ExamGecko
Search Search Login
Home Home / Microsoft / AZ-204

Microsoft AZ-204 Practice Test - Questions Answers, Page 22

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT You have an Azure Web app that uses Cosmos DB as a data store. You create a CosmosDB container by running the following PowerShell script: $resourceGroupName = "testResourceGroup" $accountName = "testCosmosAccount" $databaseName = "testDatabase" $containerName = "testContainer" $partitionKeyPath = "/EmployeeId" $autoscaleMaxThroughput = 5000 New-AzCosmosDBSqlContainer -ResourceGroupName $resourceGroupName -AccountName $accountName -DatabaseName $databaseName -Name $containerName -PartitionKeyKind Hash -PartitionKeyPath $partitionKeyPath -AutoscaleMaxThroughput $autoscaleMaxThroughput You create the following queries that target the container: SELECT * FROM c WHERE c.EmployeeId > '12345' SELECT * FROM c WHERE c.UserID = '12345' For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
HOTSPOT You develop an application that sells Al generated images based on user input. You recently started a marketing campaign that displays unique ads every second day. Sales data is stored in Azure Cosmos DB with the date of each sale being stored in a property named 'whenFinished'. The marketing department requires a view that shows the number of sales for each unique ad. You need to implement the query for the view. How should you complete the query? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You need to audit the retail store sales transactions. What are two possible ways to achieve the goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You deploy an Azure Container Apps app and disable ingress on the container app. Users report that they are unable to access the container app. You investigate and observe that the app has scaled to 0 instances. You need to resolve the issue with the container app. Solution: Enable ingress, create a TCP scale rule, and apply the rule to the container app. Does the solution meet the goal?
You are developing a road tollway tracking application that sends tracking events by using Azure Event Hubs using premium tier. Each road must have a throttling policy uniquely assigned. You need to configure the event hub to allow for per-road throttling. What should you do?
HOTSPOT You plan to implement an Azure Functions app. The Azure Functions app has the following requirements: * Must be triggered by a message placed in an Azure Storage queue. * Must use the queue name set by an app setting named input-queue. * Must create an Azure Blob Storage named the same as the content of the message. You need to identify how to reference the queue and blob name in the function. Just file of the Azure Functions app. How should you reference the names? To answer, select the appropriate values in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT YOU need to reliably identify the delivery driver profile information. How should you configure the system? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point.
Note: This question-is part of a series of questions that present the same scenario. Each question-in the series contains a unique solution that might meet the stated goals. Some question-sets might have more than one correct solution, while others might not have a correct solution. After you answer a question-in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You develop Azure solutions. You must grant a virtual machine (VM) access to specific resource groups in Azure Resource Manager. You need to obtain an Azure Resource Manager access token. Solution: Run the Invoke-RestMethod cmdlet to make a request to the local managed identity for Azure resources endpoint. Does the solution meet the goal?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You are developing an Azure solution to collect point-of-sale (POS) device data from 2,000 stores located throughout the world. A single device can produce 2 megabytes (MB) of data every 24 hours. Each store location has one to five devices that send data. You must store the device data in Azure Blob storage. Device data must be correlated based on a device identifier. Additional stores are expected to open in the future. You need to implement a solution to receive the device data. Solution: Provision an Azure Event Grid. Configure the machine identifier as the partition key and enable capture. Does the solution meet the goal?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it As a result, these questions will not appear in the review screen. You deploy an Azure Container Apps app and disable ingress on the container app. Users report that they are unable to access the container app. You investigate and observe that the app has scaled to 0 instances. You need to resolve the issue with the container app. Solution: Enable ingress and configure the minimum replicas to 1 for the container app. Does the solution meet the goal?

Question 211

Report
Export
Collapse

You need to implement a solution to resolve the retail store location data issue.

Which three Azure Blob features should you enable? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.
Soft delete
A.
Soft delete
Answers
B.
Change feed
B.
Change feed
Answers
C.
Snapshots
C.
Snapshots
Answers
D.
Object replication
D.
Object replication
Answers
E.
Immutability
E.
Immutability
Answers
F.
Versioning
F.
Versioning
Answers
Suggested answer: A, B, F

Explanation:

Scenario: You must perform a point-in-time restoration of the retail store location data due to an unexpected and accidental deletion of data.Before you enable and configure point-in-time restore, enable its prerequisites for the storage account: soft delete, change feed, and blob versioning.Reference:https://docs.microsoft.com/en-us/azure/storage/blobs/point-in-time-restore-manage

Question 212

Report
Export
Collapse

You need to secure the Azure Functions to meet the security requirements.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.
Store the RSA-HSM key in Azure Key Vault with soft-delete and purge-protection features enabled.
A.
Store the RSA-HSM key in Azure Key Vault with soft-delete and purge-protection features enabled.
Answers
B.
Store the RSA-HSM key in Azure Blob storage with an immutability policy applied to the container.
B.
Store the RSA-HSM key in Azure Blob storage with an immutability policy applied to the container.
Answers
C.
Create a free tier Azure App Configuration instance with a new Azure AD service principal.
C.
Create a free tier Azure App Configuration instance with a new Azure AD service principal.
Answers
D.
Create a standard tier Azure App Configuration instance with an assigned Azure AD managed identity.
D.
Create a standard tier Azure App Configuration instance with an assigned Azure AD managed identity.
Answers
E.
Store the RSA-HSM key in Azure Cosmos DB. Apply the built-in policies for customer-managed keys and allowed locations.
E.
Store the RSA-HSM key in Azure Cosmos DB. Apply the built-in policies for customer-managed keys and allowed locations.
Answers
Suggested answer: A, D

Explanation:

Scenario: All Azure Functions must centralize management and distribution of configuration data for different environments and geographies, encrypted by using a company-provided RSA-HSM key.

Microsoft Azure Key Vault is a cloud-hosted management service that allows users to encrypt keys and small secrets by using keys that are protected by hardware security modules (HSMs).

You need to create a managed identity for your application. Reference:

https://docs.microsoft.com/en-us/azure/app-service/app-service-key-vault-references

Question 213

Report
Export
Collapse

You manage a data processing application that receives requests from an Azure Storage queue.

You need to manage access to the queue. You have the following requirements:

Provide other applications access to the Azure queue.

Ensure that you can revoke access to the queue without having to regenerate the storage account keys. Specify access at the queue level and not at the storage account level.

Which type of shared access signature (SAS) should you use?

A.
Service SAS with a stored access policy
A.
Service SAS with a stored access policy
Answers
B.
Account SAS
B.
Account SAS
Answers
C.
User Delegation SAS
C.
User Delegation SAS
Answers
D.
Service SAS with ad hoc SAS
D.
Service SAS with ad hoc SAS
Answers
Suggested answer: A

Explanation:

A service SAS is secured with the storage account key. A service SAS delegates access to a resource in only one of the Azure Storage services: Blob storage, Queue storage, Table storage, or Azure Files.

Stored access policies give you the option to revoke permissions for a service SAS without having to regenerate the storage account keys.

Incorrect Answers:

Account SAS: Account SAS is specified at the account level. It is secured with the storage account key. User Delegation SAS: A user delegation SAS applies to Blob storage only. Reference:

https://docs.microsoft.com/en-us/azure/storage/common/storage-sas-overview

Question 214

Report
Export
Collapse

You need to audit the retail store sales transactions.

What are two possible ways to achieve the goal? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

A.
Update the retail store location data upload process to include blob index tags. Create an Azure Function to process the blob index tags and filter by store location.
A.
Update the retail store location data upload process to include blob index tags. Create an Azure Function to process the blob index tags and filter by store location.
Answers
B.
Process the change feed logs of the Azure Blob storage account by using an Azure Function. Specify a time range for the change feed data.
B.
Process the change feed logs of the Azure Blob storage account by using an Azure Function. Specify a time range for the change feed data.
Answers
C.
Enable blob versioning for the storage account. Use an Azure Function to process a list of the blob versions per day.
C.
Enable blob versioning for the storage account. Use an Azure Function to process a list of the blob versions per day.
Answers
D.
Process an Azure Storage blob inventory report by using an Azure Function. Create rule filters on the blob inventory report.
D.
Process an Azure Storage blob inventory report by using an Azure Function. Create rule filters on the blob inventory report.
Answers
E.
Subscribe to blob storage events by using an Azure Function and Azure Event Grid. Filter the events by store location.
E.
Subscribe to blob storage events by using an Azure Function and Azure Event Grid. Filter the events by store location.
Answers
Suggested answer: B, E

Explanation:

Scenario: Audit store sale transaction information nightly to validate data, process sales financials, and reconcile inventory.

"Process the change feed logs of the Azure Blob storage account by using an Azure Function. Specify a time range for the change feed data": Change feed support is well-suited for scenarios that process data based on objects that have changed.

For example, applications can:

Store, audit, and analyze changes to your objects, over any period of time, for security, compliance or intelligence for enterprise data management.

"Subscribe to blob storage events by using an Azure Function and Azure Event Grid. Filter the events by store location":

Azure Storage events allow applications to react to events, such as the creation and deletion of blobs. It does so without the need for complicated code or expensive and inefficient polling services. The best part is you only pay for what you use.

Blob storage events are pushed using Azure Event Grid to subscribers such as Azure Functions, Azure Logic Apps, or even to your own http listener. Event Grid provides reliable event delivery to your applications through rich retry policies and deadlettering.

Incorrect Answers:

"Enable blob versioning for the storage account. Use an Azure Function to process a list of the blob versions per day": You can enable Blob storage versioning to automatically maintain previous versions of an object. When blob versioning is enabled, you can access earlier versions of a blob to recover your data if it is modified or deleted. Reference:

https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-change-feed https://docs.microsoft.com/enus/azure/storage/blobs/storage-blob-event-overview

Question 215

Report
Export
Collapse

HOTSPOT

You need to implement the retail store location Azure Function.

How should you configure the solution? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 215
Correct answer: Question 215

Explanation:

Scenario: Retail store locations: Azure Functions must process data immediately when data is uploaded to Blob storage.

Box 1: HTTP

Binding configuration example: https://.blob.core.windows.net

Box 2: Input

Read blob storage data in a function: Input binding

Box 3: Blob storage

The Blob storage trigger starts a function when a new or updated blob is detected.

Azure Functions integrates with Azure Storage via triggers and bindings. Integrating with Blob storage allows you to build

functions that react to changes in blob data as well as read and write values.

Reference:

https://docs.microsoft.com/en-us/azure/azure-functions/functions-bindings-storage-blob-trigger

Question 216

Report
Export
Collapse

HOTSPOT

You are developing an Azure Function App. You develop code by using a language that is not supported by the Azure Function App host. The code language supports HTTP primitives.

You must deploy the code to a production Azure Function App environment.

You need to configure the app for deployment.

Which configuration values should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 216
Correct answer: Question 216

Explanation:

Box 1: Docker container

A custom handler can be deployed to every Azure Functions hosting option. If your handler requires operating system or platform dependencies (such as a language runtime), you may need to use a custom container. You can create and deploy your code to Azure Functions as a custom Docker container.

Box 2: PowerShell core

When creating a function app in Azure for custom handlers, we recommend you select .NET Core as the stack. A "Custom" stack for custom handlers will be added in the future.

PowerShell Core (PSC) is based on the new .NET Core runtime.

Box 3: 7.0

On Windows: The Azure Az PowerShell module is also supported for use with PowerShell 5.1 on Windows.

On Linux: PowerShell 7.0.6 LTS, PowerShell 7.1.3, or higher is the recommended version of PowerShell for use with the Azure Az PowerShell module on all platforms. Reference:

https://docs.microsoft.com/en-us/azure/azure-functions/functions-create-function-linux-custom-image

https://docs.microsoft.com/en-us/powershell/azure/install-az-ps?view=azps-7.1.0

Question 217

Report
Export
Collapse

DRAG DROP

You provision virtual machines (VMs) as development environments.

One VM does not start. The VM is stuck in a Windows update process. You attach the OS disk for the affected VM to a recovery VM.

You need to correct the issue.

In which order should you perform the actions? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.


Question 217
Correct answer: Question 217

Explanation:

Remove the update that causes the problem

1. Take a snapshot of the OS disk of the affected VM as a backup.

2. Attach the OS disk to a recovery VM.

3. Once the OS disk is attached on the recovery VM, run diskmgmt.msc to open Disk Management, and ensure the attached disk is ONLINE.

4. (Step 1) Open an elevated command prompt instance (Run as administrator). Run the following command to get the list of the update packages that are on the attached OS disk:

dism /image::\ /get-packages > c:\temp\Patch_level

5. (Step 2) Open the C:\temp\Patch_level.txt file, and then read it from the bottom up. Locate the update that's in Install

Pending or Uninstall Pending state.

6. Remove the update that caused the problem:

dism /Image::\ /Remove-Package /PackageName:<>

7. (Step 4) Detach the OS disk and recreate the VM. Then check whether the issue is resolved. Reference:

https://docs.microsoft.com/en-us/troubleshoot/azure/virtual-machines/troubleshoot-stuck-updating-boot-error

Question 218

Report
Export
Collapse

HOTSPOT

You are developing an application to collect the following telemetry data for delivery drivers: first name, last name, package count, item id, and current location coordinates. The app will store the data in Azure Cosmos DB.

You need to configure Azure Cosmos DB to query the data.

Which values should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 218
Correct answer: Question 218

Explanation:

Box 1: Core (SQL)

Core(SQL) API stores data in document format. It offers the best end-to-end experience as we have full control over the interface, service, and the SDK client libraries. SQL API supports analytics and offers performance isolation between operational and analytical workloads.

Box 2: item id item id is a unique identifier and is suitable for the partition key. Reference:

https://docs.microsoft.com/en-us/azure/cosmos-db/choose-api https://docs.microsoft.com/en-us/azure/cosmos-db/partitioning-overview

Question 219

Report
Export
Collapse

HOTSPOT

You are developing an ASP.NET Core app that includes feature flags which are managed by Azure App Configuration. You create an Azure App Configuration store named AppFeatureflagStore as shown in the exhibit:

You must be able to use the feature in the app by using the following markup:

You need to update the app to use the feature flag.

Which values should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 219
Correct answer: Question 219

Explanation:

Box 1: FeatureGate

You can use the FeatureGate attribute to control whether a whole controller class or a specific action is enabled.

Box 2: AddAzureAppConfiguration

The extension method AddAzureAppConfiguration is used to add the Azure App Configuration Provider.

Box 3: https://appfeatureflagstore.azconfig.io

You need to request the access token with resource=https://.azconfig.io Reference:

https://docs.microsoft.com/en-us/azure/azure-app-configuration/use-feature-flags-dotnet-core

https://csharp.christiannagel.com/2020/05/19/azureappconfiguration/ https://stackoverflow.com/questions/61899063/how-touse-azure-app-configuration-rest-api

Question 220

Report
Export
Collapse

HOTSPOT

You have a single page application (SPA) web application that manages information based on data returned by Microsoft Graph from another company's Azure Active Directory (Azure AD) instance.

Users must be able to authenticate and access Microsoft Graph by using their own company's Azure AD instance.

You need to configure the application manifest for the app registration.

How should you complete the manifest? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 220
Correct answer: Question 220

Explanation:

Box 1: true

The oauth2AllowImplicitFlow attribute Specifies whether this web app can request OAuth2.0 implicit flow access tokens. The default is false. This flag is used for browser-based apps, like JavaScript singlepage apps.

In implicit flow, the app receives tokens directly from the Azure Active Directory (Azure AD) authorize endpoint, without any server-to-server exchange. All authentication logic and session handling is done entirely in the JavaScript client with either a page redirect or a pop-up box.

Box 2: requiredResourceAccess

With dynamic consent, requiredResourceAccess drives the admin consent experience and the user consent experience for users who are using static consent. However, this parameter doesn't drive the user consent experience for the general case. resourceAppId is the unique identifier for the resource that the app requires access to. This value should be equal to the appId declared on the target resource app. resourceAccess is an array that lists the OAuth2.0 permission scopes and app roles that the app requires from the specified resource. Contains the id and type values of the specified resources.

Example:

"requiredResourceAccess": [

{

"resourceAppId": "00000002-0000-0000-c000-000000000000",

"resourceAccess": [

{

"id": "311a71cc-e848-46a1-bdf8-97ff7156d8e6",

"type": "Scope"

}

]

} ],

Incorrect Answers:

The legacy attribute availableToOtherTenants is no longer supported.

The addIns attribute defines custom behavior that a consuming service can use to call an app in specific contexts. For example, applications that can render file streams may set the addIns property for its "FileHandler" functionality. This parameter will let services like Microsoft 365 call the application in the context of a document the user is working on.

Example:

"addIns": [

{

"id": "968A844F-7A47-430C-9163-07AE7C31D407",

"type":" FileHandler",

"properties": [

{

"key": "version",

"value": "2"

}

]

} ],

Box 3: AzureADMyOrg

The signInAudience attribute specifies what Microsoft accounts are supported for the current application. Supported values are: AzureADMyOrg - Users with a Microsoft work or school account in my organization's Azure AD tenant (for example, single tenant)

AzureADMultipleOrgs - Users with a Microsoft work or school account in any organization's Azure AD tenant (for example, multi-tenant)

AzureADandPersonalMicrosoftAccount - Users with a personal Microsoft account, or a work or school account in any organization's Azure AD tenant Reference:

https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifest https://docs.microsoft.com/enus/azure/active-directory/develop/v2-oauth2-implicit-grant-flow

Total 345 questions
Go to page: of 35
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms