ExamGecko
Login
Home / Microsoft / AZ-720 / List of questions
Ask Question

Microsoft AZ-720 Practice Test - Questions Answers, Page 7

Add to Whishlist

List of questions

Question 61

Report Export Collapse

A company enables just-in-time (JIT) virtual machine (VM) access in Azure.

An administrator observes a list of VMs on the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal. You need to determine why some VMs are not supported for JIT VM access.

What should you conclude?

The administrator is using the Microsoft Defender for Cloud free tier.
The administrator is using the Microsoft Defender for Cloud free tier.
The VMs were provisioned by using a classic deployment.
The VMs were provisioned by using a classic deployment.
The administrator does not have the SecurityReader role.
The administrator does not have the SecurityReader role.
The administrator does not have permissions to request JIT access to the VMs.
The administrator does not have permissions to request JIT access to the VMs.
Suggested answer: B
Explanation:

JIT VM access is only supported for VMs that are deployed using the Azure Resource Manager (ARM) deployment model. VMs that are provisioned using the classic deployment model are not compatible with JIT VM access and will be displayed under the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal.

asked 02/10/2024
Ridwan Sulaiman
41 questions

Question 62

Report Export Collapse

A company enables just-in-time (JIT) virtual machine (VM) access in Azure.

An administrator observes a list of VMs on the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal. You need to determine why some VMs are not supported for JIT VM access.

What should you conclude?

The administrator does not have the SecurityReader role.
The administrator does not have the SecurityReader role.
The administrator is using the Microsoft Defender for Cloud free tier.
The administrator is using the Microsoft Defender for Cloud free tier.
The client firewall does not allow port 22 on the VMs.
The client firewall does not allow port 22 on the VMs.
A network security group is not associated with the VMs.
A network security group is not associated with the VMs.
Suggested answer: B
asked 02/10/2024
louishn vn
30 questions

Question 63

Report Export Collapse

A company uses Azure AD Connect. The company plans to implement self-service password reset (SSPR). An administrator receives an error that password writeback could not be enabled during the Azure AD Connect configuration. The administrator observes the following event log error:

Error getting auth token

You need to resolve the issue.

What should you do?

Restart the Azure AD Connect service.
Restart the Azure AD Connect service.
Configure Azure AD Connect using a global administrator account that is not federated.
Configure Azure AD Connect using a global administrator account that is not federated.
Configure Azure AD Connect using a global administrator account with a password that is less than 256 characters.
Configure Azure AD Connect using a global administrator account with a password that is less than 256 characters.
Disable password writeback and then enable password writeback using the Azure AD Connect configuration.
Disable password writeback and then enable password writeback using the Azure AD Connect configuration.
Suggested answer: A
Explanation:

The error message β€œError getting auth token” occurs when you specify an incorrect password for the global administrator account provided at the beginning of the Azure AD Connect installation process To resolve this issue, you should check that you have specified the correct password for your global administrator account. If you have specified an incorrect password, update it and then restart the Azure AD Connect service

asked 02/10/2024
Ayanda Zwane
36 questions

Question 64

Report Export Collapse

A company uses an Azure Virtual Network (VNet) gateway named VNetGW1. VNetGW1 connects to a partner site by using a site-to-site VPN connection with dynamic routing. The company observes that the VPN disconnects from time to time.

You need to troubleshoot the cause for the disconnections.

What should you verify?

The partner's VPN device and VNetGW1 are configured using the same shared key.
The partner's VPN device and VNetGW1 are configured using the same shared key.
The IP address of the local network gateway matches the partner's VPN device.
The IP address of the local network gateway matches the partner's VPN device.
The partner's VPN device is enabled for Perfect forward secrecy.
The partner's VPN device is enabled for Perfect forward secrecy.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
Suggested answer: B
asked 02/10/2024
Venkat Burri
47 questions

Question 65

Report Export Collapse

A company uses an Azure Virtual Network (VNet) gateway named VNetGW1. VNetGW1 connects to a partner site by using a site-to-site VPN connection with dynamic routing. The company observes that the VPN disconnects from time to time.

You need to troubleshoot the cause for the disconnections.

What should you verify?

The partner's VPN device and VNetGW1 are configured using the same shared key.
The partner's VPN device and VNetGW1 are configured using the same shared key.
VNetGW1 has exceeded the subnet Security Association pairs.
VNetGW1 has exceeded the subnet Security Association pairs.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
The public IP address of the partner's VPN device is configured in the local network gateway address space on VNetGW1.
The public IP address of the partner's VPN device is configured in the local network gateway address space on VNetGW1.
Suggested answer: A
Explanation:

To troubleshoot the cause for the VPN disconnections between VNetGW1 and the partner site, you should verify that the partner’s VPN device and VNetGW1 are configured using the same shared key.

asked 02/10/2024
Fakhruddin Abbas
37