Part 2 Azure Flashcards

1
Q

Your Azure trial account expired last week. You are now unable to ** CREATE ADDITIONAL AZURE ACTIVE DIRECTORY (AZURE AD) USER ACCOUNTS **.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Start an existing Azure virtual machine.
Access your data stored in Azure.
Access the Azure portal.
A

Start an existing Azure virtual machine.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is required to use Azure Cost Management?

Answers:
A Dev/Test subscription.
Software Assurance.
An Enterprise Agreement (EA).
A pay-as-you-go subscription.
A

An Enterprise Agreement (EA).

A pay-as-you-go subscription.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

You have several virtual machines in an Azure subscription. You create a new subscription. ** THE VIRTUAL MACHINES CANNOT BE MOVED TO THE NEW SUBSCRIPTION **.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
The virtual machines can be moved to the new subscription.
The virtual machines can be moved to the new subscription only if they are all in the same resource group.
The virtual machines can be moved to the new subscription only if they run Windows Server 2016.

A

The virtual machines can be moved to the new subscription.

Moving between subscriptions can be handy if you originally created a VM in a personal subscription and now want to move it to your company’s subscription to continue your work. You do not need to start the VM in order to move it and it should continue to run during the move.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

You attempt to create several managed Microsoft SQL Server instances in an Azure environment and receive a message that you must increase your Azure Subscription Limits.

What should you do to increase the limits?

Answers:
Create a service health alert.
Upgrade your support plan.
Modify an Azure policy.
Create a new support request.
A

Create a new support request.

If you want to raise the limit or quota above the default limit, open an online customer support request at no charge.

Free Trial subscriptions aren’t eligible for limit or quota increases. If you have a Free Trial subscription, you can upgrade to a Pay-As-You-Go subscription.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

You deploy an Azure resource. The resource becomes unavailable for an extended period due to a service outage. Microsoft will * AUTOMATICALLY REFUND YOUR BANK ACCOUNT*.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Automatically migrate the resource to another subscription.
Automatically credit your account.
Send you a coupon code that you can redeem for Azure credits.

A

Automatically credit your account.

If we do not achieve and maintain the Service Levels for each Service as described in this SLA, then you may be eligible for a credit towards a portion of your monthly service fees.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Your company plans to migrate to Azure. The company has several departments. All the Azure resources used by each department will be managed by a department administrator.

You need to recommend an Azure deployment that provides the ability to segment Azure for the departments. The solution must minimize administrative effort.

What should you include in the recommendation?

Answers:
Multiple subscriptions.
Multiple Azure Active Directory (Azure AD) directories.
Multiple regions.
Multiple resource groups.
A

Multiple subscriptions.

A subscription is an agreement with Microsoft to use one or more Microsoft cloud platforms or services, for which charges accrue based on either a per-user license fee or on cloud-based resource consumption. Microsoft’s Software as a Service (SaaS)-based cloud offerings (Office 365, Intune/EMS, and Dynamics 365) charge per-user license fees. Microsoft’s Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) cloud offerings (Azure) charge based on cloud resource consumption.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Your company has an Azure subscription that contains the following unused resources:

20 user accounts in Azure Active Directory (Azure AD).

Five groups in Azure AD.

10 public IP addresses.

10 network interfaces.

You need to reduce the Azure costs for the company.

Solution: You remove the unused network interfaces.

Does this meet the goal?

Answers:
Yes.
No.

A

No

When creating a virtual machine using the Azure portal, the portal creates a network interface with default settings for you.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

When you need to delegate permissions to several Azure virtual machines simultaneously, you must deploy the Azure virtual machines ** TO THE SAME AZURE REGION **.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
By using the same Azure Resource Manager template.
To the same resource group.
To the same availability zone.
A

To the same resource group.

Role-based access control (RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to.

Here are some examples of what you can do with RBAC:

  • Allow one user to manage virtual machines in a subscription and another user to manage virtual networks.
  • Allow a DBA group to manage SQL databases in a subscription
  • Allow a user to manage all resources in a resource group, such as virtual machines, websites, and subnets
  • Allow an application to access all resources in a resource group
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

One of the benefits of Azure SQL Data Warehouse is that ** HIGH AVAILABILITY ** is built into the platform.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Automatic scaling.
Data compression.
Versioning.
A

No change is needed.

SQL Data Warehouse is supported by a broad ecosystem of partners, including data preparation, ingestion service and visualisation tool providers. Enjoy guaranteed 99.9 percent availability in 40 Azure regions worldwide.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

You need to identify the type of failure for which an Azure availability zone can be used to protect access to Azure services.

What should you identify?

Answers:
A physical server failure.
An Azure region failure.
A storage failure.
An Azure data center failure.
A

An Azure data center failure.

Availability Zones is a high-availability offering that protects your applications and data from datacenter failures. Availability Zones are unique physical locations within an Azure region. Each zone is made up of one or more datacenters equipped with independent power, cooling, and networking. To ensure resiliency, there’s a minimum of three separate zones in all enabled regions. The physical separation of Availability Zones within a region protects applications and data from datacenter failures.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Your Azure environment contains multiple Azure virtual machines.

You need to ensure that a virtual machine named VM1 is accessible from the Internet over HTTP.

Solution: You modify a DDoS protection plan.

Does this meet the goal?

Answers
Yes.
No.

A

No

You open a port, or create an endpoint, to a virtual machine (VM) in Azure by creating a network filter on a subnet or a VM network interface. You place these filters, which control both inbound and outbound traffic, on a network security group attached to the resource that receives the traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Your company plans to deploy several web servers and several database servers to Azure.

You need to recommend an Azure solution to limit the types of connections from the web servers to the database servers.

What should you include in the recommendation?

Answers
Network security groups (NSGs).
Azure Service Bus.
A local network gateway.
A route filter.
A

Network security groups (NSGs).

You can filter network traffic to and from Azure resources in an Azure virtual network with a network security group. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

** AUTHORIZATION ** is the process of verifying a user’s credentials.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers
No change is needed.
Authentication.
Federation.
Ticketing.
A

Authentication

Authentication is the process of determining whether someone or something is, in fact, who or what it declares itself to be.

Authorization is a security mechanism used to determine user/client privileges or access levels related to system resources, including computer programs, files, services, data and application features.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Azure Germany can be used by ** LEGAL RESIDENTS OF GERMANY ONLY **.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Only enterprises that are registered in Germany.
Only enterprises that purchase their azure licenses from a partner based in Germany.
Any user or enterprise that requires its data to reside in Germany.

A

Any user or enterprise that requires its data to reside in Germany.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

An organization that hosts its infrastructure ** IN A PRIVATE CLOUD ** can decommission its data center.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
In a hybrid cloud.
In the public cloud.
On a Hyper-V host.
A

In the public cloud.

Retired assets can then be decommissioned, reducing operational costs. Decommissioning a resource can be as simple as turning off the power to the asset and disposing of the asset responsibly.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

When you are implementing a software as a service (SaaS) solution, you are responsible for ** CONFIGURING HIGH AVAILABILITY **.

Instructions: Review the UPPER-CASED text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Defining scalability rules.
Installing the SaaS solution.
Configuring the SaaS solution.
A

Configuring the SaaS solution.

Software as a service (SaaS) allows users to connect to and use cloud-based apps over the Internet. Common examples are email, calendaring, and office tools (such as Microsoft Office 365).

You rent the use of an app for your organization, and your users connect to it over the Internet, usually with a web browser. All of the underlying infrastructure, middleware, app software, and app data are located in the service provider’s data center. The service provider manages the hardware and software, and with the appropriate service agreement, will ensure the availability and the security of the app and your data as well.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

You have an on-premises network that contains several servers.

You plan to migrate all the servers to Azure.

You need to recommend a solution to ensure that some of the servers are available if a single Azure data center goes offline for an extended period.

What should you include in the recommendation?

Answers:
Fault tolerance.
Elasticity.
Scalability.
Low latency.
A

Fault tolerance.

A Fault Tolerant system is extremely similar to HA, but goes one step further by guaranteeing zero downtime.

Disaster Recovery goes beyond FT or HA and consists of a complete plan to recover critical business systems and normal operations in the event of a catastrophic disaster like a major weather event (hurricane, flood, tornado, etc), a cyberattack, or any other cause of significant downtime.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

You have an Active Directory forest named contoso.com.

You install and configure Azure AD Connect to use password hash synchronization as the single sign-on (SSO) method. Staging mode is enabled.

You review the synchronization results and discover that the Synchronization Service Manager does not display any sync jobs.

You need to ensure that the synchronization completes successfully.

What should you do?

Answers:
Run Azure AD Connect and set the SSO method to Pass-through Authentication.
From Synchronization Service Manager, run a full import.
From Azure PowerShell, run Start-AdSyncSyncCycle ?PolicyType Initial.
Run Azure AD Connect and disable staging mode.

A

Run Azure AD Connect and disable staging mode.

Staging mode must be disabled. If the Azure AD Connect server is in staging mode, password hash synchronization is temporarily disabled.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

You have an Azure Active Directory (Azure AD) tenant.

All administrators must enter a verification code to access the Azure portal.

You need to ensure that the administrators can access the Azure portal only from your on-premises network.

What should you configure?

Answers:
An Azure AD Identity Protection user risk policy.
The multi-factor authentication service settings.
The default for all the roles in Azure AD Privileged Identity Management.
An Azure AD Identity Protection sign-in risk policy.

A

The multi-factor authentication service settings.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

You have two Azure Active Directory (Azure AD) tenants named contoso.com and fabrikam.com.

You have a Microsoft account that you use to sign in to both tenants.

You need to configure the default sign-in tenant for the Azure portal.

What should you do?

Answers
From Azure Cloud Shell, run Set-AzureRmSubscription.
From Azure Cloud Shell, run Set-AzureRmContext.
From the Azure portal, configure the portal settings.
From the Azure portal, change the directory.

A

From Azure Cloud Shell, run Set-AzureRmContext.

The Set-AzureRmContext cmdlet sets authentication information for cmdlets that you run in the current session. The context includes tenant, subscription, and environment information.

Example: PS C:>Set-AzureRmContext -SubscriptionId “xxxx-xxxx-xxxx-xxxx”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

You need to limit the amount of inbound traffic to all the Azure virtual networks.

What should you create?

Answers:
One network security group (NSG).
10 virtual network gateways.
10 Azure ExpressRoute circuits.
One Azure firewall.
A

One Azure firewall.

Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources.

You can centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Your company has an Azure Active Directory (Azure AD) tenant named contoso.com that is configured for hybrid coexistence with the on-premises Active Directory Domain.

The tenant contains the users shown in the following users.

User1: User Type - Member, Source - AzureAD, Sign-in - User1@contoso.com.

User2: User Type - Member, Source - Windows Server Active Directory, Sign-in - User2@contoso.com.

User3: User Type - Guest, Source - Multiple, Sign-in - User3@outlook.com.

User4: User Type - Guest, Source - Multiple, Sign-in - User4@gmail.com.

Whenever possible, you need to enable Azure Multi-Factor Authentication (MFA) for the users in contoso.com.

Which users should you enable for Azure MFA?

Answers:
User1 only.
User1, User2, and User3 only.
User1 and User2 only.
User1, User2, User3, and User4.
User2 only.
A

User1, User2, User3, and User4.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com.

The User administrator role is assigned to a user named Admin1.

An external partner has a Microsoft account that uses the user1@outlook.com sign in.

Admin1 attempts to invite the external partner to sign in to the Azure AD tenant and receives the following error message: ?Unable to invite user.

User1@outlook.com ? Generic authorization exception.?.

You need to ensure that Admin1 can invite the external partner to sign in to the Azure AD tenant.

What should you do?

Answers:
From the Roles and administrators blade, assign the Security administrator role to Admin1.
From the Organizational relationships blade, add an identity provider.
From the Custom domain names blade, add a custom domain.
From the Users blade, modify the External collaboration settings.

A

From the Users blade, modify the External collaboration settings.

External collaboration settings let you turn guest invitations on or off for different types of users in your organization. You can also delegate invitations to individual users by assigning roles that allow them to invite guests.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

You have an Azure DNS zone named adatum.com.

You need to delegate a subdomain named research.adatum.com to a different DNS server in Azure.

What should you do?

Answers:
Create an A record named *.research in the adatum.com zone.
Create a PTR record named research in the adatum.com zone.
Modify the SOA record of adatum.com.
Create an NS record named research in the adatum.com zone.

A

Create an NS record named research in the adatum.com zone.

You need to create a name server (NS) record for the zone.

The A Record points your hostname to an IP address. The record A specifies IP address (IPv4) for given host. This is one of the most frequently used records in the DNS Zones.

PTR records are used for the Reverse DNS (Domain Name System) lookup. Using the IP address you can get the associated domain/hostname. An A record should exist for every PTR record. The usage of a reverse DNS setup for a mail server is a good solution.

The SOA means Start Of Authority. The SOA record defines the beginning of the authority DNS zone and specifies the global parameters for the zone. The SOA record has the following structure: “Serial number”, “Primary name server (NS)”, “DNS admin e-mail”, “Refresh Rate”, “Retry Rate”, “Expire time” and “Default TTL”.

The NS records identify the name servers, responsible for your DNS zone. In order to have a valid DNS configuration, the NS records configured in the DNS zone must be exactly the same as these configured as name servers at your domain name provider.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Your company has a main office in London that contains 100 client computers.

Three years ago, you migrated to Azure Active Directory (Azure AD).

The company’s security policy states that all personal devices and corporate-owned devices must be registered or joined to Azure AD.

A remote user named User1 is unable to join a personal device to Azure AD from a home network.

You verify that other users can join their devices to Azure AD.

You need to ensure that User1 can join the device to Azure AD.

What should you do?

Answers:
From the Device settings blade, modify the Users may join devices to Azure AD setting.
From the Device settings blade, modify the Maximum number of devices per user setting.
Create a point-to-site VPN from the home network of User1 to Azure.
Assign the User administrator role to User1.

A

From the Device settings blade, modify the Maximum number of devices per user setting.

Maximum number of devices - This setting enables you to select the maximum number of devices that a user can have in Azure AD. If a user reaches this quota, they are not be able to add additional devices until one or more of the existing devices are removed. The device quota is counted for all devices that are either Azure AD joined or Azure AD registered today. The default value is 20.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Your company plans to request an architectural review of an Azure environment from Microsoft.

The company currently has a Basic support plan.

You need to recommend a new support plan for the company. The solution must minimize costs.

Which support plan should you recommend?

Answers:
Premier.
Developer.
Professional Direct.
Standard.
A

Premier

Architecture Support for Premier Plan: Customer-specific architectural support such as design reviews, performance tuning, configuration and implementation assistance delivered by Microsoft Azure technical specialists.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

You set the multi-factor authentication status for a user named admin1@contoso.com to Enabled.

Admin1 accesses the Azure portal by using a web browser.

Which additional security verifications can Admin1 use when accessing the Azure portal?

Answers:
A phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app.

An app password, a text message that contains a verification code, and a notification sent from the Microsoft Authenticator app.

An app password, a text message that contains a verification code, and a verification code sent from the Microsoft Authenticator app.

A phone call, an email message that contains a verification code, and a text message that contains an app password.

A

A phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

PaaS provides full control of the operating system.

Answers:
Yes
No

A

No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

PaaS provides the ability to scale the platform automatically.

Answers:
Yes
No

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

PaaS provides professional development services to continuously add features to custom applications.

Answers:
Yes
No

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Mark correct statements:

Answers:
Azure provides flexibility between capital expenditure (CapEx) and operational expenditure (OpEx).
If you create two Azure virtual machines that use the B2S size, each virtual machine will always generate the same monthly costs.
When an Azure virtual machine is stopped, you continue to pay storage costs associated to the virtual machine.

A

Azure provides flexibility between capital expenditure (CapEx) and operational expenditure (OpEx).
When an Azure virtual machine is stopped, you continue to pay storage costs associated to the virtual machine.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

Your company plans to migrate all its data and resources to Azure.

The company’s migration plan states that only platform as a service (PaaS) solutions must be used in Azure.

You need to deploy an Azure environment that supports the planned migration.

Solution: You create an Azure App Service and Azure Storage accounts.

Does this meet the goal?

Answers:
Yes.
No.

A

No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

Your company plans to migrate all its data and resources to Azure.

The company’s migration plan states that only platform as a service (PaaS) solutions must be used in Azure.

You need to deploy an Azure environment that supports the planned migration.

Solution: You create an Azure App Service and Azure virtual machines that have Microsoft SQL Server installed.

Does this meet the goal?

Answers:
Yes.
No.

A

No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Which cloud deployment solution is used for Azure virtual machines and Azure SQL databases?

Choose all that apply.

Answers:
Azure virtual machines: Infrastructure as a service (IaaS).
Azure virtual machines: Platform as a service (PaaS).
Azure virtual machines: Software as a service (SaaS).
Azure SQL databases: Infrastructure as a service (IaaS).
Azure SQL databases: Platform as a service (PaaS).
Azure SQL databases: Software as a service (SaaS).

A

Azure virtual machines: Infrastructure as a service (IaaS).

Azure SQL databases: Platform as a service (PaaS).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Choose all that apply.

Answers:
To achieve a hybrid cloud model, a company must always migrate from a private cloud model.
A company can extend the capacity of its internal network by using the public cloud.
In a public cloud model, only guest users at your company can access the resources in the cloud.

A

A company can extend the capacity of its internal network by using the public cloud.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

You plan to migrate several servers from an on-premises network to Azure.

You need to identify the primary benefit of using a public cloud service for the servers.

What should you identify?

Answers
The public cloud is owned by the public, NOT a private corporation.
The public cloud is a crowd-sourcing solution that provides corporations with the ability to enhance the cloud.
All public cloud resources can be freely accessed by every member of the public.
The public cloud is a shared entity whereby multiple corporations each use a portion of the resources in the cloud.

A

The public cloud is a shared entity whereby multiple corporations each use a portion of the resources in the cloud.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

You plan to deploy several Azure virtual machines.
You need to ensure that the services running on the virtual machines are available if a single data center fails.
Solution: You deploy the virtual machines to two or more availability zones.
Does this meet the goal?

Answers:
Yes
No

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

You plan to deploy several Azure virtual machines.
You need to ensure that the services running on the virtual machines are available if a single data center fails.
Solution: You deploy the virtual machines to two or more regions.
Does this meet the goal?

Answers:
Yes
No

A

No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

You have 1,000 virtual machines hosted on the Hyper-V hosts in a data center.

You plan to migrate all the virtual machines to an Azure pay-as-you-go subscription.

You need to identify which expenditure model to use for the planned Azure solution.

Which expenditure model should you identify?

Answers:
Operational.
Elastic.
Capital.
Scalable.
A

Operational

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

Match the Azure Cloud Services benefit to the correct description.

Choose all that apply.

Answers:
Disaster recovery: A cloud service that remains available after it occurs.
Disaster recovery: A cloud service that can be recovered after it occurs.
Disaster recovery: A cloud service that performs quickly when it increases.
Disaster recovery: A cloud service that can be accessed quickly to the Internet.
Fault tolerance: A cloud service that remains available after it occurs.
Fault tolerance: A cloud service that can be recovered after it occurs.
Fault tolerance: A cloud service that performs quickly when it increases.
Fault tolerance: A cloud service that can be accessed quickly to the Internet.

A

Disaster recovery: A cloud service that can be recovered after it occurs.
Fault tolerance: A cloud service that remains available after it occurs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Match the Azure Cloud Services benefit to the correct description.

Choose all that apply.

Answers
Low latency: A cloud service that remains available after it occurs.
Low latency: A cloud service that can be recovered after it occurs.
Low latency: A cloud service that performs quickly when it increases.
Low latency: A cloud service that can be accessed quickly to the Internet.
Dynamic scalability: A cloud service that remains available after it occurs.
Dynamic scalability: A cloud service that can be recovered after it occurs.
Dynamic scalability: A cloud service that performs quickly when it increases.
Dynamic scalability: A cloud service that can be accessed quickly to the Internet.

A

Low latency: A cloud service that can be accessed quickly to the Internet.
Dynamic scalability: A cloud service that performs quickly when it increases.

42
Q

A Standard support plan is included in an Azure free account.

Answers:
Yes
No

A

NO

you get Basic support

43
Q

A Premier support plan can only be purchased by companies that have an Enterprise Agreement(EA).

Answers:
Yes
No

A

Yes

44
Q

Support from MSDN forums is only provided to companies that have a pay-as-you-go subscription.

Answers:
Yes
No

A

No

45
Q

Your company has an Azure subscription that contains the following unused resources:
✑ 20 user accounts in Azure Active Directory (Azure AD)
✑ Five groups in Azure AD
✑ 10 public IP addresses
✑ 10 network interfaces
You need to reduce the Azure costs for the company.
Solution: You remove the unused public IP addresses.
Does this meet the goal?

Answers:
Yes
No

A

Yes

46
Q

Your company has an Azure subscription that contains the following unused resources:
✑ 20 user accounts in Azure Active Directory (Azure AD)
✑ Five groups in Azure AD
✑ 10 public IP addresses
✑ 10 network interfaces
You need to reduce the Azure costs for the company.
Solution: You remove the unused user accounts.
Does this meet the goal?

Answers:
Yes
No

A

No

As long as there’s no license assignment to those users then there’s no cost with those users.

47
Q

What is Monthly Uptime %

A

(Maximum Available Minutes – Downtime in minutes) / Maximum Available Minutes X 100

48
Q

By creating additional resource groups in an Azure subscription, additional costs are incurred.

Answers:
Yes
No

A

No

49
Q

By copying several gigabits of data to Azure from an on-premises network over a VPN, additional data transfer costs are incurred.

Answers:
Yes
No

A

No

50
Q

By copying several GB of data from Azure to an on-premises network over a VPN, additional data transfer costs are incurred.

Answers:
Yes
No

A

Yes

51
Q

A support plan solution that gives you best practice information, health status and notifications, and 24/7 access to billing information at the lowest possible cost is a ** STANDARD ** support plan.

Answers:
No change is needed
Developer
Basic
Premier
A

Basic

52
Q

You plan to deploy several Azure virtual machines.
You need to ensure that the services running on the virtual machines are available if a single data center fails.
Solution: You deploy virtual machines to two or more resource groups.
Does this meet the goal?

Answers:
Yes
No

A

No

53
Q

Your company has an Azure subscription that contains the following unused resources:
✑ 20 user accounts in Azure Active Directory (Azure AD)
✑ Five groups in Azure AD
✑ 10 public IP addresses
✑ 10 network interfaces
You need to reduce the Azure costs for the company.
Solution: You remove the unused groups.
Does this meet the goal?

Answers:
Yes
No

A

NO

The correct answer should be removing the 10 IP addresses.

54
Q

In which Azure support plans can you open a new support request?

Answers:
Premier and Professional Direct only
Premier, Professional Direct, and Standard only
Premier, Professional Direct, Standard, and Developer only
Premier, Professional Direct, Standard, Developer, and Basic

A

Premier, Professional Direct, Standard, Developer, and Basic

*

55
Q

You can create an Azure support request from support.microsoft.com.

Instructions: Review the text surrounded by *** to determine if it is correct. If it makes the statement correct, select “No change is needed.” If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
the Azure portal
the Knowledge Center
the Security & Compliance admin center
A

The Azure Portal

56
Q

What is guaranteed in an Azure Service Level Agreement (SLA)?

Answers:
Uptime
Feature availability
Bandwidth
Performance
A

Uptime

*

57
Q

An Azure service is available to all Azure customers when it is in ** PUBLIC PREVIEW **.

Instructions: Review the text surrounded by ***. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Private preview
Development
An Enterprise Agreement (EA) subscription
A

No change is needed.

58
Q

Your company plans to purchase Azure.
The company’s support policy states that the Azure environment must provide an option to access support engineers by phone or email.
You need to recommend which support plan meets the support policy requirement.
Solution: Recommend a Standard support plan.
Does this meet the goal?

Answers:
Yes
No

A

Yes

The Standard, Professional Direct, and Premier support plans have technical support for engineers via email and phone.

59
Q

Most Azure services are introduced in private preview before being introduced in public preview, and then in general availability.

Answers:
Yes
No

A

Yes

60
Q

Azure services in public preview can be managed only by using the Azure CLI

Answers:
Yes
No

A

No

61
Q

The cost of an Azure service in private preview decreases when the service becomes generally available.

Answers:
Yes
No

A

No

62
Q

Your company plans to purchase Azure.
The company’s support policy states that the Azure environment must provide an option to access support engineers by phone or email.
You need to recommend which support plan meets the support policy requirement.
Solution: Recommend a Professional Direct support plan.
Does this meet the goal?

Answers:
Yes
No

A

YES

The Basic support plan does not have any technical support for engineers.
The Developer support plan has only technical support for engineers via email.
The Standard, Professional Direct, and Premier support plans have technical support for engineers via email and phone.

63
Q

Your company has 10 departments.
The company plans to implement an Azure environment.
You need to ensure that each department can use a different payment option for the Azure services it consumes.
What should you create for each department?

Answers:
a reservation
a subscription
a resource group
a container instance
A

a subscription

64
Q

An Azure free account has a spending limit.

Answers:
Yes
No

A

Yes

65
Q

An Azure free account has a limit for the amount of data that can be uploaded to Azure.

Answers:
Yes
No

A

YES

Azure free account has a 5 GB blob storage limit and a 5 GB file storage limit.

66
Q

An Azure free account can contain an unlimited number of web apps.

Answers:
Yes
No

A

NO

10 web, mobile, or API apps with Azure App Service with 1 GB storage

67
Q

An Azure service in private preview is released to all Azure customers.

Answers:
Yes
No

A

No

68
Q

An Azure service in public preview is released to all Azure customers.

Answers:
Yes
No

A

Yes

69
Q

An Azure service in general availability is released to a subset of Azure customers.

Answers:
Yes
No

A

No

70
Q

A single Microsoft account can be used to manage multiple Azure subscriptions.

Answers:
Yes
No

A

Yes

71
Q

Two Azure subscriptions can be merged into a single subscription by creating a support request.

Answers:
Yes
No

A

No

72
Q

A company can store resources in multiple subscriptions.

Answers:
Yes
No

A

Yes

73
Q

The Service Level Agreement(SLA) guaranteed uptime for paid Azure services is at least 99.9 percent.

Answers:
Yes
No

A

Yes

74
Q

Companies can increase the Service Level Agreement(SLA) guaranteed uptime by adding Azure resources to multiple regions.

Answers:
Yes
No

A

Yes

75
Q

Companies can increase the Service Level Agreement(SLA) guaranteed uptime by purchasing multiple subscriptions.

Answers:
Yes
No

A

No

76
Q

Storing 1 TB of data in Azure Blob storage will always cost the same, regardless of the Azure region in which the data is located.

Answers:
Yes
No

A

No

77
Q

When you use a general-purpose v2 Azure Storage account, you are only charged for the amount of data that is stored. All read and write operations are free.

Answers:
Yes
No

A

No

78
Q

Transferring data between Azure Storage accounts in different Azure regions is free.

Answers:
Yes
No

A

No

79
Q

You plan to provision Infrastructure as a Service (IaaS) resources in Azure. Which resource is an example of IaaS?

Answers:
An Azure web app
An Azure virtual machine
An Azure logic app
An Azure SQL database
A

An Azure virtual machine

80
Q

A team of developers at your company plans to deploy, and then remove, 50 customized virtual machines each week. Thirty of the virtual machines run Windows Server 2016 and 20 of the virtual machines run Ubuntu Linux. You need to recommend which Azure service will minimize the administrative effort required to deploy and remove the virtual machines. What should you recommend?

Answers:
Azure Reserved Virtual Machines (VM) Instances
Azure virtual machine scale sets
Azure DevTest Labs
Microsoft Managed Desktop
A

Azure DevTest Labs

81
Q

You have an Azure subscription named Subscription1. You sign in to the Azure portal and create a resource group named RG1.
From Azure documentation, you have the following command that creates a virtual machine named VM1. az vm create –resource-group RG1 –name VM1 – image

UbuntuLTS –generate-ssh-keys -
You need to create VM1 in Subscription1 by using the command.
Solution: From the Azure portal, launch Azure Cloud Shell and select PowerShell. Run the command in Cloud Shell.
Does this meet the goal?

Answers:
Yes
No

A

Yes

82
Q

You have an Azure subscription named Subscription1. You sign in to the Azure portal and create a resource group named RG1.
From Azure documentation, you have the following command that creates a virtual machine named VM1. az vm create –resource-group RG1 –name VM1 – image

UbuntuLTS –generate-ssh-keys -
You need to create VM1 in Subscription1 by using the command.
Solution: From a computer that runs Windows 10, install Azure CLI. From PowerShell, sign in to Azure and then run the command.
Does this meet the goal?

Answers:
Yes
No

A

No

83
Q

You have an Azure subscription named Subscription1. You sign in to the Azure portal and create a resource group named RG1.
From Azure documentation, you have the following command that creates a virtual machine named VM1. az vm create –resource-group RG1 –name VM1 – image

UbuntuLTS –generate-ssh-keys -
You need to create VM1 in Subscription1 by using the command.
Solution: From a computer that runs Windows 10, install Azure CLI. From a command prompt, sign in to Azure and then run the command.
Does this meet the goal?

Answers:
Yes
No

A

No

84
Q

If Microsoft plans to end support for an Azure service that does NOT have a successor service, Microsoft will provide notification at least 12 months before.
Instructions: Review the underlined text. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
6 months
90 days
30 days
A

No change is needed

85
Q

Your company plans to deploy several custom applications to Azure. The applications will provide invoicing services to the customers of the company. Each application will have several prerequisite applications and services installed.
You need to recommend a cloud deployment solution for all the applications.
What should you recommend?

Answers:
Software as a Service (SaaS)
Platform as a Service (PaaS)
Infrastructure as a Service (laaS)

A

Infrastructure as a Service (laaS)

86
Q

Which service provides serverless computing in Azure?

Answers:
Azure Virtual Machines
Azure Functions
Azure storage account
Azure Container Instances
A

Azure Functions

87
Q

Which Azure service provides a set of version control tools to manage code?

Answers:
Azure Repos
Azure DevTest Labs
Azure Storage
Azure Cosmos DB
A

Azure Repos

88
Q

Which service provides network traffic filtering across multiple Azure subscriptions and virtual networks?

Answers:
Azure Firewall
an application security group
Azure DDoS protection
a network security group (NSG)
A

Azure Firewall

89
Q

The ** Microsoft Online Services Privacy Statement ** explains what data Microsoft processes, how Microsoft processes the data, and the purpose of processing the data.
Instructions: Review the text in **. If it makes the statement correct, select “No change is needed.” If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Microsoft Online Services Terms
Microsoft Online Service Level Agreement
Online Subscription Agreement for Microsoft Azure
A

No change is needed.

90
Q

Your company plans to migrate to Azure. The company has several departments. All the Azure resources used by each department will be managed by a department administrator.
What are two possible techniques to segment Azure for the departments? Each correct answer presents a complete solution.

Answers:
multiple subscriptions
multiple Azure Active Directory (Azure AD) directories
multiple regions
multiple resource groups
A

multiple subscriptions

multiple resource groups

91
Q

Which statement accurately describes the Modern Lifecycle Policy for Azure services?

Answers:
Microsoft provides mainstream support for service for five years.
Microsoft provides a minimum of 12 months’ notice before ending support for a service.
After a service is made generally available, Microsoft provides support for the service for a minimum of four years.
When a service is retired, you can purchase extended support for the service for up to five years.

A

Microsoft provides a minimum of 12 months’ notice before ending support for a service.

92
Q

From ** Azure Cloud Shell **, you can track your company’s regulatory standards and regulations, such as ISO 27001.
Instructions: Review the text in **. If it makes the statement correct, select “No change is needed.” If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
the Microsoft Cloud Partner Portal
Compliance Manager
the Trust Center
A

Compliance Manager

Had this question on the actual exam. Compliance Manager was not even on the list, so it should be Trust Center

93
Q

You can use ** Advisor recommendations ** in Azure to send email alerts when the cost of the current billing period for an Azure subscription exceeds a specified limit.

Instructions: Review the text in **. If it makes the statement correct, select “No change is needed.” If the statement is incorrect, select the answer choice that makes the statement correct.

Answers:
No change is needed.
Access control (IAM)
Budget alerts
Compliance
A

Budget alerts

Explanation:
Budget alerts notify you when spending, based on usage or cost, reaches or exceeds the amount defined in the alert condition of the budget. Cost Management
budgets are created using the Azure portal or the Azure Consumption API.

94
Q

You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers.

Subscription1 contains a resource group named Dev.

You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group.

Solution: On Dev, you assign the Logic App Contributor role to the Developers group.

Does this meet the goal?

Answers:
Yes.
No.

A

Yes

You can permit only specific users or groups to run specific operations, such as managing, editing, and viewing logic apps. To control their permissions, use Azure Role-Based Access Control (RBAC) to assign customized or built-in roles to members in your Azure subscription:

Logic App Contributor: Lets you manage logic apps, but you can’t change access to them.

Logic App Operator: Lets you read, enable, and disable logic apps, but you can’t edit or update them.

95
Q

You have an Azure subscription named Subscription1 that contains an Azure Log Analytics workspace named Workspace1.

You need to view the error events from a table named Event.

Which query should you run in Workspace1?

Answers:
Get-Event Event | where ($.EventType ?eq “error”).
Get-Event Event | where ($
.EventType == “error”).
Search in (Event) * | where EventType ?eq “error”.
Search in (Event) “error”.
Select *from Event where EventType == “error”.
Event | where EventType is “error”.

A

Search in (Event) “error”.

Table scoping: To search a term in a specific table, add in (table-name) just after the search operator:

Search in table Event: search in (Event) “error”| take 100

Search in multiple tables: search in (Event, SecurityEvent) “error”| take 100

96
Q

You have an Azure subscription named Subscription1. Subscription1 contains the resource groups in the following table.

Name: RG1,????????????????????Azure region: West Europe,????Policy: Policy1

Name: RG2,????????????????????Azure region: North Europe,???Policy: Policy2

Name: RG3,????????????????????Azure region: France Central,?Policy: Policy3

RG1 has a web app named WebApp1. WebApp1 is located in West Europe.

You move WebApp1 to RG2.

What is the effect of the move?

Answers:
The App Service plan for WebApp1 moves to North Europe. Policy2 applies to WebApp1.
The App Service plan for WebApp1 remains in West Europe. Policy2 applies to WebApp1.
The App Service plan for WebApp1 moves to North Europe. Policy1 applies to WebApp1.
The App Service plan for WebApp1 remains in West Europe. Policy1 applies to WebApp1.

A

The App Service plan for WebApp1 remains in West Europe. Policy2 applies to WebApp1.

You can move an app to another App Service plan, as long as the source plan and the target plan are in the same resource group and geographical region.

97
Q

You have an Azure subscription that contains a resource group named RG1. RG1 contains 100 virtual machines.

Your company has three cost centers named Manufacturing, Sales, and Finance.

You need to associate each virtual machine to a specific cost center.

What should you do?

Answers:
Configure locks for the virtual machine.
Add an extension to the virtual machines.
Assign tags to the virtual machines.
Modify the inventory settings of the virtual machine.

A

Assign tags to the virtual machines.

Requires specified tag values for cost center and product name. Uses built-in policies to apply and enforce required tags. You specify the required values for the tags.

98
Q

You have an Azure subscription named Subscription1. Subscription1 contains a resource group named RG1. RG1 contains resources that were deployed by using templates.

You need to view the date and time when the resources were created in RG1.

Solution: From the Subscriptions blade, you select the subscription, and then click Programmatic deployment.

Does this meet the goal?

Answers:
Yes.
No.

A

No

Use the Activity Log, to determine the what, who, and when for any write operations (PUT, POST, DELETE) taken on the resources in your subscription. You can also understand the status of the operation and other relevant properties.

99
Q

You need to move the blueprint files to Azure.

What should you do?

Answers:
Use Azure Storage Explorer to copy the files.
Use the Azure Import/Export service.
Generate a shared access signature (SAS). Map a drive, and then copy the files by using File Explorer.
Generate an access key. Map a drive, and then copy the files by using File Explorer.

A

Use Azure Storage Explorer to copy the files.

Azure Storage Explorer is a free tool from Microsoft that allows you to work with Azure Storage data on Windows, macOS, and Linux. You can use it to upload and download data from Azure blob storage.

100
Q

You have an Azure Active Directory (Azure AD) tenant that contains 5,000 user accounts.

You create a new user account named AdminUser1.

You need to assign the User administrator administrative role to AdminUser1.

What should you do from the user account properties?

Answers:
From the Directory role blade, modify the directory role.
From the Licenses blade, assign a new license.
From the Groups blade, invite the user account to a new group.

A

From the Directory role blade, modify the directory role.