Cloud Concepts

Question 1

Define cloud computing

Answer 1

the practice of using a network of remote servers hosted on the Internet to store, manage, and process data, rather than a local server or a personal compute.

Question 2

What is an “on-prem” resource? Provide an example vs a cloud resource.

Answer 2

A resource on the business’s premises. For example a local server racked and in use on the business site as opposed to an Azure virtual machine located in a Microsoft DC available to you through Azure portal over the internet.

Question 3

What is an availability zone?

Answer 3

A site consisting of multiple data center footprints, CO1, CO2, CO3, CO4 etc.

Question 4

What is vertical scaling?

Answer 4

Adding more virtual resources to a single virtual machine. i.e. CPUs, RAM.

Question 5

What is horizontal scaling?

Answer 5

Adding more virtual servers to a group to add overall capacity.

Question 6

What is an Azure VM Scale Set?

Answer 6

A configuration that automatically increases or decreases the number of virtual machines in response to demand or a defined schedule.

Question 7

What is a region?

Answer 7

a grouping of multiple data centers / availability zones

Question 8

What is an Azure geography?

Answer 8

a discreet market of two or more regions that preserve data residency and compliance boundaries.

Question 9

Are all Azure cloud services available in every region?

Answer 9

No

Question 10

What is Azure Migrate?

Answer 10

Perform assessment and migration of VMware MVs, Hyper-V VMs, cloud VMs, and physical servers, as well as databases, data, virtual desktop infrastructure, and web applications, to Azure.

Question 11

What is a Service Map?

Answer 11

Maps communicate between application components on Windows or Linux. Helps you identify dependencies when scoping what to migrate.

Question 12

What is Azure TCO Calculator?

Answer 12

Estimates your monthly running costs in Azure versus on-premises.

Question 13

What is Azure Database Migration Service?

Answer 13

Uses the Data Migration Assistant and the Azure portal to migrate database workloads to Azure.

Question 14

What is the Data Migration Tool?

Answer 14

Migrates existing databases to Azure Cosmos DB

Question 15

What is Azure Cost Management?

Answer 15

Helps you monitor, control, and optimize ongoing Azure costs.

Question 16

What is the Azure Advisor?

Answer 16

Helps you optimize your Azure resources for high availability, performance, and cost.

Question 17

What is the Azure Monitor?

Answer 17

Enables you to monitor your entire estate’s performance. Includes application-health monitoring via enhanced telemetry, and setting up notifications.

Question 18

What is Azure Sentinel?

Answer 18

Provides intelligent security analytics for your applications.

Question 19

Define Azure DNS

Answer 19

Provides ultra-fast DNS responses and ultra-high domain availability

Question 20

Define Azure Virtual Network (vNET)

Answer 20

A logical isolated section of the Azure network for customers to launch Azure resources within.

Question 21

Define Azure Load Balancer

Answer 21

OSI Level 4 (Transport) load balancer

Question 22

Define Azure Application Gateway

Answer 22

OSI Level 7 (HTTP) load balancer, can apply a Web Application Firewall

Question 23

Define Network Security Groups

Answer 23

A virtual firewall at the subnet level

Question 24

Define Azure Front Door

Answer 24

Scalable and secure entry point for fast delivery of your global applications

Question 25

Define Azure Express Route

Answer 25

A connection between your on-prem to Azure cloud from 50 Mbps to 10 Gbps

Question 26

[T/F] Azure CLI can be installed on Windows, Mac, and Linux?

Answer 26

True

Question 27

Does Azure provide SLAs on Services in the Free or Shared tiers?

Answer 27

No

Question 28

List the four Azure support plans

Answer 28

Basic, Developer, Standard, and Professional Direct

Question 29

List the four Azure subscription types

Answer 29

Free, Pay as you Go, Enterprise Agreement, Student

Question 30

What is an Azure Region Pair?

Answer 30

A relationship between 2 Azure regions in a shared geography for DR

Question 31

Does an Availability zone protect against data center level failures or outages?

Answer 31

Yes

Question 32

Can a resource be a part of more than one resource group?

Answer 32

No. A resource can only be a member of one resource group.

Question 33

Can a resource group belong to more than one subscription?

Answer 33

No. A resource group can only be tied or belong to a single Azure subscription.

Question 34

What is Azure Container Instance (ACI)?

Answer 34

Runs Docker containers on-demand in a managed, serverless Azure environment. A solution for any scenario that can operate in isolated containers, without orchestration.

Question 35

Can VMs in different VNETs communicate by default?

Answer 35

No they cannot.

Question 36

Describe an Azure VPN Gateway

Answer 36

A virtual network gateway that sends encrypted traffic between an Azure VNET and an on-prem location over the Internet.

Question 37

What is VNET Peering?

Answer 37

Enables seamless connection of two or more Virtual Networks in Azure.

Question 38

What is ExpressRoute?

Answer 38

A connection that extends your on-prem networks into Azure over a private connection with the help of a connectivity provider (ISP)

Question 39

Does traffic on an ExpressRoute traverse the internet?

Answer 39

No.

Question 40

What is Azure Blob storage?

Answer 40

Storage optimized for storing massive amounts of unstructured data. (not a database) i.e. image or video data, or for log files.

Question 41

What is Azure File Storage?

Answer 41

Fully managed files shares in Azure accessible via SMB or NFS

Question 42

What is Azure Disk Storage?

Answer 42

Azure managed disks are block-level storage volumes that are managed by Azure and used with Azure VMs.

Question 43

What are Storage Tiers?

Answer 43

Azure storage hot, cool, and archive access tiers to store blob object data in a cost-effective manner.

Question 44

What is Table Storage?

Answer 44

A service that stores structured NoSQL data in Azure, including a schema-less key/attribute store. A table of data that does not require the relational nature of a SQL database using keys.

Question 45

What is Queue Storage?

Answer 45

A service for storing large numbers of messages, accessible from anywhere via authenticated HTTP or HTTPS calls.

Question 46

Describe CosmosDB

Answer 46

A fully managed NoSQL database for modern app development.

Question 47

Describe MS SQL

Answer 47

A fully managed PaaS database engine that handles most management functions such as upgrading, patching, backups, and monitoring.

Question 48

Describe PostgreSQL

Answer 48

A relational database service in the Microsoft cloud based on the PostgreSQL Community Edition. PaaS

Question 49

Describe MySQL

Answer 49

A PaaS relational database service in the Microsoft cloud, based on the MySQL Community Edition.

Question 50

Describe SQL Managed Instance

Answer 50

Cloud database service that combines the broadest SQL Server database engine compatibility with all the benefits of PaaS.

Question 51

Describe IoT Hub

Answer 51

A central message hub for bi-directional communication between your IoT app and the devices it manages.

Question 52

Describe IoT Central

Answer 52

An IoT application platform that simplifies the creation of IoT solutions. It is a fully managed SaaS solution.

Question 53

Describe Azure Sphere

Answer 53

A secure, high-level application platform with built-in communication and security features for internet connected devices. Created by Microsoft to run on an Azure Sphere-certified chip and to connect to the Azure Sphere Security Service.

Question 54

List the four Azure Services most closely related to Data Warehouse:

Answer 54

Data Lake, Synapse Analytics, HDInsight, and Databricks.

Question 55

Describe Data Lake

Answer 55

A technology that enables big data analytics and artificial intelligence. Provides cloud storage that is less expensive than relational databases cloud storage. Stores data from business systems and data warehouses, as well as device and sensor data. A place to store, organize, and analyze large volumes of structured and unstructured data of diverse data from diverse soruces.

Question 56

Describe Synapse Analytics

Answer 56

An integrated analytics service that accelerates time to insight across data warehouses and big data systems.

Question 57

Describe HDInsight

Answer 57

A cloud distribution of Hadoop components that makes it easy, fast, and cost-effective to process massive amounts of data. Supports popular open-source frameworks.

Question 58

Describe Databricks

Answer 58

A data analytics platform optimized for the Microsoft Azure cloud services platform. Offers two environments for developing data intensive applications: Azure Databricks SQL Analytics, and Azure Databricks Workspace.

Question 59

Describe Azure Machine Learning

Answer 59

A cloud-based environment you can use to train, deploy, automate, manage, and track ML models.

Question 60

Describe Cognitive Services

Answer 60

Cloud-based services with REST APIs and client library SDKs available to help you build cognitive intelligence into you applications. It provides cognitive understanding categorized into five main pillars: vision, speech, language, decision, and search.

Question 61

Describe Azure Bot Service

Answer 61

A managed bot development service that helps you easily connects to your users via popular channels. Provides an integrated environment that is purpose-built for bot development.

Question 62

What 3 services are associated in Azure to Serverless?

Answer 62

Logic App, Functions, and Event Grid.

Question 63

Describe Logic App

Answer 63

A cloud service that helps you schedule, automate, and orchestrate tasks, business processes, and workflows. You can choose from a gallery or hundreds of pre-built connectors for MSFT and 3rd party services.

Question 64

Describe Functions

Answer 64

An event drive, compute on demand experience that extends the existing Azure application platform with capabilities to implement code triggered events occurring in Azure as well as on-premises systems.

Question 65

Describe Event Grid

Answer 65

Enables you to easily manage events across many different Azure services and applications. Once a subscription is created, Event Grid will push events to the configured destination.

Question 66

Describe Azure DevOps

Answer 66

A single platform for implementing DevOps, deploying code using the CI/CD framework, facilitating Agile software development.

Question 67

Describe GitHub

Answer 67

GitHub is a web-based Git repository hosting service for source code management (SCM) and distributed revision control.

Question 68

Describe GitHub Actions

Answer 68

Helps you automate software development workflows from within GitHub. You can build, test, package, release, or deploy any project on GitHub with a workflow.

Question 69

Describe Azure DevTest Labs

Answer 69

Provides a self-service sandbox environment to quickly create Dev/Test environments while minimizing waste and controlling costs.

Question 70

What is Azure Cloud Shell?

Answer 70

Web based access to Azure CLI for managing Azure resources. CLI for Bash or Powershell located in browser through the portal.

Question 71

Describe Azure PowerShell

Answer 71

A set of cmdlets for managing Azure resources directly from PowerShell command line on local machine. Windows, Mac, Linux.

Question 72

Describe the Azure Mobile App

Answer 72

App for iOS and Android that enables managing, tracking health and status, and troubleshooting your Azure resources.

Question 73

Describe Azure CLI

Answer 73

The Azure command line interface is a set of commands used to create and manage Azure resources. Uses Bash, and is available on Windows, macOS, Linux, Docker, and Azure Cloud Shell.

Question 74

Describe Azure Advisor

Answer 74

Scans your Azure configuration and recommends changes to optimize deployments increase security, and save you money.

Question 75

Describe ARM Templates

Answer 75

A JavaScript Object Notation (JSON) file that defines the infrastructure and configuration for your project.

Question 76

Describe Azure Monitor

Answer 76

A service that collects monitoring telemetry from a variety of on-prem and Azure sources. Management tools, like Azure Security Center, push log data to Azure monitor. Azure Monitor aggregates and stores this telemetry in an Azure Log Analytics instance.

Question 77

Describe Azure Service Health

Answer 77

Notifies you about Azure service incidents and planned maintenance so you can take action to mitigate downtime.

Question 78

Describe Azure Security Center

Answer 78

A unified infrastructure security management system that strengthens the security posture of your data centers (cloud and on-prem). Provides security guidance and info around your adherence to compliance related policies enabled.

Question 79

Does Azure Defender provide Just In Time (JIT) VM Access?

Answer 79

Yes. For the paid version, not on the free version.

Question 80

Describe Key Vault

Answer 80

A cloud service for securely storing and accessing secrets. Such as; API keys, passwords, certificates, or cryptographic keys.

Question 81

Describe Azure Sentinel

Answer 81

A cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution. It has built in AI.

Question 82

Describe Dedicated Hosts

Answer 82

A service that provides dedicated physical servers able to host one or more virtual machines in one Azure subscription.

Question 83

Define “Defense in-depth”

Answer 83

A layered approach that does not rely on one method to completely protect your environment.

Question 84

Describe a Network Security Group

Answer 84

Contains security rules that allow or deny inbound network traffic to, or outbound network traffic from , several types of Azure resources. Each rule can contain source and destination, port and protocol. Can be applied to a subnet or NIC.

Question 85

Describe Azure Firewall

Answer 85

A managed, cloud-based network security service that protects your Azure Virtual Network resources. It is a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability.

Question 86

Describe Azure DDoS

Answer 86

Standard tier provides enhanced DDoS mitigation features to defend against DDoS attacks. Basic version included with all subscriptions, Standard version includes logging and alerts, with the mitigation features.

Question 87

Describe Conditional Access

Answer 87

Used by Azure AD to bring signals together, to make decisions, and enforce organizational policies.

Question 88

Describe RBAC

Answer 88

Azure RBAC helps you manage who has access to Azure resources, what they can do with those resources, and which resources/areas they have access to. It’s built on Azure resource managed that provides fine-grained access management of Azure resources.

Question 89

Define Resource Locks

Answer 89

Prevent other users in your organization from accidently deleting or modifying critical resources. Locks override any permissions a user may have.

Question 90

Define Azure Policy

Answer 90

The definition of the conditions which you want to control/govern. Used to enforce standards.

Question 91

Define Azure Initiative

Answer 91

A collection of Azure policy definitions that are grouped together towards a specific goal.

Question 92

Define Blueprint

Answer 92

A container for composing sets of standards, patterns, and requirements for implementation of Azure cloud services, security, and design.

Question 93

Describe Tags as used in Azure

Answer 93

A name and a value pair used to logically organize Azure resources, resource groups, and subscriptions into a logical taxonomy. Used to apply business policy or tracking cost for billing.

Question 94

Can you enforce tagging rules with Azure policies?

Answer 94

Yes.

Question 95

What is the Trust Center?

Answer 95

Where you can learn about the four foundational principals of trust: security, privacy, compliance, and transparency.

Question 96

What are the three main Azure Sovereign Regions?

Answer 96

Government, China, and Germany

Question 97

What is an Azure Sovereign Region?

Answer 97

Special regions that you might need for compliance or regulatory reasons.

Question 98

What are Cost Impacts in Azure?

Answer 98

Type of services/resources, services, locations, ingress and egress traffic.

Question 99

What are reserved instances?

Answer 99

Reserve virtual machines in advance and save up to 72% compared to PAYG pricing with 1-yr or 3-yr commitment.

Question 100

What is reserved Capacity?

Answer 100

Achieve significant savings on Azure SQL Database, Azure Cosmos DB, and Azure Synapse Analytics and Azure Cache for Redis.

Question 101

What is Hybrid Use Benefit?

Answer 101

Discount for running VMs by utilizing or effectively converting your on-prem software assurance enabled windows licenses on their new cloud equivalent.

Question 102

What is spot pricing?

Answer 102

Access unused Azure compute capacity at deep discounts - up to 90% compared to PAYG prices. Azure VMs only.

Question 103

Describe Azure Cost Management

Answer 103

A suite of tools provided by Microsoft that help you analyze, manage, and optimize the costs of your workloads.

Question 104

Who has access to Private Preview?

Answer 104

Only companies or users invited, and for evaluation only.

Question 105

Who has access to Public Preview?

Answer 105

Open to the public but preview limitations still apply

Question 106

What is General Availability?

Answer 106

Regularly available services.