Section Based - Describe Cloud Concepts (Dojo) Flashcards
In the Azure Shared Responsibility Model, whose responsibility is it to patch the operating system of an Azure App Service?
A. Neither Azure nor the customer
B. Both Azure and the customer
C. Azure
D. Customer
C. Azure
Explanation:
As you consider and evaluate public cloud services, it’s critical to understand the shared responsibility model and which security tasks are handled by the cloud provider, and which tasks are handled by you. The workload responsibilities vary depending on whether the workload is hosted on Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS), or in an on-premises datacenter
In an on-premises datacenter, you own the whole stack. As you move to the cloud some responsibilities transfer to Microsoft. The following diagram illustrates the areas of responsibility between you and Microsoft, according to the type of deployment of your stack.
For all cloud deployment types, you own your data and identities. You are responsible for protecting the security of your data and identities, on-premises resources, and the cloud components you control (which varies by service type).
Regardless of the type of deployment, the following responsibilities are always retained by you:
– Data
– Endpoint
– Account
– Access management
Platform-as-a-Service(PaaS) is a managed hosting environment. The cloud provider manages the virtual machines and networking resources, and the cloud tenant deploys their applications into the managed hosting environment. For example, Azure App Services provides a managed hosting environment where developers can upload their web applications, without having to worry about managing the underlying Virtual Machines and other resources with the latest security updates and OS patches
Azure manages OS patching on two levels, the physical servers and the guest virtual machines (VMs) that run the App Service resources. Both are updated monthly, which aligns with the monthly Patch Tuesday schedule. These updates are applied automatically, in a way that guarantees the high-availability SLA of Azure services.
Hence, the correct answer is Azure.
Customer and Both Azure and the customer is incorrect because Azure is responsible for the OS patches of the underlying virtual machine of an App Service. Take note that if you are using Infrastructure-as-a-Service such as Azure Virtual machines, the responsibilities of patching the guest operating system maintenance is up to you as the cloud tenant.
Neither Azure nor the customer is incorrect as this task falls under the responsibilities of Azure.
A company is migrating all its applications and data to Microsoft Azure. There is a strict requirement that the Azure environment must only be comprised of platform-as-a-service (PaaS) solutions to minimize the amount of administrative effort in managing the underlying resources.
Solution: Deploy the applications using the Azure App Service and migrate the data to Azure SQL databases.
Does this solution comply with the requirement?
A. No
B. Yes
B. Yes
Explanation:
Platform as a service (PaaS) is a complete development and deployment environment in the cloud, with resources that enable you to deliver everything from simple cloud-based apps to sophisticated, cloud-enabled enterprise applications. You purchase the resources you need from a cloud service provider on a pay-as-you-go basis and access them over a secure Internet connection.
Like IaaS, PaaS includes infrastructure – servers, storage, and networking – but also middleware, development tools, business intelligence (BI) services, database management systems, and more. PaaS is designed to support the complete web application life cycle: building, testing, deploying, managing, and updating.
PaaS allows you to avoid the expense and complexity of buying and managing software licenses, the underlying application infrastructure, and middleware, container orchestrators such as Kubernetes or the development tools, and other resources. You manage the applications and services that you develop, and the cloud service provider typically manages everything else.
In this scenario, the Azure App Service and Azure SQL Databases are both Platform as a Service (PaaS) solutions that allow the customers to deploy and run their custom applications quickly while minimizing the administrative effort in managing the underlying server resources. You can indeed deploy the applications using the Azure App Service and migrate the data to Azure SQL databases.
Hence, the correct answer is: Yes as the proposed solution is valid and complies with the requirement.
You have hundreds of servers hosted in your on-premises environment.
You plan to migrate some of the servers to an Azure pay-as-you-go-subscription.
Which expenditure model should you use?
A. Public cloud
B. Azure Reservations
C. Capital expenditure
D. Operating expenditure
D. Operating expenditure
Explanation:
In previous years, startup companies needed to acquire physical premises and infrastructure to start their business and begin trading. Large amounts of money were needed to get a new business up and running or to grow an existing company. A company would have to buy new datacenters or new servers in order to allow them to build out new services, which they could then deliver to their customers. With cloud services, that is no longer the case.
Today, organizations can sign up for a service from a cloud provider to get up and running. This enables the company to begin selling or providing services to their customers quickly, without the need for a significant investment into upfront costs.
Capital Expenditures or CapEx is defined as funds used allocated by organizations to obtain, upgrade, and maintain physical assets that are paid upfront, such as data centers. These expenditures are generally nonrecurring and result in the acquisition of permanent assets.
The Azure Reservations service is an example of a CapEx model.
Operating Expenditures or OpEx is defined as funds that are used by organizations for their day-to-day operations. Think of OpEx as your electricity and water bill. The more you use, the higher the charges.
Azure on-demand or pay-as-you-go pricing is an example of an OpEx model.
Hence, this correct answer is: Operating expenditure.
Azure Reservations is incorrect because this feature only helps you save money by committing to one-year or three-year plans for multiple products. Committing allows you to get a discount on the resources you use. Reservations can significantly reduce your resource costs up to 72% on pay-as-you-go prices.
Public cloud is incorrect because this cloud model primarily is owned by the cloud services provider (also known as a hosting provider) such as Microsoft Azure. It provides resources and services to multiple organizations and users, who connect to the cloud service via a secure network connection, typically over the Internet.
Capital expenditure is incorrect because this expenditure model is an upfront spending of money on physical infrastructure.
Your company plans on migrating its application named TDojoApp1 to Azure.
TDojoApp1 has a high usage during the first and third weeks of the month and low usage during the 2nd and 4th weeks.
Which benefit of Azure Cloud Services supports cost management for this type of usage pattern?
A. Elasticity
B. Load balancing
C. High availability
D. Fault tolerance
A. Elasticity
Explanation:
Elasticity refers to the ability to automatically or dynamically increase or decrease resources as needed. Elastic resources match the current needs, and resources are added or removed automatically to meet future needs when it’s needed (and from the most advantageous geographic location). A distinction between scalability and elasticity is that elasticity is done automatically.
With cloud elasticity, a company avoids paying for unused capacity or idle resources and doesn’t have to worry about investing in the purchase or maintenance of additional resources and equipment.
Hence, the correct answer is: Elasticity.
Fault Tolerance is incorrect because this refers to the ability to remain up and running even in the event of a component (or service) no longer functioning. Typically, redundancy is built into cloud services architecture, so if one component fails, a backup component takes its place. This type of service is said to be tolerant of faults.
High Availability is incorrect because this refers to the ability to keep services up and running for long periods of time, with very little downtime, depending on the service in question.
Load balancing is incorrect because this refers to evenly distributing load (incoming network traffic) across a group of backend resources or servers.
What is the customer responsible for when using a software as a service (SaaS) solution?
A. Ensuring high availability of its applications.
B. Installing its custom applications
C. Configuring and using the provided cloud-based application
D. Ensuring the scalability of its cloud-based applications
C. Configuring and using the provided cloud-based application
Explanation:
Software as a service (SaaS) allows users to connect to and use cloud-based apps over the Internet. Common examples are email, calendaring, and office tools (such as Microsoft Office 365).
SaaS provides a complete software solution that you purchase on a pay-as-you-go basis from a cloud service provider. You rent the use of an app for your organization, and your users connect to it over the Internet, usually with a web browser. All of the underlying infrastructure, middleware, app software, and app data are located in the service provider’s data center. The service provider manages the hardware and software, and with the appropriate service agreement, will ensure the availability and the security of the app and your data as well. SaaS allows your organization to get quickly up and running with an app at minimal upfront cost.
If you’ve used a web-based email service such as Outlook, Hotmail, or Yahoo! Mail, then you’ve already used a form of SaaS. With these services, you log into your account over the Internet, often from a web browser. The email software is located on the service provider’s network, and your messages are stored there as well. You can access your email and stored messages from a web browser on any computer or Internet-connected device.
The previous examples are free services for personal use. For organizational use, you can rent productivity apps, such as email, collaboration, and calendaring, and sophisticated business applications such as customer relationship management (CRM), enterprise resource planning (ERP), and document management. You pay for the use of these apps by subscription or according to the level of use.
In this scenario, the customer is responsible for doing the initial configuration and using the cloud-based application provided by the software as a service (SaaS) solution.
Hence, the correct answer is: Configuring and using the provided cloud-based application.
Ensuring high availability of its applications is incorrect because the original statement implies that you have access to the underlying resources of the SaaS to be able to ensure high availability. Remember that it is the cloud provider’s responsibility to ensure high availability and scalability of the SaaS solution, not the customer.
Installing its custom applications is incorrect because in SaaS, the cloud provider already offers a complete software that is ready to be used by the customer. You can only install your custom applications if you are using either an IaaS or PaaS solution.
Ensuring the scalability of its cloud-based applications is incorrect because the customer doesn’t have access to the underlying resources of the cloud-based applications.
A company is planning to deploy its suite of enterprise applications to Microsoft Azure, where each application has several dependencies and subcomponents. The company must also control and manage the patching activities of the underlying operating system of the servers.
What type of cloud deployment solution should you recommend?
A. Software as a Service (SaaS)
B. Platform as a Service (PaaS)
C. Functions as a service (FaaS)
D. Infrastructure as a Service (laaS)
D. Infrastructure as a Service (laaS)
Explanation:
Infrastructure as a service (IaaS) is an instant computing infrastructure, provisioned and managed over the internet. It’s one of the types of cloud services, along with software as a service (SaaS), platform as a service (PaaS), and serverless.
IaaS quickly scales up and down with demand, letting you pay only for what you use. It helps you avoid the expense and complexity of buying and managing your own physical servers and other data center infrastructure. Each resource is offered as a separate service component, and you only need to rent a particular one for as long as you need it.
A cloud computing service provider, such as Azure, manages the infrastructure while you purchase, install, configure, and manage your own software — operating systems, middleware, and applications.
You can also use Azure Virtual Machines, which is an Infrastructure as a Service (IaaS), to host the suite of enterprise applications and manage the patching activities of the underlying operating system of the servers.
Therefore, the correct answer is: Infrastructure as a Service (laaS).
Platform as a Service (PaaS) is incorrect because this is a type of cloud service that allows you to focus on developing your applications and services by letting the cloud service provider handle the administrative tasks of the underlying application infrastructure. It doesn’t allow the customers to control and manage the patching activities of the underlying operating system of the servers.
Software as a Service (SaaS) is incorrect because this cloud service type just allows customers to connect to and use its cloud-based apps over the Internet and not deploy their custom applications. Just like PaaS, it doesn’t allow the customers to control and manage the patching activities of the underlying operating system of the servers that you use.
Function as a Service (FaaS) is incorrect because this is simply an event-driven serverless computing platform. The underlying servers are abstracted and not accessible to the end user.
An organization is planning to migrate all of its servers and data to Azure.
You need to recommend a solution to only use Software-as-a-Service Azure products that will support the planned migration.
Solution: Deploy Azure virtual machines and Azure SQL Database.
Does this meet the goal?
Yes No
No
Explanation:
Infrastructure as a service (IaaS) is an instant computing infrastructure, provisioned, and managed over the Internet. It’s one of the types of cloud services, along with software as a service (SaaS), platform as a service (PaaS), and serverless.
IaaS quickly scales up and down with demand, letting you pay only for what you use. It helps you avoid the expense and complexity of buying and managing your own physical servers and other datacenter infrastructure. Each resource is offered as a separate service component, and you only need to rent a particular one for as long as you need it.
Platform as a service (PaaS) is a complete development and deployment environment in the cloud, with resources that enable you to deliver everything from simple cloud-based apps to sophisticated, cloud-enabled enterprise applications. You purchase the resources you need from a cloud service provider on a pay-as-you-go basis and access them over a secure Internet connection.
Like IaaS, PaaS includes infrastructure—servers, storage, and networking—but also middleware, development tools, business intelligence (BI) services, database management systems, and more. PaaS is designed to support the complete web application lifecycle: building, testing, deploying, managing, and updating.
Azure SQL Database is a fully managed platform as a service (PaaS) database engine that handles most of the database management functions such as upgrading, patching, backups, and monitoring without user involvement.
Azure Virtual Machines (VM) is an infrastructure as a service (IaaS) service that gives you the flexibility of virtualization without having to buy and maintain the physical hardware that runs it. However, you still need to maintain the VM by performing tasks, such as configuring, patching, and installing the software that runs on it.
Therefore, the correct answer is: No.
TutorialsDojo is planning to migrate its application servers and database servers hosted on their on-premises datacenter hosted in Manila to Azure.
What is the primary benefit of using the public cloud for its servers?
A. Public cloud is a shared entity operated by a third-party cloud service provider that various corporations can use.
B. Public cloud is a free shared entity that is crowdfunded by the public and is accessible by everyone.
C. Public cloud is owned by the public and not a private organization or corporation.
D. Public cloud is used exclusively by a single business or organization.
A. Public cloud is a shared entity operated by a third-party cloud service provider that various corporations can use.
Explanation:
Public clouds are owned and operated by third-party cloud service providers, which deliver their computing resources, like servers and storage, over the Internet. Microsoft Azure is an example of a public cloud. With a public cloud, all hardware, software, and other supporting infrastructure is owned and managed by the cloud provider. You access these services and manage your account using a web browser.
A private cloud refers to cloud computing resources used exclusively by a single business or organization. A private cloud can be physically located on the company’s on-site datacenter. Some companies also pay third-party service providers to host their private cloud. A private cloud is one in which the services and infrastructure are maintained on a private network.
In a private cloud, you create a cloud environment in your own datacenter and provide self-service access to compute resources to users in your organization. This offers a simulation of a public cloud to your users, but you remain completely responsible for the purchase and maintenance of the hardware and software services you provide.
Hybrid clouds combine public and private clouds, bound together by technology that allows data and applications to be shared between them. By allowing data and applications to move between private and public clouds, a hybrid cloud gives your business greater flexibility, more deployment options, and helps optimize your existing infrastructure, security, and compliance.
Hence, the correct answer is: Public cloud is a shared entity operated by a third-party cloud service provider that various corporations can use.
The option that says: Public cloud is used exclusively by a single business or organization is incorrect because this is just one of the characteristics of a private cloud and not a benefit of a public cloud.
The option that says: Public cloud is a free shared entity that is crowdfunded by the public and is accessible by everyone is incorrect. Although a public cloud is a shared entity, customers still need to pay for the usage of their cloud resources. Moreover, a public cloud is not crowdfunded by the public but is operated by a third-party cloud service provider.
The option that says: Public cloud is owned by the public and not a private corporation is incorrect because the public cloud is owned by a cloud services provider such as Microsoft.
A company is migrating all its applications and data to Microsoft Azure. There is a strict requirement that the Azure environment must only be comprised of platform-as-a-service (PaaS) solutions to minimize the amount of administrative effort in managing the underlying resources.
Solution: Deploy the applications using Azure Virtual Machines and Azure App Service.
Does this solution comply with the requirement?
A. No
B. Yes
A. No
Explanation:
Platform as a service (PaaS) is a complete development and deployment environment in the cloud, with resources that enable you to deliver everything from simple cloud-based apps to sophisticated, cloud-enabled enterprise applications. You purchase the resources you need from a cloud service provider on a pay-as-you-go basis and access them over a secure Internet connection.
Like IaaS, PaaS includes infrastructure – servers, storage, and networking – but also middleware, development tools, business intelligence (BI) services, database management systems, and more. PaaS is designed to support the complete web application life cycle: building, testing, deploying, managing, and updating.
PaaS allows you to avoid the expense and complexity of buying and managing software licenses, the underlying application infrastructure, and middleware, container orchestrators such as Kubernetes or the development tools, and other resources. You manage the applications and services that you develop, and the cloud service provider typically manages everything else.
In this scenario, the Azure App Service is a Platform as a Service (PaaS) solution while the Azure Virtual Machine is an Infrastructure as a Service(IaaS) solution. Take note that the scenario says that the Azure environment must only be comprised of platform-as-a-service (PaaS) solutions to minimize the amount of administrative effort in managing the underlying resources. Therefore, the proposed solution is invalid.
Hence, the correct answer is: No as it does not comply with the aforementioned requirement.
