AZ-104-D

Question 1

What is the PowerShell cmdlet to create users in Azure AD?

Answer 1

New-AzureADUser

Question 2

How can you manage bulk updates of users and groups in Azure AD?

Answer 2

Use PowerShell

Question 3

Where can you manage registered devices in Azure AD?

Answer 3

In the Azure portal under Devices

Question 4

How can you enable MFA for users in Azure AD?

Answer 4

In Azure AD > Users > Multi-Factor Authentication

Question 5

What cmdlet is used to assign roles to users or groups in Azure RBAC?

Answer 5

New-AzRoleAssignment

Question 6

How can custom roles be created in Azure RBAC?

Answer 6

Using the Azure portal, PowerShell, CLI, or REST API

Question 7

Where can Azure policies be applied?

Answer 7

At the subscription, resource group, or resource level using the Azure portal

Question 8

What cmdlet is used to create tags for resources in Azure?

Answer 8

az tag create

Question 9

How are multiple subscriptions managed in Azure?

Answer 9

Using management groups in the Azure portal

Question 10

What are the default roles for new Azure subscriptions?

Answer 10

Account Administrator and Service Administrator

Question 11

What is the maximum number of SMS messages per hour for Azure Monitor alerts?

Answer 11

12 messages if the alert is triggered every minute

Question 12

What is the default retention period for Azure VM backups?

Answer 12

30 days

Question 13

Where must the Recovery Services Vault be located relative to the VMs it protects?

Answer 13

In the same region as the VMs it protects

Question 14

What service supports backup of Azure SQL databases?

Answer 14

Azure Backup service

Question 15

What replication options are supported by Azure Storage accounts?

Answer 15

LRS, ZRS, GRS, RA-GRS, GZRS, and RA-GZRS

Question 16

What are the three types of blobs in Azure Blob Storage?

Answer 16

Block Blobs, Page Blobs, and Append Blobs

Question 17

What are the three access tiers in Azure Blob Storage?

Answer 17

Hot, Cool, and Archive

Question 18

What is the maximum retention period for soft delete in Azure Blob Storage?

Answer 18

365 days

Question 19

What service provides managed file shares in Azure?

Answer 19

Azure Files

Question 20

How can on-premises file servers synchronize with Azure Files?

Answer 20

Using Azure File Sync

Question 21

What storage account type supports all storage services?

Answer 21

General-Purpose v2 Storage

Question 22

What are SAS tokens used for in Azure Storage?

Answer 22

To grant limited access to Azure Storage resources without exposing the account key

Question 23

What are the required parameters for SAS tokens?

Answer 23

SignedResourceTypes (srt) and SignedServices (ss)

Question 24

How are RBAC roles inherited in Azure?

Answer 24

From parent scopes to child resources

Question 25

How can custom roles be shared in Azure RBAC?

Answer 25

Across subscriptions within the same Azure AD directory

Question 26

What is the difference between Basic and Standard Public IPs in Azure?

Answer 26

Standard tier supports zone-redundant deployment, while Basic does not

Question 27

What does VNet peering allow in Azure?

Answer 27

Communication between virtual networks as if they were in the same network

Question 28

What is CIDR notation used for in Azure Networking?

Answer 28

To define IP address ranges in VNets and subnets

Question 29

Where can NSG rules be applied in Azure Networking?

Answer 29

To subnets and NICs to control traffic flow

Question 30

What do load balancers do in Azure Networking?

Answer 30

Distribute incoming network traffic across multiple VMs

Question 31

What does Application Gateway provide in Azure Networking?

Answer 31

Application-level routing and load balancing

Question 32

What does Traffic Manager use to distribute traffic globally in Azure?

Answer 32

DNS

Question 33

How are VNets divided in Azure?

Answer 33

Into smaller, manageable sections called subnets

Question 34

What do User-Defined Routes (UDRs) allow in Azure Networking?

Answer 34

Custom routing paths for network traffic

Question 35

What does VNet-to-VNet connectivity enable in Azure?

Answer 35

Direct communication between VNets

Question 36

What does Azure Virtual WAN provide?

Answer 36

Centralized network connectivity and management

Question 37

How are DNS zones managed in Azure?

Answer 37

Using Azure DNS to host DNS records

Question 38

What security feature does Azure Firewall provide?

Answer 38

Network security through filtering and logging

Question 39

What do private endpoints allow in Azure Networking?

Answer 39

Services to be accessed privately over a VNet

Question 40

What do route tables control in Azure Networking?

Answer 40

Routing of network traffic in VNets

Question 41

What are NICs used for in Azure VMs?

Answer 41

To connect VMs to a VNet

Question 42

What does VPN Gateway do in Azure?

Answer 42

Connects on-premises networks to Azure through VPN tunnels

Question 43

How does ExpressRoute connect on-premises networks to Azure?

Answer 43

Through a private connection that does not travel over the public Internet

Question 44

What does Azure Bastion provide?

Answer 44

Secure RDP and SSH connectivity to VMs without a public IP

Question 45

What types of public IP addresses does Azure support?

Answer 45

Dynamic and static public IP addresses

Question 46

What does Connection Monitor track in Azure?

Answer 46

Connectivity status

Question 47

What does Network Performance Monitor (NPM) do?

Answer 47

Monitors network connectivity and performance across hybrid networks

Question 48

What do Application Security Groups (ASGs) do in Azure?

Answer 48

Simplify NSG management by grouping VMs and applying security rules

Question 49

What types of VM sizes are available in Azure?

Answer 49

General purpose, compute optimized, memory optimized, storage optimized, and GPU optimized

Question 50

What must be done before resizing a VM in Azure?

Answer 50

The VM must be stopped

Question 51

What do availability sets ensure in Azure?

Answer 51

High availability by distributing VMs across multiple fault and update domains

Question 52

What do managed disks provide in Azure?

Answer 52

Simplified storage management and support for features like snapshots

Question 53

What do Virtual Machine Scale Sets (VMSS) enable?

Answer 53

Automatic scaling of VMs

Question 54

What do Proximity Placement Groups (PPGs) reduce?

Answer 54

Latency by ensuring VMs are physically located close to each other

Question 55

What can custom images be used for in Azure?

Answer 55

To deploy new VMs

Question 56

What do VM extensions enable in Azure?

Answer 56

Post-deployment configuration and automation

Question 57

What does Azure Disk Encryption use to protect data at rest?

Answer 57

BitLocker and DM-Crypt

Question 58

How do availability zones improve high availability in Azure?

Answer 58

By distributing VMs across different physical locations within a region

Question 59

What do dedicated hosts provide in Azure?

Answer 59

Physical servers reserved for your VMs

Question 60

What does Azure Kubernetes Service (AKS) simplify?

Answer 60

Deployment, management, and operations of Kubernetes clusters

Question 61

What are Spot VMs used for in Azure?

Answer 61

Cost savings for workloads that can tolerate interruptions

Question 62

What does Azure Migrate help with?

Answer 62

Discovering, assessing, and migrating on-premises workloads to Azure

Question 63

What does autoscale do in Azure?

Answer 63

Automatically adjusts the number of VM instances based on demand

Question 64

What does Azure Site Recovery ensure?

Answer 64

Business continuity by replicating VMs to a secondary location

Question 65

What backup solutions does Azure Backup provide?

Answer 65

For VMs, SQL databases, and file shares

Question 66

What do Proximity Placement Groups (PPGs) ensure?

Answer 66

VMs are physically located close to each other to reduce latency

Question 67

What do VM diagnostics provide in Azure?

Answer 67

Performance metrics and logs for monitoring VM health

Question 68

What does Azure Automation enable?

Answer 68

Automation of frequent, time-consuming tasks

Question 69

What does VM Scale Sets (VMSS) provide?

Answer 69

Scalability by automatically increasing or decreasing the number of VMs based on demand

Question 70

What does the custom script extension allow in Azure?

Answer 70

Running scripts on VMs during deployment

Question 71

What do ARM templates enable in Azure?

Answer 71

Infrastructure as code for deploying and managing Azure resources

Question 72

What does Azure Hybrid Benefit allow?

Answer 72

Use of on-premises licenses for Azure VMs

Question 73

What does the serial console provide in Azure?

Answer 73

Access to a text-based console for troubleshooting VMs

Question 74

What does Azure Policy enforce?

Answer 74

Rules and effects over resources to ensure compliance

Question 75

What do tags provide in Azure?

Answer 75

Metadata to resources for logical organization

Question 76

What do resource locks prevent in Azure?

Answer 76

Accidental deletion or modification of critical resources

Question 77

What do activity logs provide in Azure?

Answer 77

Insights into subscription-level events

Question 78

What does Azure AD DS provide?

Answer 78

Managed domain services like domain join and group policy

Question 79

What does Azure AD Join allow?

Answer 79

Windows 10 devices to be joined to Azure AD

Question 80

What do managed identities provide in Azure?

Answer 80

Azure services with an automatically managed identity in Azure AD

Question 81

What types of disks does Azure support?

Answer 81

HDD, SSD, and ultra SSD disk types for different performance needs

Question 82

What do snapshots capture in Azure?

Answer 82

The state of a disk at a point in time for backup or cloning purposes

Question 83

What is the default retention period for VM backups in Azure?

Answer 83

30 days

Question 84

What must be ensured before reprotecting a VM after failover in Azure?

Answer 84

The VM status is ‘Failover committed’

Question 85

How long can lifecycle management policies take to complete in Azure Storage?

Answer 85

Up to 48 hours

Question 86

What happens when changing the account access tier in Azure Storage?

Answer 86

Applies to all access tier-inferred objects stored in the account

Question 87

When can blobs be assigned the desired access tier in Azure Storage?

Answer 87

While uploading to the container

Question 88

What must be done to access data in the Archive storage tier in Azure Storage?

Answer 88

It must be rehydrated to the Cool or Hot tier

Question 89

What storage services are supported by General-Purpose v2 Storage in Azure?

Answer 89

Blobs, tables, files, queues, and unmanaged VM disks

Question 90

What is the maximum retention period for soft delete in Azure Storage?

Answer 90

365 days

Question 91

What does Storage Explorer provide in Azure?

Answer 91

Rich functionality for managing storage data, including blobs and containers

Question 92

What are the available tiers for public IP addresses in Azure?

Answer 92

Basic or Standard; Standard supports zone-redundant deployment

Question 93

What are premium storage accounts designed for in Azure?

Answer 93

I/O-intensive applications, backed by SSDs

Question 94

What does site recovery perform in Azure?

Answer 94

Site-to-site recovery using Azure Site Recovery

Question 95

Where must the Recovery Services Vault be located relative to the VMs it protects?

Answer 95

In the same region as the VMs it protects

Question 96

What service supports backup of Azure SQL databases in Azure?

Answer 96

Azure Backup service

Question 97

What is the maximum limit of email actions per hour per subscription in Azure Monitor?

Answer 97

1000 email actions

Question 98

How many SMS messages per hour can Azure Monitor alerts send?

Answer 98

Maximum 12 SMS messages if the alert is triggered every minute