Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AZ-303 > Cloud governance strategy > Flashcards

Cloud governance strategy Flashcards

1
Q

Explain the term governance

A

The term governance is the general process of establishing rules and policies and ensuring that they are enforced.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the cloud adoption framework?

A

Provides proven guidance for companies that want to adopt the cloud.

It consists of tools, documentation and proven practices.

It provides the following stages:

  1. Define your strategy
  2. Make a plan
  3. Ready your organisation
  4. Adopt the cloud
  5. Govern and manage your cloud environments
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Explain “Define your strategy” in the cloud adoption framework

A

Here you answer why you want to move to the cloud.

Eg. do you need to scale to meet demand? Will it reduce costs and increase business agility?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Explain “Make a plan” in the cloud adoption framework

A

Build a plan that has actions that lead to the aspirational goals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Explain “Ready your organisation” in the cloud adoption framework

A

Create an environment in the cloud to begin hosting workloads

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the 3 main factors to consider when creating a subscription strategy?

A
  • Billing
  • Access control
  • Subscription limits
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q 
Which level is a deploymen boundary for azure resources?
Management group?
Subscription?
Resource group?
Resource?
A

Subscription

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the maximum number of Azure Express routes per subscription?

A

10

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are management groups used to manage?

A 
A management group manages
*Access
*Policies and 
*Compliance 
across multiple azure subscriptions
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What scoped can RBAC be applied to?

A

Management groups
Subscriptions
Resource groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the was of accessing Azure Resource Manager?

A

Portal
CLI
Azure cloudshell
PowerShell

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

On which pane you access RBAC?

A

“Access control (IAM)” pane

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How do you manage resource locks?

A

CLI, Portal, ARM templates, PowerShell

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the different lock types?

A

Read-Only - Can view the resource but cant modify or delete the resource
Delete - Prevents user from deleting the resource but can modify and view the resource

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How can you ensure that a resource inherits tags from it’s parent?

A

Use Azure policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How can you ensure that locks that are removed are automatically reinstated?

A

With Azure blueprints

17
Q

What are tags useful for?

A

Resource management - Tags enable you to locate and act on resources that are associated with specific workloads, environments, business units, and owners.

Billing reports - Tags enable you to group resources so that you can report on costs, allocate internal cost centers, track budgets, and forecast estimated cost.

Operations management - Tags can help to group resources according to how critical resource uptime is

Security - You can tag resources as public or confidential for example

Governance and regulatory compliance

Workload optimisation and automation - You can visualise resources that participate in complex deployments.

18
Q

What are the 3 steps involved in creating an azure policy?

A
  1. Create a policy definition
  2. Apply it to a resource
  3. Review the evaluation results
19
Q

Policy definition examples

A

Allowed virtual machine SKUs

This policy enables you to specify a set of VM SKUs that your organization can deploy.

Allowed locations

This policy enables you to restrict the locations that your organization can specify when it deploys resources. Its effect is used to enforce your geographic compliance requirements.

MFA should be enabled on accounts with write permissions on your subscription

This policy requires that multifactor authentication (MFA) be enabled for all subscription accounts with write privileges to prevent a breach of accounts or resources.

CORS should not allow every resource to access your web applications

Cross-origin resource sharing (CORS) is an HTTP feature that enables a web application running under one domain to access resources in another domain. For security reasons, modern web browsers restrict cross-site scripting by default. This policy allows only required domains to interact with your web app.

System updates should be installed on your machines

This policy enables Azure Security Center to recommend missing security system updates on your servers.

20
Q

What is a policy initiative?

A

It is a way of grouping a number of policies into one set

21
Q

What are Azure blueprints?

A

Using Azure blueprints you can build a standard set of tools and resources that can be used by the organisation. It will ensure that what is deployed conforms and will comply with governance rules set by the organisation

22
Q

Are Azure blueprints versioned?

A

Yes

AZ-303 (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions