az-500 third set

Question 1

describe high level how containers work

Answer 1

you have code, and components and you put those on an image

Question 2

name the three blob tiers for storage

Answer 2

hot, cool, archive

Question 3

name the two type of authentication of Azure SQL DB

Answer 3

1) sql authentication (locally stored user name + psw) or 2) AAD based

Question 4

in Azure Cosmod DB, what can you do with master keys

Answer 4

you can use master key to create user resources

Question 5

what two levels can audting loggin be enabled on Azure SQL DB?

Answer 5

Server and DB level

Question 6

name the three types of shared access signatures in azure

Answer 6

1) user delegation sas (based on AAD credentials, signed with delegation key) 2) service sas, very specific to only give access to blob storage, que, table, file 3) account sas (multiple services)

Question 7

what is needed before JIT to work?

Answer 7

the nsg needs to be attached to the vm

Question 8

what goes hand in hand with Front Door?

Answer 8

WAP and Front Door

Question 9

Which port needs to be opened up to allowed public internet traffic?

Answer 9

443

Question 10

Which port needs to be opened up to allow RDP?

Answer 10

3389

Question 11

In th NSG, where doe FQDN’s fit in?

Answer 11

Application Rules

Question 12

name 3 methods to secure the Cosmos DB

Answer 12

1) IP addresse filtinerg, 2) netowkr ip access through firewall, virtual networks 3) resource tokens (1 to 5 hours)

Question 13

Name 3 methods to secure the Data Lake Security

Answer 13

1) RBAC 2) Azure Active Directory Authentication 3) ACL

Question 14

Name 3 tests you can perform testing availability of your web application

Answer 14

1) URL ping test 2) playback of recorded web requests 3) custom telemetry client track —- > all done via application insights

Question 15

name the 5 identity providers

Answer 15

aad, microsoft account, facebook, google, twitter