AZ-900: Azure Fundamentals

Azure Resource Manager template

A JavaScript Object Notation (JSON) file that defines one or more resources to deploy to a resource group or subscription.

Azure Tables

A NoSQL key-value store for rapid development using semi-structured datasets.

Azure IoT Central

A SaaS solution for connecting, monitoring, and managing IoT devices.

Contributor

A built-in role that can create and manage all types of Azure resources but can't grant access to others.

Azure Client-Side Encryption

A client-side encryption solution that encrypts data inside client applications before uploading to Azure Storage; also decrypts the data while downloading.

Azure Logic Apps

A cloud service for scheduling, automating, and orchestrating tasks, business processes, and workflows that integrate with different systems and services.

Azure Security Center

A cloud workload protection solution that provides security management and advanced threat protection across hybrid cloud workloads.

Azure SQL Data Warehouse

A cloud-based Enterprise Data Warehouse (EDW) that uses Massively Parallel Processing (MPP) to quickly run complex queries across petabytes of data.

Azure Active Directory Domain Services

A cloud-based and managed version of Active Directory Domain Services.

Azure Active Directory (AD)

A cloud-based authentication repository that supports a multi-tenant, cloud-based directory and multiple identity management services within Azure.

Azure Advanced Threat Protection (ATP)

A cloud-based security solution that leverages on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions.

Azure Information Protection

A cloud-based solution that helps an organization to classify and optionally protect its documents and emails by applying labels.

Azure management group

A container for applying governance conditions to multiple subscriptions or other management groups.

Azure SQL Database Auditing

A database auditing feature that tracks database events and writes them to an audit log in an Azure storage account.

Azure SQL Transparent Data Encryption

A database security feature that encrypts the storage of an entire database.

Azure SQL Cell Level Encryption

A database security technology that provides encryption at a granular level

Azure ExpressRoute

A dedicated WAN link between on-premises networks and Azure Virtual Networks.

Azure Event Grid

A fully managed intelligent event routing service that allows for uniform event consumption using a publish-subscribe model.

Azure HDInsight

A fully managed service for running open-source frameworks for distributed processing and analysis of Big Data sets.

Azure Traffic Manager

A global DNS load balancer.

Azure account

A global unique entity that grants access to Azure services and subscriptions.

Azure Cosmos DB

A globally distributed, multi-model NoSQL database service.

Azure Load Balancer

A layer 4 resource that distributes incoming traffic to multiple Virtual Machines and provides NAT translation for outbound connections.

Azure Storage Analytics

A logging and metrics-generating technology for data in your storage account.

Azure Firewall

A managed, cloud-based network security service that protects Azure Virtual Network resources by controlling traffic between Virtual Networks, on-premises resources, and the Internet.

Azure Data Lake Storage

A massively scalable (petabytes) service for storing Big Data.

Azure Monitor

A monitoring service that collects telemetry and other data and provides a query language and analytics engine to deliver operational insights for apps and services.

Azure SQL Firewall

A network access control feature that protects against network-based attacks to the database.

Azure VPN Gateway

A network device used to send encrypted traffic between a Virtual Network and an on-premises location over the public Internet.

Azure File Shares with SMB 3.0 Encryption

A network security technology that enables automatic networ encruption for the Server Message Block (SMB) file sharing protocol.

Azure Advisor

A personalized cloud consultant that helps with following best practices to optimize Azure deployments by analyzing resource configuration and usage telemetry then making recommendations.

Azure Government

A physically isolated instance of Microsoft Azure specifically for the U.S. government and its partners.

Availability Zone

A physically separate location made up of one or more datacenters within an Azure region.

Azure Key Vault

A secure secrets store for the passwords, connection strings, and other information necessary to keep apps working.

Azure Storage Service Encryption

A security feature that automatically encrypts your data in Azure storage.

Azure Multi-Factor Authentication

A security provision that employs several different forms of authentication and verification before allowing access to secured information.

Azure Policy

A service for creating, assigning, and managing policies that enforce different rules and effects over resources.

Azure Dev/Test Labs

A service that helps developers and testers quickly create environments in Azure while minimizing waste and controlling cost.

Azure Storage Shared Access Signatures

A shared access signature that provides delegated access to resources in your storage account.

Azure Event Hub

A streaming platform and event ingestion service that can transform and store data using any real-time analytics provider or batcihng/storage adapters.

disaster recovery

A system's ability to back up and restore data/apps/resources when needed.

Azure Portal

A web-based GUI that uses the Azure Resource Manager for managing Azure resources.

Compliance Manager

A workflow-based risk assessment tool that helps track, assign, and verify an organization's regulatory compliance activities related to Microsoft Cloud services.

Azure Databricks

An Apache Spark-based analytics for AI service.

Azure Backup

An Azure-based service used to back up and restore data in the Azure cloud.

Azure Role Based Access Control

An access control feature designed to allow users to access only the resources they are required to access based on their roles within the organization.

Azure Storage Account Keys

An access control method for Azure storage that is used for authentication when the storage account is accessed.

Azure Application Gateway

An advanced web application load balancer that can route based on URL and perform SSL-offloading.

Azure Application Proxy

An authenticating front-end used to secure remote access for web applications hosted on-premises.

Azure Active Directory B2C

An identity management service that enables control over how customers sign-up, sign-in, and manage their profiles when using Azure-based applications.

Azure SQL Database

An intelligent, scalable, SQL database service.

Azure Data Lake Analytics

An on-demand analytics job service.

Azure Marketplace

An online applications and services marketplace with over 8,000 listings for Azure.

Azure Forums

An online resource for connecting with other Azure customers and experts to ask questions, share experiences, or find solutions.

Azure Site Recovery

An online services that replicates workloads running on physical and virtual machines from a primary site to a secondary location to enable recovery of services after a failure.

business agility

An orgnaization's ability to rapidly adapt to market and environmental changes in productive and cost-effective ways and take advantage of available resources to meet customer demands.

deny assignment

Attaches a set of deny actions to a user, group, service principal, or managed identity at a particular scope.

Azure Virtual Machine Scale Set

Auto-scaling group of identical, load-balanced virtual machines.

Azure subscription monitoring data

Data about the operation and management of an Azure subscription, as well as data about the health and operation of Azure itself.

Azure resource monitoring data

Data about the operation of an Azure resource.

Azure tenant monitoring data

Data about the operation of tenant-level Azure services, such as Azure Active Directory.

application monitoring data

Data about the performance and functionality of code regardless of its platform.

Azure Content Delivery Network

Efficiently caches then delivers static web content from locations that are close to end users to minimize latency.

Azure Virtual Network

Enables Azure resources, such as Virtual Machines, to securely communicate with each other, the Internet, and on-premises networks.

Azure Database Migration Service

Enables seamless migrations from multiple database sources to Azure Data platforms with minimal downtime.

Azure Total Cost of Ownership (TCO) Calculator

Estimates the cost savings from migrating a workload to Azure

Azure Functions

Event-driven, consumption-based, abstracted compute resources.

Azure Queue Storage

First-in-first-out (FIFO) message queueing for large workloads.

Azure Files

Fully managed cloud file shares that are accessed using the Server Message Block (SMB) protocol.

Azure subscription

Grants access to Azure services and to the Azure Platform Management Portal through a Windows account.

Azure plan

Grants access to Azure services at standard pay-as-you go rates.

Azure Blob Storage

Massively scalable object storage for unstructured data.

Command-Line Interface (CLI)

Microsoft's cross-platform command-line experience for managing Azure resources.

Azure Application Insights

Monitors the availability, performance, and usage of web applications whether they are hosted in the cloud or on-premises.

Azure App Service

On-demand, auto-scaling web app, mobile back end, API hosting.

Azure Virtual Machine

On-demand, scalable computing resource.

Azure Machine Learning Service

PaaS for preparing data and training, testing, deploying, managing, and tracking machine learning models.

consumption-based model

Pay only for what you use when you use it.

Azure Disk Storage

Persistent, high-performance disk storage for Virtual Machines.

Azure SQL Always Encryption

Protects sensitive data, such as credit card numbers or national identificatoin numbers, stored in Azure SQL Database or SQL Server databases.

Azure reservation

Provide up to 72% savings on pay-as-you-go prices for pre-paying for one-year or three-years of Azure resources.

Azure Service Health

Provides a customizable dashboard which tracks the health of Azure services in the regions where they are used.

Azure DDoS Protection

Provides defense against distributed denial of service attacks through traffic monitoring and real-time mitigation of common attacks.

Azure Updates

Provides information on Azure product updates, roadmap, and announcements, including which services are in Preview or General Availability.

Azure Front Door

Routes Layer 7 (HTTP/HTTPS) traffic to the fastest and most available backend for best performance and instant global failover.

Azure Machine Learning Studio

SaaS for building, testing, and deploying machine learning solutions using a drag-and-drop visual workspace.

cool tier

Storage that is optimized for data that is infrequently accessed and stored for at least 30 days.

archive tier

Storage that is optimized for data that is rarely accessed and stored for at least 180 days with flexible (hours) latency requirements.

declarative syntax

Syntax that states the desired end-state instead of writing out the sequence of programming commands to create that state.

elasticity

The ability to increase or decrease th einstance count or size of existing resources based on fluctuations in traffic, load, or resource workload.

authentication (AuthN)

The act of challenging a party for legitimate credentials, providing the basis for creation of a security principal to be used for identity and access control.

authorization (AuthZ)

The act of granting an authenticated security principal permission to do something.

Azure Resource Manager

The deployment and management service for Azure that allows for creating, updating, and deleting resources, as well as access control, auditing, and tagging.

economies of scale

The more you buy of something, the less it costs.

Azure IoT Hub

The underlying PaaS messaging service for IoT Central.

Azure SQL Connection Encryption

To provide security, SQL Database controls access with firewall rules limiting connectivity by IP address, authentication mechanisms requring users to prove their identity, and authorization mechanisms limiting users to specific actions and data.

Azure Cost Management

Tool for viewing costs over time against a predefined budget.

Cloudyn

Tracks and manages cloud usage and expenditures for Azure resources and other cloud providers.

Azure Germany

Two data centers logically isolated and physically located in Germany and managed by a German data trustee to comply with strict German data regulations.

capital expense (CapEx)

Up-front, usually non-recurring, investment that creates benefit over a long period through the purchase of permanent assets.