(AZ-900 topic) Describe Core Azure Services Flashcards

AZ-900 topic assess your ability to: Talk about the core Azure architectural components and to also be able to talk about the core resources that are available on Azure Questions for this domain comprise 18% of the total questions for the AZ-900.

1
Q

Which of the following are Platform-as-a-Service (PaaS) database offerings on Azure?
choose 2

  • SQL Server in Azure VM
  • Azure MySQL Database Platform
  • SQL Server Private Cloud
  • Azure SQL Database
  • Cosmos DB
A
  • Azure SQL Database
  • Cosmos DB

Azure SQL Database is a fully managed offering which provides the option of either a hosted service (PaaS) or hosted infrastructure (IaaS).

Azure Cosmos DB is a fully managed Platform-as-a-Service database offering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which of the following Azure storage types is most suitable for sharing files using the Server Message Block (SMB) protocol? (choose 1)

  • Blob Storage
  • Azure Files
  • Disk Storage
  • Azure Storage Explorer
A

-Azure Files

Azure Files provides highly available network file shares using the SMB protocol. This allows multiple VMs to read and write the files, and files may be accessed remotely using a URL.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

To access the Azure Cloud Shell (>_), what do you need to do?

  • The Cloud Shell is not accessible from the Azure Portal.
  • Type Open Cloud Shell in the Azure Portal search bar.
  • Select the icon (>_) in the top menu of the Azure Portal.
  • Select the icon (>_) in the list on the left menu of the Azure Portal.
A

Select the icon (>_) in the top menu of the Azure Portal.

The Azure Cloud Shell is accessible by selecting the (>) button in the top menu of the Azure Portal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the name of the logical container used to group together and manage resources in Azure?

  • Cloud Groups
  • Cloud Folders
  • Resource Folders
  • Resource Groups
A

-Resource Groups

Resource Groups.

An Azure Resource Group is a container used to hold the resources deployed in your Azure account. Resource Groups can contain almost any type of resource in Azure, such as Virtual Machines, VNets, and Storage Accounts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which are considered serverless services on Azure?
choose 3

  • Azure Functions
  • Azure Logic Apps
  • Event Grid
  • Azure Front Door
  • Azure Data Lake Analytics
  • App Services
A
  • Azure Functions
  • Azure Logic Apps
  • Event Grid

Azure Functions, Logic Apps and Event Grid are all serverless services on Azure. Azure Data Lake Analytics is a Big Data tool for processing and analyzing Big Data. App Services is a PaaS offering for web applications. Azure Front Door is a scalable and secure web frontend for your web applications.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which statement best describes a Hybrid Cloud architecture?

  • Does not require any on-premise hardware
  • Utilizes services of both Public and Private Clouds
  • Cannot be used with Microsoft Azure
  • Special use case for secure Government workloads
A

-Utilizes services of both Public and Private Clouds

A Hybrid Cloud architecture describes a solution that utilizes both Public and Private Cloud offerings, including private on-premise systems. This is useful, because it allows companies the flexibility of the cloud, but can also manage tight governance requirements which may not allow certain data to be held in the Public Cloud. This can require on-premise hardware. This approach is possible with Microsoft Azure, and is not specific to any type of workloads, although Governments may find this especially useful.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which Azure service can provide big data analysis for machine learning?

  • Azure Databricks
  • Azure App Service
  • Application Insights
  • Azure WebJobs
A

-Azure Databricks

Azure Databricks is an Apache Spark-based analytics platform optimized for the Microsoft Azure cloud services platform. Databricks enables collaboration between data scientists, data engineers, and business analysts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

To access the Azure Portal in a web browser, what website URL do you need to visit?

  • www.azureportal.com
  • portal.microsoftazure.com
  • portal.azure.com
  • console.azure.com
A

-portal.azure.com

The Azure Portal can be accessed from portal.azure.com in a web browser. The other URLs will not provide access to the Azure Portal. Be careful to only log in to the portal from a legitimate address.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Azure virtual machines can be moved between which of the following Azure resources?
(choose 4)

  • Subscriptions
  • Regions
  • Availability Zones
  • Availability Sets
  • Resource Groups
A
  • Subscriptions
  • Regions
  • Availability Zones
  • Resource Groups

Azure virtual machines can be moved between subscriptions with either Azure PowerShell or the Azure portal.

Using Azure Site Recovery, you can migrate Azure VMs to other regions.

Using Azure Site Recovery, you can migrate Azure VMs to other Availability Zones.

Azure virtual machines can be moved between resource groups with either Azure PowerShell or the Azure portal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which of the below is a compute service which allows you to run VMs inside a cloud network?

  • Azure Virtual Network
  • Cloud Services
  • Redis Cache
  • Azure Virtual Machines
A

-Azure Virtual Machines

Azure Virtual machines is a compute service which allows you to run virtual machines in the Cloud.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the description of a region in Microsoft Azure?

  • A geographical area containing at least one Azure datacenter per continent worldwide.
  • A geographical area containing all of the Azure datacenters located within a single countries borders.
  • A logical boundary defining the secure communication boundary between a customers virtual machines.
  • A set of datacenters deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network.
A

-A set of datacenters deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network.

An Azure region is a set of data centres, deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network. With more global regions than any other cloud service provider, Azure gives customers the flexibility to deploy applications where they need. An Azure region has discrete pricing and service availability.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which of the following are available in the Azure Marketplace?
(choose 3)

  • Solution templates
  • SaaS applications
  • Sample application code
  • Virtual machine images
A
  • Solution templates
  • SaaS applications
  • Virtual machine images

Solution templates allow you to deploy entire IaaS solutions with a simple click. Examples include complete SharePoint farms as well as SQL Always Available clusters.

SaaS applications make up the majority of the Azure Marketplace. One click allows you to install and use many popular applications; such as Office365, Salesforce, Zoom, and others seamlessly with your Azure subscription.

Virtual machine images are available in the Azure Marketplace. Images are available for Windows and Linux. Stock operating system images, as well as custom images with pre-installed applications, are also available.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What methods are available to connect to the Azure Public Cloud?
(choose 3)

  • Client or Site to Site VPN
  • Over the internet
  • Physically at the Azure datacentre
  • Express Route
A
  • Client or Site to Site VPN
  • Over the internet
  • Express Route

The methods to connect to the Azure Public Cloud are over the internet to public endpoints, via site or client VPN’s to devices you configure in the Cloud environment or through a dedicated connection such as Express Route. As a customer it is not possible to connect directly into the environment whilst being physically at the datacentre.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

You are migrating an application from on premise to the Azure Cloud, the application communicates with a file share hosted on a Windows server that no other applications have access to. Which Azure storage service could be used to migrate the file share to?
(choose 2)

  • Azure files
  • Azure Data Lake
  • Azure Disks
  • Azure Virtual Machine
A
  • Azure files
  • Azure Disks

Both Azure Files and Azure Disks can be used to house the migrated Windows file share data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

For any Single Instance virtual machine using premium SSD or Ultra Disk for all Operating System Disks and Data Disks, what is the SLA guarantee for virtual machine connectivity?

A

99.90%

For any Single Instance Virtual Machine using Premium SSD or Ultra Disk for all Operating System Disks and Data Disks, Azure guarantees you will have Virtual Machine Connectivity of at least 99.9%. Standard SSDs do not have a single instance VM SLA. Use Premium SSD disks for single instance VM SLA.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

You have been asked to migrate a Windows-based legacy on-premise application to Azure with the minimal effort possible, which compute service should you choose?

  • Containers
  • Serverless
  • Blob Storage
  • Virtual Machines
A

-Virtual Machines

The simplest migration approach would be to use Azure Migrate and target Virtual Machines - virtual machines have the closest similarity to the on-premises platform where the application resides.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Your company, A Llama Guru, is becoming increasingly popular (why wouldn’t it be?). You have to add more virtual machines to run your web facing application. What is the best way to ensure that traffic is distributed and that all virtual machines are being used optimally?

  • Use a VPN Gateway to route secure and insecure requests to the appropriate virtual machine in your backend pool.
  • Create a pool of identical virtual machines that can all take an equal share of the incoming requests.
  • Use Azure Load Balancer to distribute the inbound flow of internet traffic to a backend pool of virtual machines.
  • Use an Azure Application Gateway to recognize the application requested and guide the traffic to the appropriate machine.
A

-Use Azure Load Balancer to distribute the inbound flow of internet traffic to a backend pool of virtual machines.

An Azure Load Balancer service is used to distribute all incoming requests to a web endpoint, and then guiding it to an instance in a backend pool of servers. Application Gateway is used to route traffic to specific VMs based on traffic properties such as the URL. A VPN Gateway is used to link Azure and your on-premises account securely as if on the same network.

18
Q

Which of the following solutions describes Azure Cosmos DB?

  • A MySQL compatible database solution with high availability and elastic scaling.
  • A globally distributed multi-model database service.
  • A powerful database service designed specifically for analytics.
  • A scalable in-memory data store.
A

-A globally distributed multi-model database service.

Azure Cosmos DB is a globally distributed multi-model database offering designed to guarantee low latency and high availability. It is compatible with Cassandra, MongoDB and other NoSQL workloads.

19
Q

App Services allows you to create web, mobile, API and logic apps. In the shared responsibility model, what model is App Services aligned to?

A

Platform as a Service (PaaS)

App Services aligns to the Platform as a Service Model as App Services provides a development and deployment environment, with Infrastructure components, development tools, business intelligence and database management systems all ready to go without you having to provision the individual components

20
Q

Wonderweb Inc has been storing essential customer data in a database on a local server copy of PostgreSQL. Their database storage needs to be expanded, and they are now looking for a cloud-based solution. Wonderweb no longer wants to manage its PostgreSQL server, and high availability is now important as the customer base grows.

As their IT pro, what open-source database solution would you suggest?

  • Azure Database for MySQL
  • Azure Cosmos DB
  • Azure SQL Database, Elastic Pod
  • Azure Database for PostgreSQL, Single Server Option
  • Azure Database for PostgreSQL, Hyperscale Option
A

-Azure Database for PostgreSQL, Single Server Option

The best solution for Wonderweb would be to use the Azure Database for PostgreSQL, Single Server. The Single Server option will meet their needs. It is a fully managed service and offers 99.99% performance guarantee.

An Azure SQL Database, Elastic Pool, would not be the solution for Wonderweb. They would have to convert their database to SQL. Also, SQL Database is not an open-source solution.

The Azure Database for MySQL could meet Wonderweb’s needs. Still, there is no particular benefit to convert the database to MySQL, as there is an Azure offering that already works for PostgreSQL.

The Azure Cosmos DB option would not work for Wonderweb. Cosmos DB is not a relational database.

Azure Database for PostgreSQL, Hyperscale option would work for Wonderweb, but it is not the best option. Hyperscale offers high-performance horizontal scaling, but the scenario does not indicate a need for this additional functionality.

The Azure Database for PostgreSQL is also now offered in a third option, Flexible Server, currently in preview. As the name suggests, this service allows more granular control and flexibility. It is best for workloads that don’t need full computing power continuously.

21
Q

The web team of Nutex Corporation is developing a new enterprise solution. They are using the newest technologies, and the functionality is divided into many independent parts that can be maintained, scaled, or updated independently. Locally they have the development environment in a Docker container installed on Windows 10 machines.

They need a development environment for testing in Azure.

What will you recommend as the fastest and simplest way to deploy the development environment in Azure?

  • Azure Kubernetes Service (AKS)
  • Azure Functions
  • Azure Virtual Machines (VM)
  • Azure Container Instances (ACI)
A

-Azure Container Instances (ACI)

You should choose ACI. ACI offers the fastest and simplest way to create, start up, and run a container which can be used as a development environment. ACI takes less than 30 seconds to start a container in the best scenarios, faster than using App Services to create a development environment.

You should not choose Azure Kubernetes Service (AKS). It is an orchestration service that requires a YAML file for configuration. It is more complex and for more enterprise solutions.

You should not create an Azure Virtual Machine to host containers. You have to install Docker on it and then work with it. Also, the installation process requires to ensure if Hyper-V features are enabled.

You should not choose Azure Functions, because they are used for serverless processing, and not for hosting containers.

22
Q

The Nutex Corporation is moving large amounts of data into Azure. They want to use a fully managed database service with global distribution
and replication capabilities. They want to use Azure Cosmos DB.

Which of the following statements about Azure Cosmos DB are TRUE? (Select all that apply.)

  • Time to Live or TTL is the ability to refresh items automatically from a container, after a certain time period.
  • The connection modes to connect to Azure Cosmos DB are DirectTcp, Directhttps, and Gateway.
  • Azure Cosmos DB provides only four APIs: Core (SQL) and MongoDB for document data, Azure Table, and Cassandra.
  • The maximum of number of Azure Cosmos DB accounts that you can create under an Azure subscription is 100.
  • Replica-set is a self-managed and dynamically load-balanced group of replicas spread across a single fault domain.
A
  • The connection modes to connect to Azure Cosmos DB are DirectTcp, Directhttps, and Gateway.
  • The maximum of number of Azure Cosmos DB accounts that you can create under an Azure subscription is 100.

You can create a maximum of 100 Azure Cosmos DB accounts under an Azure subscription. To manage your data and provisioned
throughput, create one or more Azure Cosmos databases under your account and within that database, create one or more containers.

DirectTcp, DirectHttps, and Gateway are connection modes to use with Azure Cosmos DB. DirectTcp and Directhttps use the TCP and HTTPS
protocols. Both these modes need ports between 10000 and 20000 to be open, because Azure Cosmos DB uses dynamic TCP ports.
Gateway mode uses the standard HTTPS port and a single endpoint.

Time to Live or TTL is not the ability to refresh items automatically from a container, after a certain time period. Time to Live or TTL is the ability
to DELETE items automatically from a container, after a certain time period. TTL is configured in seconds. After a TTL is set for a container or
an item, Azure Cosmos DB automatically deletes the items after the specified time period, since the time they were last modified.
Replica-set is a self-managed and dynamically load-balanced group of replicas spread across a multiple fault domains, not a single fault
domain. Azure Cosmos DB’s global distribution relies on two key abstractions – replica-sets and partition-sets. A physical partition is
materialized as a self-managed and dynamically load-balanced group of replicas spread across multiple fault domains, called a replica-set. A
group of physical partitions, one from each of the configured with the Cosmos database regions, is composed to manage the same set of keys
replicated across all the configured regions. This higher coordination primitive is called a partition-set - a geographically distributed dynamic
overlay of physical partitions managing a given set of keys.

Azure Cosmos DB provides five APIs, not four: Core (SQL) and MongoDB for document data, Gremlin for graph data, Azure Table, and
Cassandra.

23
Q

The Nutex Corporation purchased another company and is moving a large amount of that data to Azure.

Which of the following statements about Azure Archive Storage are TRUE? (Select all that apply.)

  • The process of making archived Blob data online and reusable is known as rehydration.
  • Data in an Archive blob cannot be copied to another Archive blob.
  • Deleting or rehydrating an Archive blob before 180 days invites an early deletion fee from Microsoft.
  • A large blob takes more time than several small blobs to rehydrate.
  • Blobs that are assigned an Archive Access tier must be first rehydrated to the Cool tier and later to the Hot tier
A
  • The process of making archived Blob data online and reusable is known as rehydration.
  • Data in an Archive blob cannot be copied to another Archive blob.
  • Deleting or rehydrating an Archive blob before 180 days invites an early deletion fee from Microsoft.

The data in a blob is in the Archive Access tier is offline and can’t be read or modified. The archived Blob metadata is online and provides the blob’s properties. The two ways of retrieving and accessing data in an archived blob are rehydration and copying the Archive blob to a hot or cool tier. Rehydrating a blob can take up to hours.

Rehydrating one large blob takes LESS time than rehydrating multiple small blobs.

Early deletion fees DO NOT apply when archived blob is copied to an online blob. Blobs in the archive tier should be stored for a minimum of 180 days. Deleting or rehydrating archived blobs before 180 days will INCUR early deletion fees.

The Copy Blob operation can be used to copy an archived blob. The original blob is not modified during or after the copy operation. Archive blobs can only be copied to online destination tiers, hot and cool. Copying an archived blob to another archived blob is NOT supported.

Azure Archive Storage is an access tier available for blob storage. Archive Storage provides secure data transfer to the cloud using HTTPS and automatically secures that data at rest using 256-bit AES keys.

Archive Storage can be used for long term backup retention, business policy mandated data archiving, and large volumes of video content and surveillance data backup retention.

Archived blobs CAN be rehydrated to a hot or cool tier. The blob’s tier can be set by using the x-ms-access-tier request header.

24
Q

Your company needs to automatically or dynamically increase or decrease resources as needed. Resources need to be added or removed automatically to meet future needs, and from the most advantageous geographic location in the cloud. Which cloud feature is needed in this scenario?

  • Fault tolerance
  • Elasticity
  • Scalability
  • Economy of scale
  • High availability
  • Agility
  • Disaster recovery
A

-Elasticity

You would choose elasticity. This feature increases or decreases resources as needed, but unlike scalability, elasticity is done automatically. Elastic resources are based on the current needs and resources are added or removed dynamically to meet those needs, from the most
advantageous geographic location. A distinction between scalability and elasticity is that elasticity is done automatically.

You would not choose high availability. This feature allows services to run for extended periods, with very little downtime, depending on the
service.

You would not choose scalability. This feature can increase (scale-up) or decrease (scale-down) resources that are assigned to a workload. As demand increases, you can add additional resources or capabilities to manage the increase in demand (known as scaling up). Scalability does not have to be done automatically.

You would not choose agility. Agility is the ability to react quickly. Cloud services can allocate and deallocate resources quickly. These are on-demand services that are provisioned in minutes. There is no manual intervention in provisioning or deprovisioning services.

You would not choose fault tolerance. Fault tolerance is the ability to remain up and running in the event of a component or service that is no longer functioning. Typically, redundancy is built into cloud services architecture so that if one component fails, a backup component takes its place. This type of service is said to be tolerant of faults.

You would not choose disaster recovery. This feature allows you to recover from a cloud service outage caused by an event. Cloud services disaster recovery can happen very quickly with automation, with resources being readily available for use.

You would not choose economy of scale. The concept of economy of scale is the ability to do business cheaper and more efficiently when operating on a larger scale, in comparison to operating on a smaller scale.

25
Q

You are an Azure consultant for Dreamsuites Inc. The company has followed your recommendations to move to Azure DevOps Services. The
local data center is slowly being deprecated, so you suggest that Azure DevTest labs will be a useful option for developers. What are some
benefits/features that DevTest labs can offer? (Choose all that apply.)

  • Base Azure VM images
  • Collect security logs from operating systems
  • Azure Resource Manager templates
  • Automatically build and test code projects
  • Track costs on VM resources
A
  • Base Azure VM images
  • Azure Resource Manager templates
  • Track costs on VM resources

Azure DevTest labs will allow Dreamsuites to track costs on VM resources. Caps can be set on labs, limiting the number of VM’s per user and per lab. A monthly Estimated Cost Trend chart is available in the Azure Portal.

Azure DevTest labs can offer Dreamsuites the option to create base Azure VM images. This would be a curated set of VM bases that are configured and approved by the team.

Azure DevTest labs does not include the ability to collect security logs from operating systems. However, this is a recommended task for the DevTest VM’s, and can be accomplished with the Azure Security Center.

Azure DevTest labs does not include the ability to automatically build and test code projects. That is the function of Azure Pipelines, one of the Azure DevOps services.

Azure DevTest labs will allow Dreamsuites to use Azure Resource Manager templates. These templates can be used to quickly create new labs, or modify existing labs.

Azure DevTest labs are designed for quick setup of development or test environments. Unlike Managed (Classroom) Labs, DevTest Labs are manually created, and are managed by the enterprise. Microsoft does offer Powershell scripts to automate DevTest lab deployment.

26
Q

You are required to help the organization to understand Azure Kubernetes Service in detail.

Which of the following statements are correct? (Choose all that apply.)

  • Your application workload is run in pods.
  • You cannot change the size of the node after creation.
  • Node pools provide the orchestration of application workloads.
  • You can change the number of nodes after creating the AKS.
  • A single instance of your application represents a pod.
A
  • You cannot change the size of the node after creation.
  • You can change the number of nodes after creating the AKS.
  • A single instance of your application represents a pod.

The Azure Kubernetes Service (AKS) provides a managed orchestration service that makes for easier deployment and management tasks of containers

In AKS, you run your application in a node. After creating the AKS, you can change the number of nodes but you cannot change the node size. You cannot change the VM size in an Azure Kubernetes Service (AKS) cluster once the cluster has been deployed. A single instance of your application represents a pod.

Node pools do not provide the orchestration of application workloads. Cluster master nodes provide the orchestration of application workloads.

Your application workload is not run in pods. Nodes run your application workloads. A single instance of your application represents a pod.

27
Q

Which of the following Azure offerings provide a platform for serverless computing? (choose 2)

  • Azure WebJobs
  • Azure App Service
  • Azure Functions
  • Azure Service Bus
A
  • Azure App Service
  • Azure Functions

Azure App Service enables you to build and host web apps, mobile back-ends, and RESTful APIs in the programming language of your choice without managing infrastructure.

Azure Functions is a serverless compute service that enables you to run code-on-demand without having to explicitly provision or manage infrastructure. Use Azure Functions to run a script or piece of code in response to a variety of events.

28
Q

You are the Systems Administrator for a local university. You are deploying several sets of systems that will be used for research and development teams. Each set of systems will be uniform in nature, containing the same number and type of Azure resources. What should you recommend to automate the creation of these Azure resources? (choose 1)

  • Azure Resource Manager templates
  • Multiple Azure Subscriptions
  • Virtual machine scale sets
  • Management groups
A

-Azure Resource Manager templates

An Azure Resource Manager template is the framework by which resources are created. They can be used to define and automate the creation of similar resources.

29
Q

What are the characteristics of an Availability Zone? (choose 3)

  • Availability Zones only apply for Storage Accounts.
  • Each zone has its own isolated power, cooling, and networking.
  • Each zone runs different Azure services.
  • Availability Zones exist within regions.
  • Availability Zones protect your instances from the failure of a single datacenter.
A
  • Each zone has its own isolated power, cooling, and networking.
  • Availability Zones exist within regions.
  • Availability Zones protect your instances from the failure of a single datacenter.

An Azure Availability Zones are groups of datacenters within a region which have their own isolated power, cooling, and networking. This is to ensure if one part of a local power grid fails, or a major internet outage occurs in a city that it should not impact multiple datacenters. This exists to protect your instances from the failure of entire datacenters. Each availability zone will share part of the load for running every Azure service in a region. Many resource types can benefit from Availability Zones, such as Storage Accounts, Virtual Machines, and Databases

30
Q

You have a web application on Azure with a number of virtual machines to run various processes. One of these virtual machines is in charge of processing images. Which Azure service could you use to route all requests for the “/image/” URLs to this specific VM?

  • Use an Application Gateway to route URLs containing the “/image/” path.
  • Use Azure Load Balancer to route URLs containing the “/image/” path.
  • Use a VPN Gateway to route URLs containing the “/image/” path.
  • Implement a content delivery network to route URLs containing the “/image/” path.
A

-Use an Application Gateway to route URLs containing the “/image/” path.

An Application Gateway is used specifically for routing traffic based on parameters in the traffic itself. This could be all requests to the “/images/” path of the URL being sent to a specific VM. A VPN Gateway is used to securely connect an Azure Virtual Network with an on-premises network. A CDN does not route traffic. A Load Balancer routes all traffic without looking at it.

31
Q

You need to create a network drive in Azure Storage. The drive needs to be accessible from several computers that run Windows 8.1. What storage solution should you create?

  • A virtual machine data disk
  • A File service in a storage account
  • A Blob service in a storage account
  • A Queue service in a storage account
A

-A File service in a storage account

Azure Files offers fully managed file shares in the cloud that are accessible via the industry standard Server Message Block (SMB) protocol. Azure file shares can be mounted concurrently by cloud or on-premises deployments of Windows, Linux, and macOS.

32
Q

What command-line environments are available for use in the Azure Cloud Shell?

  • MS-DOS
  • Bash
  • PowerShell
  • Windows
A
  • Bash
  • PowerShell

The Azure Cloud Shell supports the Bash and PowerShell command-line environments. MS-DOS and Windows are Operating Systems and are therefore not valid options.

33
Q

Verigon Corp needs to store customer data in the cloud. They want an established open-source relational database for this information.
However, they would prefer not to manage a database server, or perform performance tuning.

As their IT consultant, what option would you suggest to meet their needs?

  • Azure Blob Storage
  • Azure SQL
  • SQL server
  • Azure Database for MySQL
  • Azure Cosmos DB
A

-Azure Database for MySQL

Azure Database for MySQL is a relational database hosted on the Azure cloud platform. MySQL is the world’s most popular open-source database, although an enterprise version is available from Oracle. Of the options listed, this would best meet Verigon’s needs.

Azure SQL is a Platform as a Service (PaaS) option. Microsoft manages the platform, so a company only has to worry about the database itself and its contents. Azure SQL offers high compatibility with the SQL server. However, Azure SQL is not open-source.

Azure Blob Storage would not fit Verigon’s database needs. It is unstructured storage, such as text files, videos, or VHD files.

SQL server is not, in itself, a cloud-based solution. You could run SQL on a VM in Azure, but you would not have the access control features offered by Azure SQL. Microsoft offers a Data Migration Assistant to help move a SQL Server database to an Azure SQL database. Even so, Azure SQL is not open-source.

Azure Cosmos DB is not a relational database. It is known as a “NoSQL” database, as it does not rely on tables, rows, or schemas to organize data.

Microsoft also offers the Azure Database for MariaDB. MariaDB is an increasingly popular branch off of the original MySQL.

34
Q

The Nutex Corporation plans to provide app management and monitoring services to some companies. The management wants you to
discover ways to obtain customer-level usage and billing details
Is the following statements about options available with Azure Subscriptions TRUE?

Multiple Azure subscriptions can exist within a tenant.

A

True.

Each subscription can independently fuel a different set of resources within the same customer tenant. Subscriptions can come from different purchase channels and can co-exist independent of each other

35
Q

The Nutex Corporation plans to provide app management and monitoring services to some companies. The management wants you to
discover ways to obtain customer-level usage and billing details
Is the following statements about options available with Azure Subscriptions TRUE?

Azure subscriptions must always be purchased in $ (USD).

A

False.

Azure subscriptions can be bought by the designated currency based on the channel through which one procures, and all major currencies can be used.

36
Q

The Nutex Corporation plans to provide app management and monitoring services to some companies. The management wants you to
discover ways to obtain customer-level usage and billing details
Is the following statements about options available with Azure Subscriptions TRUE?

Existing key vaults are inaccessible when a subscription is added to an Active Directory tenant.

A

True.

The following occurs when you add a subscription to an Azure Active Directory tenant:

  • Users with RBAC roles lose their access.
  • Service Administrators and Co-Administrators lose their access.
  • Existing key vaults are inaccessible until the key vault tenant ID is changed.
  • Managed identities for resources such as Virtual Machines or Logic Apps must be re-enabled or recreated.
  • A registered Azure Stack must be re-registered.
37
Q

The Nutex Corporation plans to provide app management and monitoring services to some companies. The management wants you to
discover ways to obtain customer-level usage and billing details
Is the following statements about options available with Azure Subscriptions TRUE?

The registered Azure Stack must be re-registered after adding a subscription to an Active Directory tenant.

A

True.

The following occurs when you add a subscription to an Azure Active Directory tenant:

  • Users with RBAC roles lose their access.
  • Service Administrators and Co-Administrators lose their access.
  • Existing key vaults are inaccessible until the key vault tenant ID is changed.
  • Managed identities for resources such as Virtual Machines or Logic Apps must be re-enabled or recreated.
  • A registered Azure Stack must be re-registered.
38
Q

Your company plans to deploy web applications running on several Azure virtual machines. These applications need to continue to run even if
a datacenter fails.

What feature in Azure can protect the applications from a datacenter failure?

  • Update domain
  • Fault domain
  • Virtual machine scale set
  • Availability zone
A

-Availability zone

An availability zone consists of several datacenters that have separate power, cooling, and networking equipment. Every region has three separate availability zones to ensure resiliency by physically separating applications and data from datacenter failures.

You would not choose virtual machine scale sets. A virtual machine scale set allows you to increase or decrease on demand or by schedule. A virtual machine scale allows you to create load balanced VMs that are identical.

You would not choose fault domain. A fault domain defines a set of virtual machines that share a common network switch and power source. A fault domain may protect a set of virtual machines, but will not protect against a datacenter failure.

You would not choose update domain. An update domain can allow your application to stay up and running during an update of the application.
An update domain will not protect against a datacenter failure.

39
Q

You have an Azure SQL Managed Instance in the East US region. You notice that the performance of the instance has become sluggish. Your objective is to increase quota limits for the Azure SQL Managed Instance.

You modify the settings of the Azure policy.
Does this solution satisfy the objective?
Yes or no.

A

No.

No, you must create a new support request in the Azure portal. You can choose Help + support and select New support request.

In the support request, you can select the Issue Type and choose Service and subscription limits (quotas). You should choose the appropriate subscription. On the Quota Type, choose the appropriate database.

Under Quota details choose the quota type that you want to increase such as DTUs per server.

An Azure policy will not let you change quota restrictions.

40
Q

The Nutex Corporation wants to build apps on Azure. You are part of a Software Development operations team that must manage the operational aspects of developing apps.

Which of the following statements about Azure App Service are TRUE? (Select all that apply.)

  • The Dedicated Compute Premium pricing tier of App Service runs dedicated Azure VMs on dedicated Azure Virtual Networks.
  • The auto swap feature is supported in web apps running in a Linux or Windows environment.
  • The Dedicated Compute Premium pricing tier of App Service can host up to 100 Hybrid connections.
  • If an app’s Memory quota is exceeded, the app is stopped.
  • Only apps hosted in the Dedicated Computer Premium pricing tier or higher can be restored from snapshots.
  • The per-app scaling setting is available only for Shared, Premium, Premium V2, and Isolated pricing tiers.
A
  • The Dedicated Compute Premium pricing tier of App Service can host up to 100 Hybrid connections.
  • Only apps hosted in the Dedicated Computer Premium pricing tier or higher can be restored from snapshots.

Hybrid connections provide access from the app to an application endpoint in another network. They do not enable an alternate capability to access the application. Each hybrid connection corresponds to a single TCP host and port combination, which means that the hybrid connection endpoint can be on any application and any operating system when a single TCP listening port is accessed.

The maximum allowed hybrid connections are as follows: Basic (5), Standard (10), Premium (100), and Isolated (200).

Apps can be restored to the previous state based on one of the apps’ snapshots. Azure saves a snapshot of all apps automatically. Snapshots are incremental shadow copies and are more beneficial than regular backups. Snapshots eliminate issues such as storage size limitations, file copy errors due to file locks, and backup configuration issues.

All Dedicated Compute pricing tiers run apps on dedicated Azure VMs. Apps in the same App Service plan share compute resources for that plan. The higher tiers can scale-out more VM instances than lower tiers.

The Isolated pricing tier provides network isolation by running dedicated Azure VMs on dedicated Azure Virtual Networks. It provides compute isolation to the apps and the maximum scale-out capabilities.

The auto swap feature is supported in web apps running in a Windows environment only. Auto swap should be used where the app is to be deployed continuously with zero cold starts and zero downtime for app users. Auto swap is enabled from a slot into production every time the code changes are pushed to that slot. App Service automatically swaps the app into production after it has warmed up in the source slot.

The per-app scaling setting is available for Standard, Premium, Premium V2, and Isolated pricing tiers, not Shared or Free tier. Per-app scaling can be enabled at the level of an App Service plan to allow for scaling an app independently from the App Service plan that hosts it. This way, an App Service plan can be scaled to six instances, for example, but an app can be set to use only three.

If an app’s Memory quota is exceeded, the app is only restarted. The quotas for apps are CPU (short), CPU (Day), Memory, Bandwidth, and Filesystem. If an app exceeds the CPU (short), CPU (Day), or Bandwidth quota, the app is stopped until the quota resets and all incoming requests result in an HTTP 403 error. If the Filesystem quota is exceeded, any write operation fails. Write operation failures include writes to
logs.

41
Q

You have an important application with a lot of online transactions where the application performs many small transactions at a low latency level.

What storage tier will you suggest for this application?

  • Archive
  • Premium
  • Cool
  • Hot
A

-Premium

You would select Premium because it is ideal for sensitive applications with high throughput, such as online transactions, and is suited for workloads where an application performs many small transactions at a low latency level.

Hot – tier used for data that is frequently accessed. It is more expensive to store data here compared to the Cool and Archive tiers, but cheaper to access

Cool – tier used for storing less frequently accessed data, such as archived files, backups, and raw or unprocessed data. Cool is designed for data that is likely to be stored for at least 30 days. Cool storage costs less than Hot storage per GB.

Archive –the most cost-effective tier for storing data but is typically more expensive for data retrieval than Hot and Cool tiers. Archive is designed for data that is likely to be stored for at least 180 days, and for systems or scenarios where retrieval latency can be tolerated.