Module 2: Architecture and Services

Question 1

One or more data centers in close proximity
Provide scale and flexibility to reduce customer latency
Preserve data residency with comprehensive compliance offerings

Answer 1

Regions

Question 2

Multiple buildings to provide protection against downtime due to data center failure
They have independent resources and are connected through private fibre optic networks

Answer 2

Availability zone

Question 3

There is at least 300 miles of separation between ___.
These offer automatic replication for some services, offering prioritised region recovery in the event of an outage. Updates are rolled out sequentially to minimise downtime.

Answer 3

Region Pairs

Question 4

Azure sovereign regions

Answer 4

Azure US and Azure China

Question 5

Every component in Azure is a ____. Including VMs, storage accounts, databases etc.

Answer 5

Resource

Question 6

A container to manage and aggregate resources in a single unit. Resources can only be in one _____ (parent-child relationship).

Answer 6

Resource group

Question 7

Billing boundary: generate seperate billing reports and invoices for each ________.
Access control boundary: manage and control access to the resources that users can provision with specific ______

Answer 7

Azure subscriptions

Question 8

• ______ can include multiple Azure subscriptions
• Subscriptions inherit conditions applied to the ______
• 10,000 ______ can be supported in a single directory
• A ______ tree can support up to six levels of depth

Answer 8

Management groups

Question 9

Cloud based server that supports either Windows or Linux environments. Useful for lift-and-shift migrations to the cloud. Complete operating system package including the host operating system.

Answer 9

Azure virtual machines

Question 10

Provides cloud based personal computer Windows ____ experience. Dedicated applications to connect and use or accessible from any modern browser. Multi-client login allows multiple users to log into the same machine at the same time.

Answer 10

Azure virtual desktop

Question 11

Lightweight, miniature environment well suited for running microservices. Designed for scalability and resiliency through orchestration. Applications and services are packaged in a _____ that sits on top of the host operating system. Multiple _______s can sit on one host OS.

Answer 11

Containers

Question 12

Event based code running your service and not the underlying infrastructure

Answer 12

Azure Functions

Question 13

Enables Azure resources to communicate with each other, the internet and on-prem networks. Uses public endpoints, private endpoints, virtual subnets, network peering. Can be either via a VPN or express route.

Answer 13

Azure virtual network VNet

Question 14

Data centre (1 or more)

Answer 14

Availability zone

Question 15

A discreet market of two or more regions that preserves data residency and compliance boundaries

Answer 15

Geography

Question 16

A logical grouping of hardware to avoid a single point of failure within an AZ

Answer 16

Fault domain

Question 17

Azure needs to apply updates to underlying hardware and software. No downtime because of the availability set

Answer 17

Update domain

Question 18

Object serverless storage. Store very large files and large amounts of unstructured files. Pay for what you store, unlimited storage, no-resizing volumes, filesystem protocols.

Answer 18

Azure blob storage

Question 19

is used to identify, hold, and export electronic information that might be used in an investigation.

Answer 19

Customer lockbox

Question 20

What manages Microsoft Intune?

Answer 20

Microsoft Endpoint Manager Admin Centre

Question 21

three principles of zero trust

Answer 21

verify explicitly, assume breach, least privilege

Question 22

key privacy principles of Microsoft (6)

Answer 22

customer control, transparency, security, strong legal protections for privacy, no content-based targeting, benefits to customers from any data collected

Question 23

Digitally signing a document requires a

Answer 23

private key and public key

Question 24

verifying the authenticity of a digitally signed doc requires

Answer 24

the public and private key of the signer