Microsoft learn course

Question 1

What is Azure Portal?

Answer 1

Web based, unified console provides alternative to command line tools. Through it you access the GUI.
Present in every data center.
Updates continuously, requires no maintenance downtime.

Question 2

What are the 10 main categories of azure services?

Answer 2

Compute (VM, apps)
Networking (connect VPN, load balance. Link computing resources, provide app access, firewall, WAN, netwrk monitor)
Storage
Mobile (Build apps for mobile)
Databases
Web (web apps, api)
IOT
Big data (open source cluster tech)
AI
DevOps (automates software deployment)

Question 3

What are the 4 main types of storage in Azure?

Answer 3

Blob storage: storage for large objects (video files, bitmaps)
File storage: File shares can be accessed & managed like a file server
Queue Storage: Data store for queuing & reliably delivering messages between apps
Table storage: stores non-relational structured data (no SQL) in cloud, providing key/attribute store with schemaless design.

Question 4

What is the Azure IoT hub?

Answer 4

Acts as message hub between IoT device & device that manages it.
Managed service.
- connects IoT devices

Question 5

What is Azure IoT central?

Answer 5

Adds dashboard allowing connection, monitoring, and managing IoT.
Prebuilt.
Device templates.

Question 6

What is Azure Sphere?

Answer 6

Creates end to end highly secure IoT solution.
3 Parts:
- MCU (processes the OS & signals from attached sensors)
- Customized Linux OS (Handles communication w/ security service & can run vendors software)
- Azure Sphere Security Server (AS3) (Makes sure device hasn’t been maliciously compromised)

Question 7

When would you choose Azure IoT Sphere for?

Answer 7

• Security is a priority
• Customer wants a dashboard
• Customer is connecting IoT devices

Question 8

When would you choose Azure IoT central?

Answer 8

• Security isn’t a priority
• Customer wants a dashboard
• Customer is ok with a prebuilt dashboard
• Customer is connecting IoT devices

Question 9

When would you choose Azure IoT hub?

Answer 9

• Security is not critical
• Customer does not want a dashboard
• Customer wants to connect IoT devices

Question 10

What is a web API?

Answer 10

Accessible from servers that accept requests via HTTP

Question 11

What is a web API endpoint?

Answer 11

Location of code library

Question 12

What is a Azure Machine Learning?

Answer 12

Used for making predictions.
Connect data to train & test models to accurately predict a future result.
Experiment and then deploy and use model in real time VIA web API endpoint.

Question 13

When would you choose Azure Machine Learning?

Answer 13

Data scientists need complete control over design & training of algorithm using your own data

Question 14

What are Azure cognitive services?

Answer 14

Provides prebuilt machine learning models that enable apps to see, hear, speak, understand & even begin to reason.
Pretrained models.
Divided into the following categories:
- Language services
- Speech services
- Vision services
- Decision services

Question 15

When would you choose Azure Cognitive Services?

Answer 15

You need to:
Analyze text for emotional sentiment
Analyze images to recognize objects/faces
Make personalized recommendations for users
Moderate content
Detect data abnormalities

Question 16

What is Azure Bot Service & Framework?

Answer 16

Creates virtual agents (bots) that understand and respond to questions. Bots intelligently communicate w/ humans using other Azure services to understand what Azure counterparts are asking for.

Question 17

When would you use Azure Bot Service & Framework?

Answer 17

For simple, repetitive tasks.

Customer service bots

Question 18

What is serverless computing?

Answer 18

Normally for back end scenarios.
A server is still used, but it is obscured from the user.
The user only pays for the service they use.

Question 19

What are Azure Functions?

Answer 19

You can host a single method or function by using a programmable language in the cloud that runs in response to an event.
Scales automatically, only charges when used.
Stateless.
Durable Functions chain function together.

Question 20

What are Azure Logic Apps?

Answer 20

Low or no code platform to automate and orchestrate tasks.

Build app by linking triggers to actions w/ connectors.

Question 21

What is the difference between Azure Functions and Azure Logic Apps?

Answer 21

Azure Functions = Serverless compute service

Azure Logic Apps = Serverless orchestration service

Question 22

What are Azure DevOps Services?

Answer 22

Suite of services addressing every stage of the software development lifecycle

Question 23

What is Azure Repos (Azure DevOps)?

Answer 23

Centralized source code repository where software developers, DevOps engineering & documentation professionals can publish code for review and collaboration.

Question 24

What is Azure Board (Azure DevOps)?

Answer 24

Project management suite for working items and issues

Question 25

What is Azure Pipeline (Azure DevOps)?

Answer 25

CI/CD pipeline ( series of processes responsible for creating automated and seamless software delivery) automation tool

Question 26

What are Azure Artifacts (Azure DevOps)?

Answer 26

Repository for hosting artifacts, can be fed into testing or deployment pipeline steps
“Azure Artifacts enables developers to share and consume packages from different feeds and public registries.”
Supports multiple package types such as NuGet, Npm, Python, Maven, and Universal Packages.

Question 27

What are Azure Test Plans (Azure DevOps)?

Answer 27

Automated test tool that can be used in CI/CD pipeline to ensure quality

Question 28

What are Github actions? (DevOps)

Answer 28

CI/CD toolchains.
Toolchain for delivery, development, management of software apps throughout system development lifecycle. Output of one tool is input of next tool.

Question 29

What is Azure DevTest Labs?

Answer 29

Automated means of managing process of building, setting up, tearing down VMs containing builds of software projects.

• Time saver for quality assurance
• Anything deployed in Azure via Arm Template can be provisioned via DevTest Labs

Question 30

What is Infrastructure as a Code?

Answer 30

Managing hardware & cloud resources when writing code

Question 31

What is imperative vs declarative code?

Answer 31

Imperative code: Details each invalid step to be performed to achieve desired outcome
Declarative code: Details only desired outcome
* Tools based on declarative code can provide more robust approach to deploying dozens/hundreds of resources at the same time

Question 32

What is Azure powershell? Who is the ideal user?

Answer 32

Shell to execute CMDLETS, can perform every possible management task in Azure.
Those used to Windows will find this the same as Windows powershell

Question 33

What is Azure CLI? Who is the ideal user?

Answer 33

Executable program to execute commands in Bash (same as powershell, different syntax)
Those used to Linux will find this familiar

Question 34

What are ARM Templates?

Answer 34

Azure Resource Manager.
Describe resource you want to use in declarative JSON format. Entire format is verified before code is executed.
Creates resources in parallel (50 different instances built the same way)

Question 35

What is the Azure Advisor Monitoring Solution?

Answer 35

Evaluates Azure resources & makes recommendations to improve reliability, security & performance, achieve operational excellence & reduce costs.
Save time on cloud optimization.
5 recommended categories to monitor: Reliability, Security, Performance, Cost, Operational Excellence

Question 36

What is Azure Monitor Monitoring Solution?

Answer 36

Collect, analyze, visualize, potentially take action based on metric & logging data from Azure & on premises environment.
Uses it to react in real time.
Can be used to set thresholds for auto scaling

Question 37

What is Azure Service Health Monitoring Solution?

Answer 37

Personalized view of health of Azure services, regions, resources, you rely on. Monitors service issues, planned maintenance, health advisories

Question 38

When would you implement Azure Advisor Monitoring Solution?

Answer 38

Analyzing Azure usage for optimization.

Question 39

When would you use Azure Monitor Monitoring Solution?

Answer 39

• Not concerned with optimization
• Want to look at specific service and user performance
• You want to measure customized instances

Question 40

What are Azure storage services?

Answer 40

Different than a database.
Stores files, messages, tables & other info. Data is secure, highly available, durable, scalable.
Types:
Disk storage.
Blob Storage.
Files.

Question 41

What is Azure Disk storage service?

Answer 41

Provides disks for azure virtual machine

Question 42

What is Azure Blob Storage?

Answer 42

Object storage solution. Unstructured.
Can store massive amounts of data.
Stored in containers.

Question 43

What is Azure Files Storage?

Answer 43

Fully managed file shares in cloud accessible via server message block & network file system protocols.
Any number of users can access simultaneously.
Share files anywhere via URL & SAS access.

Question 44

What are the Azure Blob Storage Access tiers?

Answer 44

Hot access tier: Storing data accessed frequently.
Cool access tier: Data infrequently accessed, stored at least 30 days.
Archive access tier: Data rarely accessed, stored @ least 180 days, flexible latency

Question 45

What is Azure Cosmos Database?

Answer 45

Globally distributed multi model database service.
Elastically and independently scale thruput & storage across any number Azure regions worldwide.
- Supports schema: Less data, allows highly responsive/always on apps.
Store data updated & maintained by users around world
-API flexible

Question 46

What is Azure SQL database?

Answer 46

Relational database based on Microsoft SQL server database.
Use it to build data driven apps & websites in any language without needing to manage infrastructures.
PaaS data base engine. Fully managed.
- Can process relational and non relational data
- Has newest SQL server capabilities.
- Azure database migration service

Question 47

Azure database for PostGreSQL

Answer 47

Relational database server based on PostgreSQL database engine.
2 deployment options:
- Single Server (Basic, General Purpose, Memory Optimized): Vertical scalability, monitoring, 35 day backups, security, pay as you go, high availability.
- Hyperscale (Citus): Horizontally scales queries across machines using sharding.

Question 48

When would you use the Hyperscale Azure PostgreSQL database?

Answer 48

For apps that require greater scale and performance.
Workloads greater than 100 GB of data.
Faster responses on large databases.

Question 49

When would you use the Single Server Azure PostgreSQL database?

Answer 49

Cloud native applications designed to handle automated patching without the need for granular control on the patching schedule and custom PostgreSQL configuration settings.

Question 50

Why would you choose the Basic pricing tier of Single Server Azure PostgreSQL database?

Answer 50

Workloads that require light compute and I/O performance. Examples include servers used for development or testing or small-scale infrequently used applications.

Question 51

Why would you choose the General Purpose pricing tier of Single Server Azure PostgreSQL database?

Answer 51

Most business workloads that require balanced compute and memory with scalable I/O throughput. Examples include servers for hosting web and mobile apps and other enterprise applications.

Question 52

Why would you choose the Memory Optimized pricing tier of Single Server Azure PostgreSQL database?

Answer 52

High-performance database workloads that require in-memory performance for faster transaction processing and higher concurrency. Examples include servers for processing real-time data and high-performance transactional or analytical apps.

Question 53

What is Azure SQL Managed Instance?

Answer 53

Scalable cloud data service. Provides broadest SQL Server database engine compatibility with all the benefits of a fully managed platform service.

• Easy to migrate on premises data.
• May offer more options.

Question 54

Why would you choose to use Azure SQL managed instance?

Answer 54

For customers looking to migrate a large number of apps from an on-premises or IaaS, self-built, or ISV provided environment to a fully managed PaaS cloud environment, with as low a migration effort as possible.
Supports more server collation than Azure SQL database.

Question 55

What are the Azure SQL Managed Instance service tiers?

Answer 55

• General purpose: Designed for applications with typical performance and I/O latency requirements.
• Business critical: Designed for applications with low I/O latency requirements and minimal impact of underlying maintenance operations on the workload.
  Both offer 99.99% availiability.

Question 56

What are the 5 steps of the SQL Managed Instance migration process flow?

Answer 56

Discover
Assess
Migrate
Cutover
Optimize

Question 57

What are Azure Synapse Analytics?

Answer 57

• Limitless analytics service that brings together enterprise data warehousing & big data analytics.
• Can query data on your terms using serverless or provisioned resources at scale. Unified experience for immediate BI & Machine learning needs.

Question 58

Why would you choose Azure Synapse Analytics?

Answer 58

• The only end-to-end platform that unifies data ingestion, big data analytics, and data warehousing.
• Unite their data, developers, and business users
• Ingestion & data analysis time significantly reduced

Question 59

What is Azure HDInsight?

Answer 59

Fully serviced, open source analytics service for enterprises.

• Can run open source frameworks & create cluster types
• Supports extraction, transformation, loading (ETL), data warehousing, machine learning, IoT

Question 60

Why would you choose Azure HDInsight?

Answer 60

• Easier, faster, more cost effective to process massive amounts of data
• Cloud native
• Scalable
• Secure & Compliant
• Monitoring
• Global availability

Question 61

What is Azure Databricks?

Answer 61

Data analytics platform optimized for the Microsoft Azure cloud services platform.
Offers three environments for developing data intensive applications: Databricks SQL, Databricks Data Science & Engineering, and Databricks Machine Learning.

Question 62

What would you use Azure Databricks SQL for?

Answer 62

Easy-to-use platform for analysts who want to run SQL queries on their data lake, create multiple visualization types to explore query results from different perspectives, and build and share dashboards.

Question 63

What would you use Azure Databricks Data Science & Engineering for?

Answer 63

Provides an interactive workspace that enables collaboration between data engineers, data scientists, and machine learning engineers.
Use Azure Databricks to read data from multiple data sources and turn it into breakthrough insights using Spark.

Question 64

What would you use Databricks Machine Learning for?

Answer 64

Integrated end-to-end machine learning environment incorporating managed services for experiment tracking, model training, feature development and management, and feature and model serving.

Question 65

What is Azure Data Lake Analytics?

Answer 65

On demand analytics job service that simplifies big data.

• Write queries to transform data & extract valuable insights (instead of hardware)
• Set the dial for amount of power needed

Question 66

What would you use Azure Data Lake Analytics for?

Answer 66

Easily develop and run massively parallel data transformation and processing programs in U-SQL, R, Python, and .NET over petabytes of data. With no infrastructure to manage, you can process data on demand, scale instantly, and only pay per job.

Question 67

What DB does Azure Cosmos DB support?

Answer 67

SQL
MONGO DB
Cassandra
Tables
Gremlin APIs

Question 68

What DB would you use for existing lamp stack apps?

Answer 68

Azure DB for MySQL

Question 69

What is the ideal option when you have millions of log entries to analyze?

Answer 69

Azure Synapse analytics

Question 70

What key networking capabilities can Azure Virtual Networking provide?

Answer 70

• Isolation & segmentation
• Internet communications
• Communicate between Azure resources
• Communicate w/ on premises resources
• Connect virtual networks
• Route network traffic
• Filter network traffic

Question 71

What networking capabilities are offered with isolation and segmentation?

Answer 71

• Create multiple isolated virtual networks

- Can use either DNS or name resolution service that’s built in Azure

Question 72

What networking capabilities are offered with internet communication?

Answer 72

• VMs can connect to internet by default

- Enable incoming connections from internet by defining public IP address or a public load balancer

Question 73

What networking capabilities are offered with communication between Azure resources?

Answer 73

• Enable Azure services secure communication with each other by:
  • Virtual networks or
  • Service Endpoints connect to other Azure resource types enabling you to link multiple Azure resources to virtual networks to improve security & provide optimal routing between resources

Question 74

What networking capabilities are offered with communication with on premises resources?

Answer 74

You can create network connecting the cloud and on premises resources by:

• Point to site VPN
• Site to Site VPN
• Azure ExpressRoute (Environments when you need greater bandwidth, higher levels of security, dedicated private connectivity to Azure that doesn’t travel over internet)

Question 75

What networking capabilities are offered with routing network traffic?

Answer 75

Default Azure routes traffic between subnets on networks, but you can control routing and override these settings using route tables or border gateway protocols

Question 76

What networking capabilities are offered with filtering network traffic?

Answer 76

Filter traffic between subnets by:
Network security groups: Azure resource contains multiple inbound/outbound security rules
Network Virtual Appliances: Specialized VM, like a hardened network appliance

Question 77

What networking capabilities are offered with connecting virtual networks?

Answer 77

Using Virtual Network Peering (enables resources in each virtual network to communicate with each other). Can be in separate global regions

Question 78

What can you do with Azure VPN gateway?

Answer 78

• Connect on premises datacenters to virtual networks thru Site2Site connection
• Connect individual devices to virtual networks thru Point2Site connection
• Connect virtual networks to other virtual networks thru a Network2Network connection

Question 79

What are the types of VPN gateways?

Answer 79

Policy-Based VPN Gateway
Route based VPN Gateway
A basic VPN gateway should only by used for Dev/Test workloads

Question 80

What are the key features of a Policy-Based VPN Gateway?

Answer 80

• Specify statically the IP address of packets that should be encrypted thru each tunnel
• Support for IKEv1 only
• Use of static routing
• typically built on firewall devices that perform packet filtering.
• IPsec tunnel encryption and decryption are added to the packet filtering and processing engine.
• Must be used in specific scenarios that require them (EX: compatibility w/ legacy on premises VPN devices)

Question 81

What are the key features of a Route-Based VPN Gateway?

Answer 81

• Preferred method for on premises devices
• Use Any2Any (wildcard) traffic selectors
• Can use dynamic routing protocols
• Use for: connections between virtual networks, Point2Site connections, Multisite connections, co-existence w/ an Azure ExpressRoute Gateway

Question 82

What are the required Azure resources to deploy a VPN gateway?

Answer 82

Virtual network
Gateway subnet
Public IP address
Local network gateway
Virtual network gateway
Connection
Required on premises resources: VPN device supporting Route or Policy based VPN Gateway, Public facing IPv4 address

Question 83

What are the high availability and Fault tolerant configurations for Azure VPN gateways?

Answer 83

• Active / Standby: Backup VPN gateway on standby to take over. Connection will be interrupted for a few seconds
• Active / Active: Extend availability by deploying VPNs w/ unique public IP & separate tunnels from on premises device to each IP address.
• ExpressRoute failover: Configure VPN gateway using internet as an alternative method of connection as a fail over

Question 84

What is Azure ExpressRoute?

Answer 84

Allows you to extend on-premises networks into Microsoft cloud over private connection with help of connectivity provider.
- ExpressRoute connections do not go over the public internet.

Question 85

What are the features and benefits of Azure ExpressRoute?

Answer 85

• Offers higher reliability, faster speeds, consistent latencies, higher security than typical internet
• Connectivity to Microsoft Cloud Services across all regions in geopolitical region (can upgrade to global connectivity to all regions)
• Dynamic routing between your network and Microsoft via BPG
• Built in redundancy in every peering location
• Connection uptime SLA
• Layer 3 connectivity between on premises network & Microsoft cloud thru connectivity provider

Question 86

What are the 3 connectivity models to connect on premises network to Microsoft cloud that Azure ExpressRoute supports?

Answer 86

• Cloud Exchange Colocation: Offer layer 2 & 3 connections between infrastructure & Microsoft Cloud
• Point2Point Ethernet connection: Layer 2 & 3 connectivity between on premises site & Azure
• Any2Any Networks: integrate your WAN w/ Azure by providing connections to your offices & data centers. Layer 3 behaves like connectivity between datacenter & any branch offices

Question 87

What is a unique security considerations for Azure ExpressRoute?

Answer 87

Data doesn’t travel over public internet, it is a private connection from on premises infrastructure to Azure infrastructure

Question 88

What is Azure Sentinel?

Answer 88

Microsoft cloud based SIEM (sec. info & event management) using intelligent security analytics & threat analysis

Question 89

What does Azure Sentinel enable you to do?

Answer 89

• Collect cloud data @ scale
• Detect previously undetected threats (built in or custom analytics)
• Investigate threats with AI (investigation graphs)
• Respond to incidents rapidly (Azure Monitor playbooks are used to automate responses to threats via Block or Ignore)

Question 90

What is Azure Key Vault?

Answer 90

Centralized cloud service for storing apps secrets in a single, central location. Provides secure access to sensitive info by providing access control & logging capabilities

Question 91

Azure Key Vault can:

Answer 91

• Manage secrets (tokens, passwords, certificates, API keys etc)
• Manage encryption keys
• Manage SSL/TLS certs (provision, manage, deploy public/private SSL/TLS certs for Azure & internal resources)
• Store secrets backed by hardware security modules & protected by software or FIPS 140-2 LEVEL 2 VALIDATED HSMs

Question 92

What are the benefits of Azure Key Vault?

Answer 92

• Centralized app secrets
• Securely stored secrets & keys
• Access monitoring & control
• Simplified admin of application secrets (enroll/renew CA)
• Integration w/ other Azure services

Question 93

What is an Azure Dedicated Host?

Answer 93

Provides dedicated physical servers to host your Azure VMs for Windows & Linux

Question 94

What are the benefits of Azure Dedicated Host?

Answer 94

• Visibility into & control over server infrastructure running your Azure VM
• Helps address compliance requirements by deploying workloads on an isolated server
• Lets you choose # of processors, server capabilities, VM series, VM sizes w/in same host

Question 95

What are some availability considerations for Azure Dedicated Host?

Answer 95

• Provision multiple hosts in a host group & deploy VMs across this group for high availability
• VMs on dedicated hosts are also able to have Maintenance Control

Question 96

What are the layers of Defense in Depth?

Answer 96

Physical Security
Identity & access
Perimeter (DDoS protection to filter large scale attacks)
Network
Compute (Secures access to VMs)
Application
Data

Question 97

What is Azure Firewall?

Answer 97

Stateful firewall

• offers high availability, unrestricted cloud scalability
• Uses static public IP address for virtual network resources, enabling outside firewalls to ID traffic coming from your virtual network
• Integrated w/ Azure Monitor

Question 98

What can you configure with Azure Firewall?

Answer 98

• App rules that define fully qualified domain names that can be accessed from a subnet
• Network rules that define source address, protocol, destination port, destination address
• NAT rules that define destination IP addresses & ports to translate inbound requests

Question 99

What is Azure DDoS protection?

Answer 99

Protects Azure apps by analyzing/discarding DDoS traffic @ Azure network edge before it can effect availability

Question 100

What are the Azure DDoS Protection Service Tiers?

Answer 100

Basic: Automatically enabled for free
Standard: Additional mitigation capabilities tuned specifically to Azure Virtual Network Resources

Question 101

What are Azure Network Security Groups?

Answer 101

Enables you to filter traffic to & from Azure resources w/in an Azure virtual network

• Like an internal firewall
• Can specify as many rules as you need w/in Azure Subscription limits

Question 102

What Azure Services would you use to Secure the perimeter layer to form a complete Network Security Solution?

Answer 102

• Azure DDoS protection (filter large scale attacks)

- Perimeter Azure Firewalls to ID & alert malicious attacks against the network

Question 103

What Azure Services would you use to Secure the network layer to form a complete Network Security Solution?

Answer 103

• Implement secure connectivity to on premises networks
• Restrict inbound internet access & limit outbound where appropriate
• Deny by default
• Limit communication between resources by segmenting network & configuring access controls

Question 104

What are some recommended Azure services to combine for added security?

Answer 104

• Network Security Groups & Azure Firewall

- Azure Application Gateway Web App Firewall & Azure Firewall

Question 105

What is Azure Active Directory?

Answer 105

Microsofts could based identity & access management service.
You control identity accounts, Microsoft makes service globally available
- Connecting on premises AD with Azure AD Microsoft monitors suspicious sign in attempts

Question 106

What services does Azure AD provide?

Answer 106

• Authentication
• Single Sign on
• Application Management
• Device management (Azure AD supports registration of devices)

Question 107

What is Azure AD connect

Answer 107

Synchronizes user identities between on premises AD & Azure AD

Question 108

What services provide Azure AD multifactor authentication?

Answer 108

Azure AD

Multifactor authentication for Office 365

Question 109

What is Azure Conditional Access?

Answer 109

Tool Azure AD uses to allow/deny access to resources based on signals (who, where, what device)

Question 110

What is Azure RBAC?

Answer 110

Controls access, built in or defined
- Applied to scope (resource/set of resources):
Management group, single subscription, single resource, resource group

Question 111

What is an Azure management group?

Answer 111

A collection of multiple subscriptions

Question 112

How is Azure RBAC enforced?

Answer 112

Thru Azure Resource Manager

application security must be handled by the application

Question 113

What does Azure Resource Lock do?

Answer 113

Prevents resources from being accidentally deleted or changed

Question 114

What are the levels of locking available for Azure Resource Lock?

Answer 114

CanNotDelete: Authorized people can still read/modify, no delete
Read only

Question 115

What would be a good Azure resource to combine with Azure Resource Lock to define a set of standard Azure resources that your organization requires?

Answer 115

Azure Blueprint

Question 116

What are Resource Tags in Azure?

Answer 116

Organizes resources, provide extra info (metadata)

- Azure Policy can be used to do this

Question 117

What does Azure Policy allow you to do?

Answer 117

• Enables you to define individual or groups of policies (known as initiatives)
• Evaluates resources & highlights what isn’t compliant with policies you have made
• Can also prevent noncompliant resources from being created
• In some cases, autoremediates noncompliant resources/configs (ie togs)
• Integrates into DevOps

Question 118

How do you create an Azure Policy?

Answer 118

1. Create policy definition
2. Assign the definition to resources (policy assignment = policy definition that takes place w/in specific scope)
3. Review evaluation results (compliant/non compliant)

Question 119

What is an Azure Policy Initiative?

Answer 119

Way of grouping related policies into one set

- Initiative definition contains all policy definitions (i.e enable monitoring in Azure Security Center

Question 120

What is Azure Blueprints?

Answer 120

Dfine a repeatable set of governance tools & standard Azure resources your organization requires
- With this, you can rapidly build & deploy new environments w/in compliance

Question 121

How do you implement an Azure Blueprint?

Answer 121

1. Create Azure Blueprint
2. Assign the Blueprint
3. Track Blueprint Assignments

Question 122

What are Azure Blueprint Artifacts?

Answer 122

Each component in the Blueprint

- Can/May not have parameters

Question 123

What is Cloud Adoption Framework for Azure?

Answer 123

Helps customers create & implement business & tech strategies needed to succeed in Cloud

Question 124

What stages are included in the Cloud Adoption Framework for Azure?

Answer 124

1. Define your strategy
2. Make a plan
3. Ready your organization
4. Adopt the cloud
5. Govern & manage your cloud environments

Question 125

What is TCO in relation to Azure Cloud Services?

Answer 125

Total Cost of Ownership

1. Define workloads
2. Adjust assumptions
3. View report

Question 126

What are Azure Management Groups?

Answer 126

organize subscriptions into containers called “management groups” and apply your governance conditions to the management groups

Question 127

What is an Azure Tenant?

Answer 127

Azure Active Directory entity that encompasses a whole organization. A tenant has one or more subscription and user.

Question 128

What is an Azure Resource Group?

Answer 128

A container that holds related resources for an Azure solution.
A resource group might contain storage, virtual machines, apps, dashboards, services, or almost anything you deal with in Azure.

Question 129

What are the three main types of test management artifacts in Azure Test Plans?

Answer 129

• TEST CASES validate individual parts of your code or app deployment. You can ensure your code works correctly, has no errors, and meets business and customer requirements.
• TEST SUITES group test cases into separate testing scenarios within a single test plan. Grouping test cases makes it easier to see which scenarios are complete.
• TEST PLANS group test suites and individual test cases together. Test plans include static test suites, requirement-based suites, and query-based suites.