Azure Flashcards

Question 1

Q

What are Azure VM Scale sets?

Answer

A

Automatically increase or decrease in response to demand or a defined schedule

Question 2

Q

What is SQL Server Stretch Database ?

Answer

A

Dynamically stretch warm and cold transactional data from Microsoft SQL Server 2016 to Microsoft Azure

Question 3

Q

Evolution of Computing

Answer

A

Physical Server -> VMs -> Containers -> Functions

Question 4

Q

What is a region ?

Answer

A

A region is a grouping of multiple datacenters
Azure has 58 regions across 140 countries

Question 5

Q

What is a geography?

Answer

A

A Geography is a discreet market of two or more regions that preserves data residency and compliance boundaries

Question 6

Q

What are paired regions

Answer

A

Each region is paired with another region 300 miles away to ensure less downtime, disaster recovery

Question 7

Q

What is Azure GRS ?

Answer

A

Azure Geo-redundant Storage(GRS) replicates data to a secondary region automatically, ensuring that data is durable even in the event that the primary region isn’t recoverable

Question 8

Q

Are all cloud services available in every region ?

Answer

A

No, Not all cloud services are available in every region.

Question 9

Q

What is Recommended region ?

Answer

A

A region that provides the broadest range of service capabilities and is designed to support availability zones now or in the future

Question 10

Q

What is Alternate region ?

Answer

A

Alternate (other) region is a region that extends Azure’s footprint within a data residency boundary where a recommended region also exists . Not designed to support AZs

Question 11

Q

What is General Availability?

Answer

A

General Availability(GA) is when a service is considered ready to be used publicly by everyone.

Question 12

Q

How the availability of service is categorized in Azure ?

Answer

A

Azure categorizes availability into three types : Foundational , Mainstream and Specialized

Question 13

Q

What is Foundational Availability?

Answer

A

When GA, immediately or in 12 months in Recommended and Alternate regions

Question 14

Q

What is Mainstream Availability?

Answer

A

When GA immediately or in 12 months in Recommended Regions . May become available in Alternate regions based on the customer demand

Question 15

Q

What is Specialized Availability ?

Answer

A

Available in Recommended or Alternatre regions based on customer demand

Question 16

Q

What is Availability Zone ?

Answer

A

Availability is physical location made up of one or more datacenter

Question 17

Q

What is Fault Domain ?

Answer

A

A logical grouping of hardware to avoid a single point of failure within an AZ group of virtual machines that share a common power source and network switch

Question 18

Q

What is Update Domain ?

Answer

A

Azure may need to apply updates to the underlying hardware and software. Update domains ensure your resources do not go offline

Question 19

Q

What type of domain is the Availability Zone in?

Answer

A

An Availability Zone(AZ) in an Azure region is a combination of a fault domain and an update domain

Question 20

Q

What are different computing services provided in Azure ?

Answer

A

Azure provides Azure Virtual Machines, Azure Container Instances, Azure Kubernetes Service, Azure Service Fabric, Azure Functions, Azure Batch

Question 21

Q

What are Azure Virtual Machines?

Answer

A

Windows or Linux virtual Machines. The most common type of Compute. You choose your OS, Memory, CPU, and Storage. You share hardware with other customers.

Question 22

Q

What are Azure Container Instances?

Answer

A

Docker as a Service - Run containerized apps on Azure without provisioning servers or VMs

Question 23

Q

What is Azure Kubernetes Service(AKS) ?

Answer

A

Kubernetes as a Service - Easy to deploy, manage, and scale containerized applications. Uses the Open Source Kubernetes (k8) software

Question 24

Q

What is Azure Service Fabric?

Answer

A

Tier 1 Enterprise Containers as a Service
Distributed Systems Platform. Runs in Azure or on-premises.
Easy to package, deploy , and manage scalable and reliable microservices

Question 25

Q

What are Azure Functions ?

Answer

A

Event-driven, serverless compute(functions) run code without provisioning or managing servers. you pay only for the compute time you consume.

Question 26

Q

What is Azure Batch ?

Answer

A

Plans , schedules and executes your batch computer workloads across running 100+ jobs in parallel . Use spot VMS to save money (
previously used low priority VMs to save on compute)

Question 27

Q

What are different Storage Services provided in Azure?

Answer

A

Azure Blob Storage , Azure Disk Storage , Azure File Storage , Azure Queue Storage , Azure Table Storage , Azure Data box / Azure Data box heavy,
Azure archive storage , Azure Data Lake Storage

Question 28

Q

What are deployment slots?

Answer

A

Deployment slots allow the app to run different instances called slots. Slots are different environments exposed via a publicly available endpoint

Question 29

Q

Can we swap instances assigned to a slot on demand?

Answer

A

Yes , we can swap the instances assigned to a slot on demand .

Question 30

Q

What are different developer and Mobile Tools for Azure?

Answer

A

Azure SignalR Service , Azure App Service , Visual Studio , Xamarin

Question 31

Q

What are Azure DevOps services?

Answer

A

Azure Boards , Azure Pipelines , Azure Repos , Azure Test Plans , Azure Artifacts , Azure DevTest Labs

Question 32

Q

What is InfraStructure as Code (IAC)?

Answer

A

The process of managing and provisioning computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools.

Question 33

Q

What is Azure Resource Manager(ARM)?

Answer

A

Azure Resource Manager (ARM) allows you to programmatically create Azure Resources via JSON template

Question 34

Q

What is Azure QuickStart?

Answer

A

It is a library of pre-made ARM templates provided by the community and partners to help you quickly launch new projects for a variety of stack scenarios

Question 35

Q

What is a Virtual Network (vNet) ?

Answer

A

It is a Logically Isolated section of the Azure Network Where you launch your Azure Resources. You can choose a range of IPs using CIDR Range

Question 36

Q

What is SubNet?

Answer

A

SubNets are a logical partition of an IP Network into multiple smaller network segments. You are breaking up your IP range for VNet into smaller networks

Subnets need to have a smaller CIDR range than Vnet to represent their portion.

Question 37

Q

What is public subNet?

Answer

A

Subnet that can reach the internet

Question 38

Q

What is private subnet?

Answer

A

Subnet that cannot reach the internet

Question 39

Q

What are different Cloud - Native Networking Services?

Answer

A

Azure DNS, Azure Virtual Network, Azure Load Balancer, Azure Application Gateway, Network Security Groups

Question 40

Q

What is Azure DNS ?

Answer

A

provides ultra-fast DNS responses and ultra-high domain availability

Question 41

Q

What is Azure Virtual Network ?

Answer

A

A logical isolated section of the Azure Network for customers to launch Azure resources within

Question 42

Q

What is Azure Load Balancer ?

Answer

A

OSI Level 4 (Transport) Load Balancer

Question 43

Q

What is Azure Application Gateway ?

Answer

A

OSI Level 7 (HTTP) Load Balancer , can apply a web application Firewall

Question 44

Q

What are Network Security Groups?

Answer

A

A virtual firewall at the Subnet level

Question 45

Q

What is Azure Front Door ?

Answer

A

Scalable and Entry point of your global applications

Question 46

Q

What are different enterprise/hybrid networking services ?

Answer

A

Azure Front Door, Azure Express Route, Virtual WAN, Azure Connection, Virtual Network Gateway

Question 47

Q

What is Azure Express Route?

Answer

A

A connection between on premise to cloud from 50 Mbps to 10 Gbps

Question 48

Q

What is Virtual WAN ?

Answer

A

A Networking interface that brings many networking , security and routing functionalities together to provide a single operational interface

Question 49

Q

What is Azure Connection ?

Answer

A

A VPN Connection securely connects two azure local network via (IPsec)

Question 50

Q

What is Virtual Network Gateway?

Answer

A

A site-to-site VPN connection between an Azure virtual network and your local network

Question 51

Q

What is Azure Traffic Manager ?

Answer

A

It operates at the DNS layer to quickly and efficiently direct incoming DNS requests based on the routing method of your choice

Question 52

Q

What is Azure DNS ?

Answer

A

Azure DNS allows you to host your domains on Azure. You can create DNS zones and manage your DNS records

Question 53

Q

Will Azure DNS allow you to purchase domains?

Answer

A

No, it doesn’t allow to purchase domains, it provides only the ability to manage the domains

Question 54

Q

Describe Azure Load Balancer?

Answer

A

It is used for evenly distributing incoming network traffic across a group of backend servers or resources.

Question 55

Q

What is public load balancer?

Answer

A

to load balance the incoming traffic coming from the internet to public-facing servers

Question 56

Q

What is internal or private load balancer?

Answer

A

to load balance the incoming internal network traffic to private facing servers

Question 57

Q

What are Scale Sets ?

Answer

A

This allows you to group identical virtual machines (vms) and automatically increase or decrease the amount of servers based on
Change in CPU, memory, disk, and network performance or on a predefined schedule

Question 58

Q

What is Internet of Things?

Answer

A

A network of internet-connected objects able to collect and exchange data

Question 59

Q

What is IoT Central ?

Answer

A

Connects your IoT devices to the Cloud

Question 60

Q

What is IoT Hub?

Answer

A

Enable highly secure and reliable communication between your IoT application and the devices it manage

Question 61

Q

What is IoT Edge?

Answer

A

A fully managed service built on Azure IoT Hub .

Question 62

Q

What is BigData ?

Answer

A

A term used to describe massive volumes of structured/unstructured data that is so large it is difficult to move and process using traditional database and software techniques

Question 63

Q

What is Azure Synapse Analytics?

Answer

A

Enterprise data warehousing and Big Data Analytics
Intended to run SQL queries against large databases for things such as reporting

Question 64

Q

What is HDInsight ?

Answer

A

Run open-source analytics software such as hadoop , Kafka and Spark

Answer 65

A

Different environments for different purposes, Prewarming, easy fallbacks, and minimizing restarts.

Answer 66

A

Yes it provides out-of-box authentication , you can sign in users and access data by writing minimal, or no code in your web app, RESTful API, mobile backend, and Azure Functions

Answer 67

A

Machines that perform jobs that mimic human behaviour

Answer 68

A

Machines that get better at a task without explicit programming

Answer 69

A

Machines that have artificial neural network inspired by human brain to solve human problems

Answer 70

A

Deliver rich, personalized experiences for every user

Answer 71

A

Add real-time, multi-language text translation to your apps , website and tools

Answer 72

A

Detect anomalies in data to quickly identify and troubleshoot issues

Answer 73

A

Intelligent , serverless bot service that scales on demand

Answer 74

A

Automate the extraction of text, key-value pairs, and tables from your documents

Answer 75

A

Easily customize computer vision models for your unique use case

Answer 76

A

Build natural language understanding into apps, bots and IoT devices

Answer 77

A

Create a conversational question and answer bot from your existing content

Answer 78

A

Extract information such as sentiment, key phrases, named entities and language from your text

Answer 79

A

Moderate text and images to provide a safer, more positive user experience

Answer 80

A

Detect and Identify people and emotions in images

Answer 81

A

Recognize digital ink content, such as handwriting, shapes and document layout

Answer 82

A

When the underlying servers, infrastructure, and OS is taken care of by the cloud Service Provider(CSP) It will generally be highly available, scalable and cost-effective

Answer 83

A

Event-Driven Scale, Abstraction of Servers, Micro-billing

Answer 84

A

A serverless function can be triggered or trigger other events allowing you to compose complex applications and it just scales

Answer 85

A

Servers are abstracted away. Your code is described as functions . These functions can be running on different compute instances

Answer 86

A

Serverless compute could run for a fraction of a second
Billing into micro seconds will save money

Answer 87

A

Run small amounts of code known as serverless functions in your favourite language : c# , java , python , javascript , powershell

Answer 88

A

Serverless Object Storage . Just Upload files , don’t think the underlying systems , resizing

Answer 89

A

Allows you to build workflows composed of Azure functions. Building a state machines for serverless compute

Answer 90

A

Uses pub/sub messaging system to allow you react to events and trigger other cloud services such as Azure Functions

Answer 91

A

It is a web-based, unified console that provides an alternative to command-line tools. You can manage your Azure subscription with the Azure portal. Build, manage, and monitor everything from simple web apps to complex cloud deployments.

Answer 92

A

Powershell is a task automation and configuration management framework. It is a command-line shell and a scripting language.

