ExamGecko
Search Search Login
Home Home / Microsoft / AZ-104

Microsoft AZ-104 Practice Test - Questions Answers, Page 24

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT You need to the appropriate sizes for the Azure virtual for Server2. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
DRAG DROP You need to prepare the environment to ensure that the web administrators can deploy the web apps as quickly as possible. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Answer:
HOTSPOT You need to implement Role1. Which command should you run before you create Role1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev. You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group. Solution: On Dev, you assign the Contributor role to the Developers group. Does this meet the goal?
You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?
Note: This question is part of a series of questions that present the same scenario. Each question in theseries contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft Entra tenant named contoso.com. You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users. Solution; From Microsoft Entra ID in the Azure portal, you use the Bulk invite users' operation. Does this meet the goal?
You have an Azure subscription that contains the resources shown in the following table. You need to assign User1 the Storage File Data SMB Share Contributor role for share1. What should you do first?
You have an Azure App Service app named App1 that contains two running instances. You have an auto scale rule configured as shown in the following exhibit For the instance limits stale condition setting, you set Maximum to 5. During a 30-minute period. Appl uses 60 percent of the available memory. What is the maximum number of instances tor Appl during the 30-minute period:
You need to identify which storage account to use for the flow logging of IP traffic from VM5. The solution must meet the retention requirements. Which storage account should you identify?
HOTSPOT You need to create storage5. The solution must support the planned changes. Which type of storage account should you use, and which account should you configure as the destination storage account? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Question 231

Report
Export
Collapse

You have a deployment template named Template1 that is used to deploy 10 Azure web apps.

You need to identify what to deploy before you deploy Template1. The solution must minimize Azure costs.

What should you identify?

A.
10 App Service plans
A.
10 App Service plans
Answers
B.
one Azure Traffic Manager
B.
one Azure Traffic Manager
Answers
C.
five Azure Application Gateways
C.
five Azure Application Gateways
Answers
D.
one App Service plan
D.
one App Service plan
Answers
E.
one Azure Application Gateway
E.
one Azure Application Gateway
Answers
Suggested answer: D

Explanation:

You create Azure web apps in an App Service plan.

Reference:

https://docs.microsoft.com/en-us/azure/app-service/overview-hosting-plans

Question 232

Report
Export
Collapse

You have an Azure subscription that contains a virtual machine named VM1. VM1 hosts a line-ofbusiness application that is available 24 hours a day. VM1 has one network interface and one managed disk. VM1 uses the D4s v3 size.

You plan to make the following changes to VM1:

Change the size to D8s v3.

Add a 500-GB managed disk.

Add the Puppet Agent extension.

Attach an additional network interface.

Which change will cause downtime for VM1?

A.
Add a 500-GB managed disk.
A.
Add a 500-GB managed disk.
Answers
B.
Attach an additional network interface.
B.
Attach an additional network interface.
Answers
C.
Add the Puppet Agent extension.
C.
Add the Puppet Agent extension.
Answers
D.
Change the size to D8s v3.
D.
Change the size to D8s v3.
Answers
Suggested answer: D

Explanation:

While resizing the VM it must be in a stopped state.

Reference: https://azure.microsoft.com/en-us/blog/resize-virtual-machines/

Question 233

Report
Export
Collapse

You have an Azure subscription that contains 100 virtual machines.

You regularly create and delete virtual machines.

You need to identify unused disks that can be deleted.

What should you do?

A.
From Azure Advisor, modify the Advisor configuration.
A.
From Azure Advisor, modify the Advisor configuration.
Answers
B.
From Azure Cost Management view Cost Analysis.
B.
From Azure Cost Management view Cost Analysis.
Answers
C.
From Azure Cost Management view Advisor Recommendations.
C.
From Azure Cost Management view Advisor Recommendations.
Answers
D.
From Microsoft Azure Storage Explorer, view the Account Management properties.
D.
From Microsoft Azure Storage Explorer, view the Account Management properties.
Answers
Suggested answer: D

Question 234

Report
Export
Collapse

You plan to create the Azure web apps shown in the following table.

What is the minimum number of App Service plans you should create for the web apps?

A.
1
A.
1
Answers
B.
2
B.
2
Answers
C.
3
C.
3
Answers
D.
4
D.
4
Answers
Suggested answer: A

Explanation:

.NET Core -> window/linux ASP .NET -> window PHP -> window/linux Ruby ->Linux

Question 235

Report
Export
Collapse

You have two Azure Active Directory (Azure AD) tenants named contoso.com and fabrikam.com.

You have a Microsoft account that you use to sign in to both tenants.

You need to configure the default sign-in tenant for the Azure portal.

What should you do?

A.
From the Azure portal, configure the portal settings.
A.
From the Azure portal, configure the portal settings.
Answers
B.
From the Azure portal, change the directory.
B.
From the Azure portal, change the directory.
Answers
C.
From Azure Cloud Shell, run Set-AzureRmContext.
C.
From Azure Cloud Shell, run Set-AzureRmContext.
Answers
D.
From Azure Cloud Shell, run Set-AzureRmSubscription.
D.
From Azure Cloud Shell, run Set-AzureRmSubscription.
Answers
Suggested answer: B

Explanation:

The Set-AzureRmContext cmdlet sets authentication information for cmdlets that you run in the current session. The context includes tenant, subscription, and environment information.

Reference:

https://docs.microsoft.com/en-us/powershell/module/azurerm.profile/set-azurermcontext

Question 236

Report
Export
Collapse

You have two Azure Active Directory (Azure AD) tenants named contoso.com and fabrikam.com.

You have a Microsoft account that you use to sign in to both tenants.

You need to configure the default sign-in tenant for the Azure portal.

What should you do?

A.
From the Azure portal, change the directory.
A.
From the Azure portal, change the directory.
Answers
B.
From Azure Cloud Shell, run Set-AzContext.
B.
From Azure Cloud Shell, run Set-AzContext.
Answers
C.
From the Azure portal, configure the portal settings.
C.
From the Azure portal, configure the portal settings.
Answers
D.
From Azure Cloud Shell, run Select- AzSubscription.
D.
From Azure Cloud Shell, run Select- AzSubscription.
Answers
Suggested answer: B

Question 237

Report
Export
Collapse

You have an Azure subscription named Subscription1 that contains an Azure virtual network named

VM1. VM1 is in a resource group named RG1.

VM1 runs services that will be used to deploy resources to RG1.

You need to ensure that a service running on VM1 can manage the resources in RG1 by using the identity of VM1.

What should you do first?

A.
From the Azure portal modify the Access control (1AM) settings of VM1.
A.
From the Azure portal modify the Access control (1AM) settings of VM1.
Answers
B.
From the Azure portal, modify the Policies settings of RG1.
B.
From the Azure portal, modify the Policies settings of RG1.
Answers
C.
From the Azure portal, modify the value of the Managed Service Identity option for VM1.
C.
From the Azure portal, modify the value of the Managed Service Identity option for VM1.
Answers
D.
From the Azure portal, modify the Access control (IAM) settings of RG1.
D.
From the Azure portal, modify the Access control (IAM) settings of RG1.
Answers
Suggested answer: C

Explanation:

A managed identity from Azure Active Directory allows your app to easily access other AAD protected resources such as Azure Key Vault. The identity is managed by the Azure platform and does not require you to provision or rotate any secrets.

User assigned managed identities can be used on Virtual Machines and Virtual Machine Scale Sets.

Reference:

https://docs.microsoft.com/en-us/azure/app-service/app-service-managed-service-identity

Question 238

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that contains three global administrators named Admin1, Admin2, and Admin3.

The tenant is associated to an Azure subscription. Access control for the subscription is configured as shown in the Access control exhibit. (Click the Exhibit tab.)

You sign in to the Azure portal as Admin1 and configure the tenant as shown in the Tenant exhibit. (Click the Exhibit tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Question 238
Correct answer: Question 238

Explanation:

They are all Global admins so they can all modify user permission. i.e add self as owner etc.

You can be GA in one of the subscription, it doesn't mean that you can create the resources in all subscription. As a Global Administrator in Azure Active Directory (Azure AD), you might not have access to all subscriptions and management groups in your directory. Azure AD and Azure resources are secured independently from one another. That is, Azure AD role assignments do not grant access to Azure resources, and Azure role assignments do not grant access to Azure AD.

However, if you are a Global Administrator in Azure AD, you can assign yourself access to all Azure subscriptions and management groups in your directory

Reference:

https://docs.microsoft.com/en-gb/azure/role-based-access-control/elevate-access-global-admin

Question 239

Report
Export
Collapse

HOTSPOT

You have an Azure subscription that contains the Azure virtual machines shown in the following table.

You configure the network interfaces of the virtual machines to use the settings shown in the following table

From the settings of VNET1, you configure the DNS servers shown in the following exhibit.

The virtual machines can successfully connect to the DNS server that has an IP address of 192.168.10.15 and the DNS server that has an IP address of 193.77.134.10.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.


Question 239
Correct answer: Question 239

Explanation:

Box 1: Yes

You can specify DNS server IP addresses in the VNet settings. The setting is applied as the default

DNS server(s) for all VMs in the VNet.

Box 2: No

You can set DNS servers per VM or cloud service to override the default network settings.

Box 3: Yes

You can set DNS servers per VM or cloud service to override the default network settings.

Reference:

https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-faq#name-resolution-dns

Question 240

Report
Export
Collapse

You have an Azure virtual machine named VM1.

The network interface for VM1 is configured as shown in the exhibit. (Click the Exhibit tab.)

You deploy a web server on VM1, and then create a secure website that is accessible by using the HTTPS protocol. VM1 is used as a web server only.

You need to ensure that users can connect to the website from the internet.

What should you do?

A.
Create a new inbound rule that allows TCP protocol 443 and configure the protocol to have a priority of 501.
A.
Create a new inbound rule that allows TCP protocol 443 and configure the protocol to have a priority of 501.
Answers
B.
For Rule5, change the Action to Allow and change the priority to 401.
B.
For Rule5, change the Action to Allow and change the priority to 401.
Answers
C.
Delete Rule1.
C.
Delete Rule1.
Answers
D.
Modify the protocol of Rule4.
D.
Modify the protocol of Rule4.
Answers
Suggested answer: B

Explanation:

Rule 2 is blocking HTTPS access (port 443) and has a priority of 500.

Changing Rule 5 (ports 50-5000) and giving it a lower priority number will allow access on port 443.

Note: Rules are processed in priority order, with lower numbers processed before higher numbers, because lower numbers have higher priority. Once traffic matches a rule, processing stops.

Reference:

https://docs.microsoft.com/en-us/azure/virtual-network/security-overview

Total 644 questions
Go to page: of 65
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms