CRK-1.1-27 Flashcards
What must you ensure before extracting insights or creating visualizations in Log Analytics?
Log Analytics must be enabled and configured.
What is the retention period for most metrics within Azure Monitor?
Most metrics are retained for 93 days within Azure Monitor.
How long can logs stored in Log Analytics be retained?
Logs can be retained for up to 2 years in Log Analytics.
What properties do metrics have in Azure Monitor?
Time, type, resource, value, and optional dimensions.
What is the key difference in data availability between metrics and logs in Azure Monitor?
Metrics are gathered over time and available immediately, while logs are event-triggered and can take time to process.
At what intervals are Azure metrics collected?
Azure metrics are collected at one-minute intervals.
What is the retention period for classic guest OS metrics collected through diagnostic extensions?
14 days.
What is the retention period for guest OS metrics sent to Azure Monitor metrics?
93 days.
What is the retention period for guest OS metrics collected by the Log Analytics agent?
31 days, extendable up to two years.
What is the retention period for Application Insights log-based metrics?
90 days.
What kind of data does Application Insights provide for development and production monitoring?
Response times of dependencies, exception traces, debugging snapshots, and execution profiles.
What additional value does Application Insights provide when an application emits custom events?
Helps to debug the app and understand user interactions more effectively.
What resources can the Azure Backup service back up?
Virtual machines, SAP HANA databases in an Azure VM, Azure file share, SQL Server databases in an Azure VM.
What storage redundancy types should be chosen for the Recovery Services Vault in Azure Backup?
Geo-Redundant storage or Read Access Geo-Redundant storage.
How long are vault credentials valid after download in Azure Backup?
48 hours.
What does Azure Monitor provide?
A single pane of glass for accessing Azure metrics, tenant and resource diagnostic logs, Log Analytics, service health, and alerts.
What types of alerts can be configured in Azure Monitor?
Metric alerts, Activity Log alerts that notify by email, webhook, SMS, Logic Apps, or an Azure Automation Runbook.
What does Azure Log Analytics consolidate?
Machine data from on-premises and cloud-based workloads, indexed and categorized for quick searching.
What solutions does Azure Log Analytics offer to administrators?
Pre-built visualizations and queries for surfacing insights quickly.
How can queries in Log Analytics be utilized?
Saved for quick access, visualized, shared using Azure Dashboards, and exported to Excel and Power BI.
What is the Recovery Services Vault used for?
Configuration and management of both Backup and Site Recovery.
What does an Azure Backup policy define?
How often backups occur and how long they are retained.
What can the Azure Backup service restore?
An entire virtual machine or individual files from a recovery point.
What does the Azure Backup service protect?
Files and folders, applications, and IaaS virtual machines.
What feature helps retain backup data for 14 days after deletion in Azure Backup?
Soft delete feature.
What does the Azure Site Recovery service enable?
Replication, failover, and failback of virtual machines.
What is required to set up Azure AD Seamless Single Sign-on (SSO)?
Enable Azure AD Seamless Single Sign-on for users in the Miami office.
What tool helps identify and remediate object synchronization errors before deploying to Microsoft 365?
The IdFix tool.
What are the IP ranges defined in RFC 1918 for private address spaces?
10.0.0.0-10.255.255.255 (10.0.0.0/8), 172.16.0.0-172.31.255.255 (172.16.0.0/12), 192.168.0.0-192.168.255.255 (192.168.0.0/16).
What is the limitation of using public IP ranges in a VNet?
Virtual machines in the VNet will no longer be able to access the corresponding Internet addresses.
What must be unique within a VNet?
The subnet name.
How many IP addresses does Azure reserve from each subnet?
Azure reserves the first four and last IP addresses in each subnet.
What is the purpose of a GatewaySubnet in Azure?
It is a special subnet used only for virtual network gateways.
What DNS record types can be managed in Azure DNS?
A, AAAA, CAA, CNAME, MX, NS, PTR, SOA, SRV, TXT.
What is required to connect two VNets?
They must have non-overlapping IP address spaces.
What is the non-transitive nature of VNet peering?
If VNetA and VNetB are peered, and VNetB and VNetC are peered, VNetA and VNetC are not peered.
What approach can reduce duplication of resources using a hub-and-spoke network topology?
Deploy shared resources in a hub VNet accessed by multiple spoke VNets.
What setting must be enabled for VNet peerings to allow forwarded traffic?
The Allow Forwarded Traffic setting.
What must be enabled on a peering connection to use a remote gateway?
Allow Gateway Transit.
What does the Azure Bastion service provide?
Secure and seamless RDP and SSH connectivity to VMs directly in the Azure portal.
What is Azure Application Gateway used for?
Managing web traffic for applications, routing it at the application layer (OSI layer 7).
What is Azure Load Balancer (ALB) used for?
Load-balancing TCP and UDP traffic at the transport layer (OSI layer 4).
What are the differences between Basic and Standard tiers of Azure Load Balancer?
Standard tier supports availability zones, larger backend pools, and closed by default, while Basic tier is free and open by default.
What does Network Performance Monitor provide?
Monitoring for hybrid networks, including performance monitor, connectivity monitor, and ExpressRoute monitor.
What is the purpose of the IP Flow Verify feature in Network Watcher?
To test if a given network flow is allowed in or out of an Azure VM.
What is the Next Hop feature in Network Watcher used for?
Determining the next hop address and routing rule for a given network flow.
What is the function of Packet Captures in Network Watcher?
Capturing network traffic on a given VM, either locally or to an Azure storage account.
What does Site-to-Site VPN provide?
Connectivity between an on-premises network and an Azure virtual network using an encrypted tunnel over the public Internet.
What are the requirements for an on-premises device to act as a Site-to-Site VPN endpoint?
It must have an Internet-facing static IPv4 address.
What connectivity options does ExpressRoute provide?
Connections via a co-location facility provider, point-to-point Ethernet connection, or extending an IPVPN WAN.
What are the two peering types supported by ExpressRoute?
Microsoft Peering and Private Peering.
What does the ExpressRoute Premium Add-On provide?
Extended coverage to all Microsoft data centers globally and increased number of private peering routes and connected virtual networks.
What is the primary use of a Log Analytics agent?
Collecting guest OS metrics and sending them to a Log Analytics workspace.
What can be done with Application Insights data?
Debugging an app and understanding user interactions with custom events and exception information.
