Azure Study Material

Question 1

What does GZRS stand for?

Answer 1

GEO-ZONE REDUNDANT STORAGE

Copies your data synchronously three times within the primary region using ZRS.

Question 2

How does GZRS handle redundancy in the secondary region?

Answer 2

It copies the data asynchronously to a single physical location in the secondary region.

Recommended by MSFT for apps requiring high availability.

Question 3

What is the benefit of using GZRS along with GRS?

Answer 3

With GRS and GZRS, redundancy is extended to the secondary region!

Options within

Question 4

LRS

Answer 4

Locally Redundant Storage

Copies your data synchronously three times within a single physical location in the primary region.

Question 5

ZRS

Answer 5

Zone Redundant Storage

Copies your data synchronously across three Azure availability zones in the primary region.

Question 6

What does GRS stand for?

Answer 6

Geo-Redundant Storage

Copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Question 7

How does GRS store data?

Answer 7

It copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Question 8

What is AzCopy?

Answer 8

A command-line utility that you can use to copy blobs or files to or from your storage account.

1:33:10 / 2:30:51 • DOMAIN 2.3 Describe Azure Storage Services

Question 9

What is Azure Storage Explorer?

Answer 9

A standalone app that provides a graphical interface to manage files and blobs in your Azure Storage Account. Supports file and blob upload, download, or move between accounts.

1:33:10 / 2:30:51 • DOMAIN 2.3 Describe Azure Storage Services

Question 10

What is Azure File Sync?

Answer 10

A tool that lets you centralize your file shares in Azure Files and keep the flexibility, performance, and compatibility of a Windows file server.

Question 11

What happens once Azure File Sync is installed on a local Windows server?

Answer 11

It will automatically stay bi-directionally synced with your files in Azure.

Question 12

What does B2B collaboration support?

Answer 12

Entra ID and social identities

Example sentence: Enable external users to use their preferred identity to sign into your Microsoft or other enterprise applications (SaaS apps, custom-developed apps, etc.)

Question 13

What does B2B direct connect support?

Answer 13

Multiple two-way trusts

Example sentence: Establish a mutual, two-way trust with another Entra ID organization for seamless collaboration. Useful for heavy, daily collaboration with close business partners.

Question 14

What does Business-to-Consumer (B2C) support?

Answer 14

Entra & social identities

Example sentence: Publish modern SaaS apps or custom-developed apps to consumers and customers, while using Entra ID B2C for identity and access management.

Question 15

What is an Entra ID multi-tenant organization?

Answer 15

Collaborate with multiple tenants in a single Entra ID organization via cross-tenant synchronization.

Question 16

What does LL stand for in Entra ID?

Answer 16

LL stands for language options.

Question 17

What are some features within Entra ID?

Answer 17

Features within Entra ID include language options.

Question 18

What is Conditional Access used for?

Answer 18

Used by Entra ID to bring signals together, to make decisions, and enforce organizational policies

Conditional Access is used by Entra ID for these purposes.

Question 19

What does Azure RBAC help you manage?

Answer 19

who has access to Azure resources,
what they can do with those resources,
which resources/areas they have access to

RBAC = Role Based Access Control

Question 20

What is Azure RBAC?

Answer 20

Built on Azure Resource Manager and provides fine-grained access management of Azure resources.

Azure RBAC is one element of implementing ‘least privilege’.

Question 21

What does Azure RBAC stand for?

Answer 21

Azure RBAC stands for Azure Role-Based Access Control.

Example sentence: Azure RBAC allows you to assign specific roles to users, granting them access only to the resources they need.

Question 22

What are the three principles of Zero Trust?

Answer 22

Verify explicitly
Always authenticate and authorize based on all available data points.
Use least privilege access
Limit user access with Just-In-Time and Just-Enough-Access (JIT/JEA), risk-based adaptive policies, and data protection.
Assume breach
Segment access to minimize blast radius

Question 23

What does ‘Verify explicitly’ mean in Zero Trust?

Answer 23

Always authenticate and authorize based on all available data points.

Question 24

What does ‘Use least privilege access’ mean in Zero Trust?

Answer 24

Limit user access with Just-In-Time and Just-Enough-Access (JIT/JEA), risk-based adaptive policies, and data protection.

Question 25

What does 'Assume breach' mean in Zero Trust?

Answer 25

Segment access to minimize blast radius

Question 26

Traditional Architecture

Answer 26

Older model of network security ## Footnote First footnote

Question 27

Zero Trust Architecture

Answer 27

Security model where nothing is trusted by default ## Footnote Second footnote

Question 28

Trusted

Answer 28

Considered reliable or secure ## Footnote Seventh footnote

Question 29

Trusted by default

Answer 29

Assumed to be secure without verification ## Footnote Eighth footnote

Question 30

Trust but verify

Answer 30

Concept of trusting but confirming the trustworthiness ## Footnote Tenth footnote

Question 31

Security based on identity, not on network perimeter

Answer 31

Approach to security that focuses on user identity ## Footnote Eleventh footnote

Question 32

What is Zero Trust Security?

Answer 32

Unlike the 'trust but verify' approach, in Zero Trust, no entity is trusted by default.

Question 33

What are the three principles of Zero Trust Security?

Answer 33

It is based on three principles: assume breach, verify explicitly, and least privilege access.

Question 34

What is defense in depth?

Answer 34

A layered (defense in depth) approach that does not rely on one method to completely protect your environment. ## Footnote Example sentence: Implementing firewalls, intrusion detection systems, and encryption mechanisms are all part of a defense in depth strategy.

Question 35

What is Defender for Cloud?

Answer 35

A unified infrastructure security management system that strengthens the security posture of your cloud and on-premises data centers. Provides security guidance for compute, data, network, storage, app, and other services. Includes support for both Azure and on-premises workloads, as well as other public clouds (AWS, GCP). Multi-cloud support.

Question 36

What are factors that can affect Azure resource costs?

Answer 36

Resource types, services, locations, ingress and egress traffic ## Footnote Example sentence: The cost of running a virtual machine in the West US region may differ from running the same virtual machine in the East US region.

Question 37

What are factors that can reduce costs?

Answer 37

reserved instances, reserved capacity, hybrid use benefit, spot pricing ## Footnote Example sentence: Using reserved instances can help reduce overall cloud computing costs.

Question 38

What is Reserved?

Answer 38

Reserve virtual machines in advance

Question 39

What is Reserved Instances?

Answer 39

Reserve virtual machines in advance and save up to 72 percent compared to PAYG pricing with 1-yr or 3-yr commitment ## Footnote Example: By committing to a 3-year Reserved Instance, you can significantly reduce your cloud computing costs.

Question 40

Reserved

Answer 40

Capacity ## Footnote Reserved capacity enables you to more easily manage costs across predictable and variable workloads and help optimize budgeting and forecasting.

Question 41

What is Azure Service?

Answer 41

Notifies you about Azure service incidents and planned maintenance so you can take action to mitigate downtime. ## Footnote Example sentence: Azure Service Health sends alerts to notify users of any service incidents.

Question 42

What is Application Insights?

Answer 42

An extension of Azure Monitor and provides application performance monitoring (APM) features.

Question 43

What does Application Insights monitor?

Answer 43

Monitors the availability, performance, and usage of your web applications.

Question 44

What does Application Insights enable?

Answer 44

Enables proactive understanding of app performance and reactive review of app execution to determine root cause.

Question 45

What is Azure Monitor?

Answer 45

Alerts ## Footnote Azure Monitor is a proactive way to detect and address issues before they become critical.

Question 46

What can you create alerts on in Azure Monitor?

Answer 46

You can create alerts on any metric or log data source in the Azure Monitor data platform. ## Footnote Types include metric, log, activity, service health, resource health, smart detection, and Prometheus.

Question 47

What is Azure Monitor?

Answer 47

A service that collects monitoring telemetry from a variety of on-premises and Azure sources.

Question 48

What can Azure Monitor monitor?

Answer 48

Resources like app, VMs, guest OS, containers, DBs, security, and network events.

Question 49

Where does Azure Monitor store the telemetry it collects?

Answer 49

In an Azure Log Analytics instance backend data store ## Footnote Azure Monitor aggregates and stores this telemetry in an Azure Log Analytics instance backend data store.

Question 50

What is Azure Advisor?

Answer 50

Scans your Azure configuration and recommends changes to optimize deployments, increase security, and save you money. ## Footnote Analyzes the configuration of the resource deployed in the Azure subscriptions for high availability, security, performance, costs

Question 51

What does laC stand for?

Answer 51

Infrastructure as Code ## Footnote laC is the management of infrastructure (networks, VMs, load balancers, and connection topology) described in code.

Question 52

What does code in the laC model result in?

Answer 52

The same environment every time it is applied. ## Footnote Just as the same source code generates the same binary, code in the laC model results in the same environment every time it is applied.

Question 53

What is laC used in conjunction with?

Answer 53

Continuous integration and continuous delivery (CI/CD) ## Footnote laC is a key DevOps practice and is used in conjunction with continuous integration and continuous delivery (CI/CD).

Question 54

What is Azure Arc?

Answer 54

A platform that extends Azure services to run applications across datacenters, edge, and multi-cloud environments. ## Footnote Azure Arc provides a consistent development, operations, and security model to run applications on new and existing hardware.

Question 55

What does Azure Arc simplify?

Answer 55

Governance and management by delivering a consistent multi-cloud and on-premises management platform. ## Footnote Azure Arc simplifies governance and management by delivering a consistent multi-cloud and on-premises management platform.

Question 56

What is the purpose of Azure Arc?

Answer 56

A platform that extends Azure services to run applications across datacenters, edge, and multi-cloud environments. ## Footnote Example sentence: Azure Arc allows organizations to manage resources centrally across different environments.

Question 57

What is a ARM template?

Answer 57

A JavaScript Object Notation (JSON) file that defines the infrastructure and configuration for your project. ## Footnote Templates use declarative syntax and are idempotent, which means you can deploy many times and get same resources and state.

Question 58

What is Azure Resource Manager?

Answer 58

Azure Resource Manager (ARM) is the deployment and management service for Azure.

Question 59

What does Azure Resource Manager provide?

Answer 59

It provides a management layer that enables you to create, update, and delete resources in your Azure account.

Question 60

What is Azure CLI?

Answer 60

The Azure command-line interface (Azure CLI) is a set of commands used to create and manage Azure resources.

Question 61

Where is Azure CLI available?

Answer 61

Available on Windows, macOS, and Linux, Docker, and Azure Cloud Shell.

Question 62

What is Azure Mobile?

Answer 62

App for iOS and Android that enables managing, tracking health and status, and troubleshooting your Azure resources ## Footnote Example: Azure Mobile is a useful tool for monitoring the performance of your cloud services.

Question 63

What is a set of cdlets for managing Azure resources directly from the PowerShell command line?

Answer 63

Azure ## Footnote A set of cdlets for managing Azure resources directly from the PowerShell command line.

Question 64

What technology allows for managing Azure resources directly from the PowerShell command line?

Answer 64

PowerShell ## Footnote Technology that allows for managing Azure resources directly from the PowerShell command line.

Question 65

What does MSFT provide for managing Azure resources?

Answer 65

Azure-specific modules and cmalets ## Footnote MSFT provides Azure-specific modules and cmalets

Question 66

What is Azure Cloud Shell?

Answer 66

An interactive, authenticated, browser-accessible shell for managing Azure resources. ## Footnote It includes both Bash and PowerShell options

Question 67

What is Azure?

Answer 67

A web-based, unified console where you can manage your Azure subscription using a graphical user interface. ## Footnote - Example: I accessed Azure through the portal to deploy a new virtual machine.

Question 68

What do resource locks prevent?

Answer 68

Prevent other users in your organization from accidentally deleting or modifying critical resources. ## Footnote The lock overrides any permissions the user might have.

Question 69

What is a Blueprint in Azure?

Answer 69

A container for composing sets of standards, patterns, and requirements for implementation of Azure cloud services, security, and design

Question 70

What does a Blueprint in Azure help with?

Answer 70

Composing sets of standards, patterns, and requirements for implementation of Azure cloud services, security, and design

Question 71

What is FUNDA in Azure?

Answer 71

A collection of Azure policy definitions that are grouped together towards a specific goal ## Footnote For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azure

Question 72

What is Microsoft Purview?

Answer 72

A unified data governance service that helps organizations manage and govern their on-premises, multi-cloud, and SaaS data.

Question 73

What does Microsoft Purview automate?

Answer 73

Data discovery by providing data scanning and classification for assets across the organization's data estate.

Question 74

What can tags be the basis for?

Answer 74

Applying business policies or tracking costs ## Footnote Tags can be the basis for applying business policies or tracking costs

Question 75

How can you enforce tagging rules with Azure policies?

Answer 75

You can enforce tagging rules with Azure policies ## Footnote You can also enforce tagging rules with Azure policies

Question 76

What are some examples of common tags?

Answer 76

Owner, cost center, app/service, and environment ## Footnote Examples of common tags include owner, cost center, app/service, and environment

Question 77

What is Azure Cost Management?

Answer 77

A suite of tools provided by Microsoft that help you analyze, manage, and optimize costs of your workloads. ## Footnote Example: Azure Cost Management helps businesses track their cloud spending and identify cost-saving opportunities.

Question 78

When should you use Azure Cost Management?

Answer 78

AFTER you deploy. ## Footnote Utilizing Azure Cost Management after deployment allows you to monitor and adjust costs as needed.

Question 79

What is a TCO Calculator?

Answer 79

A tool that helps estimate cost savings you can achieve by migrating application workloads to Azure.

Question 80

What does a TCO Calculator allow you to do?

Answer 80

Allows you to compare the TCO of different Azure services and regions and provides a detailed breakdown of cost of components and potential savings.

Question 81

What is the purpose of the Pricing Calculator?

Answer 81

Interactive calculator that allows you to estimate the expected monthly Azure costs.

Question 82

What can you choose using the Pricing Calculator?

Answer 82

Regions, services, options, and SKUs.

Question 83

What type of Azure resources does Spot Pricing apply to?

Answer 83

Azure VMs only ## Footnote applies to Azure VMs only!

Question 84

What is Spot Pricing?

Answer 84

Access unused Azure compute capacity at deep discounts—up to 90 percent compared to pay-as-you-go prices ## Footnote Pricing

Question 85

When should Spot Pricing be used?

Answer 85

Use for workloads that can be interrupted without harm ## Footnote Use for workloads that can be interrupted without harm

Question 86

What is Hybrid Use?

Answer 86

Hybrid Use lets you use your on-premises Software Assurance-enabled Windows Server and SQL Server licenses on Azure. ## Footnote Example: You can run your existing Windows Server workloads in Azure with Hybrid Use benefit.

Question 87

Reserved

Answer 87

Capacity ## Footnote Reserved capacity enables you to more easily manage costs across predictable and variable workloads and help optimize budgeting and forecasting.

Question 88

also includes

Answer 88

-year and 3-year options ## Footnote This option includes -year and 3-year options.

Question 89

What does Azux Table Storage service store?

Answer 89

Service stores structured NoSQL data. ## Footnote Example sentence: Azux Table Storage service stores customer information in a schemaless format.

Question 90

What type of attribute store does Azux Table Storage use?

Answer 90

Schemaless key attribute store. ## Footnote Azux Table Storage does not require a predefined schema for storing data.

Question 91

What is the benefit of using Azux Table Storage for storing large numbers of messages?

Answer 91

Storing large numbers of messages. ## Footnote Example sentence: Azux Table Storage is ideal for applications that need to store and retrieve a high volume of messages.

Question 92

How is Azux Table Storage accessible?

Answer 92

Accessible from anywhere via HTTP or HTTPS. ## Footnote Developers can access Azux Table Storage from any location using standard HTTP or secure HTTPS protocols.

Question 93

Service endpoint

Answer 93

To provide a way to lock down access ## Footnote All instances of paass service to use private endpoint for access from public internet.

Question 94

Private endpoint

Answer 94

Use for specific instance. ## Footnote Enable access from on-premises without public endpoint.

Question 95

What is the hosted Kubernetes service provided by Azure?

Answer 95

Azure Kubernetes Service (AKS) ## Footnote Azure handles critical tasks like health monitoring and maintenance for you!

Question 96

What do you pay for in Azure Kubernetes Service?

Answer 96

Agent Nodes within the cluster ## Footnote Resource Red Por um

Question 97

What is a virtual desk in Azure networking?

Answer 97

UNet, virtual NIC ## Footnote Network security group, or public IP