AZ-140 Flashcards
1
Q
What 3 actions should you perform to backup profiles using snapshots?
A
- Register the Azure NetApp snapshot policy feature
- Create a Snapshot policy
- Apply a snapshot policy to a volume
2
Q
What Windows operating systems support the Remote Desktop Client?
A
- Windows 11 Pro
2.Windows 11 Enterprise
3.Windows 10 Pro
4.Windows 10 Enterprise
5.Windows Server 2022
6.Windows Server 2019
7.Windows Server 2016
3
Q
What 4 actions should you perform before Publishing a new app?
A
- Generate a signing certificate
- Create a MSIX package
- Create a MSIX Image
- Upload the MSIX image to Share 1
4
Q
You need to back up the session host data disks.
What three steps should you take?
A
- Create a backup vault
- Configure a managed identity
- Create a backup policy and configure a backup.
5
Q
You need to implement start/stop VMs during off-hours feature, how would you do this?
A
Configure the Diagnostic settings
6
Q
What CMD command would you run in PowerShell to disconnect users in AVD ?
A
Invoke-RdsUserSessionLogoff
7
Q
What is the usage of a Standard General Purpose V2 storage account?
A
Standard storage account type for blobs, file shares, queues, and tables. Recommended for most scenarios using Azure Storage. If you want support for network file system (NFS) in Azure Files, use the premium file shares account type.
8
Q
What is the usage of a premium block blob?
A
Premium storage account type for block blobs and append blobs. Recommended for scenarios with high transaction rates or that use smaller objects or require consistently low storage latency.
9
Q
What is the usage of a Premium file share?
A
Premium storage account type for file shares only. Recommended for enterprise or high-performance scale applications. Use this account type if you want a storage account that supports both Server Message Block (SMB) and NFS file shares.
10
Q
What is the usage for a premium page blob?
A
Premium storage account type for page blobs only.
11
Q
What type of storage account has a media tier of HDD?
A
File Storage + Storage V2
12
Q
What type of storage account has a media tier of SSD?
A
File Storage
13
Q
Which four action s do you perform to configure Azure Net App files to store User profile containers?
A
- Create a Azure NetApp files account
- Create a capacity pool
- Configure an Active directory Connection to the Azure Ad Tenant
- Create a New SMB volume
14
Q
What does VM N Series specialize in?
A
Graphic rendering and video editing
15
Q
What does VM E Series specialize in?
A
Memory optimized with a high memory to CPU ratio
16
Q
What does VM A series specialize in?
A
Entry level VMs for dev/test
17
Q
What does VM B series specialize in?
A
Economical Burstable VMs - Low cost - Low to moderate CPU usage.
18
Q
What does VM D series specialize in?
A
General Purpose Compute - Able to meet requirements of most production workloads
19
Q
What does VM F series specialize in?
A
Compute optimized virtual machines - Feature a higher CPU to memory usage
20
Q
You need to prevent users from accessing teh internet from AVD sessions. You change to RDP properties, does this meet the goal?
A
No - Correct answer is to modify the NSG.
21
Q
What is the path to configure to storage containers for session hosts using FSlogix?
A
\store1.file.core.windows.net\profiles
22
Q
What is stored in blob storage?
A
Blob Storage is optimized for storing massive amounts of unstructured data. In binary or TXT
23
Q
What is a personal Host pool?
A
Provides a dedicated desktop for each user as well as a dedicated session host.
24
Q
What is a pooled host pool?
A
Multiple users can share a group of virtual machines, and user sessions can be load balanced to any session host in the poo
25
What command should you run to ensure modern apps can use language packs when you deploy session hosts by using the custom image?
Disable-SchdeuledTask
"Pre staged app cleanup"
26
You need to add a new data disk, what 4 actions do u take?
1. Move the page file to Drive C
2. Change the drive letter of temporary storage (D)
3. Add the new disk and assign Drive D .
4. Move the page file to Temporary storage.
27
What should you do before adding an image to the shared image gallery?
Run Sysprep in command prompt.
28
What is a generalized image?
used as templates to create similar virtual machines - it is created by removing specific information from a VM, such as user accounts and unique machine identifiers, so that it can be reused for new VMs without duplicating that unique data.
29
What is a specialized Image?
A specialized Azure image is a virtual machine (VM) image that retains all the unique, machine-specific data from the original VM, such as the machine’s name, IP configurations, user accounts, and other personalized settings. Unlike a generalized image, a specialized image is essentially a clone of an existing VM, preserving its exact configuration.
30
Which is cheaper?
Office 365 E3 or Microsoft 365 E3?
Office 365 E3
31
What does Office 365 E3 give you access to?
All standard office apps, Onedrive.
32
What does Microsoft 365 E3 give you access to?
Everything in Office 365 E3 + Access to windows enterprise + Increased security and protection.
33
What is RDP Shortpath?
RDP short path establishes a UDP base transport between a local windows app or the remote desktop app on supported platforms.
34
You need to deploy Onedrive - What two actions do u take?
1.Implement application masking
2. Deploy a MSIX app attach package.
35
Name the four Azure scope levels?
1. Management group
2. Subscription
3. Resource Group
4. Resource
36
What can a Desktop Virtualization Contributor do?
Allows managing of all azure virtual desktop resources.
37
What can a Desktop Virtualization reader do?
Allows viewing all the azure desktop resources but doesn't allow changes to be made.
38
What can a desktop virtualization user do?
Allows users to use an application on a session host from a app group as a non-admin user.
39
What can a desktop virtualization host pool contributor do?
Allows managing all aspects of a Host Pool.
40
What can a desktop virtualization Host Pool reader do?
Allows viewing all aspects of a host pool but doesnt allow changes
41
Difference between contributor and reader role?
Contributor can make changes while a reader can only view.
42
Difference between host pools and session hosts?
A host pool is a collection of virtual machines that are registered as session hosts.
43
What is a registration token?
A registration token in Azure Stack Hub is a unique identifier that allows users to register Azure Stack Hub in a disconnected environment.
44
You need to deploy a VPN Gateway, what should you do first?
Modify the address space of VNet1
45
What is windows 10 multi session?
For users with identical compute requirements you can let more than 1 user log onto a single VM at once. Leading to cost saving.
46
What are the four operating systems that a host pool can run?
1. Windows 10 enterprise and windows 11 enterprise.
2. Windows 10 enterprise multi-session
3. Windows server 2012 R2 and above
4. Custom Windows system images with pre-loaded apps, group policies, or other customizations
47
What is VM series L good for?
Storage optimization
48
While deploying Azure Virtual desktop, what is used to integrate Active Directory Domain Services (AD DS) with Microsoft Entra ID?
Microsoft Entra Connect
49
Which of the following is used to connect remote users to Azure Virtual Desktop from any internet-connected device running an Azure Virtual Desktop client?
Remote Connection Gateway service
50
What does remote connection gateway service do?
The Remote Connection Gateway service connects remote users to Azure Virtual Desktop apps and desktops from any internet-connected device that can run an Azure Virtual Desktop client.
51
What does RD connection Broker do?
The Connection Broker service manages user connections to virtual desktops and remote apps. The Connection Broker provides load balancing and reconnection to existing sessions.
52
What is the recommended bandwidth for these four workload types?
Light, medium, Heavy, Power
1.5 MBPS
3 MBPS
5 MBPS
15 MBPS
53
What is the recommended bandwidth for these resolutions?
About 1024 × 768 px
About 1280 × 720 px
About 1920 × 1080 px
About 3840 × 2160 px (4K)
1.5 Mbps
3 Mbps
5 Mbps
15 Mbps
54
What do you use to determine the connection round-trip time (RTT) from your current location, through the Azure Virtual Desktop service, to the Azure region where you deploy virtual machines.
Azure Virtual Desktop Experience estimator
55
Where should FSlogix profiles be stored?
Azure Files
56
Give some details regarding Azure Files?
General Purpose, Azure native, Available in all regions.
Azure Backup snapshot integration.
57
Give some details regarding Azure NetApp Files?
Ultra performance or migration from netapp on prem.
Azure Native
Select regions not all
Azure netapp files snapshots
58
Give some details regarding Storage spaces direct?
Cross platform, Self managed, all regions, Azure backup snapshot integration
59
What is the per device installation command?
msiexec.exe /I /qn ALLUSERS=1
60
What is the per user installation command line?
msiexec.exe /i `` /qn ALLUSERS=2 MSIINSTALLPERUSER=1
61
What is federation integration?
Federation integration is an option in Microsoft Entra Connect used to configure a hybrid environment using on-premises Active Directory Federation Services (AD FS).
62
What is a point-to-site VPN?
Established between a virtual network and a single computer in your network.
63
What is a site to site VPN?
Established between your on-premises VPN device and an Azure VPN Gateway that is deployed in a virtual network.
64
What is azure express route?
Established between your network and Azure, through an ExpressRoute partner.
Traffic doesn't go over the internet
65
What is a NSG?
Network security groups and application security groups can contain multiple inbound and outbound security rules that enable you to filter traffic to and from resources by source and destination IP address, port, and protocol.
66
What is a BGP?
Border Gateway Protocol - If you connect your virtual network to your on-premises network using an Azure VPN Gateway or ExpressRoute connection, you can propagate your on-premises BGP routes to your virtual networks.
67
What is a Azure private link solution?
creating a private endpoint, traffic between your virtual network and the service remains on the Microsoft network, so you no longer need to expose your service to the public internet.
68
WHat should you use to connect to a VM?
Azure bastion
69
What does Network Watcher do?
a suite of tools to monitor, diagnose, view metrics, and enable or disable logs for Azure IaaS (Infrastructure-as-a-Service) resources. Network Watcher enables you to monitor and repair the network health
70
What are Flow Logs?
records of network traffic that can be used to monitor, analyze, and troubleshoot a network
71
What are premium file shares?
Premium file shares are backed by solid-state drives (SSDs) and are deployed in the FileStorage storage account type
72
What are standard file shares?
Standard file shares are backed by hard disk drives (HDDs) and are deployed in the general purpose version 2 (GPv2) storage account type.
73
What workload type should use premium file shares?
Light (More than 200 users), Medium, Heavy,Power.
74
What workload type should use standard file shares?
Light (Fewer than 200 users) + Light (More than 200 users)
75
What does standard storage Net app files provide?
16 MiB/s of throughput per 1 TiB
76
What does premium Storage net app files provide?
64 MiB/s of throughput per 1 TiB
77
What does ultra storage net app files provide?
128 MiB/s of throughput per 1 TiB
78
What is a general purpose version 2 (GPV2) storage account?
Standard GPv2 storage accounts allow you to deploy Azure file shares on standard/hard disk-based (HDD-based) hardware. In addition to storing Azure file shares, GPv2 storage accounts can store other storage resources such as blobs, queues, or tables.
79
What is filestorage storage accounts?
FileStorage storage accounts allow you to deploy Azure file shares on premium/solid-state disk-based (SSD-based) hardware. FileStorage accounts can only be used to store Azure file shares
80
What performance tier is recommended for a "heavy workload"?
Premium Tier
81
What comes first, Host pool or session host?
Host pool
82
What must user accounts be in to use AVD?
Microsoft Entra ID
83
What licensing Gives you access to VDI with windows 10/11 enterprise?
Microsoft 365 E3, E5
Windows Enterprise E3, E5
84
What licensing gives you access to VDI on servers with Windows server - 2016, 2019, 2022?
RDS CAL with software assurance.
85
Which PowerShell cmdlet verifies the AVD licensing?
Get-AzVM ResourceGroupName resourceGroupName Name vmName
86
What powershell command will apply a windows license?
$vm = Get-AzVM -ResourceGroup -Name
$vm.LicenseType = "Windows_Client"
Update-AzVM -ResourceGroupName -VM $vm
87
What is the command for a new host pool?
New-AzWvdHostPool
88
What is the first step of adding a session host to a host pool?
Generating a registration key
89
What is the best VM Size for windows?
Standard_D2_V2 or greater.
90
What is the azure compute gallery?
The Azure Compute Gallery lets you share your custom VM images with others in your organization, within or across regions, within a Microsoft Entra tenant
91
What should be done to ensure users can select their preferred language in the Settings menu?
The administrator should run a PowerShell cmdlet to add the installed language packs to the Languages menu.
92
What does infrastructure as Code do?
Infrastructure as Code (IaC) enables the automation and validation of the creation and teardown of environments to help deliver secure and stable application hosting platforms.
93
What are the 3 separate authentication points?
1. Service authentication to Azure Virtual Desktop
2. Session host
3. In-session authentication
94
What does the RBAC role "Desktop Virtualization User Session Operator" allow?
The Desktop Virtualization User Session Operator role allows sending messages, disconnecting sessions, and using the logoff function to sign users out of a session host.
95
What does the RBAC role Desktop Virtualization Session Host Operator allow?
The Desktop Virtualization Session Host Operator role allows viewing and removing session hosts, and changing drain mode
96
What 3 features do you need to assign a role to?
Autoscale.
Start VM on Connect.
App attach
97
What is a conditional access policy?
an advanced feature of Azure AD that allows you to specify detailed policies that control who can access your resources
98
What needs to be done To use a smart card to authenticate to Microsoft Entra ID?
the system administrator must either configure AD FS for user certificate authentication or configure Microsoft Entra certificate based authentication.
99
How do you enable Defender for cloud?
Search "Microsoft defender for cloud" in the azure portal. Choose enable.
100
How do you enable Defender for cloud on VDI?
1. Through local group policy
2. Domain group policy
3. On boarding using management tools
101
What are the 4 benefits of deploying conditional access requests?
Increase productivity
Manage risk
Address compliance and governance
Manage cost
102
What can help you improve your cloud security posture?
Secure Score in Microsoft defender for cloud
103
What container is used for a FSlogix solution?
Profile Container
104
What file type is FSLogix containers
VHDX - Virtual Hard disk
105
What 4 types of rules can you setup for FSlogix? and what do they do
Hiding Rule - A hiding rule hides specific items from a user or group of users
Redirection rule - Redirection rules allow IT administrators to redirect non-profile or other specific data into the user profile container so it's available on subsequent sign-ins regardless of which virtual machine they sign into.
app container (VHD) Rule - You can contain applications with a large amount of read-only data (for example, Clip Art galleries, Java applications, and so on) within a VHD and mount them to a virtual machine
Specify Value rule - The specify value rule will, at sign-in, set a registry value for a specific user or group of users
106
They have installed a reference image of Windows 10 1607 version 10.0.1393 on a virtual machine. What should be their next step?
Adjust settings during installation in Customize settings - The system administrator can adjust these settings during installation in Customize settings or after installation with Group Policy Editor.
107
What package type is used for Applications?
MSIX Packages
108
How to deploy One Drive?
Download OneDriveSetup.exe.
Run "OneDriveSetup.exe /allusers" from a command prompt window (this results in a User Account Control prompt) or by using Microsoft Endpoint Configuration Manager.
109
What redirects calling and meeting functionality from teams?
WebRTC redirector service
110
A system administrator needs to add an MSIX or Appx image as an app attach package using the Azure portal. What is the correct sequence of steps to accomplish this task?
Sign in to the Azure portal, search for Azure Virtual Desktop, select the matching service entry, select App attach, complete the Basics tab, select Next, complete the Image path tab, and finally assign the app attach package to host pools, users and groups.
111
A team is assigned to manage an application group in the Azure Virtual Desktop. What is the correct procedure to assign users or user groups to this application group using the Azure portal?
From the Azure Virtual Desktop overview, select Application groups. Select the application group from the list. From the application group overview, select Assignments. Select Add, then search for and select the user account or user group to assign to this application group. Finish by selecting Select.
112
An IT professional is tasked with setting up Azure Virtual Desktop Insights to monitor their Azure Virtual Desktop environments. What are the minimum Azure role based access control (RBAC) roles they need to have assigned?
Desktop Virtualization Reader and Log Analytics Reader
113
What does Azure Backup do?
Azure Backup provides independent and isolated backups to guard against unintended destruction of the data on your VMs. Backups are stored in a Recovery Services vault with built-in management of recovery points. Configuration and scaling are simple, backups are optimized, and you can easily restore as needed.
114
What does Azure site recovery do?
Azure Site Recovery is used to manage the replication of virtual machines to other Azure locations.
115
116
What should you do to install Microsoft Anti malware on the session hosts?
Add an extension to each session host
117
What storage account should you use whenever you can?
Standard general purpose v2 (GPv2)
118
Which storage SOLUTION has the highest IOPS and the lowest Latency?
Azure NetApp Files
119
What should you do before adding vm’s to a host pool?
Generate a Registration Key
120
What does failover clustering do?
Increase availability in servers, host pools etc
121
What should you never do inside the VM?
Configure Network settings
122
What should you do before deploying a windows 10 enterprise session host to a pool?
Modify the DNS settings of VNET1
123
What is used to establish a communication between an AVD infrastructure and on prem network resources?
Express Route and/or Site-to-Site VPN
124
What is RDP short path used for?
Used to establish a UDP based transport between a supported windows Remote Desktop client and a session host.
125
What can be used to prioritise network traffic?
Quality of service (QOS)
126
What allows you to define the next hop for outgoing traffic in azure?
User-defined routes
127
What is supported as cloud cache with FS LOGIX profile containers?
Page Blob Storage
128
Does a direct assignment require its own session host?
Yes
129
What is the first step for preparing a server for avd infrastructure?
Install the Remote Desktop session host role service
130
What duration should you set for a registration token?
15 mins
131
What is the max number of simultaneous image deployments?
Ideal number is 10 no more than 20
132
What is used to automate the creation and distribution of images?
Azure VM image builder
133
What is the cmdlet for creating a new compute gallery?
New-azgallery
134
What command is used to find the session name on a session host?
QWINSTA
135
You configure an azure page blob storage to store FS logix profiles, what registry should you use?
CDDLOcations
136
What should you configure for session time limits on a pool that has 10 session hosts?
Registry settings on each session host
137
Where do you configure start VM on connect?
Host Pool
138
What should you configure for usb device redirection?
RDP properties of Pool1 and Group Policy settings on users devices
139
What port and url maintain windows activation?
KMS.core.windows.Net
1688
140
What are the three steps for capturing an image using the azure portal?
Create an azure compute gallery
Create an image definition
Create an version