Answer 93

A

Unlike most shells, which accept and return text, Powershell is built on top of the .NET Common Language Runtime(CLR) and accepts and returns.NET Objects

Answer 94

A

A set of cmdlets for managing azure resources directly from the Powershell command line

Answer 95

A

Azure shell is an interactive , authenticated , browser-accessible shell for managing azure resources
It provides the flexibility of choosing the shell experience that best suits the way you work, either Bash or Powershell

Answer 96

A

A command Line Interface (CLI) processes commands to a computer program in the form of lines of text . Operating Systems implement a command line interface in a shell or terminal

Answer 97

A

A public-facing website portal providing easy access to privacy, security, and regulatory compliance information

Answer 98

A

Azure Active Directory(Azure AD) is Microsoft’s cloud-based identity access and management service, which helps your employees sign in and access resources

Answer 99

A

It is a Unified infrastructure security management system. It strengthens the security posture of your data centers and provides advanced threat protection across your hybrid workloads in the cloud

Answer 100

A

It helps you safeguard cryptographic keys and other secrets used by cloud apps and services

Answer 101

A

Secret Management, Key Management, Certificate Management, Hardware Security Module

Answer 102

A

store and tightly control access to tokens, passwords , certificates , API keys , and other secrets

Answer 103

A

create and control the encryption keys to encrypt your data

Answer 104

A

easily provision , manage and deploy public and private SSL certificated for use with Azure and internal connected resources

Answer 105

A

secrets and keys can be protected either by software or FIPS 140-2 Level 2 validated HSMs

Answer 106

A

It is a piece of hardware designed to store encryption keys

Answer 107

A

HSM can be either Multi-tenant (Multiple customers virtually isolated on an HSM) or single tenant (single customer on a dedicated HSM)

Answer 108

A

A malicious attempt to disrupt normal traffic by flooding a website with large amounts of fake traffic.

Answer 109

A

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources

Answer 110

A

Centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks

Answer 111

A

Protects sensitive information such as emails and documents with encryption, restricted access and rights, and integrated security in office apps

Answer 112

A

Application Gateway is a web traffic load balancer(Layer 7 HTTP) that re-routes traffic based on a set of rules. A web Application Firewall (WAF) can be attached for additional protection on OSI layer 7

Answer 113

A

Intrusion Detection System or Intrusion Protection System
A device or software application that monitors a network or a system for malicious activity or policy violations

Answer 114

A

It is a cloud-based security solution that leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at your organization.

Answer 115

A

MSDL is an industry-leading software security assurance process. Building security into each SDL phase of the development lifecycle helps you catch issues early, and it helps you reduce your development costs

Answer 116

A

Azure Policy is a service you can use to create, assign, and manage policies. A policy allows you to enforce or control the properties of a resource.

Azure Policy evaluates resources in Azure by comparing the properties of those resources to business rules. These business rules, described in JSON format, are known as Policy definitions.

Answer 117

A

It helps you manage who has access to Azure resources , what they can do with those resources , and what areas they have access to

Answer 118

A

Role assignments the way you control the access to resources

Answer 119

A

A role assignment consist of security principal, role definition, and scope

Answer 120

A

A Security Principal represents the identities requesting access to Azure resources such as

User: An individual who has a profile in the Azure Active directory

Group: A set of users created in Azure Active directory

Service Principal: A security identity used by applications or services to access specific Azure resources

Managed Identity: An Identity in Azure Active Directory that is automatically managed by Azure

Answer 121

A

The scope is the set of resources that access for the role assignment applies to. Scope Access Control at the management, Subscription, or Resource Group level

Answer 122

A

A role definition is a collection of permissions. A role definition lists the operations that can be performed, such as read, write, and delete.
Roles can be high-level, like an owner, or specific, like virtual machine reader.

Azure has built in roles. you can define custom roles

Answer 123

A

As an admin, you need to lock a subscription, resource group, or resource to prevent other users from accidentally deleting or modifying critical resources.

Azure allows to delete, read-only

Answer 124

A

Managing multiple subscriptions(accounts)into a hierarchal structure

Answer 125

A

Azure Monitor is a comprehensive solution for collecting , analyzing, and acting on telemetry from your cloud and on-premises environment

Answer 126

A

Information about current and upcoming issues such as service impacting events , planned maintenance, and other changes that may affect your availability

Answer 127

A

informs you of service outages in Azure

Answer 128

A

a personalized view of the health of Azure services and regions you’re using

Answer 129

A

information about the health of your individual cloud resources

Answer 130

A

It is a personalized cloud consultant that helps you follow best practices to optimize your Azure deployments

Answer 131

A

High Availability, Security, Performance , Cost, Operational Excellence

Answer 132

A

SLA describes Azure’s commitments for uptime and connectivity

Answer 133

A

No, Azure does not provide them

Answer 134

A

Different services have different SLAs
Composite SLA is when you combine SLAs across different service offerings

Answer 135

A

By using fallback systems like queue to record transactions and process them later when the service is available will help

Answer 136

A

Estimate the cost savings you can realize by migrating your workloads to Azure
generate a detail report and export as a PDF to send to decision makers

Answer 137

A

Scaling in and out - increase or decrease no of web servers
Based on load is called Auto scaling as opposed to scaling up and down - increasing memory,cpu power or storage capacity

Answer 138

A

Autoscaling helps when number of requests increase not when resource intense tasks increase

Answer 139

A

Scale based on a metric such as length of disk queue or the number of HTTP requests awaiting processing or according to a schedule

Answer 140

A

Autoscale runs only if all scale-in rules are met or if any of scale-out rules are met

Answer 141

A

By default, an app service plan implements manual scaling. Selecting custom autoscale reveals condition groups yoy can use to kanage your scale settings

Answer 142

A

Azure API management instance acts as an API Gateway . It is positioned between your APIs and Internet

Answer 143

A

API Documentation, Rate Limiting Access, Health Monitoring, Modern formats like JSON, Connections to any API, Analytics, Security, Pricing tiers - that provide different capabilities

Answer 144

A

HTTP , WebSocket, GraphQL

Answer 145

A

OpenAPI, WADL, WSDL

Answer 146

A

It documents all endpoints and operations for RESTful APIs, and all input and output parameters. Open API was originally called swagger

Answer 147

A

Logic App, App service, Function App, Container App

Answer 148

A

Tools like azure cli , azure resource manager or bicep templates or azure powershell can be used

Answer 149

A

Policies provide powerful capabilities to change the behavior of an API through configuration. They exist as a collection of statements that are executed sequentially on the request or response of an API

Answer 150

A

A product is a collection of APIs. You can assign APIs to more than one product. You assign policies so that your products can have different access rules, usage quotas, and terms of use.

Answer 151

A

When user requests a file with specific endpoint, the DNS routes to best performing POP location.If no edge servers in POP has that file , then POP requests file from origin server and caches till TTL sent in the headers from origin server

Answer 152

A

POP is point of presence . It has edge servers that cache the response from origin servers and provide the response back to users

Answer 153

A

A CDN profile is a collection of CDN endpoints. Every endpoint represents a specific configuration of content deliver behavior and access.

Answer 154

A

Default option . A CDN POP simply passes thr request and any query strings directly to the origin server on the first request and caches the asset. New requests for the same asset ignores any query strings until the TTL expires

Answer 155

A

Ecah query request from the client is passed directly to the origin server with no caching

Answer 156

A

Every time a requesting client generates a unique URL, that URL is passed back to the origin server and the response cached with its own TTL . This is inefficient where each request is a unique URL, as the cache-hit ratio becomes low

Answer 157

A

Yes , the number of CDN profiles that can be created is limited by the type of Azure subscription.

Answer 158

A

It is designed to integrate applications or application components that may span multiple communication protocols, data contracts, trust domains or network environments

Answer 159

A

It is designed to integrate applications or application components that may span multiple communication protocols, data contracts, trust domains or network environments

Answer 160

A

Storage queue allows you to store millions of messages upto the total capacity limit of storage account. Queues are commonly used to create a backlog of work to process asynchronously

Answer 161

A

It is a message broker service hosted on azure platform . It provides functionality to publish messages to various applications and also decouple the applications. It offered a a secure platform for asynchronous transfer of data and state

Answer 162

A

In queue, there is 1:1 relationship between sender and receiver. Messages are present in the queue until receiver process and completes the messages. Queue contains secondary sub-queue, called a DLQ automatically gets created . Wheb messages are not delivered to receiver or cannot be processed by receiver , such messages are pushed ti DLQ

Answer 163

A

Is used on any Task or Task<> object to configure how the await behaves when awaiting the task. It takes bool parameter called continueOnCapturedContext, which determines whether the continuation after the await should run on the same context as the one started the task

Answer 164

A

Is used on any Task or Task<> object to configure how the await behaves when awaiting the task. It takes bool parameter called continueOnCapturedContext, which determines whether the continuation after the await should run on the same context as the one started the task

Answer 165

A

Queue allows processing of a message by a single consumer. Whereas topics&subscriptions provide a one-to-many form of communication in a publish and subscribe pattern

Answer 166

A

Publishers send messages to a topic and consumers receive messages from subscriptions of the topic

Answer 167

A

Service Bus premium messaginv provides resource isolation at CPU and memory level so that each customer workload runs in isolation called messaging unit. Each premium namespace is allocated atleast one messaging unit

Answer 168

A

Preemptive- if additional workload is expected due to seasonability ot trends , you can proceed to allocate more messaging units to the namespace before the workloads hit
Reactive - if additional workloads are identified by studying the resource usage metrics then additional resources can be allocated

Answer 169

A

Full duplex - Both send and receive messages simultaneously , Half duplex - either send or receive

Answer 170

A

It is a service for storing large numbers of messages. You can access messages from anywhere in the world via authenticated calls using HTTP or HTTPS. Queues are commonly used yo create a backlog of work to process asynchronously

Answer 171

A

It is a service for storing large numbers of messages. You can access messages from anywhere in the world via authenticated calls using HTTP or HTTPS. Queues are commonly used yo create a backlog of work to process asynchronously

Answer 172

A

Storage Account + Queue

Answer 173

A

Yes . If the message represents a work task, you could use this feature to update the status of the work task

Answer 174

A

A common challenge for developers is the management of secrets, credentials, certificates, and keys used to secure communication between services. Managed identities eliminate the need for developers to manage these credentials

Answer 175

A

Managed Identities provide an automatically managed identity in Microsoft entra ID for services to use when connecting to resources that support Microsoft Entra authentication. Applications or srvicrs can use managed identities to obtain entra tokens without having to manage any credentials

Answer 176

A

System-assigned managed identities and user-assigned managed identities

Answer 177

A

System-assigned managed identities and user-assigned managed identities

Answer 178

A

It is directly tied to azure service instance. After the identity is created, the credentials are provisioned onto the instance

Answer 179

A

It is a standalone azure resource. After the identity is created, it can be assigned to one or more azure service instances. The lifecycle of a user-assigned identity us managed seperately from lifecycle of the azure service instance to which it is assigned

Answer 180

A

Internally, managed identities are service principals of a special type, which are locked to only be used with azure resources. When managed identity is deleted, corresponding service principal is automatically removed

Answer 181

A

If you want to build an app using azure app services that accesses azure storage without having to manage any credentials

Answer 182

A

It is a cloud-based identity and access management service

Answer 183

A

Azure AD Tenant is a dedicated and trusted instance of Azure Active Directory that includes your users, groups and applications

Answer 184

A

It is associated to an azure offer , will contain your payment information, scale limits, any policirs abd will be the container for your azure resources

Answer 185

A

An azure active directory instance(Azure AD Tenant) can have multiple subscriptions depend on it for authenticate and authorize users , groups, applications. Whereas subscription can trust only on Azure AD Tenant

Answer 186

A

A service principal object is created within the target AD referencing the original app in source AD

Answer 187

A

The resource gets all the access tied to the resources of that user managed identity

Answer 188

A

Managed identity is tied to resource and application running on resource will be authenticated based on the identity created for that resource from Azure AD and receive token

Answer 189

A

Managed identity is tied to resource and application running on resource will be authenticated based on the identity created for that resource

Answer 190

A

The application makes token request for managed identity endpoint , MI endpoint makes request with the client credentials stored in it to Azure AD. From there , token is sent to the application. Now, this application can make call to other application using token

Answer 191

A

Virtual Machines , App service, API Management, Container Instances, Container Registery Tasks, Event Hubs, Functions, Kubernetes Service, Logic Apps, Service Bus, Data Factory

Answer 192

A

The managed identity created for resource needs to be registered with the target in some shape or form

Answer 193

A

It provides a service to centrally manage application settings and feature flags. Use App Configuration to store all the settings for your application and secure their accesses in one place

Answer 194

A

App configuration complements Azure Key Vault by centralize management and distribution of hierarchical configuration data for different environments and geographies, dynamically change application settings without the need to redloy or restart an app

Answer 195

A

The easiest way is to add a client library to your code and configure the credentials

Answer 196

A

It stores data as key-value pairs.

Answer 197

A

Key values in App Configuration can optionally have a label attribute. Labels are used to differentiate key values with the same key. A key with different labels are treated as
Same key. A common use of labels is to specift environments like , appname:dbendpoint&label = Test , appname:dbendpoint&label = Staging

Answer 198

A

Yes keys and values are encrypted at rest and in transit

Answer 199

A

It is modern software-development practice that decouples feature release from code deployment and enables quick changes to feature availability on demand. It uses a technique called feature flags

Answer 200

A

Feature flag is a variable with a binary state of on or off . It also had an associated code block. The state of feature flag triggers whether the code block runs or not

Answer 201

A

A feature manager is ab application package that handles the lifecycle of all the feature flags in an application. It provides extra functionality, such as caching feature flags and updating their states

Answer 202

A

A filter is a rule for evaluating the state of a feature flag. A user group, a device or browser type, a geographic location, and a time window are all examples of what a filter can represent

Answer 203

A

Each feature flag has name and a list of one or more filters that are used to evaluate if a feature’s state is on

Answer 204

A

An application configuration settings should be kept external to its executable and read in from its runtime environment or an external source

Answer 205

A

It enables developers to acquire tokens from the microsoft identity platform inorder to authenticate users snd access secured web apis

Answer 206

A

MSAL can be used to provide secure access to ms graph, own apis etc .within

Answer 207

A

First the client application needs to be initialized to get token from it using msal library

Answer 208

A

A service for centratization of app configuration and feature management

Answer 209

A

Process of controlling, verifying, tracking and managing access to authorized users and applications

Answer 210

A

Process of controlling, verifying, tracking and managing access to authorized users and applications

Answer 211

A

If a user tries to perform an action on an azure resource , the role assignments against resource and user are checked for privileges and based on that access is given to the user

Answer 212

A

Role(role definition) is a collection of actions that the assigned identity will be able to perform

Answer 213

A

Objects in the azure active directory that represent user, group of users , service principals, managed identity . Roles can be assigned to all of these security principals

Answer 214

A

Security Principal is an Azure object(identity) that can be assigned to a role(ex. Users, Groups or Applications)

Answer 215

A

It is a top level billing object

Answer 216

A

It is a group of subscription or management groups

Answer 217

A

It is made up of resource groups

Answer 218

A

A scope is one or more azure resource that access applies to

Answer 219

A

It is a combination of role definition, security principal and scope

Answer 220

A

These are two different data processing systems designed for different purposes. OLAP is optimized for complex data analysis and reporting, while OLTP is optimized for transactional processing and real-time updates

Answer 221

A

Blob storage us optimized for storing massive amounts of unstructured data. Unstructured data is data that doesn’t adhere ti a particular data model or definition, such as text or binary data

Answer 222

A

Serving images or documents directly to a browser, storing files , streaming video or audio, writing to log files etc

Answer 223

A

Objects are available via Azure Storage REST API, Azure PowerShell, Azure CLI, or an Azure Storage Client Library

Answer 224

A

Blob storage offers 3 types of resources
The storage account
A container in the storage account
A blob in a container

Answer 225

A

A storage account provides a unique namespace in Azure for your data. Every object that you store in Azure storage has an address that includes your unique account name

Answer 226

A

A container organizes a set of blobs, similar to a directory in a file system. A storage container can include an unlimited number of containers, and a container can store an unlimited number of blobs

Answer 227

A

Azure storage supports 3 types of blobs
Block blobs - store text and binary data
Append blobs - are made up of block blobs but optimized for append operations like logging data
Page blobs - store random access files upto 8TB. Page blobs store Virtual hard drive (VHD) fules and serve ad disks fir Azure virtual machines

Answer 228

A

It is a persistent record of changes to a container in the order they occur. These changes can be processed asynchronously and incrementally, and the output can be distributed across one or more consumers for parallel processing

Answer 229

A

It is available for partition key ranged of an Azure Cosmos DB Container. This allows it to be distributed across one or more consumers for parallel processing

Answer 230

A

Items come in the order of their modification time. This sort order is guaranteed per partition key and there’s no guaranteed order across the partition key values

Answer 231

A

In a multi-region Azure cosmos DB account, changes in one region are available in all regions. There is no guarantee of when changes will be available. Incoming changes to the same document may be dropped in latest version mode if there was a more recent change in another region, all changes will be captured in all versions and deletes mode

Answer 232

A

Latest version mode and all versions and deletes mode

Answer 233

A

Yes , change feed can be consumed in different modes for multiple applications for the same azure cosmos db container

Answer 234

A

In Latest version change feed mode, you see the latest change from an insert or update for all items in the feed, and the feed is available for the life of rhe container

Answer 235

A

No , there is no indication whether a given change is from an insert or an update operation, and deleted aren’t captured. Changes can be read from any point in time as far back as the origin of your container. However, if an item is deleted it’s removed from the change feed

Answer 236

A

All versions and deletes mode allows you to see all changes to items from created, updated and deletes.

Answer 237

A

It is a highly scalable, fully managed pub sub message distribution service that offers flexible message consumption patterns using HTTP and MQTT protocols.

Answer 238

A

Using this, we can build data pipelines with device data, integrate applications, and build event-driven serverless architecturrs

Answer 239

A

It can be configured to send events to subscribers(push delivery) or subscribers can connect to Event Grid to read events(pull delivery)

Answer 240

A

It can be configured to send events to subscribers(push delivery) or subscribers can connect to Event Grid to read events(pull delivery)

Answer 241

A

An application that sends events to Event Grid. It can be the same application where the events originated, the event source.

Answer 242

A

Azure services publish events to event grid to anouncr an occurrence in their service. You can publish events from your own application hosted in or outside azure

Answer 243

A

It is a kind of publisher that sends event from its system to make them available to Azure customers. Partners not only can publish events but can also receive events

Answer 244

A

An event is the smallest amount of information that fully describes something that happened in a system in a JSON format having source, time, type etc properties

Answer 245

A

An event source is where the event happens. Each event source is related to one or more event types

Answer 246

A

A topic holds events that have been published to Event Grid. A topic is used for a collection of related events

Answer 247

A

These are built in topics provided by azure services. Publisher owns the topics

Answer 248

A

These are application and third-party topics. You can see them in your subscription

Answer 249

A

These are application and third-party topics. You can see them in your subscription

Answer 250

A

These are used to subscribe to events published by a partner.

Answer 251

A

These are used to subscribe to events published by a partner.

Answer 252

A

A subscription tells Event Grid which events on a topic you’re interested in receiving. When creating the subscription, you provide an endpoint for handling the event

Answer 253

A

From an event grid perspective, an event handler is the place where the event is sent. The handler takes some further action to process the event

Answer 254

A

Azure service or custom webhook can be used as handlers. Depending on the type of handler, event grid follows different mechanisms to guarantee the delivery of the event

Answer 255

A

It provides security for subscribing to topics and when publishing events to topics. When subscribing, you must have adequate permissions on event grid topic.

Answer 256

A

Yes, it tries to deliver each event at least once for each matching subscription immediately. If a subscriber’s endpoint doesn’t respond, event grid retries delivery based in fixed retry schedule and retry policy

Answer 257

A

No, if the error returned by the subscribed endpoint is a configuration-related error that can’t be fixed with retries, event grid will either perform dead-lettering on the event or drop the event if dead-letter isn’t configured

Answer 258

A

Retry policy can be customized when creating an event subscription by using Maximum number of attempts - 1 to 30 , Event time-to-live(TTL) - 1 to 1440

Answer 259

A

Yes , azure allows to control the level of access given to different users to do management operations such as post event subscriptions, create nee ones, and generate keys

Answer 260

A

Webhooks are one of the many ways to receive events from Azure Event Grid. When a new event is ready, event grid service POSTs an HTTP request to the configured endpoint with yhe event in the request body

Brainscape's Knowledge GenomeTM

Azure Flashcards

Brainscape's Knowledge Genome^TM