Azure Flashcards

Question 1

Q

What are Azure VM Scale sets?

Answer

A

Automatically increase or decrease in response to demand or a defined schedule

Question 2

Q

What is SQL Server Stretch Database ?

Answer

A

Dynamically stretch warm and cold transactional data from Microsoft SQL Server 2016 to Microsoft Azure

Question 3

Q

Evolution of Computing

Answer

A

Physical Server -> VMs -> Containers -> Functions

Question 4

Q

What is a region ?

Answer

A

A region is a grouping of multiple datacenters
Azure has 58 regions across 140 countries

Question 5

Q

What is a geography?

Answer

A

A Geography is a discreet market of two or more regions that preserves data residency and compliance boundaries

Question 6

Q

What are paired regions

Answer

A

Each region is paired with another region 300 miles away to ensure less downtime, disaster recovery

Question 7

Q

What is Azure GRS ?

Answer

A

Azure Geo-redundant Storage(GRS) replicates data to a secondary region automatically, ensuring that data is durable even in the event that the primary region isn’t recoverable

Question 8

Q

Are all cloud services available in every region ?

Answer

A

No, Not all cloud services are available in every region.

Question 9

Q

What is Recommended region ?

Answer

A

A region that provides the broadest range of service capabilities and is designed to support availability zones now or in the future

Question 10

Q

What is Alternate region ?

Answer

A

Alternate (other) region is a region that extends Azure’s footprint within a data residency boundary where a recommended region also exists . Not designed to support AZs

Question 11

Q

What is General Availability?

Answer

A

General Availability(GA) is when a service is considered ready to be used publicly by everyone.

Question 12

Q

How the availability of service is categorized in Azure ?

Answer

A

Azure categorizes availability into three types : Foundational , Mainstream and Specialized

Question 13

Q

What is Foundational Availability?

Answer

A

When GA, immediately or in 12 months in Recommended and Alternate regions

Question 14

Q

What is Mainstream Availability?

Answer

A

When GA immediately or in 12 months in Recommended Regions . May become available in Alternate regions based on the customer demand

Question 15

Q

What is Specialized Availability ?

Answer

A

Available in Recommended or Alternatre regions based on customer demand

Question 16

Q

What is Availability Zone ?

Answer

A

Availability is physical location made up of one or more datacenter

Question 17

Q

What is Fault Domain ?

Answer

A

A logical grouping of hardware to avoid a single point of failure within an AZ group of virtual machines that share a common power source and network switch

Question 18

Q

What is Update Domain ?

Answer

A

Azure may need to apply updates to the underlying hardware and software. Update domains ensure your resources do not go offline

Question 19

Q

What type of domain is the Availability Zone in?

Answer

A

An Availability Zone(AZ) in an Azure region is a combination of a fault domain and an update domain

Question 20

Q

What are different computing services provided in Azure ?

Answer

A

Azure provides Azure Virtual Machines, Azure Container Instances, Azure Kubernetes Service, Azure Service Fabric, Azure Functions, Azure Batch

Question 21

Q

What are Azure Virtual Machines?

Answer

A

Windows or Linux virtual Machines. The most common type of Compute. You choose your OS, Memory, CPU, and Storage. You share hardware with other customers.

Question 22

Q

What are Azure Container Instances?

Answer

A

Docker as a Service - Run containerized apps on Azure without provisioning servers or VMs

Question 23

Q

What is Azure Kubernetes Service(AKS) ?

Answer

A

Kubernetes as a Service - Easy to deploy, manage, and scale containerized applications. Uses the Open Source Kubernetes (k8) software

Question 24

Q

What is Azure Service Fabric?

Answer

A

Tier 1 Enterprise Containers as a Service
Distributed Systems Platform. Runs in Azure or on-premises.
Easy to package, deploy , and manage scalable and reliable microservices

Question 25

Q

What are Azure Functions ?

Answer

A

Event-driven, serverless compute(functions) run code without provisioning or managing servers. you pay only for the compute time you consume.

Question 26

Q

What is Azure Batch ?

Answer

A

Plans , schedules and executes your batch computer workloads across running 100+ jobs in parallel . Use spot VMS to save money (
previously used low priority VMs to save on compute)

Question 27

Q

What are different Storage Services provided in Azure?

Answer

A

Azure Blob Storage , Azure Disk Storage , Azure File Storage , Azure Queue Storage , Azure Table Storage , Azure Data box / Azure Data box heavy,
Azure archive storage , Azure Data Lake Storage

Question 28

Q

What are deployment slots?

Answer

A

Deployment slots allow the app to run different instances called slots. Slots are different environments exposed via a publicly available endpoint

Question 29

Q

Can we swap instances assigned to a slot on demand?

Answer

A

Yes , we can swap the instances assigned to a slot on demand .

Question 30

Q

What are different developer and Mobile Tools for Azure?

Answer

A

Azure SignalR Service , Azure App Service , Visual Studio , Xamarin

Question 31

Q

What are Azure DevOps services?

Answer

A

Azure Boards , Azure Pipelines , Azure Repos , Azure Test Plans , Azure Artifacts , Azure DevTest Labs

Question 32

Q

What is InfraStructure as Code (IAC)?

Answer

A

The process of managing and provisioning computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools.

Question 33

Q

What is Azure Resource Manager(ARM)?

Answer

A

Azure Resource Manager (ARM) allows you to programmatically create Azure Resources via JSON template

Question 34

Q

What is Azure QuickStart?

Answer

A

It is a library of pre-made ARM templates provided by the community and partners to help you quickly launch new projects for a variety of stack scenarios

Question 35

Q

What is a Virtual Network (vNet) ?

Answer

A

It is a Logically Isolated section of the Azure Network Where you launch your Azure Resources. You can choose a range of IPs using CIDR Range

Question 36

Q

What is SubNet?

Answer

A

SubNets are a logical partition of an IP Network into multiple smaller network segments. You are breaking up your IP range for VNet into smaller networks

Subnets need to have a smaller CIDR range than Vnet to represent their portion.

Question 37

Q

What is public subNet?

Answer

A

Subnet that can reach the internet

Question 38

Q

What is private subnet?

Answer

A

Subnet that cannot reach the internet

Question 39

Q

What are different Cloud - Native Networking Services?

Answer

A

Azure DNS, Azure Virtual Network, Azure Load Balancer, Azure Application Gateway, Network Security Groups

Question 40

Q

What is Azure DNS ?

Answer

A

provides ultra-fast DNS responses and ultra-high domain availability

Question 41

Q

What is Azure Virtual Network ?

Answer

A

A logical isolated section of the Azure Network for customers to launch Azure resources within

Question 42

Q

What is Azure Load Balancer ?

Answer

A

OSI Level 4 (Transport) Load Balancer

Question 43

Q

What is Azure Application Gateway ?

Answer

A

OSI Level 7 (HTTP) Load Balancer , can apply a web application Firewall

Question 44

Q

What are Network Security Groups?

Answer

A

A virtual firewall at the Subnet level

Question 45

Q

What is Azure Front Door ?

Answer

A

Scalable and Entry point of your global applications

Question 46

Q

What are different enterprise/hybrid networking services ?

Answer

A

Azure Front Door, Azure Express Route, Virtual WAN, Azure Connection, Virtual Network Gateway

Question 47

Q

What is Azure Express Route?

Answer

A

A connection between on premise to cloud from 50 Mbps to 10 Gbps

Question 48

Q

What is Virtual WAN ?

Answer

A

A Networking interface that brings many networking , security and routing functionalities together to provide a single operational interface

Question 49

Q

What is Azure Connection ?

Answer

A

A VPN Connection securely connects two azure local network via (IPsec)

Question 50

Q

What is Virtual Network Gateway?

Answer

A

A site-to-site VPN connection between an Azure virtual network and your local network

Question 51

Q

What is Azure Traffic Manager ?

Answer

A

It operates at the DNS layer to quickly and efficiently direct incoming DNS requests based on the routing method of your choice

Question 52

Q

What is Azure DNS ?

Answer

A

Azure DNS allows you to host your domains on Azure. You can create DNS zones and manage your DNS records

Question 53

Q

Will Azure DNS allow you to purchase domains?

Answer

A

No, it doesn’t allow to purchase domains, it provides only the ability to manage the domains

Question 54

Q

Describe Azure Load Balancer?

Answer

A

It is used for evenly distributing incoming network traffic across a group of backend servers or resources.

Question 55

Q

What is public load balancer?

Answer

A

to load balance the incoming traffic coming from the internet to public-facing servers

Question 56

Q

What is internal or private load balancer?

Answer

A

to load balance the incoming internal network traffic to private facing servers

Question 57

Q

What are Scale Sets ?

Answer

A

This allows you to group identical virtual machines (vms) and automatically increase or decrease the amount of servers based on
Change in CPU, memory, disk, and network performance or on a predefined schedule

Question 58

Q

What is Internet of Things?

Answer

A

A network of internet-connected objects able to collect and exchange data

Question 59

Q

What is IoT Central ?

Answer

A

Connects your IoT devices to the Cloud

Question 60

Q

What is IoT Hub?

Answer

A

Enable highly secure and reliable communication between your IoT application and the devices it manage

Question 61

Q

What is IoT Edge?

Answer

A

A fully managed service built on Azure IoT Hub .

Question 62

Q

What is BigData ?

Answer

A

A term used to describe massive volumes of structured/unstructured data that is so large it is difficult to move and process using traditional database and software techniques

Question 63

Q

What is Azure Synapse Analytics?

Answer

A

Enterprise data warehousing and Big Data Analytics
Intended to run SQL queries against large databases for things such as reporting

Question 64

Q

What is HDInsight ?

Answer

A

Run open-source analytics software such as hadoop , Kafka and Spark

Answer 65

A

Different environments for different purposes, Prewarming, easy fallbacks, and minimizing restarts.

Answer 66

A

Yes it provides out-of-box authentication , you can sign in users and access data by writing minimal, or no code in your web app, RESTful API, mobile backend, and Azure Functions

Answer 67

A

Machines that perform jobs that mimic human behaviour

Answer 68

A

Machines that get better at a task without explicit programming

Answer 69

A

Machines that have artificial neural network inspired by human brain to solve human problems

Answer 70

A

Deliver rich, personalized experiences for every user

Answer 71

A

Add real-time, multi-language text translation to your apps , website and tools

Answer 72

A

Detect anomalies in data to quickly identify and troubleshoot issues

Answer 73

A

Intelligent , serverless bot service that scales on demand

Answer 74

A

Automate the extraction of text, key-value pairs, and tables from your documents

Answer 75

A

Easily customize computer vision models for your unique use case

Answer 76

A

Build natural language understanding into apps, bots and IoT devices

Answer 77

A

Create a conversational question and answer bot from your existing content

Answer 78

A

Extract information such as sentiment, key phrases, named entities and language from your text

Answer 79

A

Moderate text and images to provide a safer, more positive user experience

Answer 80

A

Detect and Identify people and emotions in images

Answer 81

A

Recognize digital ink content, such as handwriting, shapes and document layout

Answer 82

A

When the underlying servers, infrastructure, and OS is taken care of by the cloud Service Provider(CSP) It will generally be highly available, scalable and cost-effective

Answer 83

A

Event-Driven Scale, Abstraction of Servers, Micro-billing

Answer 84

A

A serverless function can be triggered or trigger other events allowing you to compose complex applications and it just scales

Answer 85

A

Servers are abstracted away. Your code is described as functions . These functions can be running on different compute instances

Answer 86

A

Serverless compute could run for a fraction of a second
Billing into micro seconds will save money

Answer 87

A

Run small amounts of code known as serverless functions in your favourite language : c# , java , python , javascript , powershell

Answer 88

A

Serverless Object Storage . Just Upload files , don’t think the underlying systems , resizing

Answer 89

A

Allows you to build workflows composed of Azure functions. Building a state machines for serverless compute

Answer 90

A

Uses pub/sub messaging system to allow you react to events and trigger other cloud services such as Azure Functions

Answer 91

A

It is a web-based, unified console that provides an alternative to command-line tools. You can manage your Azure subscription with the Azure portal. Build, manage, and monitor everything from simple web apps to complex cloud deployments.

Answer 92

A

Powershell is a task automation and configuration management framework. It is a command-line shell and a scripting language.

Answer 93

A

Unlike most shells, which accept and return text, Powershell is built on top of the .NET Common Language Runtime(CLR) and accepts and returns.NET Objects

Answer 94

A

A set of cmdlets for managing azure resources directly from the Powershell command line

Answer 95

A

Azure shell is an interactive , authenticated , browser-accessible shell for managing azure resources
It provides the flexibility of choosing the shell experience that best suits the way you work, either Bash or Powershell

Answer 96

A

A command Line Interface (CLI) processes commands to a computer program in the form of lines of text . Operating Systems implement a command line interface in a shell or terminal

Answer 97

A

A public-facing website portal providing easy access to privacy, security, and regulatory compliance information

Answer 98

A

Azure Active Directory(Azure AD) is Microsoft’s cloud-based identity access and management service, which helps your employees sign in and access resources

Answer 99

A

It is a Unified infrastructure security management system. It strengthens the security posture of your data centers and provides advanced threat protection across your hybrid workloads in the cloud

Answer 100

A

It helps you safeguard cryptographic keys and other secrets used by cloud apps and services

Answer 101

A

Secret Management, Key Management, Certificate Management, Hardware Security Module

Answer 102

A

store and tightly control access to tokens, passwords , certificates , API keys , and other secrets

Answer 103

A

create and control the encryption keys to encrypt your data

Answer 104

A

easily provision , manage and deploy public and private SSL certificated for use with Azure and internal connected resources

Answer 105

A

secrets and keys can be protected either by software or FIPS 140-2 Level 2 validated HSMs

Answer 106

A

It is a piece of hardware designed to store encryption keys

Answer 107

A

HSM can be either Multi-tenant (Multiple customers virtually isolated on an HSM) or single tenant (single customer on a dedicated HSM)

Answer 108

A

A malicious attempt to disrupt normal traffic by flooding a website with large amounts of fake traffic.

Answer 109

A

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources

Answer 110

A

Centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks

Answer 111

A

Protects sensitive information such as emails and documents with encryption, restricted access and rights, and integrated security in office apps

Answer 112

A

Application Gateway is a web traffic load balancer(Layer 7 HTTP) that re-routes traffic based on a set of rules. A web Application Firewall (WAF) can be attached for additional protection on OSI layer 7

Answer 113

A

Intrusion Detection System or Intrusion Protection System
A device or software application that monitors a network or a system for malicious activity or policy violations

Answer 114

A

It is a cloud-based security solution that leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at your organization.

Answer 115

A

MSDL is an industry-leading software security assurance process. Building security into each SDL phase of the development lifecycle helps you catch issues early, and it helps you reduce your development costs

Answer 116

A

Azure Policy is a service you can use to create, assign, and manage policies. A policy allows you to enforce or control the properties of a resource.

Azure Policy evaluates resources in Azure by comparing the properties of those resources to business rules. These business rules, described in JSON format, are known as Policy definitions.

Answer 117

A

It helps you manage who has access to Azure resources , what they can do with those resources , and what areas they have access to

Answer 118

A

Role assignments the way you control the access to resources

Answer 119

A

A role assignment consist of security principal, role definition, and scope

Answer 120

A

A Security Principal represents the identities requesting access to Azure resources such as

User: An individual who has a profile in the Azure Active directory

Group: A set of users created in Azure Active directory

Service Principal: A security identity used by applications or services to access specific Azure resources

Managed Identity: An Identity in Azure Active Directory that is automatically managed by Azure

Answer 121

A

The scope is the set of resources that access for the role assignment applies to. Scope Access Control at the management, Subscription, or Resource Group level

Answer 122

A

A role definition is a collection of permissions. A role definition lists the operations that can be performed, such as read, write, and delete.
Roles can be high-level, like an owner, or specific, like virtual machine reader.

Azure has built in roles. you can define custom roles

Answer 123

A

As an admin, you need to lock a subscription, resource group, or resource to prevent other users from accidentally deleting or modifying critical resources.

Azure allows to delete, read-only

Answer 124

A

Managing multiple subscriptions(accounts)into a hierarchal structure

Answer 125

A

Azure Monitor is a comprehensive solution for collecting , analyzing, and acting on telemetry from your cloud and on-premises environment

Answer 126

A

Information about current and upcoming issues such as service impacting events , planned maintenance, and other changes that may affect your availability

Answer 127

A

informs you of service outages in Azure

Answer 128

A

a personalized view of the health of Azure services and regions you’re using

Answer 129

A

information about the health of your individual cloud resources

Answer 130

A

It is a personalized cloud consultant that helps you follow best practices to optimize your Azure deployments

Answer 131

A

High Availability, Security, Performance , Cost, Operational Excellence

Answer 132

A

SLA describes Azure’s commitments for uptime and connectivity

Answer 133

A

No, Azure does not provide them

Answer 134

A

Different services have different SLAs
Composite SLA is when you combine SLAs across different service offerings

Answer 135

A

By using fallback systems like queue to record transactions and process them later when the service is available will help

Answer 136

A

Estimate the cost savings you can realize by migrating your workloads to Azure
generate a detail report and export as a PDF to send to decision makers

Answer 137

A

Scaling in and out - increase or decrease no of web servers
Based on load is called Auto scaling as opposed to scaling up and down - increasing memory,cpu power or storage capacity

Answer 138

A

Autoscaling helps when number of requests increase not when resource intense tasks increase

Answer 139

A

Scale based on a metric such as length of disk queue or the number of HTTP requests awaiting processing or according to a schedule

Answer 140

A

Autoscale runs only if all scale-in rules are met or if any of scale-out rules are met

Answer 141

A

By default, an app service plan implements manual scaling. Selecting custom autoscale reveals condition groups yoy can use to kanage your scale settings

Answer 142

A

Azure API management instance acts as an API Gateway . It is positioned between your APIs and Internet

Answer 143

A

API Documentation, Rate Limiting Access, Health Monitoring, Modern formats like JSON, Connections to any API, Analytics, Security, Pricing tiers - that provide different capabilities

Answer 144

A

HTTP , WebSocket, GraphQL

Answer 145

A

OpenAPI, WADL, WSDL

Answer 146

A

It documents all endpoints and operations for RESTful APIs, and all input and output parameters. Open API was originally called swagger

Answer 147

A

Logic App, App service, Function App, Container App

Answer 148

A

Tools like azure cli , azure resource manager or bicep templates or azure powershell can be used

Answer 149

A

Policies provide powerful capabilities to change the behavior of an API through configuration. They exist as a collection of statements that are executed sequentially on the request or response of an API

Answer 150

A

A product is a collection of APIs. You can assign APIs to more than one product. You assign policies so that your products can have different access rules, usage quotas, and terms of use.

Answer 151

A

When user requests a file with specific endpoint, the DNS routes to best performing POP location.If no edge servers in POP has that file , then POP requests file from origin server and caches till TTL sent in the headers from origin server

Answer 152

A

POP is point of presence . It has edge servers that cache the response from origin servers and provide the response back to users

Answer 153

A

A CDN profile is a collection of CDN endpoints. Every endpoint represents a specific configuration of content deliver behavior and access.

Answer 154

A

Default option . A CDN POP simply passes thr request and any query strings directly to the origin server on the first request and caches the asset. New requests for the same asset ignores any query strings until the TTL expires

Answer 155

A

Ecah query request from the client is passed directly to the origin server with no caching

Answer 156

A

Every time a requesting client generates a unique URL, that URL is passed back to the origin server and the response cached with its own TTL . This is inefficient where each request is a unique URL, as the cache-hit ratio becomes low

Answer 157

A

Yes , the number of CDN profiles that can be created is limited by the type of Azure subscription.

Answer 158

A

It is designed to integrate applications or application components that may span multiple communication protocols, data contracts, trust domains or network environments

Answer 159

A

It is designed to integrate applications or application components that may span multiple communication protocols, data contracts, trust domains or network environments

Answer 160

A

Storage queue allows you to store millions of messages upto the total capacity limit of storage account. Queues are commonly used to create a backlog of work to process asynchronously

Answer 161

A

It is a message broker service hosted on azure platform . It provides functionality to publish messages to various applications and also decouple the applications. It offered a a secure platform for asynchronous transfer of data and state

Answer 162

A

In queue, there is 1:1 relationship between sender and receiver. Messages are present in the queue until receiver process and completes the messages. Queue contains secondary sub-queue, called a DLQ automatically gets created . Wheb messages are not delivered to receiver or cannot be processed by receiver , such messages are pushed ti DLQ

Answer 163

A

Is used on any Task or Task<> object to configure how the await behaves when awaiting the task. It takes bool parameter called continueOnCapturedContext, which determines whether the continuation after the await should run on the same context as the one started the task

Answer 164

A

Is used on any Task or Task<> object to configure how the await behaves when awaiting the task. It takes bool parameter called continueOnCapturedContext, which determines whether the continuation after the await should run on the same context as the one started the task

Answer 165

A

Queue allows processing of a message by a single consumer. Whereas topics&subscriptions provide a one-to-many form of communication in a publish and subscribe pattern

Answer 166

A

Publishers send messages to a topic and consumers receive messages from subscriptions of the topic

Answer 167

A

Service Bus premium messaginv provides resource isolation at CPU and memory level so that each customer workload runs in isolation called messaging unit. Each premium namespace is allocated atleast one messaging unit

Answer 168

A

Preemptive- if additional workload is expected due to seasonability ot trends , you can proceed to allocate more messaging units to the namespace before the workloads hit
Reactive - if additional workloads are identified by studying the resource usage metrics then additional resources can be allocated

Answer 169

A

Full duplex - Both send and receive messages simultaneously , Half duplex - either send or receive

Brainscape's Knowledge GenomeTM

Azure Flashcards

Brainscape's Knowledge Genome^TM