Azure Cheat Sheet

Question 1

Azure Advisor

Answer 1

Azure Advisor evaluates your Azure resources and makes recommendations to help improve reliability, security, performance achieve operational excellence and reduce costs

Azure Advisor is designed to help you save time on cloud optimization
The recommendation service includes suggested actions you can take right away, postpone or dismiss

When youre in the Azure portal, the Advisor dashboard displays personalized recommendations for all your subscriptions

You can use filters to select recommendations for specific subscriptions, resource groups or services

Question 2

Azure Blueprints

Answer 2

Azure Blueprints lets you deploy a Test/Dev environment with security and compliance settings already configured

In this way, development teams can rapidly build and deploy new environments with the knowledge that theyre building within organizational requirements

Question 3

Azure Monitor

Answer 3

Azure Monitor is a platform for collecting data on your resources, analyzing that data, visualizing the information, and even acting on the results. Azure Monitor can monitor Azure resources, your on premises resources, and even multi cloud resources like virtual machines hosted with a different cloud provider

Question 4

Azure Log Analytics

Answer 4

Azure Log Analytics is the tool in the Azure portal where you will write and run log queries on the data gathered by Azure Monitor

Log Analytics is a robust tool that supports both simple, and complex queries and data analysis

You can write a simple query that returns a set of records and then use features of Log Analytics to sort, filter and analyze the records

You can write an advanced query to perform statistical analysis and visualize the results in a chart to identify a particular trend

Question 5

Azure Monitor Alerts

Answer 5

Azure Monitor Alerts are an automated way to stay informed when Azure Monitor detects a threshold being crossed

You set the alert conditions, the notification actions and then Azure Monitor Alerts notify when an alert is triggered

Question 6

Azure Reservations

Answer 6

Azure Reservations offers discounted prices on certain Azure services.

Azure Reservations can save you up to 72 percent compared to pay as you go prices

To receive a discount, you can reserve services and resources by paying in advanced

Question 7

Azure Spot VM

Answer 7

Azure spot VMs allow customers to purchase VMs from a pool of unused spare capacity at a significantly lower price - up to 90% less - than pay as you go

Question 8

Azure Agility

Answer 8

Agility means that you can deploy and configure cloud based resources quickly as app requirements change

Question 9

Azure Scalability

Answer 9

Means that you can add RAM, CPU or entire virtual machines to a configuration

Question 10

Azure Elasticity

Answer 10

Means that you can configure cloud based apps to take advantage of autoscaling, so apps always have the resources they need

Agility is the ability to scale quickly. If that scaling is happening automatically, then we are talking about Elasticity. All of those terms directly explain the system’s ability to change resources at will.

Question 11

Azure High Availability

Answer 11

Means that cloud based apps can provide a continuous user experience with no apparent downtime, even when things go wrong

Question 12

Azure Disaster Recovery

Answer 12

It keeps data and other assets safe in the event of a disaster

Question 13

Azure Application Insights

Answer 13

An Azure Monitor feature

Monitors your web applications

Application Insights is capable of monitoring applications that are running in Azure, on premises, or a different cloud environment

There are two ways to configure Application Insights to help monitor your application

You can either install an SDK in your applications, or you can use the Application Insights agent

The Application Insight agent is supported in C#.NET, VB.NET, Java, JavaScript, Node.js, and Python

Not only does Application Insights help you monitor the performance of your application, but you can also configure it to periodically send synthetic requests to your application

Question 14

App Service

Answer 14

App Service includes full support for hosting web apps by using ASP.NET, ASP.NET Core, Java, Ruby, Node.js, PHP or Python

You can choose either Windows or Linux as the OS

App Service enables you to build and host web apps, background jobs, mobile back ends, and RESTful APIs in the programming language of your choice without managing infrastructure

It offers automatic scaling and high availability

It enables automated deployments from GitHub, Azure DevOps, or any Git repo to support a continuous deployment model

Question 15

HDInsight

Answer 15

HDInsight is a cloud service that makes processing massive volumes of data simple, fast and cost effective

Question 16

Azure Trust Center

Answer 16

The Trust Center is an important part of the Microsoft Trusted Cloud Initiative and provides support and resources for the legal and compliance community

Question 17

Azure Event Hubs

Answer 17

Azure Event Hubs is a big data streaming platform and event ingestion service
It can receive and process millions of events per second

Data send to an event hub can be transformed and stored by using any real time analytics provider or batching/storage adapters

Question 18

Azure Service Health

Answer 18

Azure Service Health is a suite of experiences that provide personalized guidance and support when issues with Azure services affect you.

It can notify you, help you understand the impact of issues, and keep you updated as the issue is resolved.

Azure Service health can also help you prepare for planned maintenance and changes that could affect the availability of your resources

Question 19

Azure Databrick

Answer 19

Azure service that provides analytics and reporting

Question 20

Azure Security Center

Answer 20

Azure Security Center by Microsoft is a solution that provides unified security management across hybrid cloud workloads

It offers threat protection for data centers within both cloud workloads and on premises

The platform also works with hybrid clouds that are not part of the Azure ecosystem

Question 21

Azure Firewall

Answer 21

Azure Firewall is a cloud native and intelligent network firewall security service that provides the best of breed threat protection for your cloud workloads running in Azure

Its a fully stateful, firewall as a service with built in high availability and unrestricted cloud scalability

Question 22

Network Security Group (NSG) `

Answer 22

You can use an Azure NSG to filter network traffic between Azure resource sin an Azure virtual network

A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources

For each rule, you can specify source and destination, port and protocol`

Question 23

Azure Advanced Threat Protection

Answer 23

Microsoft Defender for Identity is a cloud based security solution that leverages your on premises Active Directory signals to identify, detect and investigate advanced threats, compromised identifies and malicious insider actions directed at your organization

Question 24

Azure Policy

Answer 24

Azure Policy is a service in Azure that enables you to create, assign and manage policies that control or audit your resources

These policies enforce different rules across your resource configurations so that those configurations stay compliant with corporate standards

Azure Policy enables you to define both individual policies and groups of related policies, known as initiatives

Azure Policy evaluates your resources and highlights resources that arent compliant with the policies youve created

Question 25

Service Trust Portal

Answer 25

Service Trust Portal is the Microsoft public site for publishing audit reports and other compliance related information relevant to Microsofts cloud services

STP users can download audit reports produced by external auditors and gain insight from Microsoft authored reports that provide details on how MIcrosoft builds and operates its cloud services

Question 26

Azure AD Identity Protection

Answer 26

Identity Protection uses the leanings Microsoft has acquires from their position in organizations with Azure AD, the consumer space with Microsoft Accounts, and in gaming with Xbox to protect your users.

Microsoft analyzes trillions of signals per day to identify and protect customers from threats

Question 27

Microsoft Privacy Statement

Answer 27

The Microsoft Privacy Statement explains what personal data Microsoft processes, how Microsoft processes it and for what purposes

Question 28

Conditional Access

Answer 28

This is a tool that Azure AD uses to allow (or deny) access to resources based on identity signals

These signals include who the user is, where the user is, and what device the user is requesting access from

Conditional Access also provides a more granular MFA experience for users

For example, a user might not be challenged for a second authentication factor if theyre at a known location

Question 29

Single Sign On (SSO)

Answer 29

SSO centralizes user identity, so you can disable an inactive account in a single step

Question 30

Azure Cognitive Servcies

Answer 30

Azure Cognitive Services are cloud based AI services that help developers build cognitive intelligence into applications without having direct AI or data science skills or knowledge

Question 31

Azure Logic Apps

Answer 31

Serverless, Azure Logic Apps is a cloud service that helps you schedule, automate, and orchestrate tasks, business processes, and workflows when you need to integrate apps, data, systems, and services across enterprises or organizations

Question 32

Azure Functions

Answer 32

Serverless, it is a serverless compute service that lets you run event triggered code without having to explicitly provision or manage infrastructure

Question 33

Azure Sentinel

Answer 33

Azure Sentinel, now known as Microsoft Sentinel, centralizes your threat collection, detection, response and investigation efforts.

It provides threat intelligence security and analytic capabilities that facilitate threat visibility, alert detection, threat response, and proactive hunting

Question 34

Azure Traffic Manager

Answer 34

Azure Traffic Manager is a DNS based traffic load balancer

This service allows you to distribute traffic to your public facing applications across the global Azure regions

Traffic Manager also provides your public endpoints with high availability and quick responsiveness

Question 35

Application Gateway

Answer 35

Azure Application Gateway is a web traffic load balancer that enables you to manage traffic to your web applications

Traditional load balancers operates at the transport layer (OSI layer 4- TCP and UDP) and route traffic based on source IP address and port, to a destination IP address and port

Question 36

Azure Sphere

Answer 36

(IoT) Azure Sphere is a secured, high level application platform with built in communication and security features for internet connected devices

Question 37

VM Scale Sets

Answer 37

Virtual machine scale sets let you create and manage a group of identical, load balanced VMs.

If you simply created multiple VMs with the same purpose, you would need to ensure they were all configured identically and then set up network routing parameters to ensure efficiency

Scale sets allow you to centrally manage, configure and update a large number of VMs in minutes

The number of VM instances can automatically increase or decrease in response to demand, or you can set it to scale based on a defined schedule

Question 38

Azure Virtual Desktop

Answer 38

Azure Virtual Desktop is a desktop and application virtualization service that runs on the cloud

It enables you to use a cloud hosted version of Windows from any location

Azure Virtual Desktop works across devices and OS

Question 39

Containers

Answer 39

Containers (PaaS) are a virtualization environment

Much like running multiple virtual machines on a single physical host, you can run multiple containers on a single physical or virtual host

Unlike virtual machines, you dont manage the OS for a container

Question 40

Border Gateway Protocol

Answer 40

Border Gateway Protocol (BGP) works with Azure VPN gateways, Azure Route Server, or Azure ExpressRoute to propagate on premises BGP routes to Azure virtual networks

Question 41

Azure Service Endpoint

Answer 41

Service endpoints are used to expose Azure services to a virtual network, providing communication between the two

Question 42

Azure Key Vault

Answer 42

Azure Key Vault is a centralized cloud service for storing your applications secrets

Key Vault helps you control your applications secrets by keeping them in a single, central location and by providing secure access, permissions control and access logging capabilities

Question 43

Azure Blob

Answer 43

This is an immensely scalable object store for text and binary data

Azure Blob Storage was designed to serve specific needs

If your business use case needs to store unstructured data like audio, video, images etc then you should probably go with this option.

The objects which are being stored in Blob do not necessarily have an extension

Question 44

Azure Files

Answer 44

Unlike the Blob Storage, the File Storage allows the cloud share of the fully managed file and these files should be accessible with the industry SMB

The main difference between Blob and File storage is the form of the data

Azure File Storage allows only structured data

Question 45

Azure Queue

Answer 45

This is a messaging store for consistent messaging between application components

Question 46

Azure Tables

Answer 46

NoSQL Stores for schema less stroage of structured data

Question 47

Azure Disks

Answer 47

This is block level for Azure VMs

Question 48

AzCopy

Answer 48

This is a command line utility that you can use to copy blobs, or files from your storage account. With AzCopy, you can upload files, download files, copy files between storage accounts and even synchronize files

Question 49

Azure Storage Explorer

Answer 49

This is a standalone app that provides a graphical interface to manage files and blobs in your Azure Storage Account

Question 50

Azure File Sync

Answer 50

This is a tool that centralizes your file shares in Azure Files and keeps the flexibility, performance and compatibility of a Windows file server

Question 51

Azure Migrate

Answer 51

This is a service that helps you migrate from an on premises environment to the cloud

Question 52

Azure Fault Tolerance

Answer 52

This is the ability of an OS to respond to a hardware or software failure

The ability of a system to continue operating despite failures or malfunctions is referred to as fault tolerance

Question 53

Azure Data Box

Answer 53

This is a physical migration service that helps transfer large amounts of data in a quick, inexpensive and reliable way

Question 54

Azure Synapse

Answer 54

It is a limitless analytics service that brings together enterprise data warehousing and big data analytics

Question 55

Zero Trust

Answer 55

This is a security model that assumes the worst case scenario

Trust assumes breach at the outset and then verifies each request as though it originated from an uncontrolled network

Question 56

Azure Cloud Shell

Answer 56

This is a browser based shell tool that allows you to create, configure and manage Azure resources using a shell

Azure Cloud Shell supports both PowerShell and Azure CLI which is a bash shell

Question 57

Azure PowerShell

Answer 57

This is a shell with which developers, DevOps and IT professionals can run commands called command-lets

These commands call the Azure REST API to perform management tasks in Azure

Question 58

The Azure CLI

Answer 58

This is functionally equivalent to PowerShell, with the primary difference being the syntax of commands

While Powershell uses Powershell commands, the Azure CLI uses Bash commands

Question 59

Azure Arc

Answer 59

Arc lets you extend your Azure compliance and monitoring to your hybrid and multi cloud configurations

Azure Arc simplifies governance and management by delivering a consistent multi cloud and on premises management platform

Question 60

Azure Resource Manager (ARM)

Answer 60

Is the deployment and management service for Azure

it provides a management layer that enables you to create, update and delete resources in your Azure account

Anytime you do anything with your Azure resources, ARM is involved

Question 61

Azure Resource Manager Templates

Answer 61

It is structure for creating resources

They can be used to specify and automate the creation of resources that are similar

By using ARM templates, you can describe the resources you want to use in a declarative JSON format

Question 62

TCO

Answer 62

The TCO Calculator helps you estimate the cost savings over time of operation a solution in Azure compared to operating in an on premises data center

Question 63

Pricing Calculator

Answer 63

This is designed to give you an estimated cost for provisioning resources in Azure

You can get an estimate for individual resources, build out a solution, or use an example scenario to see an estimate of the Azure spend

The pricing calculators focus is on the cost of provisioned resources in Azure

Question 64

Cost Management

Answer 64

It provides the ability to quickly check Azure resources costs, create alerts based on resource spending, and create budgets that can be used to automate the management of resources

Question 65

Locally Redundant Storage

Answer 65

Locally redundant storage (LRS) replicates your data three times within a single data center in the primary region

LRS provides at least 11 9s of durability of objects over a given year

Question 66

Zone Redundant Storage

Answer 66

For Availability Zone enabled regions, zone redundant storage replicates your Azure Storage data synchrnously across three Azure availability zones in the primary region

ZRS offers durability for Azure Storage data objects of at least 12 nines over a given year

Question 67

Geo Redundant Storage

Answer 67

GRS copies your data synchrnously three times within a single physical location in the primary region using LRS

It then copies your data asynchronously to a single physical location in the secondary region (the region pair) using LRS

GRS offers durability for Azure Storage data objects of at least 16 9s over a given year