Azure Fundamentals: Describe Azure Architecture and Services Flashcards by Jonathan Sparks

You are required to deploy an app on two VMs. The following is required: High availability access, Separate fault and update zones, Minimal latency between instances.
Choose the best configuration below:
- Separate resource groups in the same region
- Separate availability sets
- Separate availability zones
- Separate regions in a regional pair.

Separate Availability Zones

How well did you know this?

Not at all

Perfectly

Where are availability zones deployed ?

In separate data centers in the same region

How well did you know this?

Not at all

Perfectly

What are the benefits of availability zones ?

Same region therefor low latency
Separate locations hence separate fault and update zones

How well did you know this?

Not at all

Perfectly

What is an availability set ?

Separate deployments in the same data center

How well did you know this?

Not at all

Perfectly

How do you lock all resource contained within a resource group ?

Set the lock to read-only

How well did you know this?

Not at all

Perfectly

Can a resource group contain resources from a different region ?

Yes

How well did you know this?

Not at all

Perfectly

Can resources from one resource group comunicate with another ?

Yes Resource groups are primarily for management purposes

How well did you know this?

Not at all

Perfectly

You need to deploy templates based on existing resources across some new additional resources. What should you use ?

Azure Resource manager to automate resource deployments using templates.

How well did you know this?

Not at all

Perfectly

What are Resource Groups used for ?

Managing resources as a set.

How well did you know this?

Not at all

Perfectly

What is Azure Monitor used for ?

Analyzing and acting on data.

How well did you know this?

Not at all

Perfectly

Are Regions always paired with other regions ?

Yes

How well did you know this?

Not at all

Perfectly

How may data centers will a region contain

One or more

How well did you know this?

Not at all

Perfectly

What specifies the location of resources ?

Regions

How well did you know this?

Not at all

Perfectly

What allows you to control the type of resources that can be deployed ?

Azure Policy

How well did you know this?

Not at all

Perfectly

When a resource group is deleted, what happens to the resources ?

They are deleted too.

How well did you know this?

Not at all

Perfectly

How many subscriptions can an Azure account create ?

Multiple. Billing occurs at the subscription level

How well did you know this?

Not at all

Perfectly

If you have three departments that must each receive a bill, how many subscriptions should you create ?

Three. Billing occurs at the subscription level.

How well did you know this?

Not at all

Perfectly

Can you transfer an existing subscription to a new Azure AD tenant ?

Yes

How well did you know this?

Not at all

Perfectly

How are quotas for resource groups managed ?

By Region

How well did you know this?

Not at all

Perfectly

How do you organize multiple subscriptions ?

Management Groups

How well did you know this?

Not at all

Perfectly

What is an organizations top level Azure Hierarchy category ?

Azure AD Tenants

How well did you know this?

Not at all

Perfectly

What does a Network Security Group do ?

It defines rules that allow or deny inbound/outbound traffic.

How well did you know this?

Not at all

Perfectly

What prevents excess, malicious HTTP traffic to Azure resources ?

DDoS Protection

How well did you know this?

Not at all

Perfectly

How do you restrict network traffic across subscriptions ?

Use Azure Firewall to create rules.

How well did you know this?

Not at all

Perfectly

What does the traffic manager do ?

Uses DNS to direct requests to the appropriate geographical location endpoint.

What is an Application gateway

A load balancer that manages traffic to your web applications.

What remote desktop clients does Azure Virtual Desktop support ?

MacOS, iOS, Windows, Web, Android.

Name two things which you can use to connect Azure Virtual Networks to one another

VPN Gateways and VNet Peering

What is VNet peering ?

The proccess to connect two or more VNets in Azure

What is Azure Front Door ?

A global entry point for customers accessing web apps, APIs, content and cloud services.

In what scope are Vnets created ?

The scope of a region

Can Vnets from different regions be connected ?

Yes via Global Vnet peering

What is a container instance ?

A lightweight, virtualized app enviroment

What are Azure functions ?

A way to run small pieces of code in the cloud

What kind of data transfer does Virtual network peering support ?

Transfer between: Tenants Subscriptions Deployment models

What should you use to provision virtual machines automatically ?

Scale Sets

you need to bring azure storage into you virtual network with a dedicated IP address. Which solution should you use ?

Create a private endpoint (IP address) then connect to the azure storage with an Azure Private link.

Why would file storage be beneficial for network sharing across Azure cloud, windows, linux and mac OS ?

File storage allows access via SMB protocol, REST and native client libraries. This meets the requirements.

Do Azure SQL database and SQL Server (on VM) directly support NoSQL ?

Which Azure database product supports key-value, document data models, native supports for NoSQL ?

Azure Cosmos DB

What storage option supports persistent storage for Azure Container Instances ?

Azure Files

What is AzCopy used for ?

A command line tool used to upload and download data to and from Azure Blob storage

Can you use Azure Storage explorer to transfer an on premises virtual hard disk to azure ?

Yes

How does Locally redundant storage replicate data ? DELETE

Writes locally to three disks within one datacenter

How does Azure geo-redundant storage store data ? DELETE

Three copies of your data are written in two regions

Is the archive storage tier available at the account level ?

What type of storage incurs a penalty if data is deleted within 30 days ?

Cool

What kind of storage account supports Blob, queue and table storage services ?

Standard general-purpose (v2)

Is Azure DDoS Protection shield enabled automatically ?

Does Azure DDoS protection cover multiple subscriptions ?

Yes

What is authentication?

The process of proving that somebody is who they say they are.

What is authorization ?

The process of verifying that an authenticated user has access to certain functions

What license is required to publish on premises web apps ?

Premium

What tier license allows users to reset their own passwords ?

Premium

How does Azure AD support authorization ?

Role Based Access Control

What authentication types are supported by SSPR and MFA ?

Password, SMS, Voice call

What solution provides provisions, manages and deploys public and private SSL/TLS certificates ?

Key Vault stores cryptographic keys.

Is Microsoft defender limited to just Windows OS ?

No. Works with Server 2008 and some Linux distros

What does Microsoft sentinel do ?

Simplifies security operations.

What is Azure dedicated Hosts ?

Isolated servers where you run your organizations workload only.

Define Defense in depth

Implementing multiple layers of security to slow down an attack and provide early telemetry to act upon.

What is a Application Security Group ?

Allows you to define network security policies based on groups of instances.

Your company is planning on using Azure AD for authentication to the resources defined in Azure. Does Azure AD have built-in capabilities for securing authentication and authorization to resources? Yes No

Yes

A company is planning on purchasing Azure AD Basic for their Azure account. Does the Azure AD Basic tier come with an SLA of 99.9%? Yes No

Yes

A company wants to try out some services which are being offered by Azure in Public Preview. Do the services in Public Preview in Azure come with an SLA? Yes No

A company needs to create around 50 customized Virtual Machines. Out of these 20 are Windows based Virtual machines and 30 are Ubuntu Machines. Which of the following would help reduce the administrative effort required to deploy the machines? Azure Load Balancer Azure Web Apps Azure Traffic Manager Azure ScaleSets

Azure Scale Sets

An IT administrator for a company has been given a powershell script. This powershell script will be used to create several Virtual Machines in Azure. You have to provide a machine to the IT administrator for running the powershell script.You decide to provide a computer that has MacOS and Powershell Core 6.0 installed.Would this solution fit the requirement? Yes No

Yes

A company is planning on setting up a solution in Azure. The solution would have the following key requirement: A tool that provides guidance and recommendations to improve an Azure environment. Which of the following would be best suited for this requirement? Azure Advisor Azure Cognitive Services Azure Application Insights Azure Devops

Azure advisor

A company is planning on setting up a solution in Azure. The solution would have the following key requirement A tool used to monitor Web applications hosted in production based environments Which of the following would be best suited for this requirement? Azure Advisor Azure Cognitive Services Azure Application Insights Azure Devops

Azure Application Insights

A company needs to implement a solution in Azure. Below are the key requirements for this solution Ability to store JSON documents Ensure low latency access to data from around the world Which of the following data solution would you consider for this requirement? Azure SQL Database Azure CosmosDB Azure SQL Datawarehouse SQL Server Stretch database

Azure CosmosDB

When assigning tags to a resource groups, Would the resources in the resource group also inherit the same tags? Yes No

Would resources in a resource group inherit the same permissions applied to a resource group? Yes No

Yes Heirachy

A company has a requirement to deploy 10 Azure resources for several departments. All of the resource types and configurations are the same. Which of the following could be used to automate the deployment of the resources using infrastructure as code? Azure Resource Manager templates Virtual machine scale sets Azure API Management service Management groups

Azure Resource Manager templates

A company has deployed their solutions on to Azure. They have users that connect to Azure AD via the Internet. They have the requirement that if users try to login from an anonymous IP address, they are then prompted to change their password. Which of the following should the company consider for this requirement? Azure AD Connect Health Azure AD Privileged Identity Management Azure AD Identity Protection

Azure AD Identity Protection

A company plans to setup multiple resources in their Azure subscription. They want to implement tagging of resources in Azure. But they want to ensure that when resource groups are created, they have to contain a tag with a name of “organization” and value of “ipspecialist”. You recommend using Azure policies for implementing this requirement Would this recommendation fulfil the requirement?

Yes

You to ensure that resources within a resource group don’t get accidentally deleted. Which of the following would you use for this purpose? Access Control Policies Locks Diagnostics settings

Locks

A company wants to purchase an Azure support plan. Below is a key requirement from the support plan Regular architecture reviews from Microsoft for the company’s Azure environment Which of the following plan would the company need to purchase to fulfil this requirement? Premier Developer Professional Direct Standard

Premier

A company wants to host a mission critical application on a set of Virtual Machines in Azure. They want to ensure they can setup the infrastructure in Azure to guarantee the maximum possible uptime for the application. Which of the following can you make use of in Azure to fulfil this requirement? Choose 2 answers from the options given below Resource Groups Availability Zones Availability Sets Resource Tags

Availability Zones Availability Sets

A company wants to create multiple data stores in Azure. They want to have storage layers that can be used to store data that is infrequently used. Which of the following storage tiers for Azure BLOB storage would be suitable for this type of requirement? Choose 2 answers from the options given below Premium storage Hot storage Cool storage Archive storage

Cool storage Archive storage

You have the following data storage requirements: Data must be stored on multiple nodes. Data must be stored on nodes in separate geographic locations. Data can be read from the secondary location as well as from the primary location Which of the following Azure stored redundancy options should you recommend? A. Geo-redundant storage B. Read-only geo-redundant storage C. Zone-redundant storage D. Locally redundant storage

Read-only geo-redundant storage Must be read and seperate geographic locations

The web tier plan must meet the following requirements: The web apps will use custom domains. The web apps each require 10 GB of storage. The web apps must each run in dedicated compute instances. Load balancing between instances must be included. Costs must be minimized. Which web tier plan should you use? A. Standard B. Basic C. Free D. Shared

Basic

A company wants to setup users in their Azure Account. They have segregated their users into groups. They now want to ensure they set the right permissions for users and administrators accordingly. They need to manage the permissions effectively. You recommend using Azure Role Based Access Does this recommendation meet the requirement?

Yes

A company wants to host their applications on Azure using serverless components. They don’t want to manage the underlying infrastructure for the application. Which of the following could be used to implement a workflow that could be run on a serverless infrastructure? Azure Logic Apps Azure Service Bus Azure Function App Azure Storage

Azure Logic Apps

An IT Engineer needs to create a Virtual Machine in Azure. Currently the IT Engineer has a Windows desktop and has installed the Azure Command Line interface. Which of the following would the IT engineer need to install and then use the Azure Command Line Interface? Choose 2 answers from the options given below Powershell File and Print Explorer Command Prompt Control Panel

PowerShell Command Prompt

Does the Standard Support plan come along with the Azure Free Account? Yes No

A company is planning on purchasing Azure AD Premium for their Azure account. Does the Azure AD Premium tier come with an SLA of 99.9%?

Yes

A company is planning on using Azure Storage Accounts. They have the following requirement Storage of 2 TB of data Storage of a million files Would using Azure Storage fulfil these requirements? Yes No

Yes

Can a Azure storage account automatically replicate data to another region? Yes No

Yes

A company wants to make use of Azure for deployment of various solutions. They want to ensure that suspicious attacks and threats to resources in their Azure account are prevented. Which of the following helps prevent such attacks by using in-built sensors in Azure? Azure AD Identity Protection Azure DDoS attacks Azure privileged identity management Azure Advanced Threat protectio

Azure Advanced Threat protection

Which of the following can assist the company in getting the required compliance reports? Azure AD Microsoft Trust Center Azure Advisor Azure Security Center

Microsoft Trust Center

Would the Azure Advisor tool give recommendations on how to configure Virtual Network settings?

A company is planning on deploying resources to Azure. Which of the following in Azure provides a consistent management layer for deploying objects to the Azure Cloud Infrastructure? Azure Resource Groups Azure policies Azure Management Groups Azure Resource Manager

Azure Resource Manager

A company has a number of resources hosted in Azure. They want to have a comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud. Which of the following service would you use for this requirement? Azure Event Hubs Azure Analysis Services Azure Advisor Azure Monitor

Azure monitor

A company has a virtual machine defined as demovm. This Virtual Machine was created with the standard settings. Now this virtual machine needs to communicate with other Azure resources within the Virtual Network You modify the Network Security Groups Would this solution fit the requirement?

Yes

For high severity cases, a response within 15 minutes. A recommendation is made to purchase the Premier Support plan. Would this recommendation fulfil the requirement?

Yes

You have to ensure that traffic restrictions are in place so that the database server can only communicate with the web server. Which of the following would you recommend for implementing these restrictions? Network security groups (NSGs) Azure Service Bus A local network gateway A Virtual Private Gateway

NSG

Are Azure services in public preview available to all customers?

Yes

Is it possible to create resources in different subscriptions?

Yes

A company is planning on setting up a solution in Azure. The solution would have the following key requirement: Provide the ability to distribute user traffic to a set of backend Virtual Machines. Azure Content Delivery Network Azure SQL Datawarehouse Azure Load Balancer Azure HD Insigh

Azure Load Balancer

A company needs to deploy several virtual machines. Each of these virtual machines will have the same set of permissions. To minimize the administrative overhead, in which would you deploy the Azure Virtual Machines? Azure policies Azure Virtual Machine Scale sets Azure Resource Groups Azure Tags

Azure Resource Groups

The company would like to store the database password in a secure location. You recommend the usage of the Azure key vault for storage of the password. Would this fulfill the requirement?

yes

A company needs to connect their On-premise data center to an Azure Virtual Network using a Site-to-Site connection. Which of the following would you create as part of this implementation? Virtual Network Load Balancer Application Gateway Virtual Private Network Gateway

Virtual Private Network Gateway

They want a way to manage identities in Azure. Which of the following is used as an Identity Management solution in Azure? Azure AD Azure Advisor Azure Security Center Azure Monitor

Azure AD

A company has several on-premise computers that run Windows 10. They want to map a network drive from these machines onto Azure Storage. Which of the following would you consider fulfilling this requirement? An Azure SQL Database An Azure SQL Datawarehouse Azure Storage account – BLOB service Azure Storage account – File service

Azure Storage account – File service

A company has a VPN device that will be used on a Site-to-Site connection from an on-premise location to Azure. Which of the following would be used to represent the VPN device? DNS Zone Application gateway Local network gateway Virtual Network gateway

Local network gateway

Would the Azure Advisor tool give recommendations on how to reduce the cost of running Azure Virtual Machines?

Yes

IT engineers have a set of on-premise workstations that have the following flavors of operating systems Windows 10 MacOS Ubuntu Which of the following tools can you use on the Windows 10 machines? The Azure CLI and Azure Portal only The Azure CLI and Powershell only The Azure Portal and Powershell only The Azure CLI, Azure Powershell and Azure Portal

The Azure CLI, Azure Powershell and Azure Portal

Provides a platform for creating workflows. Which of the following would be best suited for this requirement? Azure Databricks Azure Logic Apps Azure App Service Azure Application Insights

Azure Logic Apps

the ability to detect and diagnose anomalies in web apps Which of the following would be best suited for this requirement? Azure Databricks Azure Logic Apps Azure App Service Azure Application Insights

Azure Application Insights

Provide an option to contact Microsoft support engineers by phone or email. A recommendation is made to purchase the Standard Support plan Would this recommendation fulfill the requirement?

Yes

You want to have the ability to manage the user access to resources across multiple subscriptions. Which of the following can help you achieve this requirement? Resource Groups Management Groups Azure Policies Azure App Service

Management Groups

Most Azure services normally follow the below lifecycle First they are deployed in private preview Then are released in public preview And then finally they are released in General availability Is this true for the lifecycle for an Azure service?

Yes

When it comes to the Service Level Agreement, does Microsoft provide an SLA of 99.99% uptime for Storage Accounts?

Yes

You need to Provide a solution to create and manage a group of identical, load balanced Virtual Machines. Which of the following would be best suited for this requirement? Azure Data Lake Analytics Azure Virtual Machine Scale Sets Azure Virtual Network Azure App Service

Azure Virtual Machine Scale Sets

You need to ensure that traffic can flow into the Virtual Machine on port 8080. Which of the following must you modify to make this work? Network Interface Card Network Security Group Route Tables Route Filters

Network Security Group

You have an Azure environment that contains 10 virtual networks and 100 virtual machines. You need to limit the amount of inbound traffic to all the Azure virtual networks. What should you create? One network security group (NSG) 10 virtual network gateways 10 Azure Express Route circuits One Azure firewall

One Azure Firewall *Inbound traffic coming from the outside*

Which Azure service should you use to correlate events from multiple resources into a centralized repository? Azure Event Hubs Azure Analysis Services Azure Monitor Azure Log Analytics

Azure Log Analytics

As a best practice, all resources that are part of an application and share the same lifecycle should exist in the same? Availability set Region Resource group

Resource group

Azure Resource Manager templates use which format? HTML JSON XML

JSON

Which of the following is used to ensure availability during maintenance events? Availability Set Availability Zone Scale Set

Availability Set

Which management tools would best allow you to do manage remotely from your Android phone with the least amount of administrative effort? Azure CLI Azure portal Powershell

Azure CLI

You plan to create an Azure virtual machine. You need to identify which storage service must be used to store the unmanaged data disks of the virtual machine. What should you identify? Containers File shares Tables Queues

Containers

Your Azure environment contains multiple Azure virtual machines. You need to ensure that a virtual machine named VM1 is accessible from the Internet over HTTP. Solution: You modify an Azure firewall. Does this meet the goal?

Yes

Which of the following could grant or deny access based on the originating IP address? Azure Active Directory Azure Firewall VPN Gateway

Azure Firewall

Which of the following services would you use to filter internet traffic in your Azure virtual network? Azure Firewall Network Security Group VPN Gateway

Network Security Group

Which of the following should you use to download published audit reports and how Microsoft builds and operates its cloud services? Azure Policy Azure Service Health Service Trust Portal

Service Trust Portal

Which of the following provides information about planned maintenance and changes that could affect the availability of your resources? Azure Monitor Azure Security Center Azure Service Health

Azure Service Health

Which of the following can be used to help you enforce resource tagging so you can manage billing? Azure Policy Azure Service Health Compliance Manager

Azure Policy

Which of the following lets you grant users only the rights they need to perform their jobs? Azure Policy Compliance Manager Role-Based Access Control

Role-Based Access Control

Which of the following items would be good use of a resource lock? An ExpressRoute circuit with connectivity back to your on-premises network A non-production virtual machine used to test occasional application builds A storage account used to temporarily store images processed in a development environment

An ExpressRoute circuit with connectivity back to your on-premises network

Your Azure environment contains multiple Azure virtual machines. You need to ensure that a virtual machine named VM1 is accessible from the Internet over HTTP. What are two possible solutions? Modify an Azure Traffic Manager profile Modify a network security group (NSG) Modify a DDoS protection plan Modify an Azure firewal

Modify a network security group (NSG) Modify an Azure firewal

When you need to delegate permissions to several Azure virtual machines simultaneously, you must deploy the Azure virtual machines... To the same Azure region By using the same Azure To the same resource group To the same availability zone

to the same resource group

How can the IT department ensure that employees at the company's retail stores can access company applications only from approved tablet devices? SSO Conditional Access Multifactor authentication

Conditional Access

Which is likely the best way for companies to identify which billing department each Azure resource belongs to? Track resource usage in a spreadsheet. Split the deployment into separate Azure subscriptions, where each subscription belongs to its own billing department. Apply a tag to each resource that includes the associated billing department.

Apply a tag to each resource that includes the associated billing department.

What are two possible techniques to segment Azure for the departments? multiple subscriptions multiple Azure Active Directory (Azure AD) directories multiple regions multiple resource groups

multiple subscriptions multiple resource groups

You plan to implement a solution that enables the client computers on your on-premises network to communicate to the Azure virtual machines. You need to recommend which Azure resources must be created for the planned solution. Which two Azure resources should you include in the recommendation? a virtual network gateway a load balancer an application gateway a virtual network a gateway subnet

a virtual network gateway a gateway subnet

Which of the following is a logical unit of Azure services that links to an Azure account? Azure Subscription Management Group Resource Group

Azure Subscription

Can you use Availability Zones in Azure to protect Azure virtual machines from a datacenter failure

Yes

What is the prime benefit of using region pairs ?

Reduces the likelihood of interruptions in both regions in event of a disaster

Can NSG protect across subscriptions ?

No. Only protects resources within one subscription

Which option of PostgreSQL should you use if you require to scale horizontally ?

Azure database for PostgreSQL HYPERSCALE (citus)

Can a NSG be used to restrict apps on a VM ?

No. Only IT management

Can you use NSG to restrict user account access to a VM ?

No. You must use RBAC for this.

What do spot VMs/Instance provide ?

Reduce costs by taking advantage of un-utilized compute capacity.

What is Azure Data Box Gateway ?

Allows you to periodically migrate large amounts of data to and from Azure Data Box (SMB)

What service protocol does Azure Data Box Gateway use ?

Server Message Block (SMB)

What is Azure Data Box Heavy ?

Physical data transfer service. Up to 100TB

Is a Vnet a regional source ?

Yes

Can you add or remove resources from a resource provide it's not locked ?

Yes

Can a resource reside in more than one resource group ?

What must web apps be registered with to support authentication and authorization ?

Azure AD

How does Azure Ad support authorization ?

RBAC

What deploys public and private SSl/TLS certificates in Azure ?

Key Vault

What is Microsoft defender ? DELETE

It monitors resources and Provides advanced threat protection. Gives recommendations.

Will Microsoft defender automatically detect and assess new Azure resources ?

Yes

What service provides an abstraction of servers, infrastructure and OS's ?

Azure Functions

Is shared access signature required to access Azure files ?

What protects user identity and credentials within Azure AD ?

Microsoft defender for Identity

What three key things will Microsoft Defender do ?

Prevent, detect and respond to security threats.

Where should you verify any planned Azure maintenance ?

Service Health Dashboard

What specifies the location of a resource ?

A region *Although its a data center, you cannot chose the location exact location of the resource, only its region.

What is Azure Storage Explorer ?

GUI tool that manages Azure Storage resources.

Does the contributor role allow the ability to grant access to others?

What is Azure Express route ?

A private connection between your organization and Microsoft Cloud services

Can Azure Storage Encryption be disabled ?

No. Enabled by default

Are you charged for the use of Azure Virtual Desktop based on users ?

Should Azure Virtual Desktop Users exist the the same Windows Server AD that is linked to Azure AD ?

Yes

Where can a company automate resource deployments using templates ?

Azure Resource Manager

Can you use Azure Files to periodically migrate data to Azure ?

Yes. Using SMB

What redundant storage type allows replicated data to be accessed in two regions ?

Read Access Geo-Redundant Storage

What is used to transfer data between Azure AD tenants ?

Azure Virtual Network Peering

What Subscription allows you to evaluate Azure App services for 6 months ?

Free Subscription

What does Defender for cloud do ?

Prevent, detect and respond to security threats. Provides the tools needed to harden your resources, track your security posture, protect against cyberattacks

What does Azure Information Protection do ?

Organize and protect documents/emails through use of labels.

Does a container represent a single app and it's dependencies ?

Yes

How does Azure AD support authorization ?

RBAC

What is a VPN gateway ?

Vnet gateway used to send encrypted traffic between an Azure Vnet and an on-premises location over the public Internet or Microsoft network.

What does a site-to-site VPN connect your on premises network to ?

Azure Vnet

You were tasked to look for a document sharing solution that you can map or mount in your on-premises Windows servers. What Azure service should you use?

Azure Files network file (SMB) protocol.

What are managed disks ?

Managed disks are like a physical disk in an on-premises server but virtualized.

What Azure service should you use if you want your application to have a higher level of availability and to evenly distribute internal traffic across virtual machines within a VNET?

Private Load Balancer

What does a private load balancer do ?

Distributes traffic to resources that are inside a virtual network.

What is a public load balancer ?

Provides outbound connections for virtual machines (VMs) inside a virtual network. Also used to used to load balance Internet traffic to your VMs.

What is Azure app service ?

Enables you to build and host: web apps mobile back ends API's in many languagesF

What does azure logic apps do ?

Schedules, automates and orchestrate tasks, business processes, and workflows.

What are the benefits of Azure Vnet ?

Utilizes Azure’s infrastructure to provide scalibility, availability, and isolation.

What is blob storage optimized for ?

Storing massive amounts of unstructured data.

What are Azure disks optimized for ?

Like physical disk in an on-premises server but virtualized

What are Azure Tables optimized for ?

Storing large amounts of structured data. E.g. NoSQL

What are Azure Files optimized for ?

Highly available network file shares that can be accessed by using the standard Server Message Block (SMB) protocol.

You plan on migrating several virtual machines to Azure for your frontend and backend applications. There is a compliance requirement wherein the back-end servers must be on a separate network segment. What Azure solution should you implement?

Azure Vnet fo both the front and back end servers,

By default can Vnets communicate with one another ?

No. Should set up peering for comms.

How many copies of data will be maintained by the Azure storage account that uses geo-zone-redundant storage (GZRS) at the minimum?

LRS copy locations ?

ZRS copy location

GRS copy location ?

GZRS copy location

What layer does Azure front door work at ?

Layer 7

What does Azure Load Balancer do ?

Distributes inbound flows that arrive at the load balancer’s front end to backend pool instances.

A company is migrating its TDPortal to Azure. The website is accessed by users worldwide for video streaming services. You need to recommend a solution that will provide reduced load times and high transfer speeds. What Azure service should you recommend?

Azure Content Delivery Network is a distributed network of servers that can efficiently deliver web content to users.

What are availibility zones ?

Unique physical locations within an Azure region. Each zone is made up of one or more data centers.

A company has hundreds of virtual machines that are dispersedly hosted across multiple virtual networks and subscriptions. You are tasked to limit the amount of outbound HTTPS traffic to a specified list of fully qualified domain names (FQDN) as well as limit the inbound traffic to the virtual networks. What must be done to satisfy the above requirement?

Integrate Azure Firewall to your network architecture

What does the service trust portal provide ?

Security, privacy and compliance practices

Can a NSG manage VMs across multiple Vnets and scubscriptions ?

What is Azure cost management billing ?

Manage your spending and billing habbits

What are NSGs attatched to ?

Subnet or network interface

Where is the regulatory compliance dashboard located ?

Microsoft Defender for Cloud

What is Azure Arc

multi-cloud and on-premises management platform.

Brainscape's Knowledge GenomeTM

Azure Fundamentals: Describe Azure Architecture and Services Flashcards

Brainscape's Knowledge Genome^TM