test11 Flashcards
To meet Fabrikam’s authentication requirements with a hybrid identity model, what is the minimum number of Microsoft Entra ID tenants and conditional access policies needed?
1 tenant, 2 policies
Fabrikam needs 1 Entra ID tenant for a hybrid identity model with corp.fabrikam.com. Two policies are required: one for MFA on Azure portal access and another to enforce corp.fabrikam.com UPN authentication.
For monitoring a tiered app in Azure Container Instances with synthetic transaction monitoring and minimal effort, what should you use?
Application Insights
Application Insights supports synthetic transaction monitoring to track traffic between app components and requires minimal development effort, unlike Network or Container Insights.
To monitor costs per project across 12 Azure subscriptions with minimal effort, which two components should you include?
Budgets and Resource Tags
Budgets set spending limits per project, and resource tags categorize resources by project, enabling cost tracking in Microsoft Cost Management with minimal administrative overhead.
To forward JSON logs from 100 Windows Server 2022 VMs to a Log Analytics workspace and transform them into a table, what should you use?
Azure Monitor Data Collection Endpoint and KQL Query
The Data Collection Endpoint forwards logs to the workspace, and a KQL Query transforms and stores them in a table, meeting both requirements efficiently.
To collect Windows security events from VMs across five subscriptions with different Entra ID tenants into one Log Analytics workspace using DCRs, what should you recommend?
Azure Lighthouse and Azure Monitor Agent
Azure Lighthouse enables cross-tenant log collection, and Azure Monitor Agent supports DCRs to define which events to collect, fulfilling both requirements.
To automate monthly uploads of web access logs from Azure Blob Storage to Azure SQL Database, what should you recommend?
Azure Data Factory
Azure Data Factory automates data movement and transformation workflows, making it ideal for monthly uploads from Blob Storage to SQL Database, unlike SSMA or AzCopy.
To make on-premises Oracle database data available to Azure Databricks for transformation and loading into Azure Synapse Analytics, which two services should you use?
Azure Data Lake Storage and Azure Data Factory
Data Lake Storage stores the data for Databricks access, and Data Factory transfers it from the on-premises Oracle database, enabling the transformation pipeline.
To enable asynchronous XML message communication between Azure cloud services for a sales app, what should you recommend?
Azure Queue Storage
Queue Storage supports asynchronous messaging with XML, ideal for decoupling order processing services, unlike Notification Hubs or Traffic Manager.
For storing 50 MB to 12 GB video files with certificate-based authentication and fast read performance at minimal cost, what storage option should you recommend?
Azure Blob Storage
Blob Storage is optimized for large unstructured data like videos, offering high read performance and cost efficiency, unlike Files or SQL Database.
To grant Entra ID group1 least privilege access to blobs in storage123, which two built-in roles should you assign?
Storage Blob Data Reader and Storage Blob Data Contributor
Reader provides read-only access, and Contributor allows read/write/delete, adhering to least privilege for specific blob access needs.
To ensure users are served by the same web server for every request behind an Azure Load Balancer, what distribution mode should you configure?
Session persistence based on Client IP
Client IP-based persistence ensures consistent routing to the same server, maintaining session state, unlike idle timeout or floating IP options.
For migrating a large on-premises database to Azure with minimal downtime, which strategy should you recommend?
Online migration using Azure Database Migration Service
Online migration with DMS replicates data continuously, minimizing downtime for mission-critical databases, unlike offline or backup methods.
For a financial services company needing encrypted, ACID-compliant, and scalable transactional data storage, which Azure service should you recommend?
Azure SQL Database
SQL Database supports ACID transactions, encryption at rest and in transit, and high availability/scalability, unlike Cosmos DB or Blob Storage.
For a data store with JSON items, SQL-like queries, and low-latency access, which service should you consider?
Azure Cosmos DB
Cosmos DB supports JSON storage, SQL API queries, and low-latency access, making it ideal over Blob Storage or Redis for this use case.
To recover accidentally deleted blobs within 14 days in an Azure storage account, which feature should you use?
Azure Soft Delete
Soft Delete retains deleted blobs for a set period (e.g., 14 days), enabling recovery, unlike Backup or Versioning which serve different purposes.
For massive unstructured data with hierarchical organization and POSIX ACLs, which storage technology is best?
Azure Data Lake Gen2
Data Lake Gen2 offers hierarchical namespaces and POSIX-style ACLs, ideal for big data needs, unlike Blob Storage or Files.
For a 6 TB on-premises file share growing by 3 TB yearly with transaction-heavy workload and no low-latency need, which storage tier should you deploy?
Transaction optimized
Transaction optimized tier supports high transaction workloads cost-effectively, unlike Cool or Premium tiers.
How does Azure SQL Database sharding split identically structured data across databases?
Shard Key
Shard keys enable horizontal partitioning by distributing data based on a key, unlike shard tables or sets.
To grant ten finance users access to blobs for April only, which security solution should you recommend?
Shared Access Signatures (SAS)
SAS provides temporary, permission-limited access (e.g., April), unlike conditional access or access keys which lack time specificity.
For complex Python data transformations in Azure Synapse Analytics, which component should the data engineering team use?
Apache Spark pool
Spark pool supports Python for complex transformations, unlike SQL pools or Data Explorer, which focus on querying.
What query language does Azure Data Explorer use for data visualizations?
KQL
KQL (Kusto Query Language) is optimized for fast data exploration and visualizations in Azure Data Explorer, unlike T-SQL.
Which metrics are crucial for designing a disaster recovery solution with minimal data loss and quick recovery?
RTO and RPO
RTO (Recovery Time Objective) and RPO (Recovery Point Objective) measure downtime and data loss, critical for DR, unlike RPS or CPU metrics.
Which Azure Site Recovery feature allows disaster recovery drills without affecting production?
Failover Test
Failover Test simulates recovery without impacting production, ensuring compliance and readiness, unlike Pilot Light or GRS.
For a high-availability SQL Server solution on Azure VMs without shared storage during patching, what should you recommend?
Always On Availability Groups
Always On Availability Groups ensure availability without shared storage, unlike FCI or backup options.
