Monitor and back up Azure resources Flashcards

1
Q

Describe ‘Azure Backup’

A

Provides backup solutions for all Azure-managed data assets.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Define Recovery Time Objective (RTO)

A

Target time within which a business process must be restored after a disaster occurs to avoid unacceptable consequences.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Define Recovery Point Objective (RPO)

A

The max time of acceptable data loss that is not detrimental to operations; Frequency at which backups should occur.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the four components of the Azure backup service?

A
  1. Workload integration layer - Backup Extension
  2. Access tiers - Data Plane
  3. Availability and Security - Data Plane
  4. Management Plane – Recovery Services vault/Backup vault and Backup center
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Where is the data backed up by Azure backup service stored?

A

Stores backed-up data in vaults.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Describe the functionality of the vaults Azure backup services stores backed up data?

A

An online-storage entity in Azure that’s used to hold data such as backup copies, recovery points, and backup policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are the two types of Azure backup service vaults?

A

Recovery Services vaults and Backup vaults.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the two backup methods Azure backup service offers?

A

Supports full backups and incremental backups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the four additional backup methods does Azure backup service offer only for SQL servers?

A

Differential (Incremental); Multiple backups per day; Selective disk backup; Transaction Log.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Describe the Multiple backups per day method Azure backup service offers for SQL servers

A

Enhanced backup policy to set the backup schedule to 4, 6, 8, 12, and 24 hours.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Describe the selective disk backup method Azure backup service offers for SQL servers

A

Enhanced backup policy; Selectively back up a subset of the data disks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Describe the Transaction Log backup method Azure backup service offers for SQL servers

A

Point-in-time restoration from 15 minutes up to a specific second.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Define the ‘Backup Extension/Workload integration layer’

A

Agent installed on the source and generates the backup.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How is the backup data transported/transferred?

A

Transferred to the data plane (Azure Backup managed storage) via secure Azure network connections.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Describe the ‘Access tier/Data plane’

A

Tiers where data are stored based on the type of type of backup.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are the 3 access tiers in the data plane that store backups from Azure backup service?

A
  1. Snapshot tier
  2. Vault-Standard tier
  3. Archive tier
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Describe the snapshot tier in the data plane of Azure backup service

A

Specific storage Azure file snapshots and Azure blob snapshots (including data disks and VMs).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What the the purpose of the snapshot tier in the data plane of Azure backup service?

A

Snapshot-tier restores are faster because they eliminate the wait time for snapshots to get copied to from the vault.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

How is the snapshot tier faster than the tiers that utilize the vault?

A

Data in this tier is retained in the customer’s subscription itself in a specified resource group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

The ensure redundancy, where is an extra copy of data stored in the snapshot tier located?

A

There’s a copy of the backup data in both the snapshot tier and the vault-standard tier.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Describe the ‘Vault-Standard tier - data plane’

A

Where backup data for all workloads supported by Azure Backup is stored;

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Define a ‘vault’

A

An online storage tier that allows you to store an isolated copy of backup data managed by Azure backup.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Describe the ‘Archive tier’

A

Storage tier for Long-Term Retention (LTR) backup data with retention needs typically defined by compliance rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

After data is stored, how does Azure ensure availability in the data plane?

A

Data is replicated to another failure domain based on a replication service chosen by the customer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

After data is stored, how does Azure ensure security in the data plane?

A

By encrypting it and implementing Azure role-based access control (Azure RBAC).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

How does Azure backup service provide protection against accidental deletion of a backup?

A

By using soft-delete operations; Deleted backup is stored for 14 days, free of charge.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

How can backups be managed to ensure they don’t take up too much space

A

Backup retention policies with backup data lifecycle management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

What is the logical assignment of a vault?

A

In the management plane because its used to orchestrate and manage backups with policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

What tool can you use to manage backups spanning multiple workload types, vaults, subscriptions, regions, and Azure Lighthouse tenants?

A

Backup center.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

What are the four backup services Microsoft Azure offers for VMs?

A
  1. Azure Backup
  2. Azure managed disks images
  3. Azure managed disks snapshots
  4. Azure Site Recovery
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Describe how Azure backup performs backups for VMs

A

Takes a snapshot of the VM and stores the data as recovery points in vaults.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

When resorting a VM from Azure backup, what are the restore methods available?

A

Restore the entire VM or specific files only.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Describe ‘Azure Site Recovery’

A

Protects your virtual machines from a major disaster scenario when a whole region experiences an outage due

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Describe ‘Azure managed disks - snapshot’

A

A read-only full copy of a managed disk that’s stored as a standard managed disk by default.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

How is a managed disk snapshot billed?

A

For the total amount of backup data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

Describe ‘Azure managed disks - image’

A

Captures a single image that contains all managed disks associated with a virtual machine, including both the operating system and data disks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

What are the two phases performed by the backup job/service when creating a VM snapshot?

A
  1. Snapshot of the VM data
  2. Transfer the snapshot to an Azure Recovery Services vault
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

What is the default recovery point objective Azure keeps snapshots for?

A

2 days.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

What is the most amount time the default retention value can be set to?

A

5 days.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

How are incremental backups stored in Azure backup or what are they stored as?

A

Stored as page blobs (Azure Disks).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Can a snapshot be recovered in-between phase 1 and phase 2 of the backup job/service?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Where is the backup data from phase 1 in the backup job/service stored?

A

Local Redundancy Service; in a specified resource group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

What is the purpose of the ‘Azure Recovery Services vault’

A

To store copies of data, or configuration information for virtual machines, workloads, servers, or workstations.

44
Q

What are the required steps to implement Azure backup?

A
  1. Create a Recovery Services vault
  2. Define backup policy options
  3. Backup VMs
45
Q

What are the two replication options to choose from when creating a recovery services vault?

A

Geo-redundant (GRS) is the default or Locally Redundancy (LRS).

46
Q

What is the purpose of a backup policy?

A

Specifies when to take the data snapshots, and how long to keep the snapshots.

47
Q

What do stored snapshots represent?

A

A recovery point of the data.

48
Q

What is required for the backup job/service to operate and perform phase 1 and 2?

A

Requires the Microsoft Azure Virtual Machine Agent to be present on your Azure virtual machine.

49
Q

Which Azure backup service can be used to backup physical servers, on-prem VMs, and AWS VMs?

A

Azure Site Recovery

50
Q

What’s the best backup method for a company’s production virtual machines?

A

Azure Backup

51
Q

Define ‘Azure Monitor’

A

Solution for collecting, analyzing, and responding to telemetry data from on-premises and cloud environments.

52
Q

What does monitoring a system consist of?

A

Collecting and analyzing data.

53
Q

What is the data collected by Azure Monitor used for?

A

Used to determine the performance, health, and availability of applications resources.

54
Q

What are the 4 categories of services Azure Monitor offers?

A
  1. Core
  2. Application
  3. Infrastructure
  4. Shared Capabilities
55
Q

What are the two types of data Azure monitor collects?

A
  1. Metrics
  2. Logs
56
Q

Describe ‘Metrics’

A

Numerical values that describe some aspect of a system (compute power/performance) at a particular point in time.

57
Q

Describe ‘Logs’

A

Data organized into records with different sets of properties for each type.

58
Q

What are the general sources Azure monitor can collect data from?

A

Apps; OS; Services/Resources/Dependencies; APIs.

59
Q

When does Azure Monitor begin collecting data on cloud resources?

A

As soon as you create your Azure subscription and add resources.

60
Q

Where are logs regarding the creation or modification of resources stored?

A

Stored in Azure Monitor activity logs.

61
Q

What are the 5 tiers of Azure Monitoring data?

A
  1. Application
  2. Guest OS
  3. Azure resource
  4. Azure subscription
  5. Azure tenant
62
Q

What monitoring data is stored in the Azure Monitor application tier?

A

Contains monitoring data about the performance and functionality of application code.

63
Q

What monitoring data is stored in the Azure Monitor Guest OS tier?

A

Data about the operating system on which your application is running.

64
Q

What monitoring data is stored in the Azure Monitor resource tier?

A

Data about the operation of any Azure based resource including consumption details.

65
Q

What monitoring data is stored in the Azure Monitor subscription tier?

A

Data about the operation and management of the Azure subscription as well as the health and operation of Azure itself.

66
Q

What monitoring data is stored in the Azure Monitor tenant tier?

A

Data about the operation of your tenant-level Azure services, such as Microsoft Entra ID.

67
Q

What is the purpose/function of Azure Monitor Activity Logs

A

Provides insight into subscription-level events that occur in Azure; Help determine “what, who, and when” for any write operation.

68
Q

What is the retention period for Azure Monitor activity logs?

A

90 days.

69
Q

What is the purpose of Azure Log Analytic(s)?

A

A tool in Azure Monitor to edit and run log queries for the data collected in Azure Monitor Logs.

70
Q

What is the first step in utilizing log analytics in Azure Monitor?

A

Create a workspace.

71
Q

What is unique to each workspace in log analytics?

A

Workspace ID and resource ID.

72
Q

What is the purpose of a workspace?

A

The configured destination for the sources to send data for analysis and storage.

73
Q

How is data stored in the log analytics workspace?

A

In tables

74
Q

Describe ‘Azure Network Watcher’

A

Monitor, diagnose, and manage resources in an Azure virtual network.

75
Q

Describe is the function of the ‘IP flow verify’ feature of Azure Network Watcher

A

To monitor, diagnose, and manage resources in an Azure virtual network.

76
Q

What is the purpose of ‘IP flow verify’

A

Helping to ensure correct application of your security rules in an NSG.

77
Q

If IP flow verify in Network Watcher fails, but the cause is not the NSG, what is the next course of action?

A

Explore other areas, such as firewall restrictions.

78
Q

Describe is the function of the ‘Next hop’ feature of Azure Network Watcher

A

View the next hop in a network route to analyzing routing configuration.

79
Q

Describe is the function of the ‘NSG diagnostics’ feature of Azure Network Watcher

A

Map IP traffic through a network security group.

80
Q

Describe is the function of the ‘Connection troubleshoot’ feature of Azure Network Watcher

A

Check a direct TCP or ICMP connection from a virtual machine, application gateway, or Azure Bastion host to a virtual machine.

81
Q

What is the purpose of the next hop feature of Azure Network Watcher?

A

Checks if traffic is being directed to the intended destination or next hop of if a route is broken.

82
Q

What is the purpose of the Network Watcher feature ‘topology’

A

Generates a visual diagram of the resources in a virtual network/infrastructure.

83
Q

What are the 4 components of an alert rule in Azure Monitor?

A
  1. Resource/target
  2. Condition - Metric; Activity; Log
  3. Action
  4. Alert Details
84
Q

What triggers an alert?

A

A specified threshold.

85
Q

Define a static metric alert

A

Static conditions and thresholds that you define.

86
Q

Define a dynamic metric alert

A

Use machine-learning tools that Azure provides to automatically improve the accuracy of the thresholds defined by the initial rule.

87
Q

What are the two parameters defined when configuring dynamic threshold alerts?

A
  1. look-back period
  2. number of violations
88
Q

How is a ‘dimension’ created?

A

Define one metric alert rule and have it applied to multiple related instances.

89
Q

What does a log alert rule consist of?

A

Log query (specified query); Time range/period; Frequency; Threshold.

90
Q

What are the two types of log alert search results?

A
  1. Number of records
  2. Metric measurement
91
Q

Describe the ‘number of records’ log search

A

Returns a single alert when the number of records in a search result reaches or exceeds the value for the number of records (threshold).

92
Q

Describe the ‘Metric measurement’ log search

A

Triggered when a range of criteria that defines a patter or trend is found.

93
Q

What are the four criteria used to define a metric measurement log search?

A
  1. Aggregate function
  2. Group field
  3. Interval
  4. Threshold
94
Q

How are users or admin notified of alerts in Azure Monitor?

A

Action groups containing actions and users to contact are notified.

95
Q

What type of data does Azure Monitor collect automatically?

A

Azure Monitor Metrics automatically monitors a predefined set of metrics for every Azure VM, and retains the data for 93 days with some exceptions.

96
Q

How is data collected for a guest OS, workload, or application installed on a VM?

A

Install Azure Monitor Agent and set up a data collection rule (DCR).

97
Q

Describe a ‘data collection rule (DCR)’

A

DCRs define what data to collect and where to send that data.

98
Q

Can Azure Monitor Logs store both metrics and event logs?

A

Yes.

99
Q

Can Azure Monitor Metrics store both metrics and event logs?

A

No; Azure Monitor Metrics can store only metrics data

100
Q

Describe ‘VM insights’

A

Azure Monitor feature useful for exploring overall VM usage and performance when you don’t yet know the metric of primary interest.

101
Q

What configuration is predefined in VM insights to automatically draw common Windows and Linux performance counters?

A

Preconfigured data collection rule (DCR).

102
Q

Describe a VM insight ‘workbook’

A

Workbooks show performance, connections, active ports, traffic, and other collected data from one or several VMs.

103
Q

What are the two main types of monitoring data that Azure Monitor collects for Azure VMs?

A

Metrics and logs.

104
Q

What do you need to do to enable recommended alert rules when you create a VM?

A

Select Enable recommended alert rules on the Monitoring tab.

105
Q

What’s a quick way to install the Azure Monitor Agent to collect guest OS metrics?

A

Select the Azure Monitor Agent when you enable VM insights.

106
Q

How can you view log data collected by a DCR?

A

By using a KQL query in your Log Analytics workspace.