Compliance and Organisation

Question 1

What is a Resource lock?

Answer 1

A restriction that can be put on a resource to prevent deletion or modification.

Question 2

What are the two main resource locks?

Answer 2

CanNotDelete
ReadOnly

Question 3

What actions can be performed on a Resource with a CanNotDelete Lock out of the following:
Read
Update
Delete

Answer 3

Read - YES
Update - YES
Delete - NO

Question 4

What actions can be performed on a Resource with a ReadOnly Lock out of the following:
Read
Update
Delete

Answer 4

Read - YES
Update - NO
Delete - NO

Question 5

Why are Resource locks important?

Answer 5

Because when a resource is changed or deleted it cannot be undone.

Question 6

TRUE OR FALSE: Resource locks can only be put on resources.

Answer 6

FALSE
Resource locks can be put on anything in Azure, like: resources, groups and subscriptions.

Question 7

TRUE OR FALSE: Resources locks are hierarchical, e.g. a lock on a subscription will apply to all resources and groups within said subscription.

Answer 7

TRUE
A lock will be added to any resource/group/subscription if the resource/group/subscription has said lock on it.

Question 8

What is a Tag?

Answer 8

A piece of metadata that can be added to a resource to help organise it.

Question 9

How is a tag stored?

Answer 9

As a Key-Value pair

Question 10

What is the maximum number of tags you can add to a single resource?

Answer 10

50

Question 11

What are tags used for?

Answer 11

They can be used to group resources together by a given tag and help organise and analyse resources across a organization.

Question 12

What is a Security Tag?

Answer 12

A Tag that can be used to set the security level of a resource.

Question 13

What is Azure Policy?

Answer 13

A tool that helps enforce organisational standards and rules across a organisation. It is used to set restrictions and rules to regulate compliance, security, cost and management.

Question 14

What are the main features of Azure policy?

Answer 14

1. Can set policies and rules for resources, and prevents deployment of them if they do not comply
2. Can set rules and restrictions for each user (Gives them different trusts) e.g. some users may be able to create higher tier VMs but other may not.

Question 15

TRUE OR FALSE: Policies backtrack and shutdown already existing resources made before the policy that are no longer compliant.

Answer 15

FALSE
Resources are not affected by policies made after its creation.

Question 16

What are Azure Blueprints?

Answer 16

Templates that make it possible for development teams to rapidly build and stand up new environments/resources/applications.

Question 17

TRUE OR FALSE: If you change an azure blueprint, all assignments of the blueprint will change too.

Answer 17

FALSE
Assignments must be updated to the new version of the blueprint.

Question 18

What is the Cloud Adoption Framework approach?

Answer 18

A step by step approach to developing and deploying cloud solutions

Question 19

What are the 7 steps of the Cloud Adoption Framework?

Answer 19

Strategy
Plan
Ready
Mitigate
Innovate
Govern
Manage

Question 20

Describe the Strategy step of the Cloud Adoption Framework?

Answer 20

Defining the business justification and expected outcomes

Question 21

Describe the Plan step of the Cloud Adoption Framework?

Answer 21

Aligning actionable adoption plans to the business outcomes defined in the Strategy step

Question 22

Describe the Ready step of the Cloud Adoption Framework?

Answer 22

Preparing the cloud environment for the planned changes

Question 23

Describe the Mitigate step of the Cloud Adoption Framework?

Answer 23

Mitigating and modernizes existing workloads

Question 24

Describe the Innovate step of the Cloud Adoption Framework?

Answer 24

Developing the cloud native or hybrid solution

Question 25

Describe the Govern step of the Cloud Adoption Framework?

Answer 25

Governing the environment and workloads

Question 26

Describe the Manage step of the Cloud Adoption Framework?

Answer 26

Operations management for the solution developed

Question 27

What is the Microsoft Privacy Statement?

Answer 27

A statement that describes how Microsoft handles user data collected from its products and services.

Question 28

What is the Trust Center?

Answer 28

A hub to learn about security, privacy, compliance, policies, features and practices across cloud products.

Question 29

What is the Service Trust Portal?

Answer 29

A portal that provides data like azure trust documents, policies for azure regions, and links to the Trust Center.

Question 30

What is Azure Sovereign Regions?

Answer 30

A separate version of Azure used by governments. Made specifically to made the security and compliance needs of federal agencies, state and local governments, and their solution providers.