Mall Academy AZ-104 Azure Administrator Practice Exam #2 Flashcards
Network Watcher is a central hub providing access to a wide range of networking tools in Azure.
A. TRUE
B. FALSE
A. TRUE
Explanation:
Network Watcher is a central hub providing access to a wide range of networking tools in Azure.
You have an Azure virtual machine named VM1. VM1 was deployed by using a custom Azure Resource Manager template named ARM1.json.You receive a notification that VM1 will be affected by maintenance.You need to move VM1 to a different host immediately.Solution: From the Redeploy blade, you click Redeploy.Does this meet the goal?
A. Yes
B. No
A. Yes
Explanation:
When you redeploy a VM, it moves the VM to a new node within the Azure infrastructure and then powers it back on, retaining all your configuration options and associated resources. References: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/redeploy-to-new-node
You have an Azure subscription that contains a virtual machine named VM1.
VM1 hosts a line-of-business application that is available 24 hours a day.
VM1 has one network interface and one managed disk.
VM1 uses the D4s v3 size.
You plan to make the following changes to VM1:
- Change the size to D8s v3.
- Add a 500-GB managed disk.
- Add the Puppet Agent extension.
- Attach an additional network interface.
Which change will cause downtime for VM1?
A. Add the Puppet Agent Extension
B. Change the size to D8s v3
C. Add a 500GB managed disk
B. Change the size to D8s v3
Explanation:
While resizing the VM it must be in a stopped state
References: https://azure.microsoft.com/en-us/blog/resize-virtual-machines/
Azure virtual networks (VNets) are isolated networks using a private IP address space.
A. TRUE
B. FALSE
A. TRUE
Explanation:
Azure Virtual Networks (VNets) are isolated networks using a private IP address space
You have an Azure subscription that contains the resources shown in the following table.
There is not an option to limit connectivity.
A. FALSE
B. TRUE
A. FALSE
Explanation:
There is an option to limit connectivity, in which case Network Security Groups rules must be used to define the permitted connections
You have an Azure virtual machine named VM1. VM1 was deployed by using a custom Azure Resource Manager template named ARM1.json.
You receive a notification that VM1 will be affected by maintenance.
You need to move VM1 to a different host immediately.
Solution: From the Update management blade, you click Enable.
Does this meet the goal?
A. No
B. Yes
B. No
Explanation:
You would need to redeploy the VM
Your company has an Azure subscription named Subscription1.
The company also has two on-premises servers named Server1 and Server2 that run Windows Server 2016.
Server1 is configured as a DNS server that has a primary DNS zone named adatum.com.
Adatum.com contains 1,000 DNS records.
You manage Server1 and Subscription1 from Server2.
Server2 has the following tools installed:
- The DNS Manager console
- Azure PowerShell
- Azure CLI 2.0
You need to move the adatum.com zone to Subscription1.
The solution must minimize administrative effort.
What should you use?
A.The Azure Portal
B. Azure CLI
C. Azure PowerShell
D. The DNS Manager Console
B. Azure CLI
Explanation:
Azure DNS supports importing and exporting zone files by using the Azure command-line interface (CLI).
Zone file import is not currently supported via AzurePowerShell or the Azure portal.
References: https://docs.microsoft.com/en-us/azure/dns/dns-import-export
You have an Azure virtual machine named VM1.
Azure collects events from VM1.
You are creating an alert rule in Azure Monitor to notify an administrator when an error is logged in the System event log of VM1.
You need to specify which resource type to monitor.
What should you specify?
A. Virtual Machine
B. Azure Log Analytics Workspace
C. Virtual Machine Extension
D. Metric Alert
C. Virtual Machine Extension
Explanation:
Azure Monitor can collect data directly from your Azure virtual machines into a Log Analytics workspace for detailed analysis and correlation. Installing the LogAnalytics VM extension for Windows and Linux allows Azure Monitor to collect data from your Azure VMs.
Reference: https://docs.microsoft.com/en-us/azure/azure-monitor/learn/quick-collect-azurevm
You have an Azure subscription named Subscription1.
Subscription1 contains a resource group named RG1.
RG1 contains resources that were deployed by using templates.
You need to view the date and time when the resources were created in RG1.
Solution: From the RG1 blade, you click Deployments.
Does this meet the goal?
A. No
B. Yes
B. Yes
Explanation:
From the RG1 blade, click Deployments. You see a history of deployment for the resource group.
Reference: https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/template-tutorial-create-first-template?tabs=azure-powershell
By default, peered VNets appear and perform as a single network.
A. TRUE
B. FALSE
A. TRUE
Explanation:
By default, peered VNets appear and perform as a single network
You have an Azure subscription that contains the resources shown in the following table.
You have an Azure subscription named Subscription1.
You deploy a virtual machine named VM1 to Subscription1.
You need to monitor the metrics and the logs of VM1.
What should you use?
(It should apply to Windows and Linux VM)
A. Linux Diagnostic Extension (LAD) 3.0
B. The AzurePerformanceDiagnostics extension
C. Azure HDInsight
D. Azure Analysis Services
B. The AzurePerformanceDiagnostics extension
Explanation:
You can use extensions to configure diagnostics on your VMs to collect additional metric data
The basic host metrics are available, but to see more granular and VM specific metrics, you need to install the Azure diagnostics extension on the VM. The Azure diagnostics extension allows additional monitoring and diagnostics data to be retrieved from the VM
User Defined Routes (UDRs) change the default behavior of subnets allowing you to direct outbound traffic to other locations. Typically, traffic is sent through a virtual appliance such as a firewall.
A. TRUE
B. FALSE
A. TRUE
Explanation:
User Defined Routes (UDRs) change the default behavior of subnets allowing you to direct outbound traffic to other locations. Typically, traffic is sent through a virtual appliance such as a firewall.
You create an Azure Storage account named contosostorage.You plan to create a file share named data.Users need to map a drive to the data file share from home computers that run Windows 10.Which outbound port should you open between the home computers and the data file share?
A. 445
B. 3389
C. 80
D. 443
A. 445
Explanation:
Ensure port 445 is open: The SMB protocol requires TCP port 445 to be open, connections will fail if port 445 is blocked. References: https://docs.microsoft.com/en-us/azure/storage/files/storage-how-to-use-files-windows
Virtual networks are divided into subnets, which allow you to isolate workloads.
A. TRUE
B. FALSE
A. TRUE
Explanation:
Virtual networks are divided into subnets, which allow you to isolate workloads.
The effective routes for each network interface can be reviewed to help diagnose routing issues.
A. True
B. False
A. True
Explanation:
The effective routes for each network interface can be reviewed to help diagnose routing issues.
Virtual Machine Scale Sets (VMSS), can scale up to 10 instances. You need to ensure that you create the VMSS configured for large scale sets if you intend to go above 10 instances. There are several other limits to consider too. Using a custom image, you can only create up to 3 instances. To scale above 10 instances, you must use the Standard SKU of the Azure Load Balancer or the Azure App Gateway.
A. True
B. False
B. False
Explanation:
Virtual Machine Scale Sets (VMSS), can scale up to 1000 instances. You need to ensure that you create the VMSS configured for large scale sets if you intend to go above 100 instances. There are several other limits to consider too. Using a custom image, you can only create up to 300 instances. To scale above 100 instances, you must use the Standard SKU of the Azure Load Balancer or the Azure App Gateway.
Public IP addresses are not managed as a standalone resource.
A. True
B. False
B. False
Explanation:
Public IP addresses are managed as a standalone resource, which can be associated with a network interface IP configuration.
You have an Azure subscription.Users access the resources in the subscription from either home or from customer sites.
From home, users must establish a point-to-site VPN to access the Azure resources.
The users on the customer sites access the Azure resources by using site-to-site VPNs.
You have a line-of-business app named App1 that runs on several Azure virtual machine.
The virtual machines run Windows Server 2016.
You need to ensure that the connections to App1 are spread across all the virtual machines.
What are two possible Azure services that you can use?
Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
A. An Azure Application Gateway
B. An Internal Load Balancer
C. Traffic Manager
D. A public load balancer
E. An Azure Content Delivery Network (CDN)
A. An Azure Application Gateway
B. An Internal Load Balancer
Explanation:
Public load balancer is not correct as you’re going over site to site VPN, furthermore, traffic manager is used to bring resources closest to the requesting users, not to balance out the traffic to the backend pools.
The Azure Backup service can backup and restore and entire virtual machine and you can also use it for just file recovery to restore files from a recovery point without recreating the entire virtual machine.
A. True
B. False
A. True
Explanation:
The Azure Backup service can backup and restore and entire virtual machine and you can also use it for just file recovery to restore files from a recovery point without recreating the entire virtual machine.
Virtual networks can be connected using VNet peering. This is supported both within a region or across regions.
A. True
B. False
A. True
Explanation:
Virtual networks can be connected using VNet peering. This is supported both within a region or across regions.
You have an Azure subscription named Subscription1 that is used by several departments at your company.
Subscription1 contains the resources in the following table.
Another administrator deploys a virtual machine named VM1 and an Azure Storage account named Storage2 by using a single Azure Resource Manager template.
You need to view the template used for the deployment.
Which blade can you use to check past template deployments made by another user?
You have an Azure subscription.You have 100 Azure virtual machines.You need to quickly identify underutilized virtual machines that can have their service tier changed to a less expensive offering.Which blade should you use?