Cloud Architecture Terminologies

Question 1

What are the five aspects of cloud architecture terminology

A, S, E, F, D

Answer 1

1. Availability
2. Scalability
3. Elasticity
4. Fault Tolerance
5. Disaster Recovery

Question 2

_________: Your ability to ensure a service remains available.

Answer 2

Availability

Question 3

_____: Your ability to grow or shrink rapidly or unimpeded

Answer 3

Scalability

Question 4

The ability to automatically shrink and grow to meet demand

Answer 4

Elasticity

Question 5

The ability to prevent a failure

Answer 5

Fault Tolerance

Question 6

The ability to recover from a failure

Answer 6

Disaster Recovery

Question 7

What is a fundamental aspect of high availability?

Answer 7

No single point of failure

Question 8

Types of Scalability

V, H

Answer 8

1. Vertical scaling

2. Horizontal scaling

Question 9

What is it when you add more capacity (more or bigger processors, more or faster storage) to existing infrastucture?

Answer 9

Vertical Scaling (scaling up)

Question 10

What is it when you add more of the same infrastructure (e.g. more servers)?

Answer 10

Horizontal Scaling (scaling out)

Question 11

Removing more servers of the same size

Answer 11

Scaling in

Question 12

Adding more servers of the same size

Answer 12

Scaling out

Question 13

What is an example of horizontal scaling on Azure?

Answer 13

Using Azure VM Scale Sets - automatically increase or decrease in response to demand or a defined schedule

Question 14

A physical server wholly used by a single customer

Answer 14

Dedicated server

Question 15

Five considerations to having a dedicated server

GUOCS

Answer 15

1. You have to guess your capacity
2. Upgrading will be slow and expensive
3. Limited by your operating system
4. Multiple apps can result in conflicts in resource sharing
5. You have a guarantee to security and privacy and full utilization of underlying resources.

Question 16

This allows you to run multiple ____________ on one machine

Answer 16

Virtual Machines, or VMs

Question 17

Software layer that lets you run VMs

Answer 17

Hypervisor

Question 18

Five considerations to using a VM

MCOOA

Answer 18

1. Physical server is used by multiple customers
2. You pay for a fraction of the server
3. You overpay for underutilized VM capacity
4. Limited by the guest operating system you chose
5. Multiple apps on a single VM can conflict with each other.

Question 19

You can run multiple _____ within a VM

Answer 19

Containers

Question 20

Software layer that allows you to run multiple containers

Answer 20

Docker daemon

Question 21

_________ are known as Serverless Compute

Answer 21

Functions

Question 22

Four aspects of functions

C, P, CS

Answer 22

1. You upload a piece of code and choose the amount of memory and duration
2. Only responsible for code and data, nothing else
3. Only pay for when the code is running, VMs only run when there is code to be executed
4. Cold Starts are a side effect

Question 23

This is a grouping of multiple data centers

Answer 23

Region

Question 24

Number of Azure regions

Answer 24

58 regions in 140 countries

Question 25

A discreet market of two or more regions that preserves data residency and compliance boundaries

Answer 25

Geography

Question 26

The five Azure geographies

U, G, C, B, M

Answer 26

1. United States
2. Azure Government
3. Canada
4. Brazil
5. Mexico

Question 27

Each region is _____ with another region 300 miles away

Answer 27

Paired

Question 28

This is done with paired regions to ensure no outages

Answer 28

Only one region is updated at a time

Question 29

Some services use paired regions for this

Answer 29

Disaster recovery

Question 30

Some services use paired regions for this

Answer 30

Disaster recovery

Question 31

Azure has these to meet compliance or legal reasons

Answer 31

Specialized regions

Question 32

Name four specialized regions

D, GV, GI, T

Answer 32

1. US DoD Central
2. US Gov Virginia
3. US Gov Iowa
4. Three undisclosed regions

Question 33

Physical location made up of one or more datacenters

Answer 33

Availability Zone

Question 34

A region will generally have this many Availability Zones

Answer 34

Three

Question 35

____ regions do not have support for availability zones

Answer 35

Alternate or other

Question 36

An availabilty zone in a region has a combination of these two domains
(F, U)

Answer 36

1. Fault

2. Update

Question 37

Logical grouping of hardware to avoid a single point of failure in an AZ

Answer 37

Fault Domain

Question 38

_____ domains ensure your resources do not go offline, domains are updated one at a time.

Answer 38

Update domain

Question 39

Logical grouping of VMs that are different fault/update domains to avoid downtime

Answer 39

Availabilty Sets

Question 40

Name six Azure compute services

V, C, K, S, F, B

Answer 40

1. Virtual Machines
2. Container Services
3. Kubernetes Services
4. Service Fabric
5. Functions
6. Azure batch

Question 41

Most common type of compute service

Answer 41

Virtual Machine

Question 42

Run ______ apps on Azure without provisioning servers or VMs

Answer 42

Azure Container Services

Question 43

Easy to deploy, manage and scale containerized applications

Answer 43

Azure Kubernetes Service (AKS)

Question 44

Easy to package, deploy and manage scalable and reliable microservices

Answer 44

Azure Service Fabric

Question 45

Event-driven, serverless ______ run code with provisioning or managing servers

Answer 45

Azure Functions

Question 46

plans, manages and schedules your ______ processes across 100+ jobs in parallel

Answer 46

Azure Batch Service

Question 47

Name eight storage services

B, D, F, Q, T, DB, A, DL

Answer 47

1. Blob
2. Disk
3. File
4. Queue
5. Table
6. Data Box
7. Archive
8. Data Lake

Question 48

Store very large sized and volume of unstructured files

Answer 48

Blob Storage

Question 49

Virtual volume, you can choose SSD or HDD

Answer 49

Disk Storage

Question 50

shared volume you can access like a file server, eg SMB

Answer 50

Azure File Storage

Question 51

Data store for reliably delivering messages between application

Answer 51

Azure Queue Storage

Question 52

A NOSQL data store that stores unstructured data without schema

Answer 52

Azure Table Store

Question 53

Briefcase computer designed to move terabytes or petabytes of storage

Answer 53

Azure Data Box

Question 54

Storage that allows you to store any volume or structured or unstructured data

Answer 54

Azure Data Lake

Question 55

Azure Database Services

C, S, M, SV, S, DM, R, T

Answer 55

1. Cosmos DB
2. SQL Server
3. MySQL/Postgres/Maria
4. SQL Server on VMs
5. Synapse
6. Database Migration Service
7. Cache Redis
8. Table Service

Question 56

Fully managed NOSQL database designed for scale

Answer 56

Cosmos DB

Question 57

fully managed datawarehouse

Answer 57

Synapse

Question 58

Migrates database to the cloud

Answer 58

Azure Database Migration Service

Question 59

frequently used and static data for low latency

Answer 59

Redis

Question 60

Azure Application Integration Services

N, A, SB, SA, L, AM, Q

Answer 60

1. Azure Notifications Hub
2. API Apps
3. Service Bus
4. Stream Analytics
5. Logic Apps
6. API Management
7. Queue Storage

Question 61

Sends push notifications to any platform from any back end

Answer 61

Azure Notifications Hub

Question 62

Quickly build and consume APIs in the cloud. Routes APIs to Azure Services

Answer 62

Azure API Apps

Question 63

Reliable cloud messaging as a service (MaaS) and simple hybrid integration

Answer 63

Azure Service Bus

Question 64

Serverless, real-time analytics from the cloud to the edge

Answer 64

Azure Stream Analytics

Question 65

Schedule, automate and orchestrate tasks, business processes and workflows. Integration with enterprise SaaS and enterprise applications

Answer 65

Azure Logic Apps

Question 66

Hybrid, multi-cloud management platform for APIs across all environments

Answer 66

Azure API Management

Question 67

data store for queuing and reliably delivering messages between applications

Answer 67

Azure Queue Storage

Question 68

Developer and Mobile Tools

SS, AS, VS, X

Answer 68

1. SignalR Service
2. App Service
3. Visual Studio
4. Xamarin

Question 69

Real-time messaging service (like Pusher)

Answer 69

Azure SignalR Service

Question 70

Service for deploying and scaling web applications with .NET, node.js, java, python and PHP (like Heroku)

Answer 70

Azure App Service

Question 71

IDE designed for creating apps for Azure

Answer 71

Visual Studio

Question 72

Mobile app framework

Answer 72

Xamarin

Question 73

Azure DevOps Services

B, P, R, TP, A, DL

Answer 73

1. Boards
2. Pipeline
3. Repos
4. Test Plans
5. Artifacts
6. DevTest Labs

Question 74

Deliver value to your users using proven agile tools to plan, track and discuss work

Answer 74

Azure Boards

Question 75

Build, test and deploy with CI/CD that works with any language, platform, and cloud. Connects to github or any other git provider

Answer 75

Azure Pipelines

Question 76

Unlimited, cloud-hosted git repos and collaborate to build better code with pull requests and advanced file management.

Answer 76

Azure Repos

Question 77

Test and ship too

Answer 77

Azure Test Plans

Question 78

Create, host and share packages with team and add artifacts to CI/CD pipeline

Answer 78

Azure Artifacts

Question 79

Dev test environments

Answer 79

Azure DevTest Labs

Question 80

Allows you to programmatically create Azure resources via JSON template

Answer 80

Azure Resource Manager

Question 81

library of pre-made ARM templates provided by the community and partners to launch new projects for a variety of stack scenarios

Answer 81

Azure Quickstart

Question 82

logically isolated section of the Azure Network where you launch your Azure resources. You choose a range of IPs using CIDR Range

Answer 82

Virtual Network (vNet).

Question 83

range of IP addresses used in a virtual network

Answer 83

CIDR range

Question 84

subnets need to have a CIDR range ________ than the vNet to represent their portion

Answer 84

smaller

Question 85

___ subnet can reach the Internet

Answer 85

Public

Question 86

_____ subnet cannot reach the Internet

Answer 86

Private

Question 87

Cloud-native Networking Services

D, VN, LB, AG, NSG

Answer 87

1. DNS
2. vNet
3. Load Balancer
4. Application Gateway
5. Network Security Groups.

Question 88

provides DNS responses and high domain availability

Answer 88

Azure DNS

Question 89

logical isolated section of the Azure network for customers to launch Azure resources

Answer 89

Azure Virtual Network

Question 90

OSI Level 4 load balancer

Answer 90

Azure Load Balancer

Question 91

OSI Level 7 load balancer can apply a web application firewall

Answer 91

Azure Application Gateway

Question 92

virtual firewall at the subnet level

Answer 92

Network Security Groups

Question 93

Enterprise/Hybrid Networking Services

FD, ER, VW, C, VNG

Answer 93

1. Front Door
2. Express Route
3. Virtual WAN
4. Connection
5. Virtual Network Gateway

Question 94

scalable and secure entry point for fast delivery of your global applications

Answer 94

Azure Front Door

Question 95

connection between your on-premise to Azure cloud

Answer 95

Azure Express Route

Question 96

networking service for networking, security and routing

Answer 96

Virtual WAN

Question 97

VPN connection securely connection two Azure local network via IPsec

Answer 97

Azure Connection

Question 98

site-to-site VPN connection between an Azure virtual network and your local network

Answer 98

Virtual Network Gateway

Question 99

operates at the DNS layer to direct incoming DNS requests based on the routing method of your choice

Answer 99

Azure Traffic Manager

Question 100

allows you to host your domains names on Azure

Answer 100

Azure DNS

Question 101

evenly distributes incoming network traffic across a group of backed resources or servers

Answer 101

Azure Load Balancer

Question 102

Two configurations for Azure Load Balancer

Answer 102

Public and private

Question 103

allows you to group together identical VMs and automatically increase or decrease the amount of servers

Answer 103

Scale sets

Question 104

types of scenarios you set up scale sets

C, S

Answer 104

1. change in CPU, memory, disk and network performance

2. predefined schedule

Question 105

network of internet connected objects able to collect and exchange data

Answer 105

IoT Services

Question 106

lot Services

C, H, E

Answer 106

1. IoT Central
2. IoT Hub
3. IoT Edge

Question 107

connects your IoT devices to the cloud

Answer 107

IoT Central

Question 108

Enables secured communication between IoT application and devices it manages

Answer 108

IoT Hub

Question 109

Allows data processing and analysis nearest the IoT devices

Answer 109

IoT Edge

Question 110

Big Data and Analytics Services

S, H, D, DLA

Answer 110

1. Synapse
2. HDInsight
3. Databricks
4. Data Lakes Analytics

Question 111

runs SQL queries against large databases for reporting

Answer 111

Azure Synapse

Question 112

analytics software for running Hadoop, Kafka and Spark

Answer 112

HDInsights

Question 113

Spark-based analytics platform

Answer 113

Azure Databricks

Question 114

On-demand analytics job service that simplifies big data

Answer 114

Data Lake Analytics

Question 115

AI/ML Services

Answer 115

1. Azure Machine Learning Service

2. Machine Learning Studio

Question 116

service that allows you to run pipelines to automate ML workflows

Answer 116

Azure Machine Learning Service

Question 117

Aspects of Serverless Services

E, A, M

Answer 117

1. Event-driven scale
2. Abstraction of servers
3. micro billing

Question 118

Serverless Services

F, B, L, E

Answer 118

1. Functions
2. Blob storage
3. Logic Apps
4. Event grid

Question 119

run small amounts of code as serverless functions in several languages

Answer 119

Azure functions

Question 120

Serverless object storage.

Answer 120

Blob Storage

Question 121

build serverless workflows composed of Azure functions

Answer 121

Logic Apps

Question 122

pub/sub messaging system to allow you to react to events and trigger other cloud services

Answer 122

Event Grid

Question 123

interactive, authenticated, browser-accessible shell for managing Azure resources

Answer 123

Azure Cloud shell

Question 124

command line interface for managing Azure resources

Answer 124

Azure CLI

Question 125

Microsoft Security Development Lifecycle

Answer 125

the SDL is a mandatory MS policy embedding security and privacy in software and culture

Question 126

Azure Security Policies

Answer 126

AP evalulates resources in Azure by comparing the properties of those resources to business rules (Policy Definitions - described in JSON)

Question 127

Azure Role-Based Access Control (RBAC)

U, G, SP

Answer 127

1. User - individual with a profile in Azure AD
2. Group - set of users in AAD
3. Service Principal - security identity used by applications or services to access specific Azure resources

Question 128

RBAC - Scope

Answer 128

set of resources that access for the Role Assignment applies to. 
Management Group
     - > Subscriptions
            -> Resource groups
                 -> resources

Question 129

____ allows organizations to take advantage of Microsoft’s unused capacity with significant cost saving

Answer 129

Spot VMs

Question 130

T/F: Spot VM offers high availability guarantees.

Answer 130

False

Question 131

Spot VMs are great for …

Answer 131

workloads that can handle interruptions such as batch processing jobs, dev/test environments, large compute workloads, and more.

Question 132

Which of the following help you save money by committing to one-year or three-year plans for multiple products?

Answer 132

Azure reservations

Question 133

A 99.99% VM uptime SLA is offered when ?

Answer 133

two or more VMs are deployed across two or more Availability Zones within an Azure region.

Question 134

a tool that helps in estimating cost savings resulting from migrating workloads to Azure.

Answer 134

Azure Total Cost Ownership (TCO) Calculator

Question 135

business metrics to measure availability as part of an SLA agreement

Answer 135

Mean Time to Recover (MTTR) is the average time it takes to restore a component after a failure.
Mean Time Between Failures (MTBF) is how long a component can reasonably expect to last between outages.

Question 136

is the maximum acceptable time an application is unavailable after an incident.

Answer 136

Recovery time objective (RTO)

Question 137

is the maximum duration of data loss that’s acceptable during a disaster.

Answer 137

Recovery point objective (RPO)

Question 138

PREVIEWS ARE PROVIDED

A, F, Av, S, W

Answer 138

“AS-IS,” “WITH ALL FAULTS,” AND “AS AVAILABLE,” AND ARE EXCLUDED FROM THE SERVICE LEVEL AGREEMENTS AND LIMITED WARRANTY

Question 139

gives the tenant (that is, consumer or customer) maximum control over cloud resources.

Answer 139

IaaS

Question 140

Advantages of a private clouds

F, S, S

Answer 140

More flexibility: An organization can customize its cloud environment to meet specific business needs.
Improved security: Resources are not shared with others, so higher levels of control and security are possible.
High scalability: Private clouds afford the same scalability and efficiency as a public cloud.

Question 141

Reasons for using private cloud

Answer 141

government agencies, financial institutions, and other midsize to large organizations with business-critical operations seeking enhanced control over their environments.

Question 142

PaaS features

SL, I, A

Answer 142

Software Licensing - avoid the expense and complexity normally associated with buying and managing software licenses.

Infrastructure - tenants do not need to manage underlying application infrastructure, middleware, container orchestrators (such as Kubernetes), development tools, and other resources.

Application/Service management - allows developers to focus on building and managing their own applications and services, while the cloud service provider typically manages everything else.

Question 143

enables systems to continue operating properly in the event of failure or when there are faults within components.

Answer 143

Fault tolerance

Question 144

__________ application has components running in both Azure and on premises.

Answer 144

A hybrid cloud

Question 145

Azure has three cloud deployment models

Answer 145

Private cloud
Public cloud
Hybrid cloud

Question 146

gives you the tools to plan for, analyze and reduce your spending to maximize your cloud investment.

Answer 146

Cost Management

Question 147

is a service that assesses your organization’s current workloads in on-premises datacenters

Answer 147

Azure Migrate

Question 148

allows you to mix and match different combinations of Azure services to see an estimate of the costs.

Answer 148

The Azure pricing calculator

Question 149

is a service that, among other things, identifies virtual machines with low utilization from a CPU or network usage standpoint.

Answer 149

Azure Advisor

Question 150

allow you to prepay for one-year or three-years of virtual machine or SQL Database compute capacity. Pre-paying will allow you to get a discount on the resources you use.

Answer 150

Azure Reservations

Question 151

an analytical service that encompasses enterprise data warehousing and big data analytics.

Answer 151

Synapse

Question 152

Azure Synapse has four components

T, Sp, P, St

Answer 152

Synapse SQL: Complete T-SQL–based analytics
SQL Pool
SQL On-demand

    Spark: Deeply integrated Apache Spark
    Synapse Pipelines: Hybrid data integration
    Studio: Unified user experience

Question 153

set of data centers deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network

Answer 153

Region

Question 154

personalized cloud consultant that helps organizations follow best practices to optimize Azure deployments

Answer 154

Azure Advisor

Question 155

used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet

Answer 155

VPN gateway

Question 156

VPN gateways can be deployed in __________ for resiliency, scalability, and higher availability in virtual network gateways.

Answer 156

Azure Availability Zones

Question 157

allows developers/administrators to run and test small pieces of code (called functions) without the worry of managing infrastructure.

Answer 157

Azure functions environment

Question 158

solution for any scenario that can operate in isolated containers, including simple applications, task automation, and build jobs.

Answer 158

Azure Container Instances

Question 159

scenarios where full container orchestration is needed, (such as service discovery across multiple containers, automatic scaling, and coordinated application upgrades),

Answer 159

Azure Kubernetes

Question 160

container that holds related resources for an Azure solution. A resource group can include all the resources for a solution or only the resources to be managed as a group.

Answer 160

Resource group

Question 161

makes it possible to extend on-premises networks to connect to Azure over a private connection with the help of a connectivity provider

Answer 161

ExpressRoute

Question 162

enables teams of developers to proactively self-manage virtual machines (VMs) and PaaS resources without waiting for approvals.

Answer 162

Azure DevTest Labs

Question 163

personalized cloud consultant that helps organizations follow best practices in optimizing their Azure deployments.

Answer 163

Azure Advisor

Question 164

is an interactive, authenticated, browser-accessible shell for managing Azure resources.

Answer 164

Azure Cloud Shell

Question 165

is a cloud service that helps schedule, automate, and orchestrate tasks, business processes, and workflows to integrate apps, data, systems, and services across enterprises or organizations.

Answer 165

Azure Logic Apps

Question 166

simplifies how organizations design and build scalable solutions for app integration, data integration, system integration, enterprise application integration (EAI), and business-to-business (B2B) communication, whether in the cloud, on premises, or both.

Answer 166

Logic Apps

Question 167

provides a management layer that enables the creation, updating, and deletion of resources in an Azure subscription, which helps to maintain consistency across environments and allows various level of security on groups as well as individual resources in the groups.

Answer 167

Azure Resource Manager (ARM)

Question 168

Azure managed disks are currently available in four disk types:

Answer 168

Ultra Disk
Premium Solid-State Drive (SSD)
Standard SSD
Standard Hard Disk Drive (HDD)

Question 169

service tier is a paid service and provides additional mitigation capabilities over the Basic service tier (which is free) that are tuned specifically to Azure virtual network resources.

Answer 169

The Azure Standard DDoS

Question 170

is a collection of documentation, implementation guidance, best practices, and tools that from Microsoft that is designed to accelerate customer cloud adoption journeys.

Answer 170

The Cloud Adoption Framework

Question 171

is a managed, full-spectrum, open-source analytics service in the cloud for enterprises.

Answer 171

Azure HDInsight

Question 172

has several built-in roles that can be assigned to users, groups, service principals, and managed identities. Role assignments can be used to control access to Azure resources.

Answer 172

Azure role-based access control (Azure RBAC)

Question 173

______________is a cloud platform built on the foundational principles of security, privacy and control, compliance, and transparency. ___________delivers a dedicated cloud that enables government agencies and their partners to transform mission-critical workloads to the cloud.

Answer 173

Azure Government

Question 174

———- makes it is possible to designate limited administration roles for the purpose of managing identity tasks in less-privileged roles. Administrators can be assigned to manage users, assign administrative roles, reset user passwords, manage user licenses, and manage domain names.

Answer 174

Azure Active Directory (Azure AD),

Question 175

enables Microsoft Azure applications and users to store and use several types of secret/key data,

Answer 175

Azure Key Vault

Question 176

enables a cloud architect or a central information technology group to define a repeatable set of Azure resources that implements and adheres to the organization’s standards, patterns, and requirements.

Answer 176

Azure Blueprints

Question 177

Provides customers and partners with easier access to regulatory compliance information.

Answer 177

Azure Trust Center

Question 178

is a tool for bringing together signals, making decisions, and enforcing organizational policies.

Answer 178

Azure Conditional Access

Question 179

is a managed, cloud-based network security service that protects Azure virtual network resources

Answer 179

Azure Firewall

Question 180

are used to filter network traffic to and from Azure resources in an Azure virtual network (VNet). ________contains security rules that allow or deny inbound network traffic to or outbound network traffic from several types of Azure resources.

Answer 180

Azure network security groups (NSGs)

Question 181

provides an integrated environment that is especially built for bot development.

Answer 181

Azure Bot Service

Question 182

is the process of validating that someone is who he or she claims to be.

Answer 182

Authentication