Azure

Question 1

Availability zone

Answer 1

You want to ensure your services and data are redundant so you can protect your information in case of failure .
Availability zones are physically separate datacenters within an Azure region. Each Availability zone is made up of one or more datacenters with independent power, cooling and networking.

Question 2

Regions - list

Answer 2

Central US, East US2, West Europe, Southeast Asia

Question 3

Availability zones - 2 categories

Answer 3

Zonal services - you pin the resource to a specific zone (VM, disks,..)
Zone-redundant services - platform replicates automatically across zones

Question 4

Region pairs

Answer 4

Each Azure region is always paired with another region within the same geography at least 300 miles away

Question 5

Azure virtual machine scale sets

Answer 5

a group of identical, load balanced VMs. The number of VM instances can automatically increase or decrease in response to demand or a defined schedule. Scale sets support up to 1,000 VM instances.

Question 6

Azure Virtual Network

Answer 6

enables many types of Azure resources, such as Azure Virtual Machines (VM), to securely communicate with each other, the internet, and on-premises networks

Question 7

VPN gateway

Answer 7

is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet.

Question 8

Cosmos DB

Answer 8

Database that is replicated all over the regions

Question 9

Azure Database Migration service

Answer 9

fully managed service designed to enable seamless migrations from multiple database sources to Azure data platforms with minimal downtime (online migrations).

Question 10

Azure SQL Data Warehouse

Answer 10

is a cloud-based Enterprise Data Warehouse (EDW) that leverages Massively Parallel Processing (MPP) to quickly run complex queries across petabytes of data.

Question 11

The Azure Internet of Things (IoT)

Answer 11

is a collection of Microsoft-managed cloud services that connect, monitor, and control billions of IoT assets.

Question 12

IoT Central

Answer 12

This is a SaaS solution that helps you connect, monitor, and manage your IoT devices.

Question 13

IoT Hub

Answer 13

This service allows you to connect from your devices to an IoT hub, and monitor and control billions of IoT devices. This is especially useful if you need bi-directional communication between your IoT devices and your back end.

Question 14

Azure HDInsight

Answer 14

is a fully managed, full-spectrum, open-source analytics service for enterprises. Azure HDInsight can be used for a variety of scenarios in big data processing.

Question 15

Azure Functions

Answer 15

is a serverless compute service that enables you to run code on-demand without having to explicitly provision or manage infrastructure.

Question 16

Azure Logic Apps

Answer 16

Azure Logic Apps simplifies how you build automated scalable workflows that integrate apps and data across cloud services and on-premises systems.

Question 17

Example uses for Event Grid

Answer 17

Serverless application architectures -use Event Grid to instantly trigger a serverless function to run image analysis each time a new photo is added to a blob storage container.

Ops automation - Event Grid can notify Azure Automation when a virtual machine is created

Application integration-

Question 18

Azure Firewall

Answer 18

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

Question 19

Types of DDoS attacks that DDoS Protection Standard mitigates

Answer 19

Volumetric attacks: The attack’s goal is to flood the network layer with a substantial amount of seemingly legitimate traffic.
Protocol attacks
Resource (application) layer attacks: These attacks target web application packets, to disrupt the transmission of data between hosts. The attacks include HTTP protocol violations, SQL injection, cross-site scripting, and other layer 7 attacks.

Question 20

Azure Key Vault

Answer 20

Cloud applications and services use cryptographic keys and secrets to help keep information secure. Azure Key Vault safeguards these keys and secrets.

Question 21

Azure Information Protection

Answer 21

is a cloud-based solution that helps an organization to classify and optionally, protect its documents and emails by applying labels. Labels can be applied automatically by administrators who define rules and conditions, manually by users, or a combination where users are given recommendations.

Question 22

Azure Advanced Threat Protection (ATP)

Answer 22

is a cloud-based security solution that leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at your organization.

Question 23

Azure Initiative

Answer 23

is a collection of policy definitions that are tailored towards achieving a singular overarching goal. Initiative definitions simplify managing and assigning policy definitions.

Question 24

Lock

Answer 24

Lock resources to prevent unexpected changes. You can set the lock level to CanNotDelete or ReadOnly.

Question 25

Azure Advisor

Answer 25

Advisor is a personalized cloud consultant that helps you follow best practices to optimize your Azure deployments.

Question 26

Azure Monitor

Answer 26

collecting, analyzing, and acting on telemetry

Question 27

Service Health

Answer 27

provides you with a customizable dashboard which tracks the health of your Azure services in the regions where you use them.

Question 28

Azure Policy

Answer 28

Azure Policy is a service in Azure that you use to define, assign, and, manage standards for resources in your environment. It can prevent the creation of disallowed resources, ensure new resources have specific settings applied, and run evaluations of your existing resources to scan for non-compliance.

Question 29

Azure Blueprint

Answer 29

Azure Blueprint is a declarative way to orchestrate the deployment of various resource templates and other artifacts, such as:

Role assignments
Policy assignments
Azure Resource Manager templates
Resource groups

Question 30

compliance

Answer 30

https://docs.microsoft.com/en-us/learn/modules/intro-to-governance/6-azure-compliance

Question 31

Azure Customer types

Answer 31

Enterprise

Web direct

Cloud Solution Provider

Question 32

Azure Customer types - Enterprise

Answer 32

Enterprise - Enterprise customers sign an Enterprise Agreement with Azure that commits them to spend a negotiated amount on Azure services, which they typically pay annually. Enterprise customers also have access to customized Azure pricing.

Question 33

Azure Customer types - Web direct

Answer 33

Web direct - Direct Web customers pay general public prices for Azure resources, and their monthly billing and payments occur through the Azure website.

Question 34

Azure Customer types - Cloud Solution Provider

Answer 34

Cloud Solution Provider (CSP) typically are Microsoft partner companies that a customer hires to build solutions on top of Azure. Payment and billing for Azure usage occur through the customer’s CSP.

Question 35

Subscription types

Answer 35

Free,
Pay as you go,
Enterprise ,
Student