ExamGecko
Search Search Login
Home Home / Microsoft / AZ-305

Microsoft AZ-305 Practice Test - Questions Answers, Page 12

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company plans to deploy various Azure App Service instances that will use Azure SQL databases. The App Service instances will be deployed at the same time as the Azure SQL databases. The company has a regulatory requirement to deploy the App Service instances only to specific Azure regions. The resources for the App Service instances must reside in the same region. You need to recommend a solution to meet the regulatory requirement. Solution: You recommend using an Azure policy initiative to enforce the location. Does this meet the goal?
You have an Azure subscription. You need to recommend an Azure Kubernetes service (AKS) solution that will use Linux nodes. The solution must meet the following requirements: • Minimize the time it takes to provision compute resources during scale-out operations. • Support autoscaling of Linux containers. • Minimize administrative effort. Which scaling option should you recommend?
Your company, named Contoso, Ltd., implements several Azure logic apps that have HTTP triggers. The logic apps provide access to an on-premises web service. Contoso establishes a partnership with another company named Fabrikam. IncL Fabrikam does not have an existing Azure Active Directory (Azure AD) tenant and uses third-party OAuth 2.0 identity management to authenticate its users. I Developers at Fabrikam plan to use a subset of the logic apps to build applications that will integrate with the on-premises web service of Contoso. You need to design a solution to provide the Fabrikam developers with access to the logic apps. The solution must meet the following requirements: • Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso. • The developers must be able to rely on their existing OAuth 2.0 provider to gain access to the logic apps. • The solution must NOT require changes to the logic apps. • The solution must NOT use Azure AD guest accounts. What should you include in the solution?
You have 100 servers that run Windows Server 2012 R2 and host Microsoft SQL Server 2012 R2 instances. The instances host databases that have the following characteristics: The largest database is currently 3 TB. None of the databases will ever exceed 4 TB. Stored procedures are implemented by using CLR. You plan to move all the data from SQL Server to Azure. You need to recommend an Azure service to host the databases. The solution must meet the following requirements: Whenever possible, minimize management overhead for the migrated databases. Minimize the number of database changes required to facilitate the migration. Ensure that users can authenticate by using their Active Directory credentials. What should you include in the recommendation?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company has deployed several virtual machines (VMs) on-premises and to Azure. Azure ExpressRoute has been deployed and configured for on-premises to Azure connectivity. Several VMs are exhibiting network connectivity issues. You need to analyze the network traffic to determine whether packets are being allowed or denied to the VMs. Solution: Use Azure Network Watcher to run IP flow verify to analyze the network traffic Does the solution meet the goal?
You have an Azure Active Directory (Azure AD) tenant named contoso.com that has a security group named Group'. Group i is configured Tor assigned membership. Group I has 50 members. including 20 guest users. You need To recommend a solution for evaluating the member ship of Group1. The solution must meet the following requirements: • The evaluation must be repeated automatically every three months • Every member must be able to report whether they need to be in Group1 • Users who report that they do not need to be in Group 1 must be removed from Group1 automatically • Users who do not report whether they need to be m Group1 must be removed from Group1 automatically. What should you include in me recommendation?
You are designing an Azure Cosmos DB solution that will host multiple writable replicas in multiple Azure regions. You need to recommend the strongest database consistency level for the design. The solution must meet the following requirements: Provide a latency-based Service Level Agreement (SLA) for writes. Support multiple regions. Which consistency level should you recommend?
You are designing an order processing system in Azure that will contain the Azure resources shown in the following table. The order processing system will have the following transaction flow: A customer will place an order by using App1. When the order is received, App1 will generate a message to check for product availability at vendor 1 and vendor 2. An integration component will process the message, and then trigger either Function1 or Function2 depending on the type of order. Once a vendor confirms the product availability, a status message for App1 will be generated by Function1 or Function2. All the steps of the transaction will be logged to storage1. Which type of resource should you recommend for the integration component?
You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager resource deployment in your subscription. What should you include in the recommendation?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company deploys several virtual machines on-premises and to Azure. ExpressRoute is being deployed and configured for on-premises to Azure connectivity. Several virtual machines exhibit network connectivity issues. You need to analyze the network traffic to identify whether packets are being allowed or denied to the virtual machines. Solution: Use Azure Traffic Analytics in Azure Network Watcher to analyze the network traffic. Does this meet the goal?

Question 111

Report
Export
Collapse

Your company has an Azure Web App that runs via the Premium App Service Plan. A development team will be using the Azure Web App. You have to configure the Azure Web app so that it can fulfil the below requirements. Provide the ability to switch the web app from the current version to a newer version Provide developers with the ability to test newer versions of the application before the switch to the newer version occurs Ensure that the application version can be rolled back Minimize downtime Which of the following can be used for this requirement?

A.
Create a new App Service Plan
A.
Create a new App Service Plan
Answers
B.
Make use of deployment slots
B.
Make use of deployment slots
Answers
C.
Map a custom domain
C.
Map a custom domain
Answers
D.
Backup the Azure Web App
D.
Backup the Azure Web App
Answers
Suggested answer: B

Question 112

Report
Export
Collapse

You have to deploy an Azure SQL database named db1 for your company. The databases must meet the following security requirements When IT help desk supervisors query a database table named customers, they must be able to see the full number of each credit card When IT help desk operators query a database table named customers, they must only see the last four digits of each credit card number A column named Credit Card rating in the customers table must never appear in plain text in the database system. Only client applications must be able to decrypt the information that is stored in this column Which of the following can be implemented for the Credit Card rating column security requirement?

A.
Always Encrypted
A.
Always Encrypted
Answers
B.
Azure Advanced Threat Protection
B.
Azure Advanced Threat Protection
Answers
C.
Transparent Data Encryption
C.
Transparent Data Encryption
Answers
D.
Dynamic Data Masking
D.
Dynamic Data Masking
Answers
Suggested answer: A

Explanation:

https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/always-encrypteddatabase-engine?view=sql-server-ver15

Question 113

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant that syncs with an on-premises Active Directory domain. Your company has a line-of-business (LOB) application that was developed internally.

You need to implement. SAML single sign-on (SSO) and enforce multi-factor authentication (MFA) when users attempt to access the application from an unknown location. Which two features should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

A.
Azure AD enterprise applications
A.
Azure AD enterprise applications
Answers
B.
Azure AD Identity Protection
B.
Azure AD Identity Protection
Answers
C.
Azure Application Gateway
C.
Azure Application Gateway
Answers
D.
Conditional Access policies
D.
Conditional Access policies
Answers
E.
Azure AD Privileged Identity Management (PIM)
E.
Azure AD Privileged Identity Management (PIM)
Answers
Suggested answer: A, D

Question 114

Report
Export
Collapse

You ate designing an Azure governance solution.

All Azure resources must be easily identifiable based on the following operational information environment, owner, department and cost center You need 10 ensure that you can use the operational information when you generate reports for the Azure resources.

What should you include in the solution?

A.
Azure Active Directory (Azure AD) administrative units
A.
Azure Active Directory (Azure AD) administrative units
Answers
B.
an Azure data catalog that uses the Azure REST API as a data source
B.
an Azure data catalog that uses the Azure REST API as a data source
Answers
C.
an Azure policy that enforces tagging rules
C.
an Azure policy that enforces tagging rules
Answers
D.
an Azure management group that uses parent groups to create a hierarchy
D.
an Azure management group that uses parent groups to create a hierarchy
Answers
Suggested answer: C

Explanation:

You use Azure Policy to enforce tagging rules and conventions. By creating a policy, you avoid the scenario of resources being deployed to your subscription that don't have the expected tags for your organization. Instead of manually applying tags or searching for resources that aren't compliant, you create a policy that automatically applies the needed tags during deployment. Note: Organizing cloud-based resources is a crucial task for IT, unless you only have simple deployments. Use naming and tagging standards to organize your resources for these reasons:

Resource management: Your IT teams will need to quickly locate resources associated with specific workloads, environments, ownership groups, or other important information. Organizing resources is critical to assigning organizational roles and access permissions for resource management.

Reference:

https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/decision-guides/resourcetagging

https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/tag-policies

Question 115

Report
Export
Collapse

You plan to automate the deployment of resources to Azure subscriptions.

What is a difference between using Azure Blueprints and Azure Resource Manager (ARM) templates?

A.
ARM templates remain connected to the deployed resources.
A.
ARM templates remain connected to the deployed resources.
Answers
B.
Only ARM templates can contain policy definitions.
B.
Only ARM templates can contain policy definitions.
Answers
C.
Blueprints remain connected to the deployed resources.
C.
Blueprints remain connected to the deployed resources.
Answers
D.
Only Blueprints can contain policy definitions.
D.
Only Blueprints can contain policy definitions.
Answers
Suggested answer: C

Explanation:

With Azure Blueprints, the relationship between the blueprint definition (what should be deployed) and the blueprint assignment (what was deployed) is preserved. This connection supports improved tracking and auditing of deployments. Azure Blueprints can also upgrade several subscriptions at once that are governed by the same blueprint.

Reference:

https://docs.microsoft.com/en-us/answers/questions/26851/how-is-azure-blue-prints-differentfrom-resource-m.html

Question 116

Report
Export
Collapse

A company named Contoso, Ltd. has an Azure Active Directory (Azure AD) tenant that is integrated with Microsoft Office 365 and an Azure subscription. Contoso has an on-premises identity infrastructure. The infrastructure includes servers that run Active Directory Domain Services (AD DS), and Azure AD Connect Contoso has a partnership with a company named Fabrikam, Inc. Fabrikam has an Active Directory forest and an Office 365 tenant. Fabrikam has the same on-premises identity infrastructure as Contoso. A team of 10 developers from Fabrikam will work on an Azure solution that will be hosted in the Azure subscription of Contoso. The developers must be added to the Contributor role for a resource in the Contoso subscription. You need to recommend a solution to ensure that Contoso can assign the role to the 10 Fabrikam developers. The solution must ensure that the Fabrikam developers use their existing credentials to access resources. What should you recommend?

A.
Configure a forest trust between the on-premises Active Directory forests of Contoso and Fabrikam.
A.
Configure a forest trust between the on-premises Active Directory forests of Contoso and Fabrikam.
Answers
B.
Configure an organization relationship between the Office 365 tenants of Fabrikam and Contoso.
B.
Configure an organization relationship between the Office 365 tenants of Fabrikam and Contoso.
Answers
C.
In the Azure AD tenant of Contoso, use MIM to create guest accounts for the Fabrikam developers.
C.
In the Azure AD tenant of Contoso, use MIM to create guest accounts for the Fabrikam developers.
Answers
D.
Configure an AD FS relying party trust between the fabrikam and Contoso AD FS infrastructures.
D.
Configure an AD FS relying party trust between the fabrikam and Contoso AD FS infrastructures.
Answers
Suggested answer: A

Explanation:

Trust configurations - Configure trust from managed forests(s) or domain(s) to the administrative forest A one-way trust is required from production environment to the admin forest. Selective authentication should be used to restrict accounts in the admin forest to only logging on to the appropriate production hosts.

Reference:

https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/securingprivileged-access-reference-material

Question 117

Report
Export
Collapse

You are designing a microservices architecture that will support a web application.

The solution must meet the following requirements:

Allow independent upgrades to each microservice

Deploy the solution on-premises and to Azure

Set policies for performing automatic repairs to the microservices

Support low-latency and hyper-scale operations

You need to recommend a technology.

What should you recommend?

A.
Azure Service Fabric
A.
Azure Service Fabric
Answers
B.
Azure Container Service
B.
Azure Container Service
Answers
C.
Azure Container Instance
C.
Azure Container Instance
Answers
D.
Azure Virtual Machine Scale Set
D.
Azure Virtual Machine Scale Set
Answers
Suggested answer: A

Explanation:

https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-overview

Question 118

Report
Export
Collapse

You plan to deploy an Azure App Service web app that will have multiple instances across multiple Azure regions. You need to recommend a load balancing service for the planned deployment. The solution must meet the following requirements:

Maintain access to the app in the event of a regional outage.

Support Azure Web Application Firewall (WAF).

Support cookie-based affinity.

Support URL routing.

What should you include in the recommendation?

A.
Azure Front Door
A.
Azure Front Door
Answers
B.
Azure Load Balancer
B.
Azure Load Balancer
Answers
C.
Azure Traffic Manager
C.
Azure Traffic Manager
Answers
D.
Azure Application Gateway
D.
Azure Application Gateway
Answers
Suggested answer: A

Explanation:

Azure Traffic Manager performs the global load balancing of web traffic across Azure regions, which have a regional load balancer based on Azure Application Gateway. This combination gets you the benefits of Traffic Manager many routing rules and Application Gateway’s capabilities such as WAF, TLS termination, path-based routing, cookie-based session affinity among others.

Reference:

https://docs.microsoft.com/en-us/azure/application-gateway/features

Question 119

Report
Export
Collapse

You have an Azure subscription.

Your on-premises network contains a file server named Server1. Server 1 stores 5 TB of company files that are accessed rarely. You plan to copy the files to Azure Storage.

You need to implement a storage solution for the files that meets the following requirements:

• The files must be available within 24 hours of being requested.

• Storage costs must be minimized.

Which two possible storage solutions achieve this goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

A.
Create a general-purpose v1 storage account. Create a blob container and copy the files to the blob container.
A.
Create a general-purpose v1 storage account. Create a blob container and copy the files to the blob container.
Answers
B.
Create a general-purpose v2 storage account that is configured for the Hot default access tier.Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
B.
Create a general-purpose v2 storage account that is configured for the Hot default access tier.Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
Answers
C.
Create a general-purpose v1 storage account. Create a file share in the storage account and copy the files to the file share.
C.
Create a general-purpose v1 storage account. Create a file share in the storage account and copy the files to the file share.
Answers
D.
Create a general-purpose v2 storage account that is configured for the Cool default access tier. Create a file share in the storage account and copy the files to the file share.
D.
Create a general-purpose v2 storage account that is configured for the Cool default access tier. Create a file share in the storage account and copy the files to the file share.
Answers
E.
Create an Azure Blob storage account that is configured for the Cool default access tier. Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
E.
Create an Azure Blob storage account that is configured for the Cool default access tier. Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
Answers
Suggested answer: B, E

Explanation:

https://docs.microsoft.com/en-us/azure/storage/blobs/manage-access-tier?tabs=portal

Question 120

Report
Export
Collapse

You have 100 Microsoft SQL Server integration Services (SSIS) packages that are configured to use 10 on-premises SQL Server databases as their destinations. You plan to migrate the 10 on-premises databases to Azure SQL Database You need to recommend a solution to host the SSlS packages in Azure. The solution must ensure that the packages can target the SQL Database instances as their destinations.

What should you include in the recommendation?

A.
SQL Server Migration Assistant (SSMA)
A.
SQL Server Migration Assistant (SSMA)
Answers
B.
Azure Data Catalog
B.
Azure Data Catalog
Answers
C.
Data Migration Assistant
C.
Data Migration Assistant
Answers
D.
Azure Data Factory
D.
Azure Data Factory
Answers
Suggested answer: C

Explanation:


Total 299 questions
Go to page: of 30
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms