Cloud Academy AZ-900 Exam Preparation: Microsoft Azure Fundamentals

Which of the following cost-saving options is available to Enterprise customers only? Reserved VM instances Azure Hybrid Benefit Dev/Test Pricing 15% Discounts on Public Prices

15% Discounts on Public Prices The web direct method is a pay-as-you-go plan, billed monthly. Web direct customers pay public, general prices for Azure services. When using the web direct plan, review the additional options for savings, such as the Azure Reserved VM Instances, Azure Hybrid Benefit, and Dev/test pricing. Enterprise Agreement customers can enjoy savings of between 15 and 45% over the public Azure prices.

The compliance dashboard for Microsoft Defender for Cloud is connected with which of the following services to allow you to create compliance requirements for accounts and resources within your Azure account? Azure Policy Azure Advisor Azure Monitor Azure Service Health

Azure Policy First, it shows you how compliant your Azure subscriptions are. This is based on policies that you create in a service called, naturally, Azure Policy. For example, if someone in your organization creates a subscription that doesn't have your regulatory policy controls assigned to it, then it will show up in this compliance panel.

Which of the following statements about Azure cost and VM management is true? Resources themselves do not cost anything. The resource groups containing them incur charges. When a VM is stopped (deallocated), it will not incur any more charges. If you need to move a VM reservation to another region, you have to make a new reservation and exchange the old one for the new one. Deleting a VM automatically deletes all its data disks and public IP addresses as well.

If you need to move a VM reservation to another region, you have to make a new reservation and exchange the old one for the new one.

The ___________________ cloud service model offers a balance between customization and user control, allowing developers to focus on designing at the application layer while the service handles the administration of the virtual architecture, including the network and operating system. Infrastructure-as-a-Service Platform-as-a-Service Software-as-a-Service Traditional on-premise

Platform-as-a-Service A PaaS cloud service model allows access to the framework above the operating system level, which is ideal for developers who want to focus on their application design while the service itself manages a large portion of the day-to-day service administration.

_____ is an application that is utilized by your end users to connect into your Azure Virtual Desktop environment. Remote Desktop Protocol The Remote Desktop client Azure AD Universal Connection Manager

The Remote Desktop client

In Azure, _____ logs contain information at the subscription level about activities that were performed on a resource from the outside, such as shutting down a database instance. resource activity process Azure Active Directory

activity

In Microsoft Azure, _____ are labels that you can apply to resources for management purposes. IDs metadata descriptions tags

tags

Microsoft's physically separated Azure instance in China is operated by _____. 21Vianet AISHU Idrive Radian Memory Systems

21Vianet

Complete the following statement: Authorization determines ______________________________. Authorization determines what you can do. Authorization determines who you are. Authorization determines why you need access. Authorization determines the number and type of resources you create, update, or delete.

Authorization determines what you can do.

In Azure, _____ logs contain information about activities specifically related to Azure Active Directory, such as recent logins and new users added. resource activity process Azure Active Directory

Azure Active Directory

Which Azure service automatically examines all of your Azure resources and identifies ways to optimize them? Azure Resource Health Azure Advisor Azure Activity Log Azure Status

Azure Advisor Azure Advisor, as the name implies, is a personalized cloud consultant. It automatically examines all of your Azure resources and identifies ways to optimize them.

Which Azure service allows you to host web and mobile applications using virtual machines without configuring and administrating the underlying aspects of the service, such as the operating system or security patches? Azure App Service Azure Virtual Machines Azure Functions Azure Batch

Azure App Service

Which Azure service automates the deployment of complete Azure environments, including policies and permissions? Azure Blueprints Azure Advisor Azure Policy Azure Migrate

Azure Blueprints Azure Blueprints automates the deployment of entire Azure environments. A blueprint is a collection of Azure Resource Manager templates plus a few other details, such as policies and user permissions. When a blueprint is assigned to a subscription, it not only automates the creation of an environment, but it also keeps a record of the deployment. This makes it a critical governance tool because it enables the tracking and auditing of deployments.

Which service simplifies the process of configuring, deploying, and managing a simple containerized application on the Azure cloud? Azure Container Instances Azure Functions Azure App Service Azure Pipelines

Azure Container Instances Containers are somewhat like virtual machines except they don't include the operating system. This makes it easy to deploy them because they're very lightweight compared to virtual machines. In fact, containers run on virtual machines. Microsoft provides a variety of ways to run containers. The simplest way is to use Azure Container Instances. This service lets you run a container using a single command.

You have designed lines of code ideal for deployment as individual, event-based functions. What Azure compute service should you use to deploy your code? Azure Functions Azure Virtual Machines Azure Kubernetes Service Azure App Service

Azure Functions It's called Azure Functions, and it's Microsoft's main "serverless" offering. Azure Functions is kind of like Azure App Service except that it executes individual functions rather than entire applications, and you only pay for it when it gets used. When you provision an App Service instance, it runs until you shut it down, and you pay for it the whole time it's running. Although it's possible to configure Azure Functions in the same way, it's usually better to use the Consumption plan, which means that it only uses resources when a function is running, so you only pay when a function is running.

If you have built a complex microservice application with multiple types of containers working together, which Azure compute service would you choose to host your application on the Azure cloud? Azure Kubernetes Service Azure Container Instances Azure App Service Azure Functions

Azure Kubernetes Service Microsoft provides a variety of ways to run containers. If you have a more complex application that involves multiple containers, then you'll probably want to use Azure Kubernetes Service, which is what's known as a container orchestrator. It makes it easy to deploy and manage multi-container applications.

Which of the following routes is not an option for purchasing Azure subscriptions? Cloud Solution Provider enterprise agreement Azure Marketplace Web Direct

Azure Marketplace

Which Azure service can help you specifically manage the process of moving on-premise applications to the Azure cloud? Azure Migrate Azure Functions Azure Monitor Azure Active Directory

Azure Migrate If your organization is just getting started with Azure, then one of the first things you'll want to do is figure out how you can migrate at least some of your existing applications to Azure. Microsoft provides a great tool for this called Azure Migrate. First, it discovers your on-premises servers, both physical and virtual. On the virtual side, this includes both Hyper-V and VMware. Then it assesses these machines. For each one, it tells you whether or not it's ready to migrate, how big the Azure VM will be, how much it will cost, and any dependent servers that will also need to be migrated. When you're ready, it will even help you do the migration. Azure Migrate is also integrated with other tools to help you migrate SQL Server databases, web apps, and data. Also, if you have a virtual desktop infrastructure, there's a tool that will do an assessment to help you migrate it to Windows Virtual Desktop, which is hosted on Azure.

To enforce a wide variety of governance policies in Azure, you can use __________________. Azure Advisor Azure Resource Manager Azure Policy Azure Monitor

Azure Policy

The _____________________ is the graphic user interface (GUI) for Microsoft Azure that runs in a web browser. Azure Portal Azure Powershell Azure CLI Azure SDK

Azure Portal Suppose you have a server application that you want to migrate to the cloud. As I mentioned earlier, the most straightforward way to do this is to move the application to a virtual machine on Azure. There are many ways to interact with Azure, the Azure portal runs in a browser, so you don't need to install anything to use it. Alternatively, you can install the CLI, which stands for command-line interface, or Azure PowerShell or the SDK, which stands for Software Development Kit.

In what way is a private cloud model similar to a public cloud model? Both private and public cloud models physical hardware are managed by the end users hosting their applications on the hardware. In both private and public cloud models, the cloud infrastructure is hosted on the premises of a business using it. Using both private and public cloud will increase a business' capital expenditures to acquire hardware hosting the cloud. Both private and public cloud models use virtualization to differentiate themselves from traditional on-premise servers.

Both private and public cloud models use virtualization to differentiate themselves from traditional on-premise servers. The only correct statement is that both private and public cloud models use virtualization to differentiate themselves from traditional on-premise servers.

In the shared responsibility model, which areas are the sole responsibility of public cloud customers for SaaS, PaaS, and IaaS services? (Choose 2 answers) Client device security Data protection Network hardware Physical security of public cloud infrastructure

Client device security Data protection The security of the client device that is being used by customers (mobile device, PC, etc.) to access cloud applications is the customer's responsibility. Data protection is the responsibility of the customer, although the customer can use some cloud services to help protect its data. Network security is a shared responsibility. The cloud vendor provides a fundamental level of network security, while the customer is responsible for configuring certain types of network security in IaaS and PaaS models. Maintenance of the server operating system is handled by the customer in the IaaS model and is handled by the cloud vendor in PaaS and SaaS models.

What is the most accurate definition of cloud computing? Cloud computing is a pool of servers offering compute resources that are designed to be issued exclusively to individual tenants (users and organizations). Cloud computing is a remote virtual pool of on-demand shared resources offering compute, storage, and network services that can be rapidly deployed at scale. Cloud computing is a term used to describe virtualized technology. Cloud computing is a physical pool of compute, storage, and network resources that cannot be accessed over the internet.

Cloud computing is a remote virtual pool of on-demand shared resources offering compute, storage, and network services that can be rapidly deployed at scale. Cloud Computing is based on Virtualization technology and therefore provides virtual pools of compute, storage and network resources that can be accessed over the internet to shared tenants which can be quickly deployed into new and existing environments. The incorrect answers here either refer to physical pools or resources, or individual tenants, which isn't accurate when describing Cloud Computing.

In Azure, _____ is a tool that shows how compliant your organization is and how compliant Microsoft is for a particular area. Compliance Framework Compliance Services Portal Compliance Portal Compliance Manager

Compliance Manager

Which Azure Storage access tiers are designed for infrequently accessed data? (Choose 2 answers) Cool Deep archive Archive Hot

Cool Archive The hot access tier is really used for data that is accessed frequently. The cool access tier is typically used for infrequently access data. Archive storage is an offline tier for storing data that is rarely accessed.

Which Azure product provides four key features: cost analysis, budgets, alerts, and recommendations? Cost Management Pricing Calculator Total Cost of Ownership Calculator Advisor

Cost Management When you want to get serious about controlling your costs, the place to go is Azure Cost Management. It provides four key features: cost analysis, budgets, alerts, and recommendations.

What should you do to bring Azure Storage into your virtual network with a dedicated IP address? Peer your Azure virtual network (VNet) with an Azure Storage VNet. Create a site-to-site VPN with Azure VPN Gateway Create a private connection with Azure ExpressRoute. Create a private endpoint

Create a private endpoint A private endpoint is a network interface that uses a private IP address from your virtual network. This network interface connects you privately and securely to an Azure service. By enabling a private endpoint, you're bringing the service into your virtual network.

Which of the following statements about data transfer in Azure is false? Egress traffic that consists of a transfer to a location outside of the Azure network incurs a cost. Egress traffic that consists of a transfer to a different region incurs a cost. Egress traffic that consists of a transfer within the same region incurs a cost. Ingress traffic is free.

Egress traffic that consists of a transfer within the same region incurs a cost. When you transfer data to an Azure resource, it's known as ingress traffic, and the cost is free. When you transfer data from an Azure resource, it's known as egress traffic, and there's often a cost. If you transfer within the same region, it's free, but if you transfer to another region or to a location outside of the Azure network, then there's a cost.

Which of the following cloud computing concepts refers to increasing or decreasing compute resources based on demand? Elasticity Fault tolerance Load balancing High availability

Elasticity Elasticity is the degree to which a system is able to adapt to workload changes by provisioning and de-provisioning resources in an automated manner, such that at each point in time the available resources match the current demand as closely as possible. Fault tolerance refers to the ability of an application to keep running even if some of its components fail. Load balancing is a core networking solution used to distribute traffic across multiple servers in a server farm. Load balancers improve application availability and responsiveness and prevent server overload. High availability is similar to fault tolerance. It refers to the ability of an application to keep running for an agreed-upon percentage of time, such as 99.99% of the time.

hich of the following cloud computing concepts refers to increasing or decreasing compute resources based on demand? Elasticity Fault tolerance Load balancing High availability

Elasticity Elasticity is the degree to which a system is able to adapt to workload changes by provisioning and de-provisioning resources in an automated manner, such that at each point in time the available resources match the current demand as closely as possible. Fault tolerance refers to the ability of an application to keep running even if some of its components fail. Load balancing is a core networking solution used to distribute traffic across multiple servers in a server farm. Load balancers improve application availability and responsiveness and prevent server overload. High availability is similar to fault tolerance. It refers to the ability of an application to keep running for an agreed-upon percentage of time, such as 99.99% of the time.

Microsoft provides Azure _____ services that are in physically isolated data centers and networks, but in order to use these services, your organization has to meet eligibility requirements. Lockdown Government Secure Classified

Government

As an example of an important cloud characteristic, let's say you deploy a small website today. Next week, you add complex artificial intelligence services to it that are provided by a public cloud vendor. The following week, you deploy your website to multiple regions around the globe. What concept or characteristic of cloud computing does this represent? High availability Security Growth Utility-based metering

Growth The hypothetical scenario above is an example of growth which the cloud makes possible. You start with something simple, then innovate with advanced, easy to provision services hosted by the cloud vendor, and expand to a global market.

You have deployed a small web app to AWS. You place a load balancer in front of the application and deploy a second version of the app into a second availability zone. What are you hoping to accomplish with this design? High availability Security On-demand resourcing Consumption-based metering

High availability The hypothetical scenario above is an example of high availability. The load balancer will evenly distribute traffic between the two instances in each availability zone to ensure all traffic is handled appropriately.

Which blob access storage tier would you use when dealing with a large amount of data that is actively used? Cold Archive Hot Deep archive

Hot

With Azure _____, if you have existing Windows Server or SQL Server licenses, and they're covered by a Microsoft Software Assurance plan, you can move those licenses to Azure to save money. License Sharing Hybrid Benefit Reserved Instances Member Benefit

Hybrid Benefit With the Azure Hybrid Benefit, if you have existing Windows Server or SQL Server licenses, and they're covered by a Microsoft Software Assurance plan, you can move those licenses to Azure to save money.

An organization plans to migrate its existing on-premises web servers to the Azure cloud. They want to control and access web server operating systems and install proprietary development tools, database management systems, business analytics software on these servers. Which cloud deployment model should they implement? Serverless IaaS PaaS SaaS

IaaS IaaS is the most basic category of cloud computing services. With IaaS, a customer rents IT infrastructure—servers and virtual machines (VMs), storage, networks, and operating systems—from a cloud provider on a pay-as-you-go basis. Running websites using IaaS can be less expensive than traditional web hosting.

You have been hired as an IT summer intern for a small, but quickly expanding, restaurant chain. The restaurant chain owner wants to expand her online presence by creating a website that will add more online features such as downloadable menus, real-time reservations, online ordering, web-based email, and a possible interactive chat during restaurant hours. The website will have high access demands from the 4:00 pm to 11:00 pm peak hours, and slower access demands during off-peak hours. The owner does not have any IT experience, and does not want to become involved in the extra work of maintaining IT equipment. What do you recommend she do? Implement a hybrid cloud-computing environment. Implement a private cloud-computing environment. Implement a public cloud-computing environment. Implement a matrixed cloud-computing environment.

Implement a public cloud-computing environment. Public clouds utilize cloud resources (like servers and storage) that are owned and operated by a third-party cloud service provider and delivered over the Internet. With a public cloud, all hardware, software, and other supporting infrastructure are owned and managed by the cloud provider. The public cloud model provides several advantages for the restaurant chain owner. First, there are lower costs because there is no need to purchase hardware or software, and you pay only for the service you use. Second, there are no maintenance issues as your service provider provides the maintenance. Third, there is near-unlimited scalability because on-demand resources are available to meet the business's needs. Fourth, there is high reliability because a vast network of servers ensures against failure.

Migration to the cloud presents numerous potential benefits, but it will not solve all of a business's challenges. Which of the following is not an immediate benefit provided by the cloud? Improved application performance Utility-based metering On-demand resourcing Economy of scale

Improved application performance Economy of scale, on-demand resourcing, and utility-based metering are each available in the public cloud, but improved application performance is not guaranteed by hosting one's services in the cloud. Optimization, experimentation, and innovation may be easier to implement, depending on your application's requirements, but this still requires a dedicated team to review and redesign an application to gain the true benefits of the cloud.

Which service model allows you to configure and customize your environment from the base up? Software as a Service (SaaS) Infrastructure as a Service (IaaS) Platform as a Service (PaaS) 'Anything' as a Service (XaaS)

Infrastructure as a Service (IaaS) IaaS provides the greatest level of customization as you can configure the environment from the ground up, starting from which operating system to install and up. Other service models have fixed components which you are unable to change or manage.

The ___________________ cloud service model offers the greatest amount of user customization and control, but requires the greatest amount of user administration including the operating system, but not physical hardware. Infrastructure-as-a-Service (IaaS) Platform-as-a-Service (PaaS) Software-as-a-Service (SaaS) Traditional on-premise

Infrastructure-as-a-Service (IaaS) The IaaS cloud service model allows the highest level of customization and management, where users can architect their own portion of the cloud within a virtual network, and then deploy virtual machines which they configure from the operating system layer and above.

Which of the following is not an Azure subscription type? Pay-as-you-go Member offer Installment Trial

Installment

Which of the following statements about Azure Cloud Shell is correct? It only supports Azure Powershell It only supports Bash It is an easier way to navigate through Azure resources than the Azure Portal. It is a more efficient way to manage Azure resources than the Azure Portal.

It is a more efficient way to manage Azure resources than the Azure Portal. Cloud Shell supports both PowerShell and the Bash shell. You can switch between them using this menu. We're going to use the Bash Shell because the commands are simpler. If you're familiar with Linux commands, then it will be especially easy. It's pretty easy to use the portal to create Azure resources but it's definitely not the most efficient way to do it because it requires a lot of pointing and clicking. An alternative is to use the command line. Although it can be more difficult since you have to know the exact names of all the command line options.

If you need to buy an off-the-shelf third-party solution that runs on Azure, then once you have an Azure subscription, you can purchase it through Azure _____. Marketplace Cloud Provider Solution Store Web Direct

Marketplace

Which Azure service is a dashboard that gathers security information from resources across your subscriptions and assesses your vulnerabilities? Microsoft Defender for Cloud Azure Service Health Azure Monitor Azure Backup

Microsoft Defender for Cloud Microsoft Defender for Cloud is a unified infrastructure security management system that strengthens the security posture of your data centers, and provides advanced threat protection across your hybrid workloads in the cloud - whether they're in Azure or not - as well as on premises.

Which of the following is a process that prompts a user for an additional form of identification during login? Multi-factor authentication Self-service password reset Single sign-on Password encryption

Multi-factor authentication

Which resources provide the connectivity allowing all other resources to communicate with each other? Storage Compute Servers Network

Network As a classic environment comparison, in a typical environment you would find hardware such as Routers to route traffic between networks, switches which provide the backbone of network connectivity allowing hosts to talk to one another, and firewalls to 'allow' or 'deny' traffic into the environment.

Which of the following is not a characteristic of the public cloud? Scalability Shared infrastructure One-time costs for virtual resources Utility-based metering

One-time costs for virtual resources The public cloud is based on shared infrastructure, helping with great economies of scale, which reduces the cost for customers. One of the greatest features of the cloud is that it's scalable allowing your infrastructure to grow and shrink as and when demand does. This all comes at a cost through the use of utility-based metering for its resources, meaning you only pay for what you use, when you use it.

You are leading a team of developers on a project whose goal is to improve customer experience on a credit card company's website.The solution requires custom code without the overhead of managing operating systems or infrastructure.Which of the following cloud offerings would you suggest to your client? Infrastructure as a Service (IaaS) Platform as a Service (PaaS) On-premises infrastructure Software as a Service (SaaS)

Platform as a Service (PaaS) Platform as a Service (PaaS) allows the development, testing, and hosting of apps in the same environment but provides no user control over the infrastructure. It is the best choice for creating customized apps. Infrastructure as a Service (IaaS): Provides complete control over the data, apps, middleware, operating system Automated hardware deployment Virtualized management workload Function as a Service (FaaS) Helps the developers in running and managing the microservices Facilitates event-based-triggered code execution Software as a Service (SaaS) Provides subscription-based model No control over the infrastructure to users An apt choice for short-term projects requiring collaboration

Which of the following Azure tools allows you to make detailed cost estimates for running Azure services such as Cosmos DB, Cognitive Services, and Azure App Service? Pricing Calculator Total Cost of Ownership (TCO) Calculator Azure Advisor Azure Cost Management Tool

Pricing Calculator The Pricing Calculator tool is an excellent online tool to assist in estimating your Azure costs. This tool allows you to select and estimate the costs of deploying resources to Azure. The Total Cost of Ownership (TCO) Calculator helps with estimating the cost savings of moving workloads from your on-premises environment to Azure. It cannot generate cost estimates for services such as Cosmos DB and Cognitive Services that handle workloads that are not typically found in on-premises environments. Azure Cost Management tells you your actual costs for Azure services you have been using. It does not give cost estimates. Azure Advisor helps you identify potential cost savings in your Azure environment, but it isn't a general pricing tool.

One can argue that security on the public cloud is superior to on-premise security. Why is this? (Choose 2 answers) Public cloud vendor services must meet international security requirements. Public cloud vendor services must meet multiple business industries' security and governance requirements. Public cloud vendor datacenters use superior security technology. Public cloud vendor services are entirely separate from the public internet.

Public cloud vendor services must meet international security requirements. Public cloud vendor services must meet multiple business industries' security and governance requirements. Security is one of the most discussed topics within cloud computing, and many enterprises still have concerns over how secure it is. However, public cloud vendors such as AWS and Microsoft Azure are considered to be more secure than your own data center. This is down to the fact that they have to adhere to global compliance programs across multiple industries and by applying the shared responsibility model.

What is a key benefit of Virtualization? Increased operational cost Quicker remote connectivity Reduced network latency Reduced capital expenditure

Reduced capital expenditure As Virtualization allows for multiple VMs to be installed on the same physical host, it maximizes the optimization potential and reduces the requirement to purchase additional servers, resulting in a reduced capital expenditure

You are an Azure administrator for an organization. You want to find out whether there is a problem with one of the virtual machines (VMs) in your environment.Which monitoring feature should you use? Email alerts Metrics Application Insights Resource Health

Resource Health A resource is a specific instance of an Azure service, such as a virtual machine, web app, or SQL Database. Resource Health relies on signals from different Azure services to assess whether a resource is healthy. If a resource is unhealthy, Resource Health analyzes additional information to determine the source of the problem. It also reports on actions that Microsoft is taking to fix the problem and identifies things that you can do to address it. Alerts are used to monitor resource and application performance rather than the health of a specific VM. Alerts consist of the following types: Metric alerts Metric alerts evaluate resource metrics at regular intervals. Metrics can be platform metrics, custom metrics, logs from Azure Monitor converted to metrics or Application Insights metrics. Metric alerts have several additional features, such as the ability to apply multiple conditions and dynamic thresholds. Log alerts Log alerts allow users to use a Log Analytics query to evaluate resource logs at a predefined frequency. Activity log alerts Activity log alerts are triggered when a new activity log event occurs that matches the defined conditions. Smart detection alerts Smart detection on an Application Insights resource automatically warns you of potential performance problems and failure anomalies in your web application. You can migrate smart detection on your Application Insights resource to create alert rules for the different smart detection modules. Application Insights is a feature of Azure Monitor that provides extensible application performance management (APM) and monitoring for live web apps, not VMs. Developers and DevOps professionals can use Application Insights to: Automatically detect performance anomalies. Help diagnose issues by using powerful analytics tools. See what users actually do with apps. Help continuously improve app performance and usability. Application Insights: Supports a wide variety of platforms, including .NET, Node.js, Java, and Python. Works for apps hosted on-premises, hybrid, or on any public cloud. Integrates with DevOps processes. Has connection points to many development tools. Can monitor and analyze telemetry from mobile apps by integrating with Visual Studio App Center

What benefit of cloud computing allows you to increase or decrease the power or quantity of resources at any time, without extensive installation or physical processes of provisioning? A High availability B Scalability C Economy of Scale D Utility-based metering

Scalability Scalability means you can increase or decrease the power of provisioned resource, such as adding or removing more CPU or memory to a virtual machine. This is an example of scaling vertically. Scalability also means you can increase the sheer number of resources in your environment, such as adding more virtual machines or terminating some that you have deployed. This is an example of scaling horizontally.

What benefit of cloud computing allows you to increase or decrease the power or quantity of resources at any time, without extensive installation or physical processes of provisioning? Scalability Economy of Scale High availability Utility-based metering

Scalability Scalability means you can increase or decrease the power of provisioned resource, such as adding or removing more CPU or memory to a virtual machine. This is an example of scaling vertically. Scalability also means you can increase the sheer number of resources in your environment, such as adding more virtual machines or terminating some that you have deployed. This is an example of scaling horizontally.

Your organization has decided to adopt a work-from-home policy. As part of the transition to remote work, the organization has made the decision to implement single sign-on (SSO) and multi-factor authentication (MFA) for all employees accessing resources in Google Cloud.Which of the following benefits of the cloud is applicable to this decision? Security Scalability Unlimited storage Reduced latency

Security

In Azure, the _____ is focused specifically on compliance. For example, it has links to Azure audit reports for regulatory standards like SOC, FedRAMP, and ISO27001. Cloud Adoption Framework Volume Licensing Program Service Trust Portal Azure Spot Virtual Machines service

Service Trust Portal

The ___________________ model requires no software installation and focuses on design simplicity and ease of use. It offers a minimal level of service customization. Infrastructure-as-a-Service Platform-as-a-Service Software-as-a-Service Traditional on-premise

Software-as-a-Service The SaaS cloud service model focuses on the delivery of an application to a large audience and requires the smallest amount of user administration. As a trade-off, it offers very few customization options.

Which cloud resource saves and retains data, and is available at a near-unlimited amount within the cloud? Storage Compute Network Database

Storage Cloud storage, as the name implies, stores and saves data, and is comparable to hard disks on a personal computer, or network-attached storage (NAS) or storage area networks (SAN).

Your company is growing rapidly. Demand for your product far outstrips your data center's capacity. You are thinking about migrating some of your production workloads to Azure. Which calculator would you use to estimate the cost? TCO calculator Pricing calculator Cloud economics Azure Hybrid Benefit

TCO calculator The Azure Total Cost of Ownership (TCO) calculator is used to estimate your workloads and would be an appropriate cost calculation tool to use before migrating some of your production workloads to Azure. Azure's Pricing Calculator is used when you want to get an Azure product pricing estimate. The Azure Hybrid Benefit is for Windows Server and SQL Server, and the Cloud Economics tool is used to draft business cases.

Which Microsoft Defender for Cloud dashboard shows an account's actual security alerts, which can then be clicked on more detailed information? The Threat Protection dashboard The Resource Hygiene dashboard The Policy and Compliance The Overall Secure Score

The Threat Protection dashboard First, it shows you how compliant your Azure subscriptions are. This is based on policies that you create in a service called, naturally, Azure Policy. For example, if someone in your organization creates a subscription that doesn't have your regulatory policy controls assigned to it, then it will show up in this compliance panel. Then it shows you your resource security hygiene, which is an assessment of how secure your Azure resources are. You can click on it to see a list of recommendations to improve the security of your compute, storage, networking, and identity resources. It also gives you an Overall Secure Score to give you an idea of how secure all of your resources are. Each recommendation shows you how much your secure score would be improved if you were to implement the recommendation. Finally, the Threat Protection panel shows you how many security alerts you have. These are potential threats that were detected by Azure Advanced Threat Protection. You can click on it to see the actual alerts so you can address them.

Which type of information does the Microsoft Defender for Cloud resource hygiene dashboard display? The resource hygiene dashboard displays how compliant resource configurations are with account policies. The resource hygiene dashboard displays how secure resources are based on Azure security best practices. The resource hygiene dashboard displays actual resources' performance trends compared to related Azure service license agreements. The resource hygiene dashboard displays resource metric data compared to defined thresholds that would trigger performance monitoring alerts.

The resource hygiene dashboard displays how secure resources are based on Azure security best practices. Microsoft Defender for Cloud's Resource security hygiene dashboard provides an assessment of how secure your Azure resources are. You can click on it to see a list of recommendations to improve the security of your compute, storage, networking, and identity resources. It also gives you an Overall Secure Score to give you an idea of how secure all of your resources are. Each recommendation shows you how much your secure score would be improved if you were to implement the recommendation.

In Azure, the _____ Center contains a collection of links to resources about how Microsoft handles security, privacy, compliance, and transparency. Compliance Privacy Security Trust

Trust

What is more frequently cited as the easiest way to interact with Microsoft Azure? Using the Azure Portal Using Azure Powershell Using the Azure CLI Using the Azure SDK

Using the Azure Portal There are many ways to interact with Azure; the Azure portal runs in a browser, so you don't need to install anything to use it. Alternatively, you can install the CLI (the command-line interface), Azure PowerShell, or the SDK (Software Development Kit). The Azure portal is frequently cited as the easiest way to get started, though.

With which Azure subscription purchase option do you purchase directly through the Azure website? Cloud Solution Provider enterprise agreement Azure Marketplace Web Direct

Web Direct

Which of the following statements about resource groups and tags in Microsoft Azure is false? When you delete a resource group, all of the resources in it remain. If you want to apply a tag to all of the resources in a resource group, you'll have to apply it to them individually. You can apply tags to a resource group. One common use is to apply organizational tags, such as "Engineering" and "Marketing," to resources; that way, you can easily figure out how much to charge each department for their resource usage.

When you delete a resource group, all of the resources in it remain.

What is Azure Monitor? a serverless compute service that has been designed to allow you to run your application code without having to manage and provision your own virtual machines a distributed tracing system that allows you to analyze and debug microservice applications a service that is used to monitor the operation and performance of an Azure environment Azure's highly available and scalable domain name system

a service that is used to monitor the operation and performance of an Azure environment Azure Monitor is your one-stop shop for keeping track of what's happening with your Azure resources. It's a collection of a variety of monitoring tools. The core features of Azure Monitor are metrics and alerts. Metrics are basically statistics on various aspects of your resources, such as CPU usage on virtual machines and space used on Blob Storage. Azure Monitor creates graphs showing how these metrics have changed over time. It can also watch critical metrics you specify and send you an alert if there's a problem.

A company wants to ensure its resources hosted in the Azure cloud can be deployed and configured quickly as application requirements change. As the company outlines the design plan for the application, which of the following features of cloud computing would address this requirement? scalability elasticity high availability agility

agility One of major benefits of the cloud is that it allows you to quickly scale. For example, if you need more VMs, all you have to do is tell Azure how many VMs you want and Azure takes care of allocating the resources for you. This kind of speed and flexibility in the cloud is often called cloud agility. With agility, cloud-based resources can be deployed and configured quickly as your application requirements change.

Which of the following is not available for virtual machines in all Azure regions? availability zones availability sets update domains fault domains

availability zones An availability zone is a physically separate zone within an Azure region. So, if one zone goes down, then the other zones will likely still be up. Not every region offers availability zones, but in the ones that do, there are always three of them. To take advantage of this capability, you should deploy multiple replicas of your application's VMs in different availability zones. You can specify a particular availability zone when you create each VM.

Deploy your application resources into separate ____________________ if you want them to remain available in the event of a data center outage. availability sets availability zones scale sets resource groups

availability zones Availability sets offer protection against different types of failures and maintenance in a single data center, but availability zones offer protection against the failure of an entire data center because you've distributed resources among multiple data centers.

Which of the following options is not one of Azure's three levels of management that make it easier to track costs separately? resource groups management groups billing groups subscriptions

billing groups Azure provides three levels of management that you can use to make it easier to track costs separately: management groups, subscriptions, and resource groups.

The public cloud allows you to pay only for the time that you use cloud resources, not for the cost of ownership. This concept is known as ________________. consumption-based metering shared infrastructure economy of scale scalability

consumption-based metering Consumption-based metering simply means you pay for what you use. Public cloud vendors offer different services at different units of time, some reserved for multiple years, and others charged based on milliseconds.

Your organization needs to develop a storage tier policy for data that is considered to be short-term backup and disaster recovery data. Which storage tier would you assign to this data? hot cool warm archive

cool

Which Azure Cost Management module lets you drill down into your costs to find out where your organization is spending the most on Azure? recommendations cost analysis budgets alerts

cost analysis

As a cloud-computing expert at a local IT consulting firm, you have been asked by your manager to travel to a potential new client's site to give a presentation on the different types of cloud computing models with the hope that your firm can earn the account. You learn that the prospective account manufactures candy. The CEO is nervous about moving to the cloud and wants to migrate slowly because of the upcoming Halloween candy sales over the next three months. Yet she wants to be able to handle the upcoming surge in orders flawlessly with reduced capital expenditures (capex). Which model should you focus on in your presentation? private public matrix hybrid

hybrid A hybrid cloud is a computing environment that combines a public cloud and a private cloud by allowing data and applications to be shared between them. When computing and processing demand fluctuates, hybrid cloud computing gives businesses the ability to seamlessly scale their on-premises infrastructure up to the public cloud to handle any overflow--without giving third-party data centers access to the entirety of their data. Using a hybrid cloud helps eliminate the need to make up-front capital expenditures to handle short-term spikes in demand. It also has the flexibility to manage which resources are local versus in the cloud. Companies pay only for resources they temporarily use instead of having to purchase, program, and maintain additional resources and equipment that could remain idle over long periods of time. Finally, transitioning to the cloud does not have to be overwhelming because the organization can migrate gradually—phasing in workloads over time.

A business uses a combination of vendor-managed hardware, such as AWS, Azure, or Google Cloud, and its own hardware on premises to host virtualized resources. This is an example of the ___________ cloud deployment model. public private hybrid traditional on-premise

hybrid In the hybrid cloud deployment model involves using private and public cloud services models. This can be done for disaster recovery, or to manage seasonal burst traffic. This approach provides the costs and benefits of both models at the same time, and is usually a short-term configuration as a business transitions to the public cloud.

Related Azure subscriptions can be placed into a _____ group. resource management billing subscription

management

If two regions are _____, this means that if there's an Azure outage that affects multiple regions, then at least one of these regions will be prioritized for recovery. paired grouped zoned linked

paired

A ________ cloud deployment model is where a vendor makes available the use of shared infrastructure, including compute, storage and network resources, that can be provisioned on demand and typically accessed over the internet. private public hybrid community

public Public clouds allow for users to access remote resources on-demand, which is accessed over the internet. Anyone can gain access to the vendors' resources as long as they sign up to the service. Private, hybrid and community clouds are restricted on access.

In Azure, _____ logs contain information about things that happened within an Azure resource, such as accessing a database. resource activity process Azure Active Directory

resource

An organization wants to ensure cloud elasticity is included in its cloud service agreement. What is the primary benefit that cloud elasticity will provide? faster disaster recovery times ability to deploy data to regional datacenters around the globe savings in backup costs savings in infrastructure costs

savings in infrastructure costs Elasticity is the ability to grow or shrink infrastructure resources dynamically as needed to adapt to workload changes in an autonomic manner, maximizing the use of resources. This can result in savings in infrastructure costs overall.

A company is reviewing its solution design for applications it plans to deploy in the Azure cloud. The company wants to ensure its cloud computing capacity can be increased by adding more virtual machines to its cloud configuration during peak processing times. Which cloud computing benefit should you request? scalability elasticity high availability agility

scalability

Azure's Total Cost of Ownership Calculator _____. allows you to compare costs over any time period between 6 months and 10 years requires an Azure subscription to use uses industry averages for on-premises costs involves only two steps: first, define your workloads; second, view the report

uses industry averages for on-premises costs Fortunately, Microsoft provides a useful tool called the Total Cost of Ownership, or TCO, Calculator. It uses industry averages for on-premises costs, and of course, the equivalent costs on Azure. There are three steps to using it. First, define your workloads. Second, adjust the assumptions used by the TCO Calculator. Third, view the report. You can choose any time period between one and five years to compare the costs. You don't need to have an Azure subscription to access it, of course, because the whole idea is to use it before you migrate your workloads to Azure.

What is an Azure resource group? An Azure-defined set of Azure resources located in the same region. A container that holds related resources for an Azure solution. A user-defined set of Azure resources located in the same availability zone. A JSON file used to deploy Azure resources.

A container that holds related resources for an Azure solution. A resource group holds related resources for an Azure solution. It can include all the resources for the solution, or only those resources that you want to manage as a group. You decide how you want to allocate resources to resource groups based on what makes the most sense for your organization.

You have a web application that you want to host on Microsoft Azure, but you do not have the time or budget to manage the compute resources closely, or to hire someone to manage the detailed configurations required for scaling and monitoring your application in the cloud. What service is ideal in this case? Azure App Service Azure Virtual Machines Azure Kubernetes Service Azure Functions

Azure App Service Azure App Service lets you host web and mobile applications without having to worry about the underlying infrastructure. After doing a minor amount of configuration, you can just upload your code to an App Service instance and let Azure take care of the details.

Which Azure management service informs you about problems with the Azure platform itself and upcoming maintenance events? Azure Monitor Azure Application Insights Azure Service Health Azure Advisor

Azure Service Health Microsoft also provides a dashboard called Service Health where you can find out about problems with the Azure platform itself as well as upcoming maintenance events. You can even create alerts so you'll be notified of both planned and unplanned outages.

Azure _____ gives you recommendations on how to reduce costs, such as identifying underutilized VMs that could be resized to a cheaper option or shut down entirely. Budget Pricing Calculator Total Cost of Ownership Calculator Advisor

Advisor Azure Advisor gives you recommendations on how to reduce costs, such as letting you know if you have underutilized VMs that could be resized to a cheaper option or shut down entirely.

What is a Microsoft recommendation when creating a resource group? All the resources in a group should share the same lifecycle. A resource can exist in multiple resource groups at the same time. A resource group can only contain resources that reside in the same region. Once a resource is added to a resource group, it cannot be moved from it to another group.

All the resources in a group should share the same lifecycle.

In Azure App Service, a(n) ________ is the compute resources that Azure provides for hosting a website or web application. Azure Application Template App Service deployment slot App Service plan App Service pipeline

App Service plan

Which Azure blob type is best for logging operations? Page Block Append General

Append Blob storage consists of three types of blob accounts: block blobs, append blobs, and page blobs. Append blobs are optimized for append operations, in which data updates occur by adding a new block to the end. A log data entry is one such example.

Azure _____ is a monitoring and performance analysis tool for apps. Databricks Application Insights Visual Studio App Service

Application Insights This last part of QnA Maker setup is to enable Application Insights, which is a performance analysis tool for apps.

Which blob access storage tier would you use when dealing with a large amount of data that is rarely used, and mainly stored for compliance or tax purposes? Hot Cool Archive Deep Archive

Archive Blob storage has multiple access tiers: hot, cool, and archive. The hot tier is for frequently accessed files. The cool tier is for files you expect to access only about once a month or less. The advantage is that it costs less than the hot tier as long as you don't access it frequently. The archive tier is for files that are rarely accessed, such as backup files. It has the lowest storage costs but the highest retrieval costs. It also takes several hours to retrieve files from the archive tier.

Which of the following services is an example of 'Infrastructure-as-a-Service' or IaaS on Microsoft Azure? Azure Virtual Machines Azure App Service Azure Functions Azure Kubernetes Service

Azure Virtual Machines

What Azure Cloud compute service is useful when planning a 'lift-and-shift" migration of an application from an on-premises environment to the Azure Cloud? Azure Virtual Machines Azure Functions Azure Container Instances Azure DevOps

Azure Virtual Machines If you currently have an application running on a Windows or Linux server, then the most straightforward way to migrate it to Azure is to do what's called a "lift and shift" migration. That is, you simply lift the application from your on-premises server and shift it to a virtual server in the cloud. Azure VMs are known as Infrastructure-as-a-Service because they're traditional IT infrastructure components that are offered as a service.

Which of the following Azure storage services specializes in object storage with a flat structure, and is ideal for unstructured data such as logs, videos, and photos? Blob Storage Azure Data Lake Azure SQL Database Azure Synapse Analytics

Blob Storage The simplest form of storage is called Blob storage. It's referred to as object storage, but really it's just a collection of files. It's not like a normal file system, though, because it doesn't have a hierarchical folder structure. It has a flat structure. It's typically used for unstructured data, such as images, videos, and log files.

Public cloud vendors have a common definition of what aspects of security are the vendor's responsibility and what aspects of security are the end user's responsibility. This is referred to as the Shared Responsibility Model. Under the Shared Responsibility Model, which of the following would be the end user's responsibility? Access to the physical datacenter Operation and administration of the hardware hosting virtual resources Availability of a cloud storage service Creating authentication and authorization mechanisms for a cloud storage service

Creating authentication and authorization mechanisms for a cloud storage service

Which statement correctly describes how Azure regions provide additional resilience with Availability Zones? Each region that supports availability zones includes a minimum of three separate availability zones. Each region that supports availability zones includes a maximum of three separate availability zones. Every region in the Microsoft Azure cloud includes a minimum of three availability zones. Every region in the Microsoft Azure cloud includes a minimum of two availability zones.

Each region that supports availability zones includes a minimum of three separate availability zones.

In an Azure Virtual Network, what term describes the feature used to host the DNS records for a particular domain? DNS Zone DNS Bucket DNS VNet DNS Squatting

DNS Zone A DNS zone is used to host the DNS records for a particular domain. To start hosting your domain in Azure DNS, you need to create a DNS zone for that domain name. Each DNS record for your domain is then created inside this DNS zone.

What cloud resource type stores structured data used by cloud applications? Storage Compute Network Database

Database Cloud database resources store structured data used by applications, and in the classic resource model, it is comparable to MySQL, Oracle and database servers.

Which of the following statements about subscriptions in Azure is false? Every subscription must be linked to exactly one billing account. Each Azure resource can only be assigned to one subscription. Each billing account can have at most one subscription. One organization can have multiple subscriptions.

Each billing account can have at most one subscription. It's possible to have multiple subscriptions, but each Azure resource can only be assigned to one subscription. Every subscription needs to be linked to one (and only one) billing account, so Microsoft will know how you'll be paying for the subscription. But it is possible to link multiple subscriptions to one billing account.

When you transfer data to an Azure resource, it's known as _____ traffic. external internal ingress egress

ingress When you transfer data to an Azure resource, it's known as ingress traffic, and the cost is free.