AZ-900 Practice Test Questions

Question 1

What type of documents does the Microsoft Service Trust Portal provide?

Answer 1

A list of standards that Microsoft follows, pen test results, security assessments, white papers, FAQs, and other documents that can be used to show Microsoft’s compliance efforts

Question 2

What feature of a system makes it elastic?

Answer 2

The ability of it to add and reduce capacity based on actual demand

Question 3

What Azure tool gives you the ability to manage multiple subscriptions into nested hierarchies?

Answer 3

Management Groups

Question 4

Microsoft Entra ID

Answer 4

Enterprise identity service that provides SSO and MFA
Azure’s preferred Identity/Authentication service

Question 5

Azure Policy

Answer 5

Can add restrictions on storage account SKUs, virtual machine instance types, and rules relating to tagging of resources and groups

Question 6

True or False: Azure PowerShell scripts and CLI scripts are entirely compatible with each other

Answer 6

FALSE- these are different languages

Question 7

Resource Locks

Answer 7

Affect your ability to make changes to a resource within Azure but do not affect the resource itself.
A resource lock on a VM still allows it to operate, but prevents someone from restarting it.

Question 8

What affect does using a “read only” resource lock on an Azure Storage Account have?

Answer 8

The storage account cannot have its properties altered but it doesn’t affect the data itself.

Question 9

Cloud Shell

Answer 9

Allows access to the CLI and PowerShell consoles in the Azure Portal

Question 10

True or False: Azure is a public cloud, and has no private cloud offerings

Answer 10

FALSE- Azure Government and DoD services are private

Question 11

True or False: you can create your own policies if built-in Azure Policy is not sufficient to your needs

Answer 11

TRUE, can create policies using JSON

Question 12

Azure charges for ____ bandwidth

Answer 12

Egress/Outbound

Question 13

Azure Monitor

Answer 13

Collects all of the logs from various resources into a central dashboard, where you can run queries, view graphs, and create alerts on certain events

Question 14

Azure Service Health

Answer 14

Lets you know about any Azure-related service issues including region-wide downtime

Question 15

AzCopy

Answer 15

Allows you to copy files between two Azure Storage accounts without having to download the files to your local machine

Question 16

What is Single Sign-On?

Answer 16

The ability to log in once and use the existing userid and password to sign in to other applications, and not have to create/memorize a new one

Question 17

ARM

Answer 17

Azure Resource Manager
Common resource deployment model that underlies all resource creation or modification
No matter whether you use the portal, PowerShell or the SDK, ARM takes those commands and executes them

Question 18

Resource Groups

Answer 18

A folder structure in Azure in which you organize resources like databases, virtual machines, virtual networks, or almost any resource

Question 19

Why would someone prefer a consumption-based pricing model as opposed to a time-based (fixed) pricing model?

Answer 19

You can save a lot of money if you don’t use the resource often as opposed to having it available for use 24/7

Question 20

Azure Availability Zones

Answer 20

A feature of Azure that allows you to manually specify into which data center your virtual machines are placed, which allows you to achieve higher availability than any other option

Question 21

Microsoft Entra ID provides what licenses?

Answer 21

Free
P1
P2
Governance

Question 22

What Azure Resources are required in order to have a virtual machine?

Answer 22

Virtual Network
Storage Account
Network Interface Card (NIC)

Question 23

How many availability zones are there in each region (for regions that have them)?

Answer 23

3

Question 24

What Azure resource allows you to evenly split traffic coming in and direct it to several identical virtual machines to do the work and respond to the request?

Answer 24

Load Balancer or Application Gateway

Question 25

LRS

Answer 25

Locally Redundant Storage
Copies your data synchronously three times within a single physical location in the primary region
Least expensive replication option, but isn’t recommended for applications requiring high availability or durability

Question 26

ZRS

Answer 26

Zone-Redundant Storage
Copies your data synchronously across three Azure availability zones in the primary region
For applications requiring high availability, Microsoft recommends using ZRS in the primary region and also replicating to a secondary region

Question 27

What OS does Microsoft supply Azure Virtual Machine images for?

Answer 27

Windows and Linux

Question 28

Which Azure technology allows you to login to Microsoft Entra ID device or application using your face, PIN, or a gesture instead of typing a password?

Answer 28

Passwordless

Question 29

Which Azure technology allows you to manage virtual machines running in Azure, your own environment, and other environments like AWS?

Answer 29

Azure Arc

Question 30

Availability Sets

Answer 30

Allow you to tell Azure which virtual machines are identical, so that Azure will keep them apart physically inside the datacenter to ensure availability

Question 31

True or False: An Azure Storage Account can have both a public endpoint and a private endpoint at the same time

Answer 31

TRUE- public endpoint can be enabled, restricted to certain networks or disabled. Multiple private endpoints can be created. No restriction preventing you from having both a public endpoint accessible from the internet and one or more private endpoints as well

Question 32

Total Cost of Ownership

Answer 32

Includes cost of hardware, software, hosting, electricity, real estate, internet, salaries of employees

Question 33

Azure Scalesets

Answer 33

Can manage groups of virtual machines as one unit

Question 34

Azure Blueprints

Answer 34

Allows you to create a “template” on which new subscriptions can be made. This way, new subscriptions can come with a pre-defined list of policies, ARM templates, and custom RBAC roles.

Question 35

Azure Sovereign Regions

Answer 35

Dedicated to specific sovereign entities
Azure US Government
Azure China

Question 36

Express Route

Answer 36

Private connection from your data center to a Microsoft Azure partner, which has a direct fiberoptic connection into Azure

Question 37

Public Endpoint

Answer 37

Effectively a URL that you can use to access data and applications from outside a virtual network

Question 38

Compute Services

Answer 38

Resources that perform some type of task that requires CPU cycles to perform the work

Question 39

Azure Advisor

Answer 39

A tool that will analyze your use of Azure and make you specific recommendations based on your usage across availability, security, performance, and cost categories