ExamGecko
Search Search Login
Home Home / Microsoft / AZ-305

Microsoft AZ-305 Practice Test - Questions Answers, Page 5

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company plans to deploy various Azure App Service instances that will use Azure SQL databases. The App Service instances will be deployed at the same time as the Azure SQL databases. The company has a regulatory requirement to deploy the App Service instances only to specific Azure regions. The resources for the App Service instances must reside in the same region. You need to recommend a solution to meet the regulatory requirement. Solution: You recommend using an Azure policy initiative to enforce the location. Does this meet the goal?
You have an Azure subscription. You need to recommend an Azure Kubernetes service (AKS) solution that will use Linux nodes. The solution must meet the following requirements: • Minimize the time it takes to provision compute resources during scale-out operations. • Support autoscaling of Linux containers. • Minimize administrative effort. Which scaling option should you recommend?
Your company, named Contoso, Ltd., implements several Azure logic apps that have HTTP triggers. The logic apps provide access to an on-premises web service. Contoso establishes a partnership with another company named Fabrikam. IncL Fabrikam does not have an existing Azure Active Directory (Azure AD) tenant and uses third-party OAuth 2.0 identity management to authenticate its users. I Developers at Fabrikam plan to use a subset of the logic apps to build applications that will integrate with the on-premises web service of Contoso. You need to design a solution to provide the Fabrikam developers with access to the logic apps. The solution must meet the following requirements: • Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso. • The developers must be able to rely on their existing OAuth 2.0 provider to gain access to the logic apps. • The solution must NOT require changes to the logic apps. • The solution must NOT use Azure AD guest accounts. What should you include in the solution?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company has deployed several virtual machines (VMs) on-premises and to Azure. Azure ExpressRoute has been deployed and configured for on-premises to Azure connectivity. Several VMs are exhibiting network connectivity issues. You need to analyze the network traffic to determine whether packets are being allowed or denied to the VMs. Solution: Use Azure Network Watcher to run IP flow verify to analyze the network traffic Does the solution meet the goal?
You have 100 servers that run Windows Server 2012 R2 and host Microsoft SQL Server 2012 R2 instances. The instances host databases that have the following characteristics: The largest database is currently 3 TB. None of the databases will ever exceed 4 TB. Stored procedures are implemented by using CLR. You plan to move all the data from SQL Server to Azure. You need to recommend an Azure service to host the databases. The solution must meet the following requirements: Whenever possible, minimize management overhead for the migrated databases. Minimize the number of database changes required to facilitate the migration. Ensure that users can authenticate by using their Active Directory credentials. What should you include in the recommendation?
You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager resource deployment in your subscription. What should you include in the recommendation?
You are designing an order processing system in Azure that will contain the Azure resources shown in the following table. The order processing system will have the following transaction flow: A customer will place an order by using App1. When the order is received, App1 will generate a message to check for product availability at vendor 1 and vendor 2. An integration component will process the message, and then trigger either Function1 or Function2 depending on the type of order. Once a vendor confirms the product availability, a status message for App1 will be generated by Function1 or Function2. All the steps of the transaction will be logged to storage1. Which type of resource should you recommend for the integration component?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your company deploys several virtual machines on-premises and to Azure. ExpressRoute is being deployed and configured for on-premises to Azure connectivity. Several virtual machines exhibit network connectivity issues. You need to analyze the network traffic to identify whether packets are being allowed or denied to the virtual machines. Solution: Use Azure Traffic Analytics in Azure Network Watcher to analyze the network traffic. Does this meet the goal?
You have an Azure Active Directory (Azure AD) tenant named contoso.com that has a security group named Group'. Group i is configured Tor assigned membership. Group I has 50 members. including 20 guest users. You need To recommend a solution for evaluating the member ship of Group1. The solution must meet the following requirements: • The evaluation must be repeated automatically every three months • Every member must be able to report whether they need to be in Group1 • Users who report that they do not need to be in Group 1 must be removed from Group1 automatically • Users who do not report whether they need to be m Group1 must be removed from Group1 automatically. What should you include in me recommendation?
You have an Azure Active Directory (Azure AD) tenant that syncs with an on-premises Active Directory domain. You have an internal web app named WebApp1 that is hosted on-premises. WebApp1 uses Integrated Windows authentication. Some users work remotely and do NOT have VPN access to the on-premises network. You need to provide the remote users with single sign-on (SSO) access to WebApp1. Which two features should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Question 41

Report
Export
Collapse

Your company, named Contoso, Ltd., implements several Azure logic apps that have HTTP triggers.

The logic apps provide access to an on-premises web service.

Contoso establishes a partnership with another company named Fabrikam. IncL Fabrikam does not have an existing Azure Active Directory (Azure AD) tenant and uses third-party OAuth 2.0 identity management to authenticate its users. I Developers at Fabrikam plan to use a subset of the logic apps to build applications that will integrate with the on-premises web service of Contoso. You need to design a solution to provide the Fabrikam developers with access to the logic apps. The solution must meet the following requirements:

• Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso.

• The developers must be able to rely on their existing OAuth 2.0 provider to gain access to the logic apps.

• The solution must NOT require changes to the logic apps.

• The solution must NOT use Azure AD guest accounts.

What should you include in the solution?

A.
Azure AD business-to-business (B2B)
A.
Azure AD business-to-business (B2B)
Answers
B.
Azure AD Application Proxy
B.
Azure AD Application Proxy
Answers
C.
Azure Front Door
C.
Azure Front Door
Answers
D.
Azure API Management
D.
Azure API Management
Answers
Suggested answer: B

Explanation:


Question 42

Report
Export
Collapse

You have an Azure subscription.

You need to recommend an Azure Kubernetes service (AKS) solution that will use Linux nodes. The solution must meet the following requirements:

• Minimize the time it takes to provision compute resources during scale-out operations.

• Support autoscaling of Linux containers.

• Minimize administrative effort.

Which scaling option should you recommend?

A.
Virtual Kubetet
A.
Virtual Kubetet
Answers
B.
cluster autoscaler
B.
cluster autoscaler
Answers
C.
virtual nodes
C.
virtual nodes
Answers
D.
horizontal pod autoscaler
D.
horizontal pod autoscaler
Answers
Suggested answer: B

Explanation:

https://docs.microsoft.com/en-us/azure/aks/virtual-nodes

Question 43

Report
Export
Collapse

You have an Azure subscription.

You need to deploy an Azure Kubernetes Service (AKS) solution that will use Windows Server 2019 nodes. The solution must meet the following requirements:

• Minimize the time it takes to provision compute resources during scale-out operations.

• Support autoscaling of Windows Server containers.

Which scaling option should you recommend?

A.
horizontal pod autoscaler
A.
horizontal pod autoscaler
Answers
B.
Kubernetes version 1.20.2 or newer
B.
Kubernetes version 1.20.2 or newer
Answers
C.
cluster autoscaler
C.
cluster autoscaler
Answers
D.
Virtual nodes
D.
Virtual nodes
Answers
E.
with Virtual Kubelet ACI
E.
with Virtual Kubelet ACI
Answers
Suggested answer: C

Explanation:

https://docs.microsoft.com/en-us/azure/aks/cluster-autoscaler#about-the-cluster-autoscaler

Question 44

Report
Export
Collapse

You are designing an order processing system in Azure that will contain the Azure resources shown in the following table.

The order processing system will have the following transaction flow:

A customer will place an order by using App1.

When the order is received, App1 will generate a message to check for product availability at vendor 1 and vendor 2. An integration component will process the message, and then trigger either Function1 or Function2 depending on the type of order. Once a vendor confirms the product availability, a status message for App1 will be generated by Function1 or Function2. All the steps of the transaction will be logged to storage1.

Which type of resource should you recommend for the integration component?

A.
an Azure Data Factory pipeline
A.
an Azure Data Factory pipeline
Answers
B.
an Azure Service Bus queue
B.
an Azure Service Bus queue
Answers
C.
an Azure Event Grid domain
C.
an Azure Event Grid domain
Answers
D.
an Azure Event Hubs capture
D.
an Azure Event Hubs capture
Answers
Suggested answer: A

Explanation:

A data factory can have one or more pipelines. A pipeline is a logical grouping of activities that together perform a task. The activities in a pipeline define actions to perform on your data.

Data Factory has three groupings of activities: data movement activities, data transformation activities, and control activities. Azure Functions is now integrated with Azure Data Factory, allowing you to run an Azure function as a step in your data factory pipelines.

Reference:

https://docs.microsoft.com/en-us/azure/data-factory/concepts-pipelines-activities

Question 45

Report
Export
Collapse

You plan to deploy 10 applications to Azure. The applications will be deployed to two Azure Kubernetes Service (AKS) clusters. Each cluster will be deployed to a separate Azure region. The application deployment must meet the following requirements:

• Ensure that the applications remain available if a single AKS cluster fails.

• Ensure that the connection traffic over the internet is encrypted by using SSL without having to configure SSL on each container. Which service should you include in the recommendation?

A.
AKS ingress controller
A.
AKS ingress controller
Answers
B.
Azure Traffic Manager
B.
Azure Traffic Manager
Answers
C.
Azure Front Door
C.
Azure Front Door
Answers
D.
Azure Load Balancer
D.
Azure Load Balancer
Answers
Suggested answer: C

Explanation:

"Azure Front Door, which focuses on global load-balancing and site acceleration, and Azure CDN Standard, which offers static content caching and acceleration. The new Azure Front Door brings together security with CDN technology for a cloud-based CDN with threat protection and additional capabilities. "

Question 46

Report
Export
Collapse

You have an Azure subscription.

You need to recommend a solution to provide developers with the ability to provision Azure virtual machines. The solution must meet the following requirements:

• Only allow the creation of the virtual machines in specific regions.

• Only allow the creation of specific sizes of virtual machines.

What should you include in the recommendation?

A.
Conditional Access policies
A.
Conditional Access policies
Answers
B.
role-based access control (RBAC)
B.
role-based access control (RBAC)
Answers
C.
Azure Resource Manager (ARM) templates
C.
Azure Resource Manager (ARM) templates
Answers
D.
Azure Policy
D.
Azure Policy
Answers
Suggested answer: B

Explanation:

https://docs.microsoft.com/en-us/azure/governance/policy/tutorials/create-and-manage

https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/manage/azure-servermanagement/common-policies#restrict-vm-size

Question 47

Report
Export
Collapse

You plan to deploy an application named App1 that will run on five Azure virtual machines.

Additional virtual machines will be deployed later to run App1.

You need to recommend a solution to meet the following requirements for the virtual machines that will run App1:

Ensure that the virtual machines can authenticate to Azure Active Directory (Azure AD) to gain access to an Azure key vault, Azure Logic Apps instances, and an Azure SQL database. Avoid assigning new roles and permissions for Azure services when you deploy additional virtual machines. Avoid storing secrets and certificates on the virtual machines.

Which type of identity should you include in the recommendation?

A.
a service principal that is configured to use a certificate
A.
a service principal that is configured to use a certificate
Answers
B.
a system-assigned managed identity
B.
a system-assigned managed identity
Answers
C.
a service principal that is configured to use a client secret
C.
a service principal that is configured to use a client secret
Answers
D.
a user-assigned managed identity
D.
a user-assigned managed identity
Answers
Suggested answer: D

Explanation:

Managed identities for Azure resources is a feature of Azure Active Directory.

User-assigned managed identity can be shared. The same user-assigned managed identity can be associated with more than one Azure resource. Incorrect Answers:

B: System-assigned managed identity cannot be shared. It can only be associated with a single Azure resource.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azureresources/overview

Question 48

Report
Export
Collapse

You have an application that is used by 6,000 users to validate their vacation requests. The application manages its own credential Users must enter a username and password to access the application. The application does NOT support identity providers.

You plan to upgrade the application to use single sign-on (SSO) authentication by using an Azure Active Directory (Azure AD) application registration. Which SSO method should you use?

A.
password-based
A.
password-based
Answers
B.
OpenID Connect
B.
OpenID Connect
Answers
C.
header-based
C.
header-based
Answers
D.
SAML
D.
SAML
Answers
Suggested answer: A

Question 49

Report
Export
Collapse

You have data files in Azure Blob Storage.

You plan to transform the files and move them to Azure Data Lake Storage.

You need to transform the data by using mapping data flow.

Which service should you use?

A.
Azure Data Box Gateway
A.
Azure Data Box Gateway
Answers
B.
Azure Databricks
B.
Azure Databricks
Answers
C.
Azure Data Factory
C.
Azure Data Factory
Answers
D.
Azure Storage Sync
D.
Azure Storage Sync
Answers
Suggested answer: C

Explanation:

You can use Copy Activity in Azure Data Factory to copy data from and to Azure Data Lake Storage Gen2, and use Data Flow to transform data in Azure Data Lake Storage Gen2.

Reference:

https://docs.microsoft.com/en-us/azure/data-factory/connector-azure-data-lake-storage

Question 50

Report
Export
Collapse

You plan to deploy an app that will use an Azure Storage account.

You need to deploy the storage account. The solution must meet the following requirements:

• Store the data of multiple users.

• Encrypt each user's data by using a separate key.

• Encrypt all the data in the storage account by using Microsoft keys or customer-managed keys.

What should you deploy?

A.
files in a general purpose v2 storage account.
A.
files in a general purpose v2 storage account.
Answers
B.
blobs in an Azure Data Lake Storage Gen2 account.
B.
blobs in an Azure Data Lake Storage Gen2 account.
Answers
C.
files in a premium file share storage account.
C.
files in a premium file share storage account.
Answers
D.
blobs in a general purpose v2 storage account
D.
blobs in a general purpose v2 storage account
Answers
Suggested answer: B
Total 299 questions
Go to page: of 30
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms