Ask Question
Microsoft AZ-600 Practice Test - Questions Answers, Page 11
Add to Whishlist
List of questions
Question 101
HOTSPOT
You have a connected Azure Stack Hub integrated system that uses Active Directory Federation Services (AD FS) as the identity provider. You open a PowerShell session and store the GUID of an Azure subscription in a variable named $SubscriptionlD. You need to validate the AD FS integration.
How should you complete the PowerShell script? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Box 1: Connect-AzAccount
Steps to validate the Azure registration
1. Open an elevated PowerShell prompt, and then run the following command to install AzsReadinessChecker:
Install-Module -Name Az.BootStrapper -Force -AllowPrerelease
Install-AzProfile -Profile 2020-09-01-hybrid -Force
Install-Module -Name Microsoft.AzureStack.ReadinessChecker
2. From the PowerShell prompt, run the following command to set $subscriptionID as the Azure subscription to use. Replace xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx with your own subscription ID:
$subscriptionID = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
3. From the PowerShell prompt, run the following command:
Connect-AzAccount -subscription $subscriptionID
4. From the PowerShell prompt, run the following command to start validation of your subscription.
Provide your Azure AD administrator and your Azure AD tenant name:
Invoke-AzsRegistrationValidation -RegistrationSubscriptionID $subscriptionID Box 2: Microsoft.AzureStack.ReadinessChecker Validate AD FS integration 1. On a computer that meets the prerequisites, open an administrative PowerShell prompt and then run the following command to install AzsReadinessChecker:
Install-Module Microsoft.AzureStack.ReadinessChecker -Force -AllowPrerelease 2. From the PowerShell prompt, run the following command to start validation. Specify the value for -CustomADFSFederationMetadataEndpointUri as the URI for the federation metadata.
Invoke-AzsADFSValidation -CustomADFSFederationMetadataEndpointUri https://adfs.cont
Reference:
https://learn.microsoft.com/en-us/azure-stack/operator/azure-stack-validate-registration
https://learn.microsoft.com/en-us/azure-stack/operator/azure-stack-validate-adfs
Question 102
DRAG DROP
You have an Azure Stack Hub integrated system that contains a user named User1.
User1 creates a new virtual machine named VM01.
You need to grant User1 console access to VM01.
Which five actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Question 103
DRAG DROP
You have two Azure subscriptions named sub1 and sub2. The subscriptions are linked to an Azure AD tenant named contoso.com. You deploy on Azure Stack Hub integrated system and register the system with sub1.
You open a new PowerShell session and connect to sub1.
You need to register the Azure Stack Hub integrated system with sub2.
Which three PowerShell cmdlets should you run in sequence? To answer, move the appropriate cmdlets from the list of cmdlets to the answer area and arrange them in the correct order.
Question 104
HOTSPOT
You have a connected Azure Stack Hub integrated system.
You perform the following tasks:
• On a server named SERVER1. you create a file share named AzSHLogs.
• You create a PowerShell remoting session to the privileged endpoint (PEP) of the integrated system. • In a variable named $Session, you store a reference to the session.
• In a variable named $AdHinCredentials. you store a reference to the credentials required to write to AzSHLogs. You need to collect the Hyper-V event logs for all the cluster hosts and copy the logs to the AzSHLogs share. How should you complete the PowerShell script? To answer, select the appropriate options in the answer area.
Box 1: $using:AdminCredentials
Box 2: Storage
Send Azure Stack Hub diagnostic logs by using the privileged endpoint (PEP)
To run Get-AzureStackLog on an integrated system, you need to have access to the privileged endpoint (PEP). Here's an example script you can run using the PEP to collect logs. $ipAddress = "<IP ADDRESS OF THE PEP VM>" # You can also use the machine name instead of IP here. $password = ConvertTo-SecureString "<CLOUD ADMIN PASSWORD>" -AsPlainText –Force
$cred = New-Object -TypeName System.Management.Automation.PSCredential ("<DOMAIN NAME>\CloudAdmin", $password) $shareCred = Get-Credential
$session = New-PSSession -ComputerName $ipAddress -ConfigurationName PrivilegedEndpoint - Credential $cred -SessionOption (New-PSSessionOption -Culture en-US -UICulture en-US) $fromDate = (Get-Date).AddHours(-8)
$toDate = (Get-Date).AddHours(-2) # Provide the time that includes the period for your issue
Invoke-Command -Session $session { Get-AzureStackLog -OutputSharePath "<EXTERNAL SHARE ADDRESS>" -OutputShareCredential $using:shareCred -FilterByRole Storage -FromDate $using:fromDate -ToDate $using:toDate} if ($session) {
Remove-PSSession -Session $session
}
Reference:
https://learn.microsoft.com/en-us/azure-stack/operator/azure-stack-get-azurestacklog
Question 105
HOTSPOT
You have an Azure Stack Hub Integrated system.
Outbound traffic from the Azure Stack Hub integrated system is controlled by a third-party firewall. You need to implement the Infrastructure Backup Service.
Which storage location should you use for the backup, and which network port is required to perform the backup? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Question 106
HOTSPOT
You plan to deploy a disconnected Azure Stack Hub integrated system.
You need to identify which type of certificate to use for the deployment and the file format for the certificate. The solution must meet the following requirements:
• Minimize administrative effort.
• Maximize security.
What should identify? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Azure Stack Hub public key infrastructure (PKI) certificate requirements Azure Stack Hub has a public infrastructure network using externally accessible public IP addresses assigned to a small set of Azure Stack Hub services and possibly tenant VMs. PKI certificates with the appropriate DNS names for these Azure Stack Hub public infrastructure endpoints are required during Azure Stack Hub deployment. Box 1: A certificate from an internal certification authority (CA)
Your Azure Stack Hub infrastructure must have network access to the certificate authority's Certificate Revocation List (CRL) location published in the certificate. This CRL must be an http endpoint. Note: for disconnected deployments, certificates issued by a public certificate authority (CA) are not supported, if the CRL endpoint is not accessible. Features that are impaired or unavailable in disconnected deployments Azure Stack Hub was designed to work best when connected to Azure, so it's important to note that there are some features and functionality that are either impaired or completely unavailable in the disconnected mode.
Private/internal Certificate Authority (CA)
No impact - In cases where the deployment uses certificates issued by a private CA, such as an internal CA within an organization, only internal network access to the CRL endpoint is required. Internet connectivity is not required, but you should verify that your Azure Stack Hub infrastructure has the required network access to contact the CRL endpoint defined in the certificates CDP extension. Box 2: PFX
The certificate format must be PFX, as both the public and private keys are required for Azure Stack Hub installation. The private key must have the local machine key attribute set.
Reference:
https://learn.microsoft.com/en-us/azure-stack/operator/azure-stack-disconnected-deployment
https://learn.microsoft.com/en-us/azure-stack/operator/azure-stack-pki-certs
Question 107
DRAG DROP
You have an Azure Stack Hub integrated system that is enabled for mufti-tenancy. The integrated system is configured as shown in the following table.
You need lo onboard fabrikam.com as a guest Azure AD tenant to the integrated system.
How should you complete the Power Shell script? To answer, drag the appropriate values to the correct targets. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
A.
Answer: A
Unlock Premium Member
Question 108
DRAG DROP
You have an Azure Stack Hub integrated system that contains 20 subscriptions. The subscriptions use custom storage and compute quotas. You need to delete the custom quotas.
Which three Azure Stack Hub objects should you delete in sequence before you can delete the quotas? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Question 109
HOTSPOT
You deploy an App Service resource provider to an Azure Stack Hub integrated system.
You need to create an offer to deploy an Azure Functions app by using the resource provider.
Which resource provider should you specify in the offer, and which type of subscription should you use to test the functionality of the offer? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Question 110
HOTSPOT
You have a disconnected Azure Stack Hub integrated system that will be used in production.
You need to obtain a token to register the integrated system.
How should you complete the PowerShell script? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point.
Related questions
Export
If you didn't receive an email within 5 minutes, you should submit a support request to [email protected].
|
BASIC - 1 Month
$
10
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PLUS - 2 Months
$
15
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PRO - 6 Months
$
40
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Selling illegal goods, money scams etc.
Serious attack on a group.
Harassing an individual (including doxing)
Threatening or glorifying violence or serious harm, including self-harm
Nudity/Sexual content
Sexually explicit or suggestive imagery or writing involving minors
Sexually explicit or suggestive imagery or writing involving non-consenting adults or non-humans
Reusing content without attribution (link and blockquotes)
Not in English or has very bad formatting, grammar, and spelling
Author's credential is offensive, spam, or impersonation
Ex. Illegal content, incomplete question...
Question