Quick Flashcards
What’s Mean time to resolution (MTTR)?
used to measure the average time it takes to resolve incidents or issues
What’s mean time to recover?
quality and security metric. The taken time to restore an application after a failure.
What’s Time to detect?
amount of time it takes for a team to discover an issue, bug etc in a system, product etc after it occurs.
What’s time to mitigate (TTM)?
measures the time it takes to address and minimize the impact of an issue or incident after it has been detected.
What’s Time to remediate (TTR)?
measures the total time it takes to fully fix an issue or vulnerability from the moment it is detected until it is permanently resolved.
What’s Cycle time?
Used to look at the time taken to close a work item after work on it has started.
What’s Lead time?
measures the total time elapsed from creation of work item to their completion.
What’s Cumulative Flow Diagram?
shows the number of work items in different states over time. Can be used to monitor progress and identify bottlenecks.
What can you use Azure App Configuration?
manage application settings and feature flags
what does dotnet pack command do?
The dotnet pack command builds the project and creates a NuGet package in the bin\Release folder.
What does this command do “dotnet add package Newtonsoft.Json”
install the sample package
What is canary deployment?
its like a feature flag where you let canary users (a group of users that can deal better with the new change in code) use the new deployment. Just deploying it to a group of users.
What’s A/B Testing?
Perhaps you want to find out if a new feature makes it faster for users to complete a task.
You could have half the users working with the original version of the code and the other half working with the new code version.
You can then directly compare the outcome and decide if the feature is worth keeping.
How can you implement Canary releases?
by using a combination of feature toggles, traffic routing and deployment slots.
What are the 6 options to distribute traffic in Azure Traffic Manager?
- Priority: select this if u want to use a primary endpoint for all traffic and provide backups if primary is unavailable.
- Weighted: select if u want distributed traffic across a set of endpoints, evenly or according to weights (u define).
- Performance: select when u have endpoints in different geographic locations, and u want users to use the closest endpoint for the “lowest” network latency.
- Geographic: select when users are directed to specific endpoints (Azure, External or Nested) based on which geographic location their DNS query originates from.
- Multivalue: select when they can only have IPv4/IPv6 addresses as endpoints.
- Subnet: select the Subnet traffic-routing method to map sets of end-user IP address ranges to a specific endpoint within a Traffic Manager profile.
How can you control your canary release with Azure resources?
Use a combination of feature toggles, deployment slots and Traffic Manager.
- deploy the new feature to the new deployment slot
- enable the feature after verifying the deployment was successful
- set traffic to be distributed to a small percentage of the users (Traffic Manager)
Can use application insights to monitor the performance and stability of the app.
What’s dark launching?
like canary release but here you assess users’ responses to new features in your frontend rather than testing the performance of the backend.
Release a new feature to a small set of users (usually they not aware they being tested, therefore the name Dark launching)
What is ring based deployment?
it’s an extension of canary.
First deploy your changes to risk-tolerant customers and progressively roll out to a more extensive set of customers.
What access model are most Azure DevOps users added to?
Contributors security group and granted with Basic access level
What does the contributor security group provide?
by default read and write access to the primary DevOps capabilities, including repositories, work tracking, and pipelines.
What’s the difference between the access level Basic and Basic + Test?
Basic + Test is Basic permissions plus manage Azure Test Plans
Basic provides access to all features and tasks for using Azure Boards, Azure Repos, Azure Pipelines, and Azure Artifacts
what are the 3 types of workload identities Microsoft Entra ID supports?
- Application = Microsoft Entra Id object that is the global representation of a software
- Service principal = Microsoft Entra ID object that is a local representation of a software application.
- Managed identity = a special type of service principal that is associated with an Azure resource in order to allow that resource to authenticate and get authorized on its own. Managed identity offers additional benefit by eliminating the need to maintain credentials.
What does Azure DevOps secure files allow us to do?
securely store sensitive files such as code signing certificates, SSH keys or third party provisioning profiles within your Azure DevOps organization.
Can only be accessed by authorized users and pipelines.
They’re tightly integrated with Azure DevOps and provide a convenient way to consume sensitive files directly within CI/CD workflows.
What are the features Azure App Configuration provide?
A fully managed service that can be set up in minutes.
Flexible key representations and mappings.
Tagging with labels.
A point-in-time replay of settings.
Dedicated UI for feature flag management.
Comparison of two sets of configurations on custom-defined dimensions.
Enhanced security through Azure managed identities.
Complete data encryptions, at rest or in transit.
Native integration with popular frameworks.
What authentication is used when accessing Azure Key Vault?
RBAC or Key Vault access policy
RBAC when dealing with the management of the vaults.
Key Vault when attempting to access data stored in a vault.
What can you configure Azure Key Vault to do?
Archive to a storage account.
Stream to an Event Hubs.
Send the logs to Log Analytics.
What is a Desired State Configuration (DSC)?
a configuration management approach that you can use for configuration, deployment, and management of systems to ensure that an environment is maintained in a state that you specify ( defined state)
eg Windows PowerShell DSC
What’s Azure Automation State configuration DSC?
Azure cloud-based implementation of PowerShell DSC, available as part of Azure Automation.
