Azure Study Material Flashcards

Question 1

Q

What does GZRS stand for?

Answer

A

GEO-ZONE REDUNDANT STORAGE

Copies your data synchronously three times within the primary region using ZRS.

Question 2

Q

How does GZRS handle redundancy in the secondary region?

Answer

A

It copies the data asynchronously to a single physical location in the secondary region.

Recommended by MSFT for apps requiring high availability.

Question 3

Q

What is the benefit of using GZRS along with GRS?

Answer

A

With GRS and GZRS, redundancy is extended to the secondary region!

Options within

Question 4

Q

LRS

Answer

A

Locally Redundant Storage

Copies your data synchronously three times within a single physical location in the primary region.

Question 5

Q

ZRS

Answer

A

Zone Redundant Storage

Copies your data synchronously across three Azure availability zones in the primary region.

Question 6

Q

What does GRS stand for?

Answer

A

Geo-Redundant Storage

Copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Question 7

Q

How does GRS store data?

Answer

A

It copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Copies your data synchronously three times within a single physical location in the primary region using LRS. It then copies it asynchronously to a single physical location in the secondary region. 3 copies using LRS

Question 8

Q

What is AzCopy?

Answer

A

A command-line utility that you can use to copy blobs or files to or from your storage account.

1:33:10 / 2:30:51 • DOMAIN 2.3 Describe Azure Storage Services

Question 9

Q

What is Azure Storage Explorer?

Answer

A

A standalone app that provides a graphical interface to manage files and blobs in your Azure Storage Account. Supports file and blob upload, download, or move between accounts.

1:33:10 / 2:30:51 • DOMAIN 2.3 Describe Azure Storage Services

Question 10

Q

What is Azure File Sync?

Answer

A

A tool that lets you centralize your file shares in Azure Files and keep the flexibility, performance, and compatibility of a Windows file server.

Question 11

Q

What happens once Azure File Sync is installed on a local Windows server?

Answer

A

It will automatically stay bi-directionally synced with your files in Azure.

Question 12

Q

What does B2B collaboration support?

Answer

A

Entra ID and social identities

Example sentence: Enable external users to use their preferred identity to sign into your Microsoft or other enterprise applications (SaaS apps, custom-developed apps, etc.)

Question 13

Q

What does B2B direct connect support?

Answer

A

Multiple two-way trusts

Example sentence: Establish a mutual, two-way trust with another Entra ID organization for seamless collaboration. Useful for heavy, daily collaboration with close business partners.

Question 14

Q

What does Business-to-Consumer (B2C) support?

Answer

A

Entra & social identities

Example sentence: Publish modern SaaS apps or custom-developed apps to consumers and customers, while using Entra ID B2C for identity and access management.

Question 15

Q

What is an Entra ID multi-tenant organization?

Answer

A

Collaborate with multiple tenants in a single Entra ID organization via cross-tenant synchronization.

Question 16

Q

What does LL stand for in Entra ID?

Answer

A

LL stands for language options.

Question 17

Q

What are some features within Entra ID?

Answer

A

Features within Entra ID include language options.

Question 18

Q

What is Conditional Access used for?

Answer

A

Used by Entra ID to bring signals together, to make decisions, and enforce organizational policies

Conditional Access is used by Entra ID for these purposes.

Question 19

Q

What does Azure RBAC help you manage?

Answer

A

who has access to Azure resources,
what they can do with those resources,
which resources/areas they have access to

RBAC = Role Based Access Control

Question 20

Q

What is Azure RBAC?

Answer

A

Built on Azure Resource Manager and provides fine-grained access management of Azure resources.

Azure RBAC is one element of implementing ‘least privilege’.

Question 21

Q

What does Azure RBAC stand for?

Answer

A

Azure RBAC stands for Azure Role-Based Access Control.

Example sentence: Azure RBAC allows you to assign specific roles to users, granting them access only to the resources they need.

Question 22

Q

What are the three principles of Zero Trust?

Answer

A

Verify explicitly
Always authenticate and authorize based on all available data points.
Use least privilege access
Limit user access with Just-In-Time and Just-Enough-Access (JIT/JEA), risk-based adaptive policies, and data protection.
Assume breach
Segment access to minimize blast radius

Question 23

Q

What does ‘Verify explicitly’ mean in Zero Trust?

Answer

A

Always authenticate and authorize based on all available data points.

Question 24

Q

What does ‘Use least privilege access’ mean in Zero Trust?

Answer

A

Limit user access with Just-In-Time and Just-Enough-Access (JIT/JEA), risk-based adaptive policies, and data protection.

Question 25

Q

What does ‘Assume breach’ mean in Zero Trust?

Answer

A

Segment access to minimize blast radius

Question 26

Q

Traditional Architecture

Answer

A

Older model of network security

First footnote

Question 27

Q

Zero Trust Architecture

Answer

A

Security model where nothing is trusted by default

Second footnote

Question 28

Q

Trusted

Answer

A

Considered reliable or secure

Seventh footnote

Question 29

Q

Trusted by default

Answer

A

Assumed to be secure without verification

Eighth footnote

Question 30

Q

Trust but verify

Answer

A

Concept of trusting but confirming the trustworthiness

Tenth footnote

Question 31

Q

Security based on identity, not on network perimeter

Answer

A

Approach to security that focuses on user identity

Eleventh footnote

Question 32

Q

What is Zero Trust Security?

Answer

A

Unlike the ‘trust but verify’ approach, in Zero Trust, no entity is trusted by default.

Question 33

Q

What are the three principles of Zero Trust Security?

Answer

A

It is based on three principles: assume breach, verify explicitly, and least privilege access.

Question 34

Q

What is defense in depth?

Answer

A

A layered (defense in depth) approach that does not rely on one method to completely protect your environment.

Example sentence: Implementing firewalls, intrusion detection systems, and encryption mechanisms are all part of a defense in depth strategy.

Question 35

Q

What is Defender for Cloud?

Answer

A

A unified infrastructure security management system that strengthens the security posture of your cloud and on-premises data centers. Provides security guidance for compute, data, network, storage, app, and other services. Includes support for both Azure and on-premises workloads, as well as other public clouds (AWS, GCP). Multi-cloud support.

Question 36

Q

What are factors that can affect Azure resource costs?

Answer

A

Resource types, services, locations, ingress and egress traffic

Example sentence: The cost of running a virtual machine in the West US region may differ from running the same virtual machine in the East US region.

Question 37

Q

What are factors that can reduce costs?

Answer

A

reserved instances, reserved capacity, hybrid use benefit, spot pricing

Example sentence: Using reserved instances can help reduce overall cloud computing costs.

Question 38

Q

What is Reserved?

Answer

A

Reserve virtual machines in advance

Question 39

Q

What is Reserved Instances?

Answer

A

Reserve virtual machines in advance and save up to 72 percent compared to PAYG pricing with 1-yr or 3-yr commitment

Example: By committing to a 3-year Reserved Instance, you can significantly reduce your cloud computing costs.

Question 40

Q

Reserved

Answer

A

Capacity

Reserved capacity enables you to more easily manage costs across predictable and variable workloads and help optimize budgeting and forecasting.

Question 41

Q

What is Azure Service?

Answer

A

Notifies you about Azure service incidents and planned maintenance so you can take action to mitigate downtime.

Example sentence: Azure Service Health sends alerts to notify users of any service incidents.

Question 42

Q

What is Application Insights?

Answer

A

An extension of Azure Monitor and provides application performance monitoring (APM) features.

Question 43

Q

What does Application Insights monitor?

Answer

A

Monitors the availability, performance, and usage of your web applications.

Question 44

Q

What does Application Insights enable?

Answer

A

Enables proactive understanding of app performance and reactive review of app execution to determine root cause.

Question 45

Q

What is Azure Monitor?

Answer

A

Alerts

Azure Monitor is a proactive way to detect and address issues before they become critical.

Question 46

Q

What can you create alerts on in Azure Monitor?

Answer

A

You can create alerts on any metric or log data source in the Azure Monitor data platform.

Types include metric, log, activity, service health, resource health, smart detection, and Prometheus.

Question 47

Q

What is Azure Monitor?

Answer

A

A service that collects monitoring telemetry from a variety of on-premises and Azure sources.

Question 48

Q

What can Azure Monitor monitor?

Answer

A

Resources like app, VMs, guest OS, containers, DBs, security, and network events.

Question 49

Q

Where does Azure Monitor store the telemetry it collects?

Answer

A

In an Azure Log Analytics instance backend data store

Azure Monitor aggregates and stores this telemetry in an Azure Log Analytics instance backend data store.

Question 50

Q

What is Azure Advisor?

Answer

A

Scans your Azure configuration and recommends changes to optimize deployments, increase security, and save you money.

Analyzes the configuration of the resource deployed in the Azure subscriptions for high availability, security, performance, costs

Question 51

Q

What does laC stand for?

Answer

A

Infrastructure as Code

laC is the management of infrastructure (networks, VMs, load balancers, and connection topology) described in code.

Question 52

Q

What does code in the laC model result in?

Answer

A

The same environment every time it is applied.

Just as the same source code generates the same binary, code in the laC model results in the same environment every time it is applied.

Question 53

Q

What is laC used in conjunction with?

Answer

A

Continuous integration and continuous delivery (CI/CD)

laC is a key DevOps practice and is used in conjunction with continuous integration and continuous delivery (CI/CD).

Question 54

Q

What is Azure Arc?

Answer

A

A platform that extends Azure services to run applications across datacenters, edge, and multi-cloud environments.

Azure Arc provides a consistent development, operations, and security model to run applications on new and existing hardware.

Question 55

Q

What does Azure Arc simplify?

Answer

A

Governance and management by delivering a consistent multi-cloud and on-premises management platform.

Azure Arc simplifies governance and management by delivering a consistent multi-cloud and on-premises management platform.

Question 56

Q

What is the purpose of Azure Arc?

Answer

A

A platform that extends Azure services to run applications across datacenters, edge, and multi-cloud environments.

Example sentence: Azure Arc allows organizations to manage resources centrally across different environments.

Question 57

Q

What is a ARM template?

Answer

A

A JavaScript Object Notation (JSON) file that defines the infrastructure and configuration for your project.

Templates use declarative syntax and are idempotent, which means you can deploy many times and get same resources and state.

Question 58

Q

What is Azure Resource Manager?

Answer

A

Azure Resource Manager (ARM) is the deployment and management service for Azure.

Question 59

Q

What does Azure Resource Manager provide?

Answer

A

It provides a management layer that enables you to create, update, and delete resources in your Azure account.

Question 60

Q

What is Azure CLI?

Answer

A

The Azure command-line interface (Azure CLI) is a set of commands used to create and manage Azure resources.

Question 61

Q

Where is Azure CLI available?

Answer

A

Available on Windows, macOS, and Linux, Docker, and Azure Cloud Shell.

Question 62

Q

What is Azure Mobile?

Answer

A

App for iOS and Android that enables managing, tracking health and status, and troubleshooting your Azure resources

Example: Azure Mobile is a useful tool for monitoring the performance of your cloud services.

Question 63

Q

What is a set of cdlets for managing Azure resources directly from the PowerShell command line?

Answer

A

Azure

A set of cdlets for managing Azure resources directly from the PowerShell command line.

Question 64

Q

What technology allows for managing Azure resources directly from the PowerShell command line?

Answer

A

PowerShell

Technology that allows for managing Azure resources directly from the PowerShell command line.

Answer 65

A

Azure-specific modules and cmalets

MSFT provides Azure-specific modules and cmalets

Answer 66

A

An interactive, authenticated, browser-accessible shell for managing Azure resources.

It includes both Bash and PowerShell options

Answer 67

A

A web-based, unified console where you can manage your Azure subscription using a graphical user interface.

Example: I accessed Azure through the portal to deploy a new virtual machine.

Answer 68

A

Prevent other users in your organization from accidentally deleting or modifying critical resources.

The lock overrides any permissions the user might have.

Answer 69

A

A container for composing sets of standards, patterns, and requirements for implementation of Azure cloud services, security, and design

Answer 70

A

Composing sets of standards, patterns, and requirements for implementation of Azure cloud services, security, and design

Answer 71

A

A collection of Azure policy definitions that are grouped together towards a specific goal

For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azure

Answer 72

A

A unified data governance service that helps organizations manage and govern their on-premises, multi-cloud, and SaaS data.

Answer 73

A

Data discovery by providing data scanning and classification for assets across the organization’s data estate.

Answer 74

A

Applying business policies or tracking costs

Tags can be the basis for applying business policies or tracking costs

Answer 75

A

You can enforce tagging rules with Azure policies

You can also enforce tagging rules with Azure policies

Answer 76

A

Owner, cost center, app/service, and environment

Examples of common tags include owner, cost center, app/service, and environment

Answer 77

A

A suite of tools provided by Microsoft that help you analyze, manage, and optimize costs of your workloads.

Example: Azure Cost Management helps businesses track their cloud spending and identify cost-saving opportunities.

Answer 78

A

AFTER you deploy.

Utilizing Azure Cost Management after deployment allows you to monitor and adjust costs as needed.

Answer 79

A

A tool that helps estimate cost savings you can achieve by migrating application workloads to Azure.

Answer 80

A

Allows you to compare the TCO of different Azure services and regions and provides a detailed breakdown of cost of components and potential savings.

Answer 81

A

Interactive calculator that allows you to estimate the expected monthly Azure costs.

Answer 82

A

Regions, services, options, and SKUs.

Answer 83

A

Azure VMs only

applies to Azure VMs only!

Answer 84

A

Access unused Azure compute capacity at deep discounts—up to 90 percent compared to pay-as-you-go prices

Pricing

Answer 85

A

Use for workloads that can be interrupted without harm

Answer 86

A

Hybrid Use lets you use your on-premises Software Assurance-enabled Windows Server and SQL Server licenses on Azure.

Example: You can run your existing Windows Server workloads in Azure with Hybrid Use benefit.

Answer 87

A

Capacity

Reserved capacity enables you to more easily manage costs across predictable and variable workloads and help optimize budgeting and forecasting.

Answer 88

A

-year and 3-year options

This option includes -year and 3-year options.

Answer 89

A

Service stores structured NoSQL data.

Example sentence: Azux Table Storage service stores customer information in a schemaless format.

Answer 90

A

Schemaless key attribute store.

Azux Table Storage does not require a predefined schema for storing data.

Answer 91

A

Storing large numbers of messages.

Example sentence: Azux Table Storage is ideal for applications that need to store and retrieve a high volume of messages.

Answer 92

A

Accessible from anywhere via HTTP or HTTPS.

Developers can access Azux Table Storage from any location using standard HTTP or secure HTTPS protocols.

Answer 93

A

To provide a way to lock down access

All instances of paass service to use private endpoint for access from public internet.

Answer 94

A

Use for specific instance.

Enable access from on-premises without public endpoint.

Answer 95

A

Azure Kubernetes Service (AKS)

Azure handles critical tasks like health monitoring and maintenance for you!

Answer 96

A

Agent Nodes within the cluster

Resource Red Por um

Answer 97

A

UNet, virtual NIC

Network security group, or public IP

Brainscape's Knowledge GenomeTM

Azure Study Material Flashcards

Brainscape's Knowledge Genome^TM