AZ-900

Question 1

Types of cloud

Answer 1

Public cloud, private cloud and hybrid card

Question 2

cloud service models

Answer 2

IaaS Infrastructure-as-a-Service
PaaS Platform-as-a-Service
SaaS Software-as-a-Service

Question 3

Operating Expenses (OpEx)

Answer 3

With Operating Expenses (OpEx), you are only responsible for the computing resources that you use.

Question 4

Capital Expenditure (CapEx)

Answer 4

Capital Expenditure (CapEx) is the up-front spending of money on physical infrastructure, and then deducting that up-front expense over time. The up-front cost from CapEx has a value that reduces over time.

Question 5

Azure regions

Answer 5

A region is a geographical area on the planet that contains at least one but potentially multiple datacenters that are nearby and networked together with a low-latency network.

Question 6

availability zone

Answer 6

Availability zones are physically separate datacenters within an Azure region. Each availability zone is made up of one or more datacenters equipped with independent power, cooling, and networking.

Question 7

Zonal services

Answer 7

You pin the resource to a specific zone (for example, VMs, managed disks, IP addresses).

Question 8

Zone-redundant services

Answer 8

The platform replicates automatically across zones (for example, zone-redundant storage, SQL Database).

Question 9

Non-regional services:

Answer 9

Services are always available from Azure geographies and are resilient to zone-wide outages as well as region-wide outages.

Question 10

region pair

Answer 10

Each Azure region is always paired with another region within the same geography (such as US, Europe, or Asia) at least 300 miles away. This approach allows for the replication of resources (such as VM storage) across a geography that helps reduce the likelihood of interruptions because of events such as natural disasters, civil unrest, power outages, or physical network outages that affect both regions at once.

Question 11

Resource

Answer 11

A manageable item that’s available through Azure. Virtual machines (VMs), storage accounts, web apps, databases, and virtual networks are examples of resources.

Question 12

Resource group

Answer 12

A container that holds related resources for an Azure solution. The resource group includes resources that you want to manage as a group. You decide which resources belong in a resource group based on what makes the most sense for your organization

Question 13

What get deleted when you delete a resource group?

Answer 13

all resources contained within it are also deleted

Question 14

Azure Resource Manager

Answer 14

Azure Resource Manager is the deployment and management service for Azure. It provides a management layer that enables you to create, update, and delete resources in your Azure account.

Question 15

Azure subscription

Answer 15

An Azure subscription is a logical unit of Azure services that links to an Azure account, which is an identity in Azure Active Directory (Azure AD) or in a directory that Azure AD trusts.

Question 16

Billing boundary

Answer 16

This subscription type determines how an Azure account is billed for using Azure. You can create multiple subscriptions for different types of billing requirements.

Question 17

Access control boundary

Answer 17

Azure applies access-management policies at the subscription level, and you can create separate subscriptions to reflect different organizational structures

Question 18

Azure compute services

Answer 18

Azure Virtual Machines
Azure Container Instances
Azure App Service
Azure Functions (or serverless computing)

Question 19

What are virtual machine scale sets?

Answer 19

Virtual machine scale sets let you create and manage a group of identical, load-balanced VMs

Question 20

What is Azure Batch?

Answer 20

Azure Batch enables large-scale parallel and high-performance computing (HPC) batch jobs with the ability to scale to tens, hundreds, or thousands of VMs.

Question 21

What’s app service?

Answer 21

App Service enables you to build and host web apps, background jobs, mobile back-ends, and RESTful APIs in the programming language of your choice without managing infrastructure

Question 22

What’s a container?

Answer 22

Containers are a virtualization environment. Much like running multiple virtual machines on a single physical host, you can run multiple containers on a single physical or virtual host. Unlike virtual machines, you don’t manage the operating system for a container.

Question 23

Micro-billing

Answer 23

pay only for the time their code runs

Question 24

What are Azure Functions?

Answer 24

Azure Functions is a serverless solution that allows you to write less code, maintain less infrastructure, and save on costs. Instead of worrying about deploying and maintaining servers, the cloud infrastructure provides all the up-to-date resources needed to keep your applications running

Question 25

Azure Logic Apps

Answer 25

Azure Logic Apps is a cloud platform where you can create and run automated workflows with little to no code. By using the visual designer and selecting from prebuilt operations, you can quickly build a workflow that integrates and manages your apps, data, services, and systems.

Question 26

Management groups

Answer 26

governance scope above subscriptions. You organize subscriptions into management groups; the governance conditions you apply cascade by inheritance to all associated subscriptions.

Question 27

How many AD can trust a management group?

Answer 27

One

Question 28

How many management group can be supported in a single directory?

Answer 28

10,000

Question 29

How many levels can support a management group?

Answer 29

Six

Question 30

Can policies be applied at group level?

Answer 30

Yes

Question 31

Who gets access to the root management group?

Answer 31

No one is given the default access but Azure AD global administrators can elevate themselves to get access.

Question 32

Built in role that Grants full access to manage all resources, but does not allow you to assign roles in Azure RBAC, manage assignments in Azure Blueprints, or share image galleries.

Answer 32

Contributor

Question 33

Built in role that Grants full access to manage all resources, including the ability to assign roles in Azure RBAC.

Answer 33

Owner

Question 34

Built in role that View all resources, but does not allow you to make any changes

Answer 34

Reader

Question 35

Built in role that Lets you manage user access to Azure resources.

Answer 35

User Access administrator

Question 36

What is Microsoft Cloud Adoption Framework for Azure?

Answer 36

It is a full lifecycle framework that enables cloud architects, IT professionals, and business decision makers to achieve their cloud adoption goals. It provides best practices, documentation, and tools that help you create and implement business and technology strategies for the cloud.

Question 37

Cloud adoption framework methodologies

Answer 37

Strategy, plan, ready, migrate, innovate, secure, manage, govern and Organize

Question 38

CAF: Strategy

Answer 38

Define business justification and expected adoption outcomes.

Question 39

CAF: Plan

Answer 39

Align actionable adoption plans to business outcomes.

Question 40

CAF: Ready

Answer 40

Prepare your cloud environment for planned changes.

Question 41

CAF: Migrate

Answer 41

Migrate and modernize existing workloads.

Question 42

CAF: Innovate

Answer 42

Develop new cloud-native or hybrid solutions.

Question 43

CAF: Secure

Answer 43

Improve security over time.

Question 44

CAF: Manage

Answer 44

Manage operations for cloud and hybrid solutions.

Question 45

CAF: Govern

Answer 45

Govern your environment and workloads.

Question 46

CAF: Organize

Answer 46

Align the teams and roles supporting your organization’s cloud adoption efforts.

Question 47

Can azure storage be disabled?

Answer 47

No

Question 48

What are azure storage tiers?

Answer 48

Standard and premium

Question 49

Who handles storage encryption keys?

Answer 49

There’s microsoft-managed keys, customer-managed key and customer-provided keys.

Question 50

Which services support customer-managed keys?

Answer 50

Blob storage and azure files

Question 51

Which service support customer-provided keys?

Answer 51

Blob storage

Question 52

Who handles storage encryption and descryption/

Answer 52

Azure

Question 53

What’s is Doubly encrypt?

Answer 53

Data storage is encrypted twice. Once at service level and once at infrastructure level.

Question 54

Does azure storage support client or service side encryption?

Answer 54

Both, but service side is recommended and client side is supported by some languages like java, python and .net.

Question 55

Which tool can help you meet regulatory compliance requirements?

Answer 55

Microsoft Defender for Cloud using the regulatory compliance dashboard.

Question 56

When does the Microsoft cloud security benchmark gets assigned?

Answer 56

When you enable Defender for Cloud on an Azure subscription

Question 57

What’s application insights?

Answer 57

Application Insights is an extension of Azure Monitor and provides Application Performance Monitoring. it helps monitor:
Proactively understand how an application is performing.
Reactively review application execution data to determine the cause of an incident.

Question 58

What does application insight provides?

Answer 58

Live metrics, availability, GitHub or Azure DevOps integration, usage and smart detection.

Question 59

How do you enable application insight?

Answer 59

Application Insights is enabled through either Auto-Instrumentation (agent)(prefered) or by adding the Application Insights SDK to your application code.

Question 60

Which tool can collect metrics, application telemetry and collect and store application trace logging data?

Answer 60

Application insights

Question 61

How does the azure hybrid benefit works?

Answer 61

It works by letting you use Software Assurance-enabled Windows Server and SQL Server licenses, and RedHat and SUSE Linux subscriptions on virtual machines in Azure.

Question 62

With the hybrid benefit, what’s the cost of a Windows Server VMs on Azure?

Answer 62

The license for Windows Server is covered by Azure Hybrid Benefit, so you only need to pay for the base compute rate of the virtual machine.

Question 63

What’s an azure policy initiative?

Answer 63

Initiatives enable you to group several related policy definitions to simplify assignments and management because you work with a group as a single item.

Question 64

What’s cloud bursting?

Answer 64

In cloud computing, cloud bursting is a configuration that’s set up between a private cloud and a public cloud to deal with peaks in IT demand.

Question 65

When is cloud bursting used?

Answer 65

If an organization using a private cloud reaches 100 percent of its resource capacity, the overflow traffic is directed to a public cloud so there’s no interruption of services.

Question 66

What is virtual network peering?

Answer 66

Virtual network peering enables you to seamlessly connect two or more Virtual Networks in Azure. The virtual networks appear as one for connectivity purposes.

Question 67

Where is the blog data stored?

Answer 67

All blob data is stored within containers, you must create a storage container before you can begin to upload data.

Question 68

What is spot pricing?

Answer 68

Use Spot Virtual Machines to buy unused compute capacity at significant cost savings.

Question 69

What’s azure monitor?

Answer 69

Azure Monitor is a comprehensive monitoring solution for collecting, analyzing, and responding to telemetry from your cloud and on-premises environments. You can use Azure Monitor to maximize the availability and performance of your applications and services.

Question 70

it’s the system ability to scale (allocate/deallocate) resources

Answer 70

Scalability

Question 71

it’s the ability to scale quickly.

Answer 71

Agility

Question 72

The ability to scale quickly and automatically. Processing power matches the demand

Answer 72

Elasticity