ExamGecko
Search Search Login
Home Home / Microsoft / AZ-104

Microsoft AZ-104 Practice Test - Questions Answers, Page 50

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT You need to the appropriate sizes for the Azure virtual for Server2. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
DRAG DROP You need to prepare the environment to ensure that the web administrators can deploy the web apps as quickly as possible. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Answer:
HOTSPOT You need to implement Role1. Which command should you run before you create Role1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev. You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group. Solution: On Dev, you assign the Contributor role to the Developers group. Does this meet the goal?
You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?
Note: This question is part of a series of questions that present the same scenario. Each question in theseries contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft Entra tenant named contoso.com. You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users. Solution; From Microsoft Entra ID in the Azure portal, you use the Bulk invite users' operation. Does this meet the goal?
You have an Azure subscription that contains the resources shown in the following table. You need to assign User1 the Storage File Data SMB Share Contributor role for share1. What should you do first?
You need to identify which storage account to use for the flow logging of IP traffic from VM5. The solution must meet the retention requirements. Which storage account should you identify?
HOTSPOT You need to create storage5. The solution must support the planned changes. Which type of storage account should you use, and which account should you configure as the destination storage account? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT You need to identify the storage requirements for Contoso. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Question 491

Report
Export
Collapse

You have an Azure AD tenant that is linked to 10 Azure subscriptions. You need to centrally monitor user activity across all the subscriptions. What should you use?

A.
Activity log filters
A.
Activity log filters
Answers
B.
Log Analytics workspace
B.
Log Analytics workspace
Answers
C.
access reviews
C.
access reviews
Answers
D.
Azure Application Insights Profiler
D.
Azure Application Insights Profiler
Answers
Suggested answer: B

Question 492

Report
Export
Collapse

You have an Azure subscription that contains 10 virtual machines, a key vault named Vault 1, and a network security group (NSG) named NSG1. All the resources are deployed to the East US Azure region.

The virtual machines are protected by using NSG1. NSG1 is configured to block all outbound traffic to the internet.

You need to ensure that the virtual machines can access Vault1. The solution must use the principle of least privilege and minimize administrative effort.

What should you configure as the destination of the outbound security rule for NSG1 ?

A.
an application security group
A.
an application security group
Answers
B.
an IP address range
B.
an IP address range
Answers
C.
a service tag
C.
a service tag
Answers
Suggested answer: C

Question 493

Report
Export
Collapse

HOTSPOT

You plan to deploy the following Azure Resource Manager (ARM) template.


Question 493
Correct answer: Question 493

Question 494

Report
Export
Collapse

DRAG DROP

You have an Azure subscription named Sub1 that contains two users named User1 and User2.

You need to assign role-based access control (RBAC) roles to User1 and User2. The users must be able to perform the following tasks in Sub1:

• User1 must view the data in any storage account.

• User2 must assign users the Contributor role for storage accounts.

The solution must use the principle of least privilege.

Which RBAC role should you assign to each user? To answer, drag the appropriate roles to the correct users. Each role may be used once, more than once, or not at all.


Question 494
Correct answer: Question 494

Question 495

Report
Export
Collapse

HOTSPOT

You have an Azure subscription that is linked to an Azure AD tenant. The tenant contains the custom role-based access control (RBAC) roles shown in the following table.

From the Azure portal, you need to create two custom roles named Role3 and Role4. Role3 will be an Azure subscription role. Role4 will be an Azure AD role. Which roles can you clone to create the new roles? To answer, select the appropriate options in the answer area.


Question 495
Correct answer: Question 495

Question 496

Report
Export
Collapse

You have an Azure Subscription that contains the virtual networks Shown in the following table.

All the virtual networks are peered. Each virtual network contains nine virtual machines.

You need to configure secure RDP corrections to the virtual machines by using Azure Boston.

Whit is the minimum number of Bastion nests required?

A.
1
A.
1
Answers
B.
3
B.
3
Answers
C.
9
C.
9
Answers
D.
10
D.
10
Answers
Suggested answer: B

Explanation:

According to theMicrosoft documentation, Azure Bastion is a service that provides more secure and seamless RDP and SSH access to virtual machines without any exposure through public IP addresses. You can provision the service directly in your local or peered virtual network to get support for all the VMs within it.

In your scenario, you have three virtual networks that are peered with each other. This means that they can communicate with each other as if they were in the same virtual network. Therefore, you can deploy one Bastion host in any of the virtual networks and use it to connect to all the virtual machines in the peered virtual networks. You don't need to deploy a separate Bastion host for each virtual network or each virtual machine.

For more information about how to deploy and use Azure Bastion, seeTutorial: Deploy Bastion using specified settings: Azure portal.

Question 497

Report
Export
Collapse

HOTSPOT

You have an Azure subscription.

You plan to deploy a storage account named storage' by using the following Azure Resource Manager (ARM) template.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Question 497
Correct answer: Question 497

Explanation:

YES, YES, NO

Question 498

Report
Export
Collapse

You need to configure an Azure web app named contoso.azurewebsites.net to host wwwcontoso.com.

What should you do first?

A.
Create a TXT record named wwsv.contoso.com that has a value of contosoazurewebsites.net.
A.
Create a TXT record named wwsv.contoso.com that has a value of contosoazurewebsites.net.
Answers
B.
Create a TXT record named asuid that contains the domain verification ID.
B.
Create a TXT record named asuid that contains the domain verification ID.
Answers
C.
Create a CNAME record named asuid that contains the domain verification ID.
C.
Create a CNAME record named asuid that contains the domain verification ID.
Answers
D.
Create A records named www.contoso.com and asuid.contoso.com.
D.
Create A records named www.contoso.com and asuid.contoso.com.
Answers
Suggested answer: D

Explanation:

https://learn.microsoft.com/en-us/azure/dns/dns-web-sites-custom-domain

Question 499

Report
Export
Collapse

HOTSPOT

You have an Azure subscription that contains the resources shown in the following table.

You plan to create a data collection rule named DCRI in Azure Monitor.

Which resources can you set as data sources in DCRI, and which resources can you set as destinations in DCRI? To answer, select the appropriate options in the answer are a.

NOTE: Each correct selection is worth one point.


Question 499
Correct answer: Question 499

Explanation:


Data Sources: VM1 only

Destination: Workspace1 Only

Question 500

Report
Export
Collapse

HOTSPOT

You have an Azure subscription that contains a storage account named storage1. The storage1 account contains a container named container1.

You to create a lifecycle management rule for storage' that will automatically move the blobs in container' to the lowest-cost tier after 90 days.

How should you complete the rule? TO answer, select the appropriate options in the answer are a.

NOTE: Each correct selection is worth one point.


Answer:

Question 500
Correct answer: Question 500

Explanation:

{

"rules": [

{

"enabled": true,

"name": "move-to-cool",

"type": "Lifecycle",

"definition": {

"actions": {

"baseBlob": {

"tierToCool": {

"daysAfterModificationGreaterThan": 30

}

}

},

"filters": {

"blobTypes": [

"blockBlob"

],

"prefixMatch": [

"sample-container/log"

]

}

}

}

]

}

https://learn.microsoft.com/en-us/azure/storage/blobs/lifecycle-management-policyconfigure?tabs=azure-portal

Total 644 questions
Go to page: of 65
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms