ExamGecko
Login
Home / Microsoft / AZ-305 / List of questions
Ask Question

Microsoft AZ-305 Practice Test - Questions Answers, Page 5

Add to Whishlist

List of questions

Question 41

Report Export Collapse

Your company, named Contoso, Ltd., implements several Azure logic apps that have HTTP triggers.

The logic apps provide access to an on-premises web service.

Contoso establishes a partnership with another company named Fabrikam. IncL Fabrikam does not have an existing Azure Active Directory (Azure AD) tenant and uses third-party OAuth 2.0 identity management to authenticate its users. I Developers at Fabrikam plan to use a subset of the logic apps to build applications that will integrate with the on-premises web service of Contoso. You need to design a solution to provide the Fabrikam developers with access to the logic apps. The solution must meet the following requirements:

• Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso.

• The developers must be able to rely on their existing OAuth 2.0 provider to gain access to the logic apps.

• The solution must NOT require changes to the logic apps.

• The solution must NOT use Azure AD guest accounts.

What should you include in the solution?

Azure AD business-to-business (B2B)
Azure AD business-to-business (B2B)
Azure AD Application Proxy
Azure AD Application Proxy
Azure Front Door
Azure Front Door
Azure API Management
Azure API Management
Suggested answer: B
Explanation:


asked 02/10/2024
Eduardo Bravo
42 questions

Question 42

Report Export Collapse

You have an Azure subscription.

You need to recommend an Azure Kubernetes service (AKS) solution that will use Linux nodes. The solution must meet the following requirements:

• Minimize the time it takes to provision compute resources during scale-out operations.

• Support autoscaling of Linux containers.

• Minimize administrative effort.

Which scaling option should you recommend?

Virtual Kubetet
Virtual Kubetet
cluster autoscaler
cluster autoscaler
virtual nodes
virtual nodes
horizontal pod autoscaler
horizontal pod autoscaler
Suggested answer: B
Explanation:

https://docs.microsoft.com/en-us/azure/aks/virtual-nodes

asked 02/10/2024
manuele groppi
37 questions

Question 43

Report Export Collapse

You have an Azure subscription.

You need to deploy an Azure Kubernetes Service (AKS) solution that will use Windows Server 2019 nodes. The solution must meet the following requirements:

• Minimize the time it takes to provision compute resources during scale-out operations.

• Support autoscaling of Windows Server containers.

Which scaling option should you recommend?

horizontal pod autoscaler
horizontal pod autoscaler
Kubernetes version 1.20.2 or newer
Kubernetes version 1.20.2 or newer
cluster autoscaler
cluster autoscaler
Virtual nodes
Virtual nodes
with Virtual Kubelet ACI
with Virtual Kubelet ACI
Suggested answer: C
Explanation:

https://docs.microsoft.com/en-us/azure/aks/cluster-autoscaler#about-the-cluster-autoscaler

asked 02/10/2024
ERIC LUM
45 questions

Question 44

Report Export Collapse

You are designing an order processing system in Azure that will contain the Azure resources shown in the following table.

Microsoft AZ-305 image Question 44 86548 10022024015024000000

The order processing system will have the following transaction flow:

A customer will place an order by using App1.

When the order is received, App1 will generate a message to check for product availability at vendor 1 and vendor 2. An integration component will process the message, and then trigger either Function1 or Function2 depending on the type of order. Once a vendor confirms the product availability, a status message for App1 will be generated by Function1 or Function2. All the steps of the transaction will be logged to storage1.

Which type of resource should you recommend for the integration component?

an Azure Data Factory pipeline
an Azure Data Factory pipeline
an Azure Service Bus queue
an Azure Service Bus queue
an Azure Event Grid domain
an Azure Event Grid domain
an Azure Event Hubs capture
an Azure Event Hubs capture
Suggested answer: A
Explanation:

A data factory can have one or more pipelines. A pipeline is a logical grouping of activities that together perform a task. The activities in a pipeline define actions to perform on your data.

Data Factory has three groupings of activities: data movement activities, data transformation activities, and control activities. Azure Functions is now integrated with Azure Data Factory, allowing you to run an Azure function as a step in your data factory pipelines.

Reference:

https://docs.microsoft.com/en-us/azure/data-factory/concepts-pipelines-activities

asked 02/10/2024
Junaid Sahebzada
39 questions

Question 45

Report Export Collapse

You plan to deploy 10 applications to Azure. The applications will be deployed to two Azure Kubernetes Service (AKS) clusters. Each cluster will be deployed to a separate Azure region. The application deployment must meet the following requirements:

• Ensure that the applications remain available if a single AKS cluster fails.

• Ensure that the connection traffic over the internet is encrypted by using SSL without having to configure SSL on each container. Which service should you include in the recommendation?

AKS ingress controller
AKS ingress controller
Azure Traffic Manager
Azure Traffic Manager
Azure Front Door
Azure Front Door
Azure Load Balancer
Azure Load Balancer
Suggested answer: C
Explanation:

"Azure Front Door, which focuses on global load-balancing and site acceleration, and Azure CDN Standard, which offers static content caching and acceleration. The new Azure Front Door brings together security with CDN technology for a cloud-based CDN with threat protection and additional capabilities. "

asked 02/10/2024
Arnaud DUTEL
37 questions

Question 46

Report Export Collapse

You have an Azure subscription.

You need to recommend a solution to provide developers with the ability to provision Azure virtual machines. The solution must meet the following requirements:

• Only allow the creation of the virtual machines in specific regions.

• Only allow the creation of specific sizes of virtual machines.

What should you include in the recommendation?

Conditional Access policies
Conditional Access policies
role-based access control (RBAC)
role-based access control (RBAC)
Azure Resource Manager (ARM) templates
Azure Resource Manager (ARM) templates
Azure Policy
Azure Policy
Suggested answer: B
Explanation:

https://docs.microsoft.com/en-us/azure/governance/policy/tutorials/create-and-manage

https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/manage/azure-servermanagement/common-policies#restrict-vm-size

asked 02/10/2024
José Gonçalves
36 questions

Question 47

Report Export Collapse

You plan to deploy an application named App1 that will run on five Azure virtual machines.

Additional virtual machines will be deployed later to run App1.

You need to recommend a solution to meet the following requirements for the virtual machines that will run App1:

Ensure that the virtual machines can authenticate to Azure Active Directory (Azure AD) to gain access to an Azure key vault, Azure Logic Apps instances, and an Azure SQL database. Avoid assigning new roles and permissions for Azure services when you deploy additional virtual machines. Avoid storing secrets and certificates on the virtual machines.

Which type of identity should you include in the recommendation?

a service principal that is configured to use a certificate
a service principal that is configured to use a certificate
a system-assigned managed identity
a system-assigned managed identity
a service principal that is configured to use a client secret
a service principal that is configured to use a client secret
a user-assigned managed identity
a user-assigned managed identity
Suggested answer: D
Explanation:

Managed identities for Azure resources is a feature of Azure Active Directory.

User-assigned managed identity can be shared. The same user-assigned managed identity can be associated with more than one Azure resource. Incorrect Answers:

B: System-assigned managed identity cannot be shared. It can only be associated with a single Azure resource.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azureresources/overview

asked 02/10/2024
nagalingam mk
45 questions

Question 48

Report Export Collapse

You have an application that is used by 6,000 users to validate their vacation requests. The application manages its own credential Users must enter a username and password to access the application. The application does NOT support identity providers.

You plan to upgrade the application to use single sign-on (SSO) authentication by using an Azure Active Directory (Azure AD) application registration. Which SSO method should you use?

password-based
password-based
OpenID Connect
OpenID Connect
header-based
header-based
SAML
SAML
Suggested answer: A
asked 02/10/2024
Mark Oh
41 questions

Question 49

Report Export Collapse

You have data files in Azure Blob Storage.

You plan to transform the files and move them to Azure Data Lake Storage.

You need to transform the data by using mapping data flow.

Which service should you use?

Azure Data Box Gateway
Azure Data Box Gateway
Azure Databricks
Azure Databricks
Azure Data Factory
Azure Data Factory
Azure Storage Sync
Azure Storage Sync
Suggested answer: C
Explanation:

You can use Copy Activity in Azure Data Factory to copy data from and to Azure Data Lake Storage Gen2, and use Data Flow to transform data in Azure Data Lake Storage Gen2.

Reference:

https://docs.microsoft.com/en-us/azure/data-factory/connector-azure-data-lake-storage

asked 02/10/2024
Asif Ali
40 questions

Question 50

Report Export Collapse

You plan to deploy an app that will use an Azure Storage account.

You need to deploy the storage account. The solution must meet the following requirements:

• Store the data of multiple users.

• Encrypt each user's data by using a separate key.

• Encrypt all the data in the storage account by using Microsoft keys or customer-managed keys.

What should you deploy?

files in a general purpose v2 storage account.
files in a general purpose v2 storage account.
blobs in an Azure Data Lake Storage Gen2 account.
blobs in an Azure Data Lake Storage Gen2 account.
files in a premium file share storage account.
files in a premium file share storage account.
blobs in a general purpose v2 storage account
blobs in a general purpose v2 storage account
Suggested answer: B
asked 02/10/2024
Christophe RUIZ
38 questions
Total 304 questions
Go to page: of 31
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You have 100 servers that run Windows Server 2012 R2 and host Microsoft SQL Server 2012 R2 instances. The instances host databases that have the following characteristics: The largest database is currently 3 TB. None of the databases will ever exceed 4 TB. Stored procedures are implemented by using CLR. You plan to move all the data from SQL Server to Azure. You need to recommend an Azure service to host the databases. The solution must meet the following requirements: Whenever possible, minimize management overhead for the migrated databases. Minimize the number of database changes required to facilitate the migration. Ensure that users can authenticate by using their Active Directory credentials. What should you include in the recommendation?
You have an Azure Active Directory (Azure AD) tenant named contoso.com that has a security group named Group'. Group i is configured Tor assigned membership. Group I has 50 members. including 20 guest users. You need To recommend a solution for evaluating the member ship of Group1. The solution must meet the following requirements: • The evaluation must be repeated automatically every three months • Every member must be able to report whether they need to be in Group1 • Users who report that they do not need to be in Group 1 must be removed from Group1 automatically • Users who do not report whether they need to be m Group1 must be removed from Group1 automatically. What should you include in me recommendation?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company has deployed several virtual machines (VMs) on-premises and to Azure. Azure ExpressRoute has been deployed and configured for on-premises to Azure connectivity. Several VMs are exhibiting network connectivity issues. You need to analyze the network traffic to determine whether packets are being allowed or denied to the VMs. Solution: Use Azure Network Watcher to run IP flow verify to analyze the network traffic Does the solution meet the goal?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company deploys several virtual machines on-premises and to Azure. ExpressRoute is being deployed and configured for on-premises to Azure connectivity. Several virtual machines exhibit network connectivity issues. You need to analyze the network traffic to identify whether packets are being allowed or denied to the virtual machines. Solution: Use Azure Traffic Analytics in Azure Network Watcher to analyze the network traffic. Does this meet the goal?
You have an on-premises network and an Azure subscription. The on-premises network has several branch offices. A branch office in Toronto contains a virtual machine named VM1 that is configured as a file server. Users access the shared files on VM1 from all the offices. You need to recommend a solution to ensure that the users can access the shares files as quickly as possible if the Toronto branch office is inaccessible. What should you include in the recommendation?
You are designing an Azure Cosmos DB solution that will host multiple writable replicas in multiple Azure regions. You need to recommend the strongest database consistency level for the design. The solution must meet the following requirements: Provide a latency-based Service Level Agreement (SLA) for writes. Support multiple regions. Which consistency level should you recommend?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company plans to deploy various Azure App Service instances that will use Azure SQL databases. The App Service instances will be deployed at the same time as the Azure SQL databases. The company has a regulatory requirement to deploy the App Service instances only to specific Azure regions. The resources for the App Service instances must reside in the same region. You need to recommend a solution to meet the regulatory requirement. Solution: You recommend using the Regulatory compliance dashboard in Azure Security Center. Does this meet the goal?
You have an Azure subscription that contains a custom application named Application was developed by an external company named fabric, Ltd. Developers at Fabrikam were assigned role-based access control (RBAV) permissions to the Application components. All users are licensed for the Microsoft 365 E5 plan. You need to recommends a solution to verify whether the Faricak developers still require permissions to Application1. The solution must the following requirements. * To the manager of the developers, send a monthly email message that lists the access permissions to Application1. * If the manager does not verify access permission, automatically revoke that permission. * Minimize development effort. What should you recommend?
You are designing an order processing system in Azure that will contain the Azure resources shown in the following table. The order processing system will have the following transaction flow: A customer will place an order by using App1. When the order is received, App1 will generate a message to check for product availability at vendor 1 and vendor 2. An integration component will process the message, and then trigger either Function1 or Function2 depending on the type of order. Once a vendor confirms the product availability, a status message for App1 will be generated by Function1 or Function2. All the steps of the transaction will be logged to storage1. Which type of resource should you recommend for the integration component?
You have an Azure Active Directory (Azure AD) tenant that syncs with an on-premises Active Directory domain. You have an internal web app named WebApp1 that is hosted on-premises. WebApp1 uses Integrated Windows authentication. Some users work remotely and do NOT have VPN access to the on-premises network. You need to provide the remote users with single sign-on (SSO) access to WebApp1. Which two features should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.