AZ-104: Implement and manage storage in Azure

Question 1

What are the three categories of data that Azure storage supports?

Answer 1

structured data, unstructured data, and virtual machine data

Question 2

What are the four data services that can be accessed by using an Azure storage account?

Answer 2

Azure Blob Storage (containers): A massively scalable object store for text and binary data.

Azure Files: Managed file shares for cloud or on-premises deployments.

Azure Queue Storage: A messaging store for reliable messaging between application components.

Azure Table Storage: A service that stores non-relational structured data (also known as structured NoSQL data).

Question 3

Give three examples of the types of storage Blob storage is ideal for

Answer 3

Serving images or documents directly to a browser.
Storing files for distributed access.
Streaming video and audio.
Storing data for backup and restore, disaster recovery, and archiving.
Storing data for analysis by an on-premises or Azure-hosted service.

Question 4

Give two examples of the types of storage File storage is ideal for

Answer 4

on-premises applications
Configuration files
Diagnostic logs, metrics, and crash dumps

Question 5

What is Queue storage for and what is the maximum storage size?

Answer 5

Azure Queue Storage is used to store and retrieve messages. Queue messages can be up to 64 KB in size.

Question 6

What protocol does Azure Table Storage (Azure Cosmos DB) use to store data?

Answer 6

NoSQL

Question 7

What are the four azure storage account types?

Answer 7

Standard general-purpose v2
Premium block blobs
Premium file shares
Premium page blobs

Question 8

What are the four supported services for Standard General-Purpose v2?

Answer 8

Blob Storage (including Data Lake Storage)
Queue Storage
Table Storage
Azure Files

Question 9

What are the four replication strategies available for azure storage?

Answer 9

Locally redundant storage (LRS)
Zone redundant storage (ZRS)
Geo-redundant storage (GRS)
Geo-zone-redundant storage (GZRS)

Question 10

To what extent does a storage account name need to be unique?

Answer 10

The name must be globally unique

Question 11

Which storage solution replicates data to a secondary region, maintains six copies of the data, and is the default replication option?

Answer 11

Read-access geo-redundant storage

Question 12

What does BLOB stand for?

Answer 12

Blob stands for Binary Large Object

Question 13

How many containers can an azure storage account have and how many blobs can be stored in each container?

Answer 13

Unlimited

Question 14

What is the command to create a blob container with powershell?

Answer 14

New-AzStorageContainer

Question 15

What are the three types of BLOBs? What is a short description of each?

Answer 15

Block blobs. A block blob consists of blocks of data that are assembled to make a blob. Most Blob Storage scenarios use block blobs. Block blobs are ideal for storing text and binary data in the cloud, like files, images, and videos.

Append blobs. An append blob is similar to a block blob because the append blob also consists of blocks of data. The blocks of data in an append blob are optimized for append operations. Append blobs are useful for logging scenarios, where the amount of data can increase as the logging operation continues.

Page blobs. A page blob can be up to 8 TB in size. Page blobs are more efficient for frequent read/write operations. Azure Virtual Machines uses page blobs for operating system disks and data disks.

Question 16

Name four authorization strategies for authorizing requests to azure storage

Answer 16

Azure Active Directory Azure AD is Microsoft’s cloud-based identity and access management service. With Azure AD, you can assign fine-grained access to users, groups, or applications by using role-based access control.

Shared Key Shared Key authorization relies on your Azure storage account access keys and other parameters to produce an encrypted signature string. The string is passed on the request in the Authorization header.

Shared access signatures A SAS delegates access to a particular resource in your Azure storage account with specified permissions and for a specified time interval.

Anonymous access to containers and blobs You can optionally make blob resources public at the container or blob level. A public container or blob is accessible to any user for anonymous read access. Read requests to public containers and blobs don’t require authorization.

Question 17

What does SAS stand for?

Answer 17

shared access signature

Question 18

What does URI stand for?

Answer 18

uniform resource identifier

Question 19

What are the two parts of the URI that is created when you create a SAS?

Answer 19

Azure Storage resource URI and the SAS token

Question 20

All data written to Azure Storage is encrypted through what standard?

Answer 20

AES 256-bit

Question 21

What protocol does Azure files use?

Answer 21

Server Message Block Protocol (SMB)

Question 22

What port is SMB

Answer 22

Port 445

Question 23

Which of the following statements correctly describes cloud tiering?

A. Cloud tiering prioritizes the sync order of file shares.

B. Cloud tiering sets the frequency at which the sync job runs.

C. Cloud tiering archives infrequently access files to free up space on the local file share

Answer 23

C. Cloud tiering archives infrequently access files to free up space on the local file share

Question 24

What permissions does Azure Storage Explorer require?

Answer 24

management (Azure Resource Manager), data layer permissions, and Azure Active Directory (Azure AD)

Question 25

What does AzCopy do after a failed transfer?

Answer 25

AzCopy automatically retries a transfer when a failure occurs

Question 26

What are the two ways AzCopy authenticates?

Answer 26

SAS and Azure AD

Question 27

What is the AzCopy command syntax in CLI?

Answer 27

azcopy copy [source] [destination] [flags]

Question 28

What are the available options for creating a storage account?

Answer 28

Azure Portal
Azure CLI (Command-line interface)
Azure PowerShell
Management client libraries

Question 29

What are the options for authenticating to BLOB storage?

Answer 29

Public access
Azure Active Directory (Azure AD)
Shared key
Shared access signature (SAS)

Question 30

What is public access also know as?

Answer 30

anonymous public read access for containers and blobs

Question 31

How many keys are automatically created per storage account?

Answer 31

Two 512 bit keys

Question 32

What can you use to manage shared keys?

Answer 32

Azure Key Vault

Question 33

What 3 types of SAS are supported by azure storage?

Answer 33

User delegation SAS
Service SAS
Account SAS:

Question 34

What is the most secure type of SAS

Answer 34

User Delegation

Question 35

This service offers an easy way of managing multiple storage accounts in multiple subscriptions

Answer 35

Azure Storage Explorer