Azure Architecture and Services

Question 1

The Azure free account includes free access to popular Azure products for how long?

Answer 1

12 Months

Question 2

What is a geographical area on the planet that contains at least one, but potentially multiple datacenters that are nearby and networked together with a low-latency network?

Answer 2

A region

Question 3

Availability zones are connected through what?

Answer 3

High-speed, private fiber-optic networks

Question 4

To ensure resiliency, how many separate availability zones are present in all availability zone-enabled regions?

Answer 4

At least three.

Question 5

What can you use to run mission-critical applications and build high-availability into your application architecture?

Answer 5

Availability Zones

Question 6

When you pin a resource to a specific zone, you’re using what kind of Azure service?

Answer 6

A zonal service

Question 7

Zone-redundant services do what?

Answer 7

Replicate automatically across zones

Question 8

Services that are always available from Azure geographies are known as what?

Answer 8

Non-regional services

Question 9

What provides a level of scope above subscriptions?

Answer 9

Azure management groups

Question 10

Resource groups are gathered into what?

Answer 10

Subscriptions

Question 11

How many management groups can be supported in a single directory?

Answer 11

10,000

Question 12

How many levels of depth can a management group tree support?

Answer 12

Six, not including the root level or the subscription level.

Question 13

How many parents can a management group have?

Answer 13

One

Question 14

How many parents can a subscription have?

Answer 14

One

Question 15

How many resource groups can a resource be in at the same time?

Answer 15

One

Question 16

What happens to the resources within a resource group when an action or setting at the Resource Group level is applied?

Answer 16

The setting is applied to current and future resources.

Question 17

What Azure feature replicates resources across regions that are at least 300 miles away from each other?

Answer 17

Region pairs

Question 18

Data in an Azure Storage account is replicated how many times in the primary region?

Answer 18

Three

Question 19

What are the two options for how your data is replicated in the primary region?

Answer 19

Locally redundant storage (LRS) and zone-redundant storage (ZRS)

Question 20

What replicates your data three times within a single data center in the primary region?

Answer 20

Locally redundant storage (LRS)

Question 21

What is the lowest-cost redundancy option for Azure storage?

Answer 21

Locally redundant storage (LRS)

Question 22

What replicates your Azure Storage data synchronously across three Azure availability zones in the primary region?

Answer 22

Zone-redundant storage (ZRS)

Question 23

What are two storage options for copying your data to a secondary region?

Answer 23

Geo-redundant storage (GRS) and geo-zone-redundant storage (GZRS)

Question 24

What copies your data asynchronously to a single physical location in a secondary region, from a single physical location in the primary region?

Answer 24

Geo-redundant storage (GRS)

Question 25

What is a massively scalable object store for text and binary data?

Answer 25

Azure Blobs

Question 26

What manages file shares for cloud or on-premises deployments?

Answer 26

Azure Files

Question 27

What is a messaging store for reliable messaging between application components?

Answer 27

Azure Queues

Question 27

What is a messaging store for reliable messaging between application components?

Answer 27

Azure Queues

Question 28

What are block-level storage volumes for Azure VMs?

Answer 28

Azure Disks

Question 29

Data in Azure Storage is accessible from anywhere in the world over what?

Answer 29

HTTP or HTTPS

Question 30

What storage type has multiple access tiers?

Answer 30

Blob storage

Question 31

What access tiers for Blob storage can be set at the account level?

Answer 31

Hot and cool

Question 32

What is a service that helps you migrate from an on-premises environment to the cloud?

Answer 32

Azure Migrate

Question 33

Which Azure Migrate tool is a stand-alone tool to assess SQL Servers?

Answer 33

Data Migration Assistant

Question 34

Which tool is used to migrate on-premises databases to Azure VMs running SQL Server, Azure SQL Database, or SQL Managed Instances?

Answer 34

Azure Database Migration Service

Question 35

What tool is used to migrate VMware VMs, Hyper-V VMs, physical servers, other virtualized servers, and public cloud VMs to Azure?

Answer 35

Azure Migrate: Server Migration

Question 36

What is a standalone tool to assess on-premises websites for migration to Azure App Service?

Answer 36

Web app migration assistant

Question 37

What is used to discover and assess on-premises servers running on VMware, Hyper-V, and physical servers in preparation for migration to Azure?

Answer 37

Azure Migrate: Discovery and assessment

Question 38

Which product is used to move large amounts of offline data to Azure?

Answer 38

Azure Data Box

Question 39

What is a command-line utility that you can use to copy blobs or files to or from your storage account?

Answer 39

AzCopy

Question 40

What is a standalone app that provides a graphical interface to manage files and blobs in your Azure Storage Account?

Answer 40

Azure Storage Explorer

Question 41

What is a tool that lets you centralize your file shares in Azure Files and keep the flexibility, performance, and compatibility of a Windows file server?

Answer 41

Azure File Sync

Question 42

Which tool automatically keeps files between an on-premises Windows server and an Azure cloud environment updated?

Answer 42

Azure File Sync

Question 43

Which storage redundancy option provides the highest degree of durability, with 16 nines of durability?

Answer 43

Geo-redundant storage and Geo-zone-redundant-storage

Question 44

Which Azure Storage service supports big data analytics, as well as handling text and binary data types?

Answer 44

Azure Blobs

Question 45

What allows you to centrally manage, configure, and update a large number of VMs in minutes?

Answer 45

Virtual machine scale sets

Question 46

What groups VMs that can be rebooted at the same time?

Answer 46

Update domain grouping

Question 47

What groups VMs by common power source and network switch?

Answer 47

Fault domain grouping

Question 48

What are designed to ensure that VMs stagger updates and have varied power and network connectivity, preventing you from losing all your VMs with a single network or power failure?

Answer 48

Virtual machine availability sets

Question 49

What is a desktop and application virtualization service that runs on the cloud?

Answer 49

Azure Virtual Desktop

Question 50

What provides centralized security management for users’ desktops with Azure Active Directory (Azure AD)?

Answer 50

Azure Virtual Desktop

Question 51

What are a platform as a service (PaaS) offering and offer the fastest and simplest way to run a container in Azure?

Answer 51

Azure Container Instances

Question 52

What is an event-driven, serverless compute option that doesn’t require maintaining virtual machines or containers?

Answer 52

Azure Functions

Question 53

What are commonly used when you need to perform work in response to an event (often via a REST request), timer, or message from another Azure service?

Answer 53

Azure Functions

Question 54

What enables you to build and host web apps, background jobs, mobile back-ends, and RESTful APIs in the programming language of your choice without managing infrastructure?W

Answer 54

App Service

Question 55

What enables Azure resources, such as VMs, web apps, and databases, to communicate with each other, with users on the internet, and with your on-premises client computers?

Answer 55

Azure Virtual Networking

Question 56

What network connections are from a computer outside your organization back into your corporate network?

Answer 56

Point-to-site virtual private network connections

Question 57

What links on-premises VPN devices or gateways to the Azure VPN gateway in a virtual network?

Answer 57

Site-to-site virtual private networks

Question 58

What provides a dedicated private connectivity to Azure that doesn’t travel over the internet?

Answer 58

Azure ExpressRoute

Question 59

What are typically deployed to connect two or more trusted private networks to one another over an untrusted network (typically the public internet)?

Answer 59

Virtual private networks (VPNs)

Question 60

Dynamic routing between your network and Microsoft via Border Gateway Protocol (BGP) is a benefit of what?

Answer 60

Azure ExpressRoute

Question 61

You have an office in Asia and a datacenter in Europe, both with ExpressRoute circuits connecting them to the Microsoft network. What do you use to connect those two facilities, allowing them to communicate without transferring data over the public internet?

Answer 61

ExpressRoute Global Reach

Question 62

What protocol is used to exchange routes between on-premises networks and resources running in Azure?

Answer 62

Border Gateway Protocol (BGP)

Question 63

What refers to your datacenter, office, or other facility being physically co-located at a cloud exchange, such as an ISP?

Answer 63

CloudExchange colocation

Question 63

What refers to your datacenter, office, or other facility being physically co-located at a cloud exchange, such as an ISP?

Answer 63

CloudExchange colocation

Question 64

What integrates your wide area network (WAN) with Azure by providing connections to your offices and datacenters?

Answer 64

An Any-to-any connection

Question 65

What is a hosting service that provides name resolution by using Microsoft Azure infrastructure?

Answer 65

Azure DNS

Question 66

Azure DNS is based on what?

Answer 66

Azure Resource Manager

Question 67

Which Azure Virtual Machine feature staggers updates across VMs based on their update domain and fault domain?

Answer 67

Availability sets

Question 68

Which Azure service allows users to use a cloud hosted version of Windows from any location and connect from most modern browsers?

Answer 68

Azure Virtual Desktop

Question 69

What is a directory service that enables you to sign in and access both Microsoft cloud applications and cloud applications that you develop?

Answer 69

Azure Active Directory (Azure AD)

Question 70

What is Microsoft’s cloud-based identity and access management service?

Answer 70

Azure AD

Question 71

What is a service that provides managed domain services such as domain join, group policy, lightweight directory access protocol (LDAP), and Kerberos/NTLM authentication?

Answer 71

Azure Active Directory Domain Services (Azure AD DS)

Question 72

What enables a user to sign in one time and use that credential to access multiple resources and applications from different providers?

Answer 72

Single sign-on (SSO)

Question 73

What is the process of prompting a user for an extra form (or factor) of identification during the sign-in process?

Answer 73

Multifactor authentication

Question 74

What is a Microsoft service that provides multifactor authentication capabilities?

Answer 74

Azure AD Multi-Factor Authentication

Question 75

Fast Identity Online (FIDO) is an open standard for what?

Answer 75

Passwordless authentication

Question 76

What allows users and organizations to leverage the standard to sign-in to their resources without a username or password by using an external security key or a platform key built into a device?

Answer 76

FIDO (Fast IDentity Online)

Question 77

What refers to all the ways you can securely interact with users outside of your organization?

Answer 77

Azure AD External Identities

Question 78

What is a tool that Azure Active Directory uses to allow (or deny) access to resources based on identity signals?

Answer 78

Conditional Access

Question 79

What is a security model that assumes the worst case scenario and protects resources with that expectation?

Answer 79

Zero Trust

Question 80

What strategy uses a series of mechanisms to slow the advance of an attack that aims at acquiring unauthorized access to data?

Answer 80

A defense-in-depth strategy

Question 81

What is a monitoring tool for security posture management and threat protection?

Answer 81

Microsoft Defender for Cloud

Question 82

Which Azure Active Directory tool can vary the credentials needed to log in based on signals, such as where the user is located?

Answer 82

Conditional Access

Question 83

Which security model assumes the worst-case security scenario, and protects resources accordingly?

Answer 83

Zero trust

Question 84

A user is simultaneously assigned multiple roles that use role-based access control. What are their actual permissions? The role permissions are: Role 1 - read || Role 2 - write || Role 3 - read and write.

Answer 84

Read and write