ExamGecko
Search Search Login
Home Home / Microsoft / AZ-104

Microsoft AZ-104 Practice Test - Questions Answers, Page 7

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT You need to the appropriate sizes for the Azure virtual for Server2. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
DRAG DROP You need to prepare the environment to ensure that the web administrators can deploy the web apps as quickly as possible. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Answer:
HOTSPOT You need to implement Role1. Which command should you run before you create Role1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev. You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group. Solution: On Dev, you assign the Contributor role to the Developers group. Does this meet the goal?
You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?
Note: This question is part of a series of questions that present the same scenario. Each question in theseries contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft Entra tenant named contoso.com. You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users. Solution; From Microsoft Entra ID in the Azure portal, you use the Bulk invite users' operation. Does this meet the goal?
You need to identify which storage account to use for the flow logging of IP traffic from VM5. The solution must meet the retention requirements. Which storage account should you identify?
HOTSPOT You need to create storage5. The solution must support the planned changes. Which type of storage account should you use, and which account should you configure as the destination storage account? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT You need to identify the storage requirements for Contoso. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Which blade should you instruct the finance department auditors to use?

Question 61

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant named adatum.com. Adatum.com contains the groups in the following table.

You create two user accounts that are configured as shown in the following table.

To which groups do User1 and User2 belong? To answer. select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 61
Correct answer: Question 61

Explanation:

Box 1: Group 1 only

First rule applies

Box 2: Group1 and Group2 only

Both membership rules apply.

Reference: https://docs.microsoft.com/en-us/sccm/core/clients/manage/collections/createcollections

Question 62

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant named contosocloud.onmicrosoft.com.

Your company has a public DNS zone for contoso.com.

You add contoso.com as a custom domain name to Azure AD.

You need to ensure that Azure can verify the domain name.

Which type of DNS record should you create?

A.
PTR
A.
PTR
Answers
B.
MX
B.
MX
Answers
C.
NSEC3
C.
NSEC3
Answers
D.
RRSIG
D.
RRSIG
Answers
Suggested answer: B

Explanation:

TXT or MX : Correct

You can use either a TXT or MX record to verify the custom domain in the Azure AD. MX records can serve the purpose of TXT records

SRV : Incorrect

SRV records are used by various services to specify server locations. When specifying an SRV record in Azure DNS

DNSKEY : Incorrect Choice

This will verify that the records are originating from an authorized sender.

NSEC : Incorrect Choice

This is Part of DNSSEC. This is used for explicit denial-of-existence of a DNS record. It is used to prove a name does not exist.

Reference:

https://docs.microsoft.com/en-us/azure/dns/dns-web-sites-custom-domain

https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/add-custom-domain#verifyyour-custom-domain-name

https://www.cloudflare.com/dns/dnssec/how-dnssecworks/#:~:text=DNSKEY%20%2D%20Contains%20a%20public%20signing,s)%20in%20the%20parent%20zone.

Question 63

Report
Export
Collapse

You have an Azure subscription that contains a resource group named Test RG.

You use TestRG to validate an Azure deployment.

TestRG contains the following resources:

You need to delete TestRG.

What should you do first?

A.
Modify the backup configurations of VM1 and modify the resource lock type of VNET1.
A.
Modify the backup configurations of VM1 and modify the resource lock type of VNET1.
Answers
B.
Turn off VM1 and delete all data in Vault1.
B.
Turn off VM1 and delete all data in Vault1.
Answers
C.
Remove the resource lock from VNET1 and delete all data in Vault1.
C.
Remove the resource lock from VNET1 and delete all data in Vault1.
Answers
D.
Turn off VM1 and remove the resource lock from VNET1.
D.
Turn off VM1 and remove the resource lock from VNET1.
Answers
Suggested answer: C

Explanation:

You can't delete a vault that contains backup data. You must remove the delete locks before trying to delete a resource group.

When you delete a resource group, all of its resources are also deleted. Deleting a resource group deletes all of its template deployments and currently stored operations.

https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/delete-resourcegroup?tabs=azure-powershell

Question 64

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory tenant named Contoso.com that includes following users:

Contoso.com includes following Windows 10 devices:

You create following security groups in Contoso.com:

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Question 64
Correct answer: Question 64

Explanation:

Box 1: Yes

User1 is a Cloud Device Administrator.

Device2 is Azure AD joined.

Group1 has the assigned to join type. User1 is the owner of Group1.

Note: Assigned groups - Manually add users or devices into a static group.

Azure AD joined or hybrid Azure AD joined devices utilize an organizational account in Azure AD

Box 2: No

User2 is a User Administrator.

Device1 is Azure AD registered.

Group1 has the assigned join type, and the owner is User1.

Note: Azure AD registered devices utilize an account managed by the end user, this account is either a Microsoft account or another locally managed credential.

Box 3: Yes

User2 is a User Administrator.

Device2 is Azure AD joined.

Group2 has the Dynamic Device join type, and the owner is User2.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/devices/overview

Question 65

Report
Export
Collapse

You have an Azure policy as shown in the following exhibit.

What is the effect of the policy?

Which of the following statements are true?

A.
You can create Azure SQL servers in ContosoRG1 only.
A.
You can create Azure SQL servers in ContosoRG1 only.
Answers
B.
You are prevented from creating Azure SQL servers anywhere in Subscription 1.
B.
You are prevented from creating Azure SQL servers anywhere in Subscription 1.
Answers
C.
You are prevented from creating Azure SQL Servers in ContosoRG1 only.
C.
You are prevented from creating Azure SQL Servers in ContosoRG1 only.
Answers
D.
You can create Azure SQL servers in any resource group within Subscription 1.
D.
You can create Azure SQL servers in any resource group within Subscription 1.
Answers
Suggested answer: A

Explanation:

You are prevented from creating Azure SQL servers anywhere in Subscription 1 with the exception of

ContosoRG1

Reference:

https://docs.microsoft.com/en-us/azure/governance/policy/concepts/definition-structure

Question 66

Report
Export
Collapse

HOTSPOT

You have an Azure subscription named Subscription1 that contains the resources shown in the following table.

In storage1, you create a blob container named blob1 and a file share named share1.

Which resources can be backed up to Vault1 and Vault2? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 66
Correct answer: Question 66

Explanation:

Box 1: VM1 only

VM1 is in the same region as Vault1.

File1 is not in the same region as Vautl1.

SQL is not in the same region as Vault1.

Blobs cannot be backup up to service vaults.

Note: To create a vault to protect virtual machines, the vault must be in the same region as the virtual machines.

Box 2: Share1 only.

Storage1 is in the same region (West USA) as Vault2. Share1 is in Storage1.

Note: After you select Backup, the Backup pane opens and prompts you to select a storage account from a list of discovered supported storage accounts. They're either associated with this vault or present in the same region as the vault, but not yet associated to any Recovery Services vault.

Reference:

https://docs.microsoft.com/bs-cyrl-ba/azure/backup/backup-create-rs-vault

https://docs.microsoft.com/en-us/azure/backup/backup-afs

Question 67

Report
Export
Collapse

DRAG DROP

You have an Azure Linux virtual machine that is protected by Azure Backup.

One week ago, two files were deleted from the virtual machine.

You need to reses clients connect n on-premises computer as quickly as possible.

Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.


Question 67
Correct answer: Question 67

Explanation:

To restore files or folders from the recovery point, go to the virtual machine and choose the desired recovery point.

Step 0. In the virtual machine's menu, click Backup to open the Backup dashboard.

Step 1. In the Backup dashboard menu, click File Recovery.

Step 2. From the Select recovery point drop-down menu, select the recovery point that holds the files you want. By default, the latest recovery point is already selected.

Step 3: To download the software used to copy files from the recovery point, click Download Executable (for Windows Azure VM) or Download Script (for Linux Azure VM, a python script is generated).

Step 4: Copy the files by using AzCopy

AzCopy is a command-line utility designed for copying data to/from Microsoft Azure Blob, File, and Table storage, using simple commands designed for optimal performance. You can copy data between a file system and a storage account, or between storage accounts.

Reference:

https://docs.microsoft.com/en-us/azure/backup/backup-azure-restore-files-from-vm

https://docs.microsoft.com/en-us/azure/storage/common/storage-use-azcopy

Question 68

Report
Export
Collapse

You have an Azure virtual machine named VM1.

Azure collects events from VM1.

You are creating an alert rule in Azure Monitor to notify an administrator when an error is logged in the System event log of VM1.

You need to specify which resource type to monitor.

What should you specify?

A.
metric alert
A.
metric alert
Answers
B.
Azure Log Analytics workspace
B.
Azure Log Analytics workspace
Answers
C.
virtual machine
C.
virtual machine
Answers
D.
virtual machine extension
D.
virtual machine extension
Answers
Suggested answer: B

Explanation:

Azure Monitor can collect data directly from your Azure virtual machines into a Log Analytics workspace for analysis of details and correlations. Installing the Log Analytics VM extension for Windows and Linux allows Azure Monitor to collect data from your Azure VMs.

Azure Log Analytics workspace is also used for on-premises computers monitored by System Center Operations Manager.

Reference:

https://docs.microsoft.com/en-us/azure/azure-monitor/learn/quick-collect-azurevm

Question 69

Report
Export
Collapse

HOTSPOT

You have an Azure subscription that contains an Azure Storage account named storage1 and the users shown in the following table.

You plan to monitor storage1 and to configure email notifications for the signals shown in the following table.

You need to identify the minimum number of alert rules and action groups required for the planned monitoring.

How many alert rules and action groups should you identify? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 69
Correct answer: Question 69

Explanation:

Box 1 : 4

As there are 4 distinct set of resource types (Ingress, Egress, Delete storage account, Restore blob ranges), so you need 4 alert rules. In one alert rule you can't specify different type of resources to monitor. So you need 4 alert rules.

Box 2 : 3

There are 3 distinct set of "Users to notify" as (User 1 and User 3), (User1 only), and (User1, User2, and User3). You can't set the action group based on existing group (Group1 and Group2) as there is no specific group for User1 only. So you need to create 3 action group.

Reference:

https://docs.microsoft.com/en-us/azure/azure-monitor/platform/action-groups

Question 70

Report
Export
Collapse

You have two Azure virtual machines named VM1 and VM2. You have two Recovery Services vaults named RSV1 and RSV2.

VM2 is protected by RSV1.

You need to use RSV2 to protect VM2.

What should you do first?

A.
From the RSV1 blade, click Backup items and stop the VM2 backup.
A.
From the RSV1 blade, click Backup items and stop the VM2 backup.
Answers
B.
From the RSV1 blade, click Backup Jobs and export the VM2 backup.
B.
From the RSV1 blade, click Backup Jobs and export the VM2 backup.
Answers
C.
From the RSV1 blade, click Backup. From the Backup blade, select the backup for the virtual machine, and then click Backup.
C.
From the RSV1 blade, click Backup. From the Backup blade, select the backup for the virtual machine, and then click Backup.
Answers
D.
From the VM2 blade, click Disaster recovery, click Replication settings, and then select RSV2 as the Recovery Services vault.
D.
From the VM2 blade, click Disaster recovery, click Replication settings, and then select RSV2 as the Recovery Services vault.
Answers
Suggested answer: D

Explanation:

The Azure Site Recovery service contributes to your disaster recovery strategy by managing and orchestrating replication, failover, and failback of on-premises machines and Azure virtual machines (VMs).

Reference:

https://docs.microsoft.com/en-us/azure/site-recovery/azure-to-azure-quickstart

https://docs.microsoft.com/en-us/azure/site-recovery/azure-to-azure-tutorial-enable-replication

Total 644 questions
Go to page: of 65
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms