AZ900

Question 1

Elasticity

Answer 1

Elastisitet: Du he møje load på en tjeneste så du øke f.eks RAM eller vCPU på server/AKS for at det sga fungera bra.

Question 2

Agility

Answer 2

Agility: Du kan spinna opp en ny tjeneste rimelig fort.

Question 3

Azure Service Health

Answer 3

After an outage, Service Health provides official incident reports called root cause analysis (RCA), which you can share with stakeholders

Question 4

Azure ExpressRoute

Answer 4

For environments where you need greater bandwidth and even higher levels of security, Azure ExpressRoute is the best approach. ExpressRoute provides a dedicated private connectivity to Azure that doesn’t travel over the internet. (You’ll learn more about ExpressRoute in a separate unit later in this module.)

Question 5

Azure Monitor

Answer 5

Azure Monitor is a platform that collects metric and logging data, such as CPU percentages. The data can be used to trigger autoscaling.
Application Insights is a feature of Azure Monitor that allows you to monitor running applications, automatically detect performance anomalies, and use built-in analytics tools to see what users do on an app.

Question 6

Azure Advisor

Answer 6

Azure Advisor evaluates Azure resources and makes recommendations to help improve reliability, security, and performance, achieve operational excellence, and reduce costs.
The five recommendation categories for Azure Advisor are: Reliability, Security, Performance, Operational Excellence, and Cost.

Question 7

Network Security Groups (NSGs)

Answer 7

Filter network traffic to and from Azure resources on Azure Virtual Networks. Set inbound and outbound rules. Inbound / Outbound.
Feks, all trafikk fra visse IPer, eller fra LoadBalancer, eller INGEN ting fra 443.

Question 8

Regions

Answer 8

Regions: regions are made up of one or more datacenters in close proximity. 60 regioner globalt. 140 land.

Question 9

Region pair

Answer 9

Region pair: Eks: East US –> West US minst 300 miles seperations

Question 10

Availability Zones

Answer 10

Availability Zones: Fysisk sepererte datasenter, innenfor samme region

Question 11

Vertical scaling

Answer 11

also known as “scaling up”, is the process of adding resources to increase the power of an existing server.

Question 12

Horizontal scaling

Answer 12

also known as “scaling out”, is the process of adding more servers that function together as one unit.

Question 13

Availability sets

Answer 13

Availability sets are a way for you to ensure your application remains online if a high-impact maintenance event is required, or if a hardware failure occurs.
Availability sets are made up of Update domains (UD) and Fault domains (FD):

Question 14

Azure Resource Manager (ARM)

Answer 14

is the deployment and management service for Azure. It provides a consistent management layer that enables you to create, update, and delete resources in your Azure subscription. You can use its access control, auditing, and tagging features to secure and organize your resources after deployment.
ARM templates define an application’s infrastructure requirements for a repeatable deployment that is done in a consistent manner. A validation step ensures that all resources can be created in the proper order based on dependencies, in parallel and idempotent.

Question 15

Azure Reservations

Answer 15

Azure Reservations offers discounted prices on certain Azure services. Azure Reservations can save you up to 72 percent compared to pay-as-you-go prices. To receive a discount, you can reserve services and resources by paying in advance.

Spending limits can suspend a subscription when the spend limit is reached.

Question 16

Health advisories

Answer 16

Health advisories are issues that require that you take action to avoid service interruptions, such as service retirements and breaking changes.

Question 17

Management groups

Answer 17

Management groups can be used in environments that have multiple subscriptions to streamline the application of governance conditions.

Resource groups can be used to organize Azure resources.

Administrative units are used to delegate the administration of Azure AD resources, such as users and groups.

Accounts are used to provide access to resources

Question 18

VPN gateway

Answer 18

A VPN gateway is a type of virtual network gateway. Azure VPN Gateway instances are deployed to a dedicated subnet of a virtual network. You can use them to connect on-premises datacenters to virtual networks through a Site-to-Site (S2S) VPN connection.

Question 19

Service endpoints

Answer 19

Service endpoints are used to expose Azure services to a virtual network, providing communication between the two.

Question 20

Conditional Access

Answer 20

Conditional Access is a tool that Azure AD uses to allow or deny access to resources based on identity signals, such as the device being used. SSO enables a user to sign in one time and use that credential to access multiple resources and applications from different providers. MFA is a process whereby a user is prompted during the sign-in process for an additional form of identification. Hybrid identity solutions create a common user identity for authentication and authorization to all resources, regardless of location.

Question 21

Azure role-based access control (RBAC)

Answer 21

Azure RBAC allows you to assign a set of permissions to a user or group.

Question 22

Scale Sets

Answer 22

Azure Virtual Machine Scale Sets let you create and manage a group of load-balanced VMs. The number of VM instances can automatically increase or decrease in response to demand or a defined schedule. Scale sets provide the following key benefits:

Easy to create and manage multiple VMs
Provides high availability and application resiliency by distributing VMs across availability zones or fault domains
Allows your application to automatically scale as resource demand changes
Works at large-scale

Question 23

Scalability

Answer 23

Apps in the cloud can scale vertically and horizontally:

Question 24

LRS / ZRS

Answer 24

Local Redudant Storage, alt innenfor samme storage account
Zone Redudant Storage,