creates Azure resources. You need to recommend which computer configuration to use to run the script. Solution: Run the script from a computer that runs Linux and has the Azure CLI tools installed.Does this meet the goal?

Yes A PowerShell script is a file that contains PowerShell cmdlets and code. A PowerShell script needs to be run in PowerShell.In this question, the computer has the Azure PowerShell module installed. Therefore, this solution does meet the goal.

An Azure administrator plans to run a PowerShell script that creates Azure resources. You need to recommend which computer configuration to use to run the script. Solution: Run the script from a computer that runs Windows 10 and has the Azure PowerShell module installed. Does this meet the goal?

Yes

An Azure administrator plans to run a PowerShell script that creates Azure resources.You need to recommend which computer configuration to use to run the script. Solution: Run the script from a computer that runs macOS and has PowerShell Core 6.0 installed. Does this meet the goal?

Yes

An Azure administrator plans to run a PowerShell script that creates Azure resources.You need to recommend which computer configuration to use to run the script.Solution: Run the script from a computer that runs Chrome OS and uses Azure Cloud Shell.Does this meet the goal?

a) collection of policy definitions

An Azure policy imitative is a ___________________ a) collection of policy definitions b) collection of Azure Policy definition assignments c) group of Azure Blueprints definitions d) group of role-based access control role assignments

yes

An Azure resource inherits locks from its resource group - yes or no?

An Azure subscription can be associated to multiple Azure Active Directory (Azure AD) tenants - YES or NO?

b) within a single azure region Availability Zones is a high-availability offering that protects your applications and data from datacenter failures. Availability Zones are unique physical locations within an Azure region

An availability zone in azure has physically seperate locations: a) across two continents b) within a single azure region c) within multiple azure regions d) within a single azure datacenter

No, the free account has a 5 gb blob storage limit and a 5 gb file storage limit.

An azure free account has a limit of 2 TB of data that can be uploaded to azure - yes or no?

yes

An azure free account has a spending limit -yes or no?

An azure reservation is used to reserve server capacity at a specific data center - yes or no=

yes

An azure resource can have multiple delete locks - yes or no?

a) public preview

An azure service is available to all Azure customers when it is in: a) public preview b) private preview c) development d) an Enterprise Agreement (EA) sub

Authorization to access Azure resources can be provided only to Azure AD users - yes or no?

Availability zones are used to replicate data and applications to multiple regions - YES or NO?

Yes

Azure AD provides authentication services for resources hosted in Azure and Microsoft 365 - Yes or NO?

Azure AD requires the implmentation of domain controllers on Azure VMs - YES or NO?

Yes

Azure Advisor provides recommendations on how to reduce the cost of running Azure virtual machines - YES or NO?

a) PaaS

Azure Cosmos DB is an example of a _____________ offering. a) PaaS b) IaaS c) serverless d) SaaS

A. No change is needed.

Azure Databricks is an Apache Spark-based analytics service.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is needed.ג€ If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed. B. Azure Data Factory C. Azure DevOps D. Azure HDInsight

yes

Azure Government is available only to US government agencies and their partners - yes or no?

yes

Azure Government is operated by Microsoft - yes or no?

yes

Azure MFA can be required for admin and non-admin user accounts - yes or no?

No, it generates a list of VMs NOT protected.

Azure advisor can genearte a list of Azure virtual machines that are protected by Azure backup - YES or NO?

Azure advisor provides recommendations on how to configure the network settings on azure virtual machines - YES or NO?

Azure advisor provides recommendations on how to improve the security of an Azure Active Directory environment - YES or NO?

yes

Azure can be used to build a GDPR compliant infrastructure - yes or no?

Azure china is operated by Microsoft - yes or no?

Azure firewall will encrypt all the network traffic sent from Azure to the Internet - YES or NO?

No, free acount has a limit of 10 web, mobile or API apps

Azure free account can contain an unlimited number of web apps - yes or no=

yes

Azure has built-in authentication and authorization services that provide secure access to azure resources - yes or no?

Yes

Azure monitor can monitor the performance of on-prem computers - YES or NO?

Azure monitor can send alerts to Azure AD security groups - YES or NO?

Yes

Azure monitor can trigger alerts based on data in an Azure log analytics workspace - Yes

Yes Traditionally, IT expenses have been considered a Capital Expenditure (CapEx). Today, with the move to the cloud and the pay-as-you-go model, organizations have the ability to stretch their budgets and are shifting their IT CapEx costs to Operating Expenditures (OpEx) instead. This flexibility, in accounting terms, is now an option due to the ג€as a Serviceג€ model of purchasing software, cloud storage and other IT related resources.

Azure provides flexibility between capital expenditure (CapEx) and operational expenditure (OpEX) - YES or NO?

Azure resources can only access the other resources in the same group - YES or NO?

Yes

Azure security center can monitor Azure resources and on prem resources? Yes or NO?

Azure services in public preview are subject to an SLA?

Azure services in public preview can be managed only by using Azure CLI - yes or no?

Azure virtual machines that run Windows Server 2016 can encrypt network traffic sent to the Internet - YES or NO?

Building a data center infrastructure is an example of operational expenditure (OpEx) costs - Yes or NO?

yes

By copying several GB of data from Azure to an on-prem network over a VPN, additional data transfer costs are incurred - yes or no?

By copying several gigabits of data to Azure from an on -prem network over a VPN addtional data transfer costs are inclured - yes or no?

yes

Companies can increase the SLA guaranteed uptime by adding azure resources to multiple regions - yes or no?

Companies can increase the SLA guaranteed uptime by purchasing multiple subs - yes or no?

yes

Copying 10 GB of data FROM auzre TO an on prem network over a vpn generates additional azure data transfer costs - yes or no?

Copying 10 GB of data TO azure FROM on prem network over a vpn generates addtional azure data transfer costs - yes or no?

Yes There are different replication options available with a storage account. The ג€˜minimumג€™ replication option is Locally Redundant Storage (LRS). With LRS, data is replicated synchronously three times within the primary region.

Data that is stored in an Azure storage account automatically has at least three copies - YES or NO?

yes

Data traffic between azure services within the same azure region is always free - yes or no?

Data transfers between Azure services located in different Azure regions are always free - YES or NO?

An organization that defines international standards across all industries. ISO An organization that defines standards used by the United States government. NIST A European policy that regulates data privacy and data protection. GDPR A dedicated public cloud for federal and state agencies in the US. Azure Government

Each term may be used once, more than once, or not at all.NOTE: Each correct match is worth one point. An organization that defines international standards across all industries. Azure Government / GDPR / ISO / NIST An organization that defines standards used by the United States government. Azure Government / GDPR / ISO / NIST A European policy that regulates data privacy and data protection. Azure Government / GDPR / ISO / NIST A dedicated public cloud for federal and state agencies in the US. Azure Government / GDPR / ISO / NIST

Each user account in Azure AD can be assigned only one license - Yes or NO?

Every Azure region has multiple datacenters - YES or NO?

Yes

From Azure Monitor, you can monitor resources across multiple Azure subsriptions - YES or NO?

Yes

From Azure Security Center, you can download a Regulatory Compliance Report - YES or NO?

Yes

From Azure monitor, you can create alerts - YES or NO?

From Azure service health, an admin can prevent a service failure - YES or NO?

Yes

From Azure service health, an administrator can view the health of all the services in an Azure environment - YES or NO?

Yes

From Azure services health, an administrator can create a rule to be alerted if an Azure services fails - Yes or NO?

c) Azure Activity Log

From _________ you can view which user turned off a specific virtual machine during the last 14 days. a) Azure access control IAM b) Azure Event Hubs c) Azure Activity Log d) Azure Services Health

Yes

From the Azure portal, you can distinguish between services that are generally available and services that are in public preview - yes or no?

yes

GDPR applies to companies that offer goods or services to individuals in the EU - Yes or no?

yes

GDPR defines data protection and privacy rules - yes or no=

You need a minimum of two virtual machines with each one located in a different availability zone. Availability Zones is a high-availability offering that protects your applications and data from datacenter failures. Availability Zones are unique physical locations within an Azure region. Each zone is made up of one or more datacenters equipped with independent power, cooling, and networking. To ensure resiliency, thereג€™s a minimum of three separate zones in all enabled regions. The physical separation of Availability Zones within a region protects applications and data from datacenter failures. Zone-redundant services replicate your applications and data across Availability Zones to protect from single-points-of-failure. With AvailabilityZones, Azure offers industry best 99.99% VM uptime SLA.

HOTSPOT -You plan to deploy a critical line-of-business application to Azure. The application will run on an Azure virtual machine. You need to recommend a deployment solution for the application. The solution must provide a guaranteed availability of 99.99 percent. What is the minimum number of virtual machines and the minimum number of availability zones you should recommend for the deployment? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Minimum number of virtual machines: 1 / 2 / 3 Minimum number of avilability zones 1 / 2 / 3

(max available minutes - downtime in minutes) divided by max available minutes times 100

How should you calculate the monthly uptime percentage? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Section 1: Downtime in Minutes -or- max available minutes -or (max available minutes - downtime in minutes) Section 2: section 1 answer divided by: 60 -or 1440 -or- max available minutes Section 3: section 2 answer x 100 -or- 99.99 -or 1.440

IF you have Azure resources deployed to every region, you can implement availability zones in all the regions - YES or NO?

yes

Identities stored in Azure AD, third-party cloud services, and on-prem AD can be used to access azure resources - Yes or no?

yes

Identities stored in an on-prem AD can be synched to Azure AD - yes or no?

b) the delete lock must be removed before an admin

If a resource group named RG1 has a delete lock, _________ can delete RG1. a) only a member of the global administrators group b) the delete lock must be removed before an admin c) an Azure policy must be modified before an admin d) an azure tag must be added before an admin

yes

If an azure resource has a read-only lock, you can add a delete lock to the resource - yes or no?

No Tags for Resources are not inherited by default from their Resource Group

If you assign a tag to a resource group, all the Azure resources in that resource group are assinged to the same tag - YES or NO?

If you create two azure virtual machines that use the B2S size, each machine will always generate the same monthly costs - yes or no?

If you implement the security recommendations provided by Azure Advisor, your company's secure score will decrease - YES or NO?

If your company uses an Azure free account, you will only be able to use a subset of azure services - yes or no?

yes

In azure active directory premium p2, at least 99.9% availabilty is guaranteed - yes or no?

D. Premier, Professional Direct, Standard, Developer, and Basic

In which Azure support plans can you open a new support request? A. Premier and Professional Direct only B. Premier, Professional Direct, and Standard only C. Premier, Professional Direct, Standard, and Developer only D. Premier, Professional Direct, Standard, Developer, and Basic

A managed service that provides bidirectional communication between IoT devices and Azure = IoT Hub A fully managed software as a service solution to connect, monitor, and manage IoT devices at scales = IoT Central A software and hardware solution that provides communcation and security features for IoT devices = Azure Sphere

Instructions: To answer, drag the appropriate service from the column on the left to its description on the right. Each service may be used once, more than once, or not at all.NOTE: Each correct selection is worth one point. A managed service that provides bidirectional communication between IoT devices and Azure A fully managed software as a service solution to connect, monitor, and manage IoT devices at scales A software and hardware solution that provides communcation and security features for IoT devices a) IoT hub b) IoT Central c) Azure Sephere

Yes OpEx is ongoing costs (costs of operations) such as staff salaries.

Monthly salaries for technical personnel are an example of operational expenditure (OpEx) costs - YES or NO?

yes

Most azure services are introduced in private preview before being introduced in public preview, and then in general availability. YES or no?

North american is represented by a single azure region - YES or NO?

Outbound data traffic from azure to an on-prem network is always free - yes or no?

-the azure cli, the azure portal, and azure powershell for all three

Several support engineers plan to manage Azure by using the computers shown in the following table: Computer 1 : Windows 10 Computer 2 : Ubuntu Computer 3 : MacOs Mojave Which options does each computer have: -The azure CLI and the Azure portal -The Azure portal and Azure powershell -The azure CLi and Azure powershell -the azure cli, the azure portal, and azure powershell

Storing 1 TB of data in Azure Blob storage will always cost the same, regardless of the Azure region in which the data is located - yes or no?

Support from MSDN forums is only provided to companies that have a pay-as you-go sub - yes or no?

A. Azure Firewall

Which service provides network traffic filtering across multiple Azure subscriptions and virtual networks? A. Azure Firewall B. an application security group C. Azure DDoS protection D. a network security group (NSG)

B. Azure Functions

Which service provides serverless computing in Azure? A. Azure Virtual Machines B. Azure Functions C. Azure storage account D. Azure dedicated hosts

B. Microsoft provides a minimum of 12 monthsג€™ notice before ending support for a service.

Which statement accurately describes the Modern Lifecycle Policy for Azure services? A. Microsoft provides mainstream support for a service for five years. B. Microsoft provides a minimum of 12 monthsג€™ notice before ending support for a service. C. After a service is made generally available, Microsoft provides support for the service for a minimum of four years. D. When a service is retired, you can purchase extended support for the service for up to five years.

C. Confirm that Azure subscription security follows best practices.

Which task can you perform by using Azure Advisor? A. Integrate Active Directory and Azure Active Directory (Azure AD). B. Estimate the costs of an Azure solution. C. Confirm that Azure subscription security follows best practices. D. Evaluate which on-premises resources can be migrated to Azure.

C. a United States government entity D. a United States government contractor

Which two types of customers are eligible to use Azure Government to develop a cloud solution? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point. A. a Canadian government contractor B. a European government contractor C. a United States government entity D. a United States government contractor E. a European government entity

Yes

Windows virtual desktop supports desktop and app virtualization - YES or NO?

yes

With azure reservations, you pay less for virtual machines than with pay-as-you-go pricing - yes or no?

Yes

With infrastructure as a service, you must install the software that you want to use - YES or NO?

With software as a service, you must apply software updates - YES or NO?

b) azure portal

You can access the compliance manager from the _____ a) Azure ad admin center b) azure portal c) Microsoft 365 admin center d) Microsoft service trust portal

yes

You can add an azure resource manager template to an azure blueprint - yes or no?

You can assign an azure blueprint to a resource group - yes or no?

Yes

You can associate a network security group to a network interface - Yes or no?

You can associate a network security group to a virtual network - Yes or no?

Yes

You can associate a network security group to a virtual network subnet - Yes or no?

Yes

You can change the Azure Active Directory (Azure AD) tenant to which an Azure subscription is associated - YES or NO?

Yes

You can configure the Azure AD activity logs to appear in Azure monitor - YES or NO?

yes

You can convert the azure sub of your company from free trial to pay as you go - yes or no?

Yes

You can create custom Azure roles to control access to resources - YES or NO?

No - Azure AD domain service does this.

You can create group policies in azure AD - YES or NO?

You can create up to 10 azure free accounts by using the same microsoft account - yes or no?

d) Azure Security Center The just-in-time (JIT) virtual machine (VM) access feature in Azure Security Center allows you to lock down inbound traffic to your Azure Virtual Machines. This reduces exposure to attacks while providing easy access when you need to connect to a VM.

You can enable just in time VM access by using __________ a) Azure Bastion b) Azure Firewall c) Azure Front Door d) Azure Security Center

You can join android devices to Azure AD - Yes or no?

Yes

You can join windows 10 devices to azure AD - YES or NO?

You can stop an azure SQL database instance to decrease costs - yes or no=

yes

You can use azure blueprints to grant permission to a resource - yes or no?

d) Azure security center

You can view your company's regulatory compliance report from: ________ a) azure advisor b) azure analysis services c) azure monitor d) Azure security center

Locks

You create a resource group named RG1 in Azure Resource Manager.You need to prevent the accidental deletion of the resources in RG1.Which setting should you use? To answer, select the appropriate setting in the answer area. -Quick start -Resource costs -Deployments -Policies -Properties -locks -Automation script

c) credit your azure account

You deploy an azure resource. The resource becomes unavilable for an extended period due to a service outage. Microsoft will: a) refund your bank account b) migrate the resource to another sub c) credit your azure account d) send you a coupon code that you can redeem for azure credits

A. hybrid

You have 50 virtual machines hosted on-premises and 50 virtual machines hosted in Azure. The on-premises virtual machines and the Azure virtual machines connect to each other. Which type of cloud model is this? A. hybrid B. private C. public

D. an Azure policy

You have a resource group named RG1.You need to prevent the creation of virtual machines only in RG1. The solution must ensure that other objects can be created in RG1.What should you use? A. a lock B. an Azure role C. a tag D. an Azure policy

C. Azure VirtualMachines

You have a virtual machine named VM1 that runs Windows Server 2016. VM1 is in the East US Azure region. Which Azure service should you use from the Azure portal to view service failure notifications that can affect the availability of VM1? A. Azure Service Fabric B. Azure Monitor C. Azure virtual machines D. Azure Advisor

D. one Azure firewall You can restrict traffic to multiple virtual networks with a single Azure firewall.Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It's a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.You can centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks. Azure Firewall uses a static public IP address for your virtual network resources allowing outside firewalls to identify traffic originating from your virtual network.

You have an Azure environment that contains 10 virtual networks and 100 virtual machines. You need to limit the amount of inbound traffic to all the Azure virtual networks. What should you create? A. one application security group (ASG) B. 10 virtual network gateways C. 10 Azure ExpressRoute circuits D. one Azure firewall

B. Azure Service Health Azure Service Health provides a personalized view of the health of the Azure services and regions you're using. This is the best place to look for service impacting communications about outages, planned maintenance activities, and other health advisories because the authenticated Service Health experience knows which services and resources you currently use.

You need to be notified when Microsoft plans to perform maintenance that can affect the resources deployed to an Azure subscription. What should you use? A. Azure Monitor B. Azure Service Health C. Azure Advisor D. Microsoft Trust Center

A. Azure Sentinel

You need to collect and automatically analyze security events from Azure Active Directory (Azure AD).What should you use? A. Azure Sentinel B. Azure Synapse Analytics C. Azure AD Connect D. Azure Key Vault

D. DDoS protection

You need to configure an Azure solution that meets the following requirements: ✑ Secures websites from attacks - ✑ Generates reports that contain details of attempted attacks What should you include in the solution? A. Azure Firewall B. a network security group (NSG) C. Azure Information Protection D. DDoS protection

D. Azure AD Identity Protection

You need to ensure that when Azure Active Directory (Azure AD) users connect to Azure AD from the Internet by using an anonymous IP address, the users are prompted automatically to change their password.Which Azure service should you use? A. Azure AD Connect Health B. Azure AD Privileged Identity Management C. Azure Advanced Threat Protection (ATP) D. Azure AD Identity Protection

Monitor the Health of Azure Services: Monitor Browse available virtual machine images: Marketplace View Security recommendations: Advisor

You need to identify which blades in the Azure portal must be used to perform the following tasks: NOTE: Each correct selection is worth one point. Monitor the Health of Azure Services: Monitor / Subscriptions / Marketplace / Advisor Browse available virtual machine images: Monitor / Subscriptions / Marketplace / Advisor View Security recommendations: Monitor / Subscriptions / Marketplace / Advisor

Cant enter an image here but its the one that looks like >_

You need to manage Azure by using Azure Cloud Shell.Which Azure portal icon should you select? To answer, select the appropriate icon in the answer area.

Help and support blade - service ticket

You need to request that Microsoft increase a subscription quota limit for your company.Which blade should you use from the Azure portal? To answer, select the appropriate blade in the answer area.

Help and support - On the Help and Support blade, there is a Service Health option. If you click Service Health, a new blade opens. The Service Health blade contains the PlannedMaintenance link which opens a blade where you can view a list of planned maintenance events that can affect the availability of an Azure subscription.

You need to view a list of planned maintenance events that can affect the availability of an Azure subscription. Which blade should you use from the Azure portal? To answer, select the appropriate blade in the answer area.

The SLA for Azure AD premium is the same as the SLA for Azure ad free - yes or no?

a) Microsoft online services privacy statement

The ______ explains what data Microsoft processes, how Microsoft process the data, and the purpose of processing the data. a) Microsoft online services privacy statement b) Microsoft online services terms c) Microsoft Online Service Level Agreement d) Online Subscription Agreement for Microsoft Azure

yes

The azure spending limit is fixed and cannot be increased or decreased - yes or no?

The companyג€™s support policy states that the Azure environment must provide an option to access support engineers by phone or email.You need to recommend which support plan meets the support policy requirement.Solution: Recommend a Basic support plan.Does this meet the goal?

yes The Basic support plan does not have any technical support for engineers.The Developer support plan has only technical support for engineers via email.The Standard, Professional Direct, and Premier support plans have technical support for engineers via email and phone.Reference:https://azure.microsoft.com/en-gb/support/plans/

The cost of an azure service in private preview decreases when the service becomes generally available - yes or no=

yes

The service level agreement guaranteed uptime for paid azure services is at least 99.9% - yes or no?

C. Budget alerts

This question requires that you evaluate the underlined text to determine if it is correct. You can use Advisor recommendations in Azure to send email alerts when the cost of the current billing period for an Azure subscription exceeds a specified limit.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is needed.ג€ If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed. B. Access control (IAM) C. Budget alerts D. Compliance

D. any user or enterprise that requires its data to reside in Germany

This question requires that you evaluate the underlined text to determine if it is correct. Azure Germany can be used by legal residents of Germany only. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. no change is needed B. only enterprises that are registered in Germany C. only enterprises that purchase their azure licenses from a partner based in Germany D. any user or enterprise that requires its data to reside in Germany

C. Compliance Manager

This question requires that you evaluate the underlined text to determine if it is correct. From Azure Cloud Shell, you can track your companyג€™s regulatory standards and regulations, such as ISO 27001.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is needed.ג€ If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed. B. the Microsoft Cloud Partner Portal C. Compliance Manager D. the Trust Center

B. the Azure portal

This question requires that you evaluate the underlined text to determine if it is correct. You can create an Azure support request from support.microsoft.com. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is needed.ג€ If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed. B. the Azure portal C. the Knowledge Center D. the Security & Compliance admin center

D. server applications

This question requires that you evaluate the underlined text to determine if it is correct.Azure Key Vault is used to store secrets for Azure Active Directory (Azure AD) user accounts. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. Azure Active Directory (Azure AD) administrative accounts C. Personally Identifiable Information (PII) D. server applications

A. No change is needed.

This question requires that you evaluate the underlined text to determine if it is correct.If Microsoft plans to end support for an Azure service that does NOT have a successor service, Microsoft will provide notification at least 12 months before.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed. B. 6 months C. 90 days D. 30 days

A. No change is needed

This question requires that you evaluate the underlined text to determine if it is correct.The Azure Standard support plan is the lowest cost option to receive 24x7 access to support engineers by phone.Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. Developer C. Basic D. Professional Direct

No It is not true that a company must always migrate from a private cloud model to implement a hybrid cloud. You could start with a public cloud and then combine that with an on-premise infrastructure to implement a hybrid cloud.

To achieve a hybrid cloud model, a company must always migrate from a private cloud model. YES or NO

To implement an Azure MFA solution, you must sync on prem identities to the cloud - yes or no?

To maintain Microsoft support, you must implement the security recommendations provided by Azure Advisor within a period of 30 days - YES or NO?

B. documents and email messages Azure Information Protection can encrypt documents and emails.Azure Information Protection is a cloud-based solution that helps an organization to classify and optionally, protect its documents and emails by applying labels.Labels can be applied automatically by administrators who define rules and conditions, manually by users, or a combination where users are given recommendations.The protection technology uses Azure Rights Management (often abbreviated to Azure RMS). This technology is integrated with other Microsoft cloud services and applications, such as Office 365 and Azure Active Directory.This protection technology uses encryption, identity, and authorization policies. Similarly to the labels that are applied, protection that is applied by using RightsManagement stays with the documents and emails, independently of the location ג€" inside or outside your organization, networks, file servers, and applications.

What can Azure Information Protection encrypt? A. network traffic B. documents and email messages C. an Azure Storage account D. an Azure SQL database

C. Azure Monitor

What can you use to automatically send an alert if an administrator stops an Azure virtual machine? A. Azure Advisor B. Azure Service Health C. Azure Monitor D. Azure Network Watcher

A. uptime

What is guaranteed in an Azure Service Level Agreement (SLA) for virtual machines? A. uptime B. feature availability C. bandwidth D. performance

D. a pay-as-you-go subscription

What is required to use Azure Cost Management? A. a Dev/Test subscription B. Software Assurance C. an Enterprise Agreement (EA) D. a pay-as-you-go subscription

C. Compliance Manager from the Service Trust Portal

What should you use to evaluate whether your companyג€™s Azure environment meets regulatory requirements? A. the Knowledge Center website B. the Advisor blade from the Azure portal C. Compliance Manager from the Service Trust Portal D. the Solutions blade from the Azure portal

yes

When an azure vm is stopped, you continue to pay storage costs associated to the VM - yes or no?

yes

When using an Azure expressroute connection, inbound data traffic from an on-prem network to azure is always free - yes or no?

When you create Azure resources for a service in public preview, you must recreate the resources once the service becomes generally available - yes or no?

When you use a general-purpose v2 Azure storage account, you are only charged for the amount of data that is stored. All read and write operations are free - yes or no?

A. Azure Repos

Which Azure service provides a set of version control tools to manage code? A. Azure Repos B. Azure DevTest Labs C. Azure Storage D. Azure Cosmos DB

C. Azure Monitor Explanation Azure Monitor maximizes the availability and performance of your applications and services by delivering a comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud and on-premises environments. All data collected by Azure Monitor fits into one of two fundamental types, metrics and logs. Log data collected by Azure Monitor can be analyzed with queries to quickly retrieve, consolidate, and analyze collected data. You can create and test queries using Log Analytics in the Azure portal and then either directly analyze the data using different tools or save queries for use with visualization or alert rules. Reference: https://docs.microsoft.com/en-us/azure/azure-monitor/overview

Which Azure service should you use to collect events from multiple resources into a centralized repository? A. Azure Event Hubs B. Azure Analysis Services C. Azure Monitor D. Azure Stream Analytics

C. Azure Key Vault

Which Azure service should you use to store certificates? A. Azure Security Center B. an Azure Storage account C. Azure Key Vault D. Azure Information Protection

✑ Monitor threats by using sensors: Azure Advanced Threat Protection ✑ Enforce Azure Multi-Factor Authentication (MFA) based on a condition: Azure AD Identity protection

You plan to implement several security services for an Azure environment. You need to identify which Azure services must be used to meet the following security requirements: ✑ Monitor threats by using sensors: Azure Monitor / Azure Security Center / Azure AD Identity protection / Azure Advanced Threat Protection ✑ Enforce Azure Multi-Factor Authentication (MFA) based on a condition: Azure Monitor / Azure Security Center / Azure AD Identity protection / Azure Advanced Threat Protection Which Azure service should you identify for each requirement? To answer, select the appropriate options in the answer area.

B. Modify a network security group (NSG) D. Modify an Azure firewall

Your Azure environment contains multiple Azure virtual machines.You need to ensure that a virtual machine named VM1 is accessible from the Internet over HTTP. What are two possible solutions? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point. A. Modify an Azure Traffic Manager profile B. Modify a network security group (NSG) C. Modify a DDoS protection plan D. Modify an Azure firewall

Your Azure environment contains multiple Azure virtual machines.You need to ensure that a virtual machine named VM1 is accessible from the Internet over HTTP.Solution: You modify a DDoS protection plan.Does this meet the goal?

Yes

No Azure Traffic Manager is a DNS-based load balancing solution. It is not used to ensure that a virtual machine named VM1 is accessible from the Internet overHTTP.To ensure that a virtual machine named VM1 is accessible from the Internet over HTTP, you need to modify a network security group or Azure Firewall.In this question, we need to add a rule to a network security group or Azure Firewall to allow the connection to the virtual machine on port 80 (HTTP).

Yes Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It's a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.In this question, we need to add a rule to Azure Firewall to allow the connection to the virtual machine on port 80 (HTTP).

b) start an existing azure VM

Your azure trial account expired last week. You are now unable to: a) create additional azure AD user accounts b) start an existing azure VM c) access your data stored in Azure d) access the azure portal

B. a subscription

Your company has 10 departments.The company plans to implement an Azure environment.You need to ensure that each department can use a different payment option for the Azure services it consumes.What should you create for each department? A. a reservation B. a subscription C. a resource group D. a container instance

A. tags

Your company has 10 offices. You plan to generate several billing reports from the Azure portal. Each report will contain the Azure resource utilization of each office.Which Azure Resource Manager feature should you use before you generate the reports? A. tags B. templates C. locks D. policies

B. Use Azure Hybrid Benefit.

Your company has a Software Assurance agreement that includes Microsoft SQL Server licenses.You plan to deploy SQL Server on Azure virtual machines.What should you do to minimize licensing costs for the deployment? A. Deallocate the virtual machines during off hours. B. Use Azure Hybrid Benefit. C. Configure Azure Cost Management budgets. D. Use Azure reservations.

B. an Azure policy

Your company has an Azure subscription that contains resources in several regions.A company policy states that administrators must only be allowed to create additional Azure resources in a region in the country where their office is located.You need to create the Azure resource that must be used to meet the policy requirement.What should you create? A. a read-only lock B. an Azure policy C. a management group D. a reservation

B. an Azure policy

Your company has an Azure subscription that contains resources in several regions.You need to ensure that administrators can only create resources in those regions.What should you use? A. a read-only lock B. an Azure policy C. a management group D. a reservation

Your company has an Azure subscription that contains the following unused resources: ✑ 20 user accounts in Azure Active Directory (Azure AD) ✑ Five groups in Azure AD ✑ 10 public IP addresses ✑ 10 network interfaces You need to reduce the Azure costs for the company.Solution: You remove the unused groups. Does this meet the goal?

No, you are not charged for unused network interfaces.

yes

D. the Trust Center Azure has more than 90 compliance certifications, including over 50 specific to global regions and countries, such as the US, the European Union, Germany,Japan, the United Kingdom, India and China.You can view a list of compliance certifications in the Trust Center to determine whether Azure meets your regional requirements.

Your company plans to migrate all on-premises data to Azure.You need to identify whether Azure complies with the companyג€™s regional requirements.What should you use? A. the Knowledge Center B. Azure Marketplace C. the Azure portal D. the Trust Center

a service in general availability is released to a subset of azure customers - yes or no=

a service in private preview is released to all customers - yes or no=

yes

a service in public preview is released to all customers - yes or no=

yes

azure services in public preview can be used in production environments - yes or no?

yes

serverless computing is an example of a consumption based plan - yes or no=

yes

the cost of azure resources can vary between regions - yes or no?

with a consumption based plan, you pay a fixed rate for all data sent to or from virtual machines hosted in the cloud - yes or no?

yes

with a consumption based plan, you reduce overall costs by paying only for extra capacity when it is required - yes or no=

A managed relational cloud database service. = d) Azure SQL Database A cloud-based service that leverages massively parallel processing to quickly run complex queries across petabytes of data in a relational database. = c) Azure SQL Synapse Analytics Can run massively parallel data transformation and processing programs across petabytes of data. = b) Azure Data Lake analytics An open-source framework for the distributed processing and analysis of big data sets in clusters. = a) Azure HDInsight Azure SQL Database -SQL Server is a relational database service. Azure SQL Database is a managed SQL Server Database in Azure. The SQL Server is managed by Microsoft; you just have access to the database. Azure SQL Synapse AnalyticsAzure SQL Synapse Analytics (previously called Data Warehouse) is a cloud-based Platform-as-a-Service (PaaS) offering from Microsoft. It is a large-scale, distributed, MPP (massively parallel processing) relational database technology in the same class of competitors as Amazon Redshift or Snowflake. Azure SQLSynapse Analytics is an important component of the Modern Data Warehouse multi-platform architecture. Because Azure SQL Synapse Analytics is an MPP system with a shared-nothing architecture across distributions, it is meant for large-scale analytical workloads which can take advantage of parallelism. Azure Data Lake AnalyticsYou can process big data jobs in seconds with Azure Data Lake Analytics. You can process petabytes of data for diverse workload categories such as querying,ETL, analytics, machine learning, machine translation, image processing and sentiment analysis by leveraging existing libraries written in .NET languages, R orPython. Azure HDInsight.Apache Hadoop was the original open-source framework for distributed processing and analysis of big data sets on clusters. The Hadoop ecosystem includes related software and utilities, including Apache Hive, Apache HBase, Spark, Kafka, and many others.Azure HDInsight is a fully managed, full-spectrum, open-source analytics service in the cloud for enterprises. The Apache Hadoop cluster type in Azure HDInsight allows you to use HDFS, YARN resource management, and a simple MapReduce programming model to process and analyze batch data in parallel.

Each service may be used once, more than once, or not at all. A managed relational cloud database service. A cloud-based service that leverages massively parallel processing to quickly run complex queries across petabytes of data in a relational database. Can run massively parallel data transformation and processing programs across petabytes of data. An open-source framework for the distributed processing and analysis of big data sets in clusters. a) Azure HDInsight b) Azure Data Lake analytics c) Azure SQL Synapse Analytics d) Azure SQL Database

An integrated solution for the deployment of code. = d) Azure DevOps A tool that provides guidance and recommendations to improve an Azure environment = a) Azure Advisor A simplified tool to build intelligent Artificial Intelligence (AI) applications = b) Azure Cognitive Services Monitors web applications. = c) Azure Applications insights

Each service may be used once, more than once, or not at all. An integrated solution for the deployment of code. A tool that provides guidance and recommendations to improve an Azure environment A simplified tool to build intelligent Artificial Intelligence (AI) applications Monitors web applications. a) Azure Advisor b) Azure Cognitive Services c) Azure Applications insights d) Azure DevOps

Provides a digital online assistant that provides speech support. = c) Azure Bot services Users past trainings to provide predictions that have high probability. = a) Azure machine learning Provides serverless computing functionalities = d) Azure functions Processes data from millions of sensors. = b) Azure IoT Hub

Each service may be used once, more than once, or not at all. Match the options to the statements: Provides a digital online assistant that provides speech support. Users past trainings to provide predictions that have high probability. Provides serverless computing functionalities Processes data from millions of sensors. a) Azure machine learning b) Azure IoT Hub c) Azure Bot services d) Azure functions

Provide operating system virtualization. = c) azure virtual machines Provide portable environment for virtualized applications. = d) azure container instances Use to build, deploy, and scale web apps. = b) Azure app services Provide a platform for serverless code. = a) Azure Functions

Each service may be used once, more than once, or not at all. Provide operating system virtualization. Provide portable environment for virtualized applications. Use to build, deploy, and scale web apps. Provide a platform for serverless code. a) Azure Functions b) Azure app services c) azure virtual machines d) azure container instances

Provides a cloud-based Enterprise Data Warehouse (EDW) = b) Azure synapse analytics Uses past trainings to provide predictions that have a high probability. = a) Azure machines learning Provides serverless computing functionalities. = d) Azure functions Processes data from millions of sensors. = c) Azure IoT Hub

Each service may be used once, more than once, or not at all. Provides a cloud-based Enterprise Data Warehouse (EDW) Uses past trainings to provide predictions that have a high probability. Provides serverless computing functionalities. Processes data from millions of sensors. a) Azure machines learning b) Azure synapse analytics c) Azure IoT Hub d) Azure functions

Provides the platform for serverless code. = b) Azure functions A big data analysis service for machines learning. = a) Azure databricks Detects and diagnoses anomalies in web apps. = d) azure applications insights Hosts web apps. = c) azure app service

Each service may be used once, more than once, or not at all. Provides the platform for serverless code. A big data analysis service for machines learning. Detects and diagnoses anomalies in web apps. Hosts web apps. a) Azure databricks b) Azure functions c) azure app service d) azure applications insights

B. Azure Active Directory (Azure AD) Azure AD authenticates users and provides access tokens. An access token is a security token that is issued by an authorization server. It contains information about the user and the app for which the token is intended, which can be used to access Web APIs and other protected resources.Instead of creating apps that each maintain their own username and password information, which incurs a high administrative burden when you need to add or remove users across multiple apps, apps can delegate that responsibility to a centralized identity provider.Azure Active Directory (Azure AD) is a centralized identity provider in the cloud. Delegating authentication and authorization to it enables scenarios such asConditional Access policies that require a user to be in a specific location, the use of multi-factor authentication, as well as enabling a user to sign in once and then be automatically signed in to all of the web apps that share the same centralized directory. This capability is referred to as Single Sign On (SSO).

To what should an application connect to retrieve security tokens? A. an Azure Storage account B. Azure Active Directory (Azure AD) C. a certificate store D. an Azure key vault

Transferring data between Azure storage accounts in different azure regions is free - yes or no?

no Valid methods include: Password, Microsoft Authenticator App, SMS andVoice call.

Two valid methods for azure mfa are picture id and a passport number - yes or no?

Yes

You have an Azure environment. You need to create a new Azure virtual machine from a tablet that runs the Android operating system. Solution: You use Bash in Azure Cloud Shell.Does this meet the goal?

Yes Azure Cloud Shell is a browser-based shell experience to manage and develop Azure resources.Cloud Shell offers a browser-accessible, pre-configured shell experience for managing Azure resources without the overhead of installing, versioning, and maintaining a machine yourself.Being browser-based, Azure Cloud Shell can be run on a browser from a tablet that runs the Android operating system.

You have an Azure environment. You need to create a new Azure virtual machine from a tablet that runs the Android operating system. Solution: You use PowerShell in Azure Cloud Shell. Does this meet the goal?

Yes

You have an Azure environment. You need to create a new Azure virtual machine from a tablet that runs the Android operating system. Solution: You use the Azure portal.Does this meet the goal?

You have an Azure environment. You need to create a new Azure virtual machine from a tablet that runs the Android operating system. Solution: You use the PowerApps portal. Does this meet the goal?

A. Use Bash in Azure Cloud Shell. B. Use PowerShell in Azure Cloud Shell. E. Use the Azure portal.

You have an Azure environment.You need to create a new Azure virtual machine from a tablet that runs the Android operating system.What are three possible solutions? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point. A. Use Bash in Azure Cloud Shell. B. Use PowerShell in Azure Cloud Shell. C. Use the PowerApps portal. D. Use the Security & Compliance admin center. E. Use the Azure portal.

Yes

You have an Azure subscription named Subscription1. You sign in to the Azure portal and create a resource group named RG1.From Azure documentation, you have the following command that creates a virtual machine named VM1. az vm create --resource-group RG1 --name VM1 --image UbuntuLTS --generate-ssh-keysYou need to create VM1 in Subscription1 by using the command. Solution: From the Azure portal, launch Azure Cloud Shell and select Bash. Run the command in Cloud Shell. Does this meet the goal?

Yes

You have an Azure subscription named Subscription1. You sign in to the Azure portal and create a resource group named RG1.From Azure documentation, you have the following command that creates a virtual machine named VM1. az vm create --resource-group RG1 --name VM1 --image UbuntuLTS--generate-ssh-keysYou need to create VM1 in Subscription1 by using the command. Solution: From a computer that runs Windows 10, install Azure CLI. From PowerShell, sign in to Azure and then run the command.Does this meet the goal?

c) continues to function normally

You have an Azure virtual network named VNET1 in resource group named RG1. You assign azure policy definition of Not Allowed Resource type and specify that virtual networks are not an allowed resource type in RG1 Vnet: a) is deleted automatically b) is moved automatically to another resource group c) continues to function normally d) is now a read-only object

B. the Azure portal C. Azure Cloud Shell

You have an Azure web app.You need to manage the settings of the web app from an iPhone.What are two Azure management tools that you can use? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point. A. Azure CLI B. the Azure portal C. Azure Cloud Shell D. Windows PowerShell E. Azure Storage Explorer

a) the product of both SLAs, which equals 99.94%

You have an application that is comprised of an Azure web app that has a service level agreements of 99.95% and an azure SQL datbase that has an SLA of 99.99% The composite SLA for the application is : a) the product of both SLAs, which equals 99.94% b) the lowest SLA associated to the application, which is 99.95% c) the highest SLA associated to the application, which is 99.9% d) the difference between the two SLAs, which is 0.05%

C. a logic app

You have an on-premises application that sends email notifications automatically based on a rule.You plan to migrate the application to Azure.You need to recommend a serverless computing solution for the application.What should you include in the recommendation? A. a web app B. a server image in Azure Marketplace C. a logic app D. an API app

C. a content delivery network (CDN) The question states that users are located worldwide and will be downloading large video files. The video playback experience would be improved if they can download the video from servers in the same region as the users. We can achieve this by using a content deliver network.A content delivery network (CDN) is a distributed network of servers that can efficiently deliver web content to users. CDNs store cached content on edge servers in point-of-presence (POP) locations that are close to end users, to minimize latency.Azure Content Delivery Network (CDN) offers developers a global solution for rapidly delivering high-bandwidth content to users by caching their content at strategically placed physical nodes across the world. Azure CDN can also accelerate dynamic content, which cannot be cached, by leveraging various network optimizations using CDN POPs. For example, route optimization to bypass Border Gateway Protocol (BGP).

You plan to deploy a website to Azure. The website will be accessed by users worldwide and will host large video files.You need to recommend which Azure feature must be used to provide the best video playback experience.What should you recommend? A. an application gateway B. an Azure ExpressRoute circuit C. a content delivery network (CDN) D. an Azure Traffic Manager profile

A. a network security group (NSG) A network security group works like a firewall. You can attach a network security group to a virtual network and/or individual subnets within the virtual network.You can also attach a network security group to a network interface assigned to a virtual machine. You can use multiple network security groups within a virtual network to restrict traffic between resources such as virtual machines and subnets.You can filter network traffic to and from Azure resources in an Azure virtual network with a network security group. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources.

You plan to deploy several Azure virtual machines.You need to control the ports that devices on the Internet can use to access the virtual machines.What should you use? A. a network security group (NSG) B. an Azure Active Directory (Azure AD) role C. an Azure Active Directory group D. an Azure key vault

A. Azure Resource Manager templates

Your company has several business units. Each business unit requires 20 different Azure resources for daily operation. All the business units require the same type of Azure resources. You need to recommend a solution to automate the creation of the Azure resources. What should you include in the recommendations? A. Azure Resource Manager templates B. virtual machine scale sets C. the Azure API Management service D. management groups

c) Azure Information Protection

Your company implements ___________ to automatically add a watermark to Microsoft Word documents that contain credit card info. a) Azure policies b) DDoS protection c) Azure Information Protection d) Azure Active Directory identity protection

A. Azure Key Vault

Your company plans to automate the deployment of servers to Azure.Your manager is concerned that you may expose administrative credentials during the deployment.You need to recommend an Azure solution that encrypts the administrative credentials during the deployment.What should you include in the recommendation? A. Azure Key Vault B. Azure Information Protection C. Azure Security Center D. Azure Multi-Factor Authentication (MFA)

B. Azure Machine Learning Designer

Your company plans to deploy an Artificial Intelligence (AI) solution in Azure.What should the company use to build, test, and deploy predictive analytics solutions? A. Azure Logic Apps B. Azure Machine Learning Designer C. Azure Batch D. Azure Cosmos DB

A. Azure Data Lake D. Azure IoT Hub IoT Hub (Internet of things Hub) provides data from millions of sensors.IoT Hub is a managed service, hosted in the cloud, that acts as a central message hub for bi-directional communication between your IoT application and the devices it manages. You can use Azure IoT Hub to build IoT solutions with reliable and secure communications between millions of IoT devices and a cloud- hosted solution backend. You can connect virtually any device to IoT Hub.There are two storage services IoT Hub can route messages to -- Azure Blob Storage and Azure Data Lake Storage Gen2 (ADLS Gen2) accounts. Azure DataLake Storage accounts are hierarchical namespace-enabled storage accounts built on top of blob storage. Both of these use blobs for their storage.

Your company plans to deploy several million sensors that will upload data to Azure.You need to identify which Azure resources must be created to support the planned solution.Which two Azure resources should you identify? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point. A. Azure Data Lake B. Azure Queue storage C. Azure File Storage D. Azure IoT Hub E. Azure Notification Hubs

A. network security groups (NSGs)

Your company plans to deploy several web servers and several database servers to Azure.You need to recommend an Azure solution to limit the types of connections from the web servers to the database servers.What should you include in the recommendation? A. network security groups (NSGs) B. Azure Service Bus C. a local network gateway D. a route filter

A. Premier

Your company plans to request an architectural review of an Azure environment from Microsoft.The company currently has a Basic support plan.You need to recommend a new support plan for the company. The solution must minimize costs.Which support plan should you recommend? A. Premier B. Developer C. Professional Direct D. Standard

B. Sync all the Active Directory user accounts to Azure Active Directory (Azure AD)

Your network contains an Active Directory forest. The forest contains 5,000 user accounts.Your company plans to migrate all network resources to Azure and to decommission the on-premises data center.You need to recommend a solution to minimize the impact on users after the planned migration.What should you recommend? A. Implement Azure Multi-Factor Authentication (MFA) B. Sync all the Active Directory user accounts to Azure Active Directory (Azure AD) C. Instruct all users to change their password D. Create a guest user account in Azure Active Directory (Azure AD) for each user

c) Azure Resource Manager templates provide Azure Resource Manager templates provides a common platform for deploying objects to a cloud infrastructure and for implementing consistency across theAzure environment.Azure policies are used to define rules for what can be deployed and how it should be deployed. Whilst this can help in ensuring consistency, Azure policies do not provide the common platform for deploying objects to a cloud infrastructure.

________ a common platform for deploying objects to a cloud infrastrcture and for implmenting consistency across the Azure environment. a) Azure policies provide b) Resource groups provide c) Azure Resource Manager templates provide d) Management groups provide

b) The Azure Total cost of ownership (tco) calculator

____________ can calculate cost savings due to reduced electricty consumption as a result of migrating on-prem Microsoft SQL servers to Azure. a) The azure migrate: server assessment tool b) The Azure Total cost of ownership (tco) calculator c) The database Migration assistant d) The pricing calculator in Azure

b) authentications

____________________ is the process of verifying a user's credentials. a) authorization b) authentications c) federation d) ticketing

No You cannot add physical servers to the public cloud. You can only deploy virtual servers in the public cloud. You can extend a private cloud by deploying virtual servers in a public cloud. This would create a hybrid cloud.

A company can extend a private cloud by adding its own physical servers to the public cloud - YES or NO?

Yes A company can extend the capacity of its internal network by using the public cloud. This is very common. When you need more capacity, rather than pay out for new on-premises infrastructure, you can configure a cloud environment and connect your on-premises network to the cloud environment by using a VPN.

A company can extend the capacity of its internal network by using the public cloud. YES or NO

Yes A company can have multiple subscriptions and store resources in the different subscriptions. However, a resource instance can exist in only one subscription.

A company can use resources from multiple subscriptions - YES or NO?

Yes

An Azure subscription can be managed by using a Microsoft account only - YES or NO?

An Azure subscription can have multiple account administrators - YES or NO?

An Azure virtual machine can be in multiple resource groups - YES or NO?

a) hybrid

An Azure web app that queries an on-premises Microsoft SQL server is an example of a _________ cloud. a) hybrid b) multi-vendor c) private d) public

Yes Azure App Service and Azure SQL databases are examples of Azure PaaS solutions. Therefore, this solution does meet the goal.

.Your company plans to migrate all its data and resources to Azure.The companyג€™s migration plan states that only Platform as a Service (PaaS) solutions must be used in Azure. You need to deploy an Azure environment that meets the company migration plan. Solution: You create an Azure App Service and Azure SQL databases. Does this meet the goal? YES or NO

Yes

A PaaS solution can automatically scale the number of instances. YES or NO?

Yes https://docs.microsoft.com/en-us/azure/app-service/manage-scale-up

A PaaS solution provides additional memory to apps by changing pricing tiers. YES or NO?

A PaaS solution provides full control of operating systems that host applications. YES or NO?

Yes

A company can extend the computing resources of its internal network by using a hybrid cloud - YES or NO?

No Azure resources deployed to a single resource group can be located in different regions. The resource group only contains metadata about the resources it contains.When creating a resource group, you need to provide a location for that resource group. You may be wondering, "Why does a resource group need a location?And, if the resources can have different locations than the resource group, why does the resource group location matter at all?" The resource group stores metadata about the resources. When you specify a location for the resource group, you're specifying where that metadata is stored. For compliance reasons, you may need to ensure that your data is stored in a particular region.

All the Azure resources deployed to a resource group must use the same Azure region - YES or NO?

An Azure resource group can contain multiple Azure subscriptions - YES or NO?

in the public cloud A public cloud is hosted externally, for example, in Microsoft Azure. An organization that hosts its infrastructure in a public cloud can close its data center. Public cloud is the most common deployment model. In this case, you have no local hardware to manage or keep up-to-date" everything runs on your cloud provider's hardware. Microsoft Azure is an example of a public cloud provider.

An organization that hosts its infrastructure ___________ no longer requires a data center. a) in a private cloud b) in a hybrid cloud c) in the public loud d) on a Hyper-V host

Azure Pay-As-You-Go pricing is an example of CapEx - YES or NO?

b) disaster recovery

Azure Site Recovery provides _________ for virtual machines. a) fault tolerance b) disaster recovery c) elasticity d) high availability

Yes

Azure backup is an example of platform as a service - YES or NO?

d) must be rehydrated before the data can be accessed Azure storage offers different access tiers: hot, cool and archive.The archive access tier has the lowest storage cost. But it has higher data retrieval costs compared to the hot and cool tiers. Data in the archive tier can take several hours to retrieve. While a blob is in archive storage, the blob data is offline and can't be read, overwritten, or modified. To read or download a blob in archive, you must first rehydrate it to an online tier. Example usage scenarios for the archive access tier include: ✑ Long-term backup, secondary backup, and archival datasets ✑ Original (raw) data that must be preserved, even after it has been processed into final usable form. ✑ Compliance and archival data that needs to be stored for a long time and is hardly ever accessed.

Data that is stored in the Archive access tier of an Azure Storage account: a) can be accessed at any time by using azcopy.exe b) can only be read by using Azure Backup c) must be restored before the data can be accessed d) must be rehydrated before the data can be accessed

Yes

Deploying your own datacenter is an example of CapEx - YES or NO?

Yes A resource group can be used to scope access control for administrative actions. By default, permissions set at the resource level are inherited by the resources in the resource group.

If you assign permissions for a user to manage a resource group, the user can manage all the Azure resources in that resource group - YES or NO?

Yes OpEx is ongoing costs (costs of operations) such as leasing software. If you purchased software as a one-off purchase, that would be CapEx, but leasing software is ongoing so itג€™s OpEx.

Leasing software is an example of operational expenditure (OpEx) costs - YES or NO?

Only virtual machines that run Windows Server can be created in availability zones - YES or NO?

Yes

Paying electricity for our datacenter is an example of OpEx - YES or NO?

C. Azure policies

Resource groups provide organizations with the ability to manage the compliance of Azure resources across multiple subscriptions. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. Management groups C. Azure policies D. Azure App Service plans

No Azure App Service is a PaaS (Platform as a Service) service. However, Azure virtual machines are an IaaS (Infrastructure as a Service) service. Therefore, this solution does not meet the goal.

The companyג€™s migration plan states that only Platform as a Service (PaaS) solutions must be used in Azure.You need to deploy an Azure environment that meets the company migration plan. Solution: You create an Azure App Service and Azure virtual machines that have Microsoft SQL Server installed.Does this meet the goal? YES or NO

A. No change is needed

This question requires that you evaluate the underlined text to determine if it is correct. An Azure region contains one or more data centers that are connected by using a low-latency network. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. Is found in each country where Microsoft has a subsidiary office C. Can be found in every country in Europe and the Americas only D. Contains one or more data centers that are connected by using a high-latency network

A. No change is needed Azure Data Warehouse (now known as Azure Synapse Analytics) is a PaaS offering from Microsoft. As with all PaaS services from Microsoft, SQL DataWarehouse offers an availability SLA of 99.9%. Microsoft can offer 99.9% availability because it has high availability features built into the platform.

This question requires that you evaluate the underlined text to determine if it is correct. One of the benefits of Azure SQL Data Warehouse is that high availability is built into the platform. Instructions: Review the underlined text. If it makes the statement correct, select ג€No change is neededג€. If the statement is incorrect, select the answer choice that makes the statement correct. A. No change is needed B. automatic scaling C. data compression D. versioning

No You cannot merge two subscriptions into a single subscription. However, you can move some Azure resources from one subscription to another. You can also transfer ownership of a subscription and change the billing type for a subscription.

Two Azure subscriptions can be merged into a single subscription - YES or NO?

D. Create a new support request Many Azure resource have quote limits. The purpose of the quota limits is to help you control your Azure costs. However, it is common to require an increase to the default quota. You can request a quota limit increase by opening a support request. In the support request, select ג€˜Service and subscription limits (quotas)ג€™ for the Issue type, select your subscription and the service you want to increase the quota for. For this question, you would select ג€˜SQL Database Managed Instanceג€™ as the quote type.

You attempt to create several managed Microsoft SQL Server instances in an Azure environment and receive a message that you must increase your Azure subscription limits. What should you do to increase the limits? A. Create a service health alert B. Upgrade your support plan C. Modify an Azure policy D. Create a new support request

Yes A PaaS solution that hosts web apps in Azure does provide the ability to scale the platform automatically. This is known as autoscaling. Behind the scenes, the web apps are hosted on virtual machines running IIS. Autoscaling means adding more load balanced virtual machines to host the web apps.

A platform as a service (PaaS solution that hosts web aps in Azure provides the ability to scale the platform automatically - YES or NO?

No It is not true that a private cloud must be disconnected from the Internet. Private clouds can be and most commonly are connected to the Internet. ג€Private cloudג€ means that the physical servers are managed by you. It does not mean that it is disconnected from the Internet.

A private cloud must be disconnected from the internet - YES or NO?

Yes You can use the same account to manage multiple subscriptions. You can create an additional subscription for your account in the Azure portal. You may want an additional subscription to avoid hitting subscription limits, to create separate environments for security, or to isolate data for compliance reasons.

A single Microsoft account can be used to manage multiple Azure subscriptions - YES or NO?

Availability zones can be implemented in all Azure regions - YES or NO?

A cloud service that remains available after a failure occurs. = Fault tolerance A cloud service that can be recovered after a failure occurs. = Disaster recovery A cloud service that performs quickly when demand increases. = Dynamic scalability A cloud service that can be accessed quickly from the internet. = Low latency Fault tolerance is the ability of a service to remain available after a failure of one of the components of the service. For example, a service running on multiple servers can withstand the failure of one of the servers. Disaster recovery is the recovery of a service after a failure. For example, restoring a virtual machine from backup after a virtual machine failure. Dynamic scalability is the ability for compute resources to be added to a service when the service is under heavy load. For example, in a virtual machine scale set, additional instances of the virtual machine are added when the existing virtual machines are under heavy load. Latency is the time a service to respond to requests. For example, the time it takes for a web page to be returned from a web server. Low latency means low response time which means a quicker response.

Each benefit may be used once, more than once, or not at all. Match answers with statements. A cloud service that remains available after a failure occurs. A cloud service that can be recovered after a failure occurs. A cloud service that performs quickly when demand increases. A cloud service that can be accessed quickly from the internet. Choices: Disaster recovery Fault tolerance Low latency Dynamic scalability.

No required capital expenditure. = Public Provides complete control over security. = Private Provides a choice to use on-prem or cloud-based resources. = Hybrid

Each cloud model may be used once, more than once, or not at all. No required capital expenditure. Provides complete control over security. Provides a choice to use on-prem or cloud-based resources. Hybrid, Private or Public.

No Two virtual machines using the same size could have different disk configurations. Therefore, the monthly costs could be different.

If you create two Azure virtual machines that use the B2S size, each virtual machine will always generate the same monthly costs - YES or NO?

Yes

If you delete a resource group, all the resources in the group will be deleted - YES or NO?

No It is not true that only guest users can access cloud resources. You can give anyone with an account in Azure Active Directory access to the cloud resources.There are many authentication scenarios but a common one is to replicate your on-premises Active Directory accounts to Azure Active Directory and provide access to the Azure Active Directory accounts. Another commonly used authentication method is ג€˜Federationג€™ where authentication for access to cloud resources is passed to another authentication provider such as an on-premises Active Directory

In a public cloud model, only guest users at your company can access the resources in the cloud. YES or NO

In the public cloud model, only guest users at your company can access the resources in the cloud - YES or NO?

C. public Microsoft Azure, Amazon Web Services and Google Cloud are three examples of public cloud services. Microsoft, Amazon and Google own the hardware. The tenants are the customers who use the public cloud services.

In which type of cloud model are all the hardware resources owned by a third-party and shared between multiple tenants? A. private B. hybrid C. public

Yes A hybrid cloud is a combination of a private cloud and public cloud. Therefore, to create a hybrid cloud, you must deploy resources to a public cloud.

To build a hybrid cloud, you must deploy resources to the public cloud - YES or NO?

Yes

To implement a hybrid cloud model, a company must have an internal network - YES or NO?

A. private cloud and hybrid cloud only A private cloud is on-premises so you can deploy physical servers.A hybrid cloud is a mix of on-premise and public cloud resources. You can deploy physical servers on-premises.

To which cloud models can you deploy physical servers? A. private cloud and hybrid cloud only B. private cloud only C. private cloud, hybrid cloud and public cloud D. hybrid cloud only

D. metered pricing E. self-service management With the public cloud, you get pay-as-you-go pricing" you pay only for what you use, no CapEx costs.With the public cloud, you have self-service management. You are responsible for the deployment and configuration of the cloud resources such as virtual machines or web sites. The underlying hardware that hosts the cloud resources is managed by the cloud provider.

What are two characteristics of the public cloud? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point. A. dedicated hardware B. unsecured connections C. limited storage D. metered pricing E. self-service management

No If your subscription expires, you lose access to all the other resources associated with the subscription. However, the Azure AD directory remains in Azure. You can associate and manage the directory using a different Azure subscription.

When an Azure subscription expires, the associated Azure Active Directory (Azure AD) tenant is deleted automatically - YES or NO?

Yes When an Azure virtual machine is stopped, you dont pay for the virtual machine. However, you do still pay for the storage costs associated to the virtual machine.The most common storage costs are for the disks attached to the virtual machines. There are also other storage costs associated with a virtual machine such as storage for diagnostic data and virtual machine backups.

When an Azure virtual machine is stopped, you continue to pay storage costs associated to the virtual machine - YES or NO?

b) pay monthly usage costs. When planning to migrate a public website to Azure, you must plan to pay monthly usage costs. This is because Azure uses the pay-as-you-go model.

When planning to migrate a public website to Azure, you must plan to _________ a) deploy a VPN. b) pay monthly usage costs. c) pay to transfer all the website data to Azure. d) reduce the number of connections to the website.

configuring the SaaS solution When you are implementing a Software as a Service (SaaS) solution, you are responsible for configuring the SaaS solution. Everything else is managed by the cloud provider.SaaS requires the least amount of management. The cloud provider is responsible for managing everything, and the end user just uses the software.Software as a service (SaaS) allows users to connect to and use cloud-based apps over the Internet. Common examples are email, calendaring and office tools(such as Microsoft Office 365).

When you are implementing a software as a service solution, you are responsible for: (CHOOSE ONE) - configuring high availability, defining scalability rules, installing the SaaS solution, configuring the SaaS solution.

c) to the same resource group A resource group is a logical container for Azure resources. Resource groups make the management of Azure resources easier.With a resource group, you can allow a user to manage all resources in the resource group, such as virtual machines, websites, and subnets. The permissions you apply to the resource group apply to all resources contained in the resource group.

When you need to delegate permissions to several Azure virtual machines simultaneously, you must deploy the Azure virtual machines a) to the same Azure region b) by using the same Azure Resource Manager template c) to the same resource group d) to the same availability zone

Azure virtual machines: a) IaaS Azure SQL databases: b) PaaS Infrastructure as a Service is the most flexible category of cloud services. It aims to give you complete control over the hardware that runs your application (IT infrastructure servers and virtual machines (VMs), storage, networks, and operating systems). Instead of buying hardware, with IaaS, you rent it. Azure SQL Database is a fully managed Platform as a Service (PaaS) Database Engine that handles most of the database management functions such as upgrading, patching, backups, and monitoring without user involvement. Azure SQL Database is always running on the latest stable version of SQL ServerDatabase Engine and patched OS with 99.99% availability. PaaS capabilities that are built-in into Azure SQL database enable you to focus on the domain specific database administration and optimization activities that are critical for your business.

Which cloud deployment solution is used for Azure virtual machines and Azure SQL databases? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Azure virtual machines: a) IaaS b) PaaS c) SaaS Azure SQL databases: a) IaaS b) PaaS c) SaaS

You can create a resource group inside of another resource group - YES or NO?

Yes

You can use Availability Zones in Azure to protect Azure managed disks from a datacenter failure - YES or NO?

Yes

You can use Availability Zones in Azure to protect Azure virtual machines from a datacenter failure - YES or NO?

You can use Availability Zones in Azure to protect Azure virtual machines from a region failure - YES or NO?

A. operational One of the major changes that you will face when you move from on-premises cloud to the public cloud is the switch from capital expenditure (buying hardware) to operating expenditure (paying for service as you use it). This switch also requires more careful management of your costs. The benefit of the cloud is that you can fundamentally and positively affect the cost of a service you use by merely shutting down or resizing it when it's not needed.

You have 1,000 virtual machines hosted on the Hyper-V hosts in a data center.You plan to migrate all the virtual machines to an Azure pay-as-you-go subscription.You need to identify which expenditure model to use for the planned Azure solution. Which expenditure model should you identify? A. operational B. elastic C. capital D. scalable

portal.azure. The Azure portal is a web-based management interface where you can view and manage all your Azure resources in one unified hub, including web apps, databases, virtual machines, virtual networks, storage and Visual Studio team projects.The URL of the Azure portal is https://portal.azure.com.

You have an Azure environment that contains 10 web apps. To which URL should you connect to manage all the Azure resources? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. https://:____________ _____________ com admin. -or- portal. -or- www. azure. -or- azurewebsites. -or- mirosoft.

A. a virtual network gateway E. a gateway subnet To implement a solution that enables the client computers on your on-premises network to communicate to the Azure virtual machines, you need to configure aVPN (Virtual Private Network) to connect the on-premises network to the Azure virtual network.The Azure VPN device is known as a Virtual Network Gateway. The virtual network gateway needs to be located in a dedicated subnet in the Azure virtual network. This dedicated subnet is known as a gateway subnet and must be named ג€˜GatewaySubnetג€™.Note: a virtual network (answer D) is also required. However, as we already have virtual machines deployed in a Azure, we can assume that the virtual network is already in place.

You have an Azure environment that contains multiple Azure virtual machines. You plan to implement a solution that enables the client computers on your on-premises network to communicate to the Azure virtual machines. You need to recommend which Azure resources must be created for the planned solution. Which two Azure resources should you include in the recommendation? Each correct answer presents part of the solution. A. a virtual network gateway B. a load balancer C. an application gateway D. a virtual network E. a gateway subnet

D. a hybrid cloud A hybrid cloud is a combination of a private cloud and a public cloud.Capital expenditure is the spending of money up-front for infrastructure such as new servers.With a hybrid cloud, you can continue to use the on-premises servers while adding new servers in the public cloud (Azure for example). Adding new servers inAzure minimizes the capital expenditure costs as you are not paying for new servers as you would if you deployed new server on-premises.

You have an on-premises network that contains 100 servers.You need to recommend a solution that provides additional resources to your users. The solution must minimize capital and operational expenditure costs.What should you include in the recommendation? A. a complete migration to the public cloud B. an additional data center C. a private cloud D. a hybrid cloud

Fault Tolerance Fault tolerance is the ability of a system to continue to function in the event of a failure of some of its components.

You have an on-premises network that contains several servers.You plan to migrate all the servers to Azure.You need to recommend a solution to ensure that some of the servers are available if a single Azure data center goes offline for an extended period.What should you include in the recommendation? A) Fault Tolerance B) Elasticity C) Scalability D) Low latency

b) the virtual machines can be moved to the new subscription You can move a VM and its associated resources to a different subscription by using the Azure portal.Moving between subscriptions can be handy if you originally created a VM in a personal subscription and now want to move it to your company's subscription to continue your work. You do not need to start the VM in order to move it and it should continue to run during the move.

You have several virtual machines in an Azure subscription. You create a new subscription. a) the virtual machines cannot be moved to the new subscription b) the virtual machines can be moved to the new subscription c) the virtual machines can be moved to the new subscription only if they are all in the same resource group d) the virtual machines can be moved to the new subscription only if they run Windows Server 2016

D. an Azure data center failure Availability zones expand the level of control you have to maintain the availability of the applications and data on your VMs. An Availability Zone is a physically separate zone, within an Azure region. There are three Availability Zones per supported Azure region.Each Availability Zone has a distinct power source, network, and cooling. By architecting your solutions to use replicated VMs in zones, you can protect your apps and data from the loss of a datacenter. If one zone is compromised, then replicated apps and data are instantly available in another zone.

You need to identify the type of failure for which an Azure Availability Zone can be used to protect access to Azure services. What should you identify? A. a physical server failure B. an Azure region failure C. a storage failure D. an Azure data center failure

a) containers/blobs Azure containers are the backbone of the virtual disks platform for Azure IaaS. Both Azure OS and data disks are implemented as virtual disks where data is durably persisted in the Azure Storage platform and then delivered to the virtual machines for maximum performance. Azure Disks are persisted in Hyper-V VHD format and stored as a page blob in Azure Storage.

You plan to create an Azure virtual machine. You need to identify which storage service must be used to store the unmanaged data disks of the virtual machine. What should you identify? To answer, select the appropriate service in the answer area. a) containers b) file shares c) tables d) queues

a) be deployed to a separate virtual network.

You plan to deploy 20 virtual machines to an Azure environment. To ensure that a virtual machines named VM1 cannot connect to the other virtual machines, VM1 must: a) be deployed to a separate virtual network. b) run a different operating system than the other virtual machines c) be deployed to a separate resource group d) have two network interfaces

Yes

You plan to deploy several Azure virtual machines.You need to ensure that the services running on the virtual machines are available if a single data center fails. Solution: You deploy the virtual machines to two or more availability zones. Does this meet the goal? A. Yes B. No

Yes By deploying the virtual machines to two or more regions, you are deploying the virtual machines to multiple datacenters. This will ensure that the services running on the virtual machines are available if a single data center fails.Azure operates in multiple datacenters around the world. These datacenters are grouped in to geographic regions, giving you flexibility in choosing where to build your applications.You create Azure resources in defined geographic regions like 'West US', 'North Europe', or 'Southeast Asia'. You can review the list of regions and their locations.Within each region, multiple datacenters exist to provide for redundancy and availability.

No This answer does not specify that the scale set will be configured across multiple data centers so this solution does not meet the goal.Azure virtual machine scale sets let you create and manage a group of load balanced VMs. The number of VM instances can automatically increase or decrease in response to demand or a defined schedule. Scale sets provide high availability to your applications, and allow you to centrally manage, configure, and update many VMs.Virtual machines in a scale set can be deployed across multiple update domains and fault domains to maximize availability and resilience to outages due to data center outages, and planned or unplanned maintenance events.

You plan to deploy several Azure virtual machines.You need to ensure that the services running on the virtual machines are available if a single data center fails.Solution: You deploy the virtual machines to a scale set.Does this meet the goal? A. Yes B. No

No A resource group is a logical container for Azure resources. When you create a resource group, you specify which location to create the resource group in.However, when you create a virtual machine and place it in the resource group, the virtual machine can still be in a different location (different datacenter).Therefore, creating multiple resource groups, even if they are in separate datacenters does not ensure that the services running on the virtual machines are available if a single data center fails.

You plan to deploy several Azure virtual machines.You need to ensure that the services running on the virtual machines are available if a single data center fails.Solution: You deploy the virtual machines to two or more resource groups.Does this meet the goal? A. Yes B. No

Local Network Gateway A Local Network Gateway is an object in Azure that represents your on-premise VPN device. A Virtual Network Gateway is the VPN object at the Azure end of theVPN. A ג€˜connectionג€™ is what connects the Local Network Gateway an the Virtual Network Gateway to bring up the VPN.The local network gateway typically refers to your on-premises location. You give the site a name by which Azure can refer to it, then specify the IP address of the on-premises VPN device to which you will create a connection. You also specify the IP address prefixes that will be routed through the VPN gateway to the VPN device. The address prefixes you specify are the prefixes located on your on-premises network. If your on-premises network changes or you need to change the public IP address for the VPN device, you can easily update the values later.

You plan to extend your companyג€™s network to Azure. The network contains a VPN appliance that uses an IP address of 131.107.200.1. You need to create an Azure resource that defines the VPN appliance in Azure. Which Azure resource should you create? To answer, select the appropriate resource in the answer area. -virtual networks -load balancers -virtual network gateways -DNS zones -traffic manager profiles -network watcher -network security groups (classic) -public ip addresses -connections -route tables -virtual networks (classic) -application gateways -local network gateways -CDN profiles -expressroute circuits -network security groups -network interfaces -reserved IP addresses (classic) -On-prem data gateways -route filters

-Azure cosmos DB Azure Cosmos DB is Microsoft's globally distributed, multi-model database service. With a click of a button, Cosmos DB enables you to elastically and independently scale throughput and storage across any number of Azure regions worldwide.Azure Cosmos DB is a great way to store unstructured and JSON data. Combined with Azure Functions, Cosmos DB makes storing data quick and easy with much less code than required for storing data in a relational database.

You plan to implement an Azure database solution. You need to implement a database solution that meets the following requirements: ✑ Can add data concurrently from multiple regions ✑ Can store JSON documents Which database service should you deploy? To answer, select the appropriate service in the answer area. -Azure cosmos DB -Azure Database for MySQL servers -Azure Database for MariaDB servers -SQL Data warehouses -Azure Cache for Redis -Data factories -Virtual Clusters -Elastic Job agents -SQL databases -Azure Database for PostgreSQL servers -SQL servers -Azure Database Migration Services -SQL Server stretch databases -SQL elastic pools -Managed databases -SQL managed instances

C. a Files service in a storage account Azure Files is Microsoft's easy-to-use cloud file system. Azure file shares can be seamlessly used in Windows and Windows Server.To use an Azure file share with Windows, you must either mount it, which means assigning it a drive letter or mount point path, or access it via its UNC path.Unlike other SMB shares you may have interacted with, such as those hosted on a Windows Server, Linux Samba server, or NAS device, Azure file shares do not currently support Kerberos authentication with your Active Directory (AD) or Azure Active Directory (AAD) identity, although this is a feature we are working on.Instead, you must access your Azure file share with the storage account key for the storage account containing your Azure file share. A storage account key is an administrator key for a storage account, including administrator permissions to all files and folders within the file share you're accessing, and for all file shares and other storage resources (blobs, queues, tables, etc) contained within your storage account.

You plan to map a network drive from several computers that run Windows 10 to Azure Storage. You need to create a storage solution in Azure for the planned mapped drive. What should you create? A. an Azure SQL database B. a virtual machine data disk C. a Files service in a storage account D. a Blobs service in a storage account

b) PaaS Azure App Service is a platform-as-a-service (PaaS) offering that lets you create web and mobile apps for any platform or device and connect to data anywhere, in the cloud or on-premises. App Service includes the web and mobile capabilities that were previously delivered separately as Azure Websites and Azure MobileServices.

You plan to migrate a web application to Azure. The web application is accessed by external users.You need to recommend a cloud deployment solution to minimize the amount of administrative effort used to manage the web application.What should you include in the recommendation? a) SaaS b) PaaS c) IaaS d) DaaS

D. The public cloud is a shared entity whereby multiple corporations each use a portion of the resources in the cloud The public cloud is a shared entity whereby multiple corporations each use a portion of the resources in the cloud. The hardware resources (servers, infrastructure etc.) are managed by the cloud provider. Multiple companies create resources such as virtual machines and virtual networks on the hardware resources.

You plan to migrate several servers from an on-premises network to Azure. What is an advantage of using a public cloud service for the servers over an on-premises network? A. The public cloud is owned by the public, NOT a private corporation B. The public cloud is a crowd-sourcing solution that provides corporations with the ability to enhance the cloud C. All public cloud resources can be freely accessed by every member of the public D. The public cloud is a shared entity whereby multiple corporations each use a portion of the resources in the cloud

B. an Azure virtual machine An Azure virtual machine is an example of Infrastructure as a Service (IaaS).Azure web app, Azure logic app and Azure SQL database are all examples of Platform as a Service (Paas).

You plan to provision Infrastructure as a Service (IaaS) resources in Azure. Which resource is an example of IaaS? A. an Azure web app B. an Azure virtual machine C. an Azure logic app D. an Azure SQL database

A. Azure Data Lake C. Azure SQL Data Warehouse (Synapse analytics)

You plan to store 20 TB of data in Azure. The data will be accessed infrequently and visualized by using Microsoft Power BI.You need to recommend a storage solution for the data. Which two solutions should you recommend? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point. A. Azure Data Lake B. Azure Cosmos DB C. Azure SQL Data Warehouse D. Azure SQL Database E. Azure Database for PostgreSQL

A. Replacing failed server hardware C. Managing physical server security Azure virtual machines run on Hyper-V physical servers. The physical servers are owned and managed by Microsoft. As an Azure customer, you have no access to the physical servers. Microsoft manage the replacement of failed server hardware and the security of the physical servers so you donג€™t need to.

Your company has an on-premises network that contains multiple servers. The company plans to reduce the following administrative responsibilities of network administrators: ✑ Backing up application data ✑ Replacing failed server hardware ✑ Managing physical server security ✑ Updating server operating systems ✑ Managing permissions to shared documents The company plans to migrate several servers to Azure virtual machines. You need to identify which administrative responsibilities will be eliminated after the planned migration. Which two responsibilities should you identify? Each correct answer presents a complete solution .NOTE: Each correct selection is worth one point. A. Replacing failed server hardware B. Backing up application data C. Managing physical server security D. Updating server operating systems E. Managing permissions to shared documents

c) elasticity Elasticity in this case is the ability to provide additional compute resource when needed and reduce the compute resource when not needed to reduce costs. Autoscaling is an example of elasticity.

Your company hosts an accounting application named App1 that is used by all the customers of the company.App1 has low usage during the first three weeks of each month and very high usage during the last week of each month. Which benefit of Azure Cloud Services supports cost management for this type of usage pattern? a) high availability b) high latency c) elasticity d) load balancing

C. Infrastructure as a Service (laaS) The condition here is installing prerequisite applications and services, for which IaaS level is needed.

Your company plans to deploy several custom applications to Azure. The applications will provide invoicing services to the customers of the company. Each application will have several prerequisite applications and services installed. You need to recommend a cloud deployment solution for all the applications. What should you recommend? A. Software as a Service (SaaS) B. Platform as a Service (PaaS) C. Infrastructure as a Service (laaS)

No Azure App Service is a PaaS (Platform as a Service) service. However, Azure Storage accounts are an IaaS (Infrastructure as a Service) service. Therefore, this solution does not meet the goal.

Your company plans to migrate all its data and resources to Azure. The companyג€™s migration plan states that only Platform as a Service (PaaS) solutions must be used in Azure. You need to deploy an Azure environment that meets the company migration plan. Solution: You create an Azure App Service and Azure Storage accounts. Does this meet the goal? YES or NO

No Platform as a service (PaaS) is a complete development and deployment environment in the cloud. PaaS includes infrastructure ג€" servers, storage, and networking ג€" but also middleware, development tools, business intelligence (BI) services, database management systems, and more. PaaS is designed to support the complete web application lifecycle: building, testing, deploying, managing, and updating.However, virtual machines are examples of Infrastructure as a service (IaaS). IaaS is an instant computing infrastructure, provisioned and managed over the internet.

Your company plans to migrate all its data and resources to Azure.The companyג€™s migration plan states that only Platform as a Service (PaaS) solutions must be used in Azure.You need to deploy an Azure environment that meets the company migration plan. Solution: You create an Azure virtual machines, Azure SQL databases, and Azure Storage accounts. Does this meet the goal?

A. a subscription The first thing you create in Azure is a subscription. You can think of an Azure subscription as an ג€˜Azure accountג€™. You get billed per subscription.A subscription is an agreement with Microsoft to use one or more Microsoft cloud platforms or services, for which charges accrue based on either a per-user license fee or on cloud-based resource consumption.Microsoft's Software as a Service (SaaS)-based cloud offerings (Office 365, Intune/EMS, and Dynamics 365) charge per-user license fees.Microsoft's Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) cloud offerings (Azure) charge based on cloud resource consumption.You can also use a trial subscription, but the subscription expires after a specific amount of time or consumption charges. You can convert a trial subscription to a paid subscription.Organizations can have multiple subscriptions for Microsoft's cloud offerings.

Your company plans to migrate all its network resources to Azure.You need to start the planning process by exploring Azure.What should you create first? A. a subscription B. a resource group C. a virtual network D. a management group

A. multiple subscriptions D. multiple resource groups An Azure subscription is a container for Azure resources. It is also a boundary for permissions to resources and for billing. You are charged monthly for all resources in a subscription. A single Azure tenant (Azure Active Directory) can contain multiple Azure subscriptions.A resource group is a container that holds related resources for an Azure solution. The resource group can include all the resources for the solution, or only those resources that you want to manage as a group.To enable each department administrator to manage the Azure resources used by that department, you will need to create a separate subscription per department. You can then assign each department administrator as an administrator for the subscription to enable them to manage all resources in that subscription.

Your company plans to migrate to Azure. The company has several departments. All the Azure resources used by each department will be managed by a department administrator. What are two possible techniques to segment Azure for the departments? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point. A. multiple subscriptions B. multiple Azure Active Directory (Azure AD) directories C. multiple regions D. multiple resource groups

B. a virtual network for FinServer and another virtual network for all the other servers Networks in Azure are known as virtual networks. A virtual network can have multiple IP address spaces and multiple subnets. Azure automatically routes traffic between different subnets within a virtual network.The question states that FinServer must be on a separate network segment. The only way to separate FinServer from the other servers in networking terms is to place the server in a different virtual network to the other servers.

Your company plans to move several servers to Azure.The companyג€™s compliance policy states that a server named FinServer must be on a separate network segment.You are evaluating which Azure services can be used to meet the compliance policy requirements. Which Azure solution should you recommend? A. a resource group for FinServer and another resource group for all the other servers B. a virtual network for FinServer and another virtual network for all the other servers C. a VPN for FinServer and a virtual network gateway for each other server D. one resource group for all the servers and a resource lock for FinServer

AZ-900 exam dump

Conjuntos de estudio relacionados

Exam 2 Clinical Exercise Physiology

Фармакология 4кк

Chap 65-Assessment of Neurologic Function

Stats

COMM 207: Inquiry About Communication

Chapter 1: Overvew of Logistics

The extraocular muscles

Simple, Complete, and Compound Subjects

Prof Nursing: Exam 2 Lab skills quizzes

OB prepu questions

ITGSS Certified Advanced Professional: Data Analyst

Ch. 20 Readings

ORG Week 3 Section 1

Advanced Corp. Finance Chapter 16 Quiz

Anatomy - Bones and Joints

Cost Benefit Analysis

Chapter 10 NOTES (Earth Science 8)

Chapter 44

CHM 145 Lab Exam 1

NCLEX-PN Review Module 6 Endocrine System Quiz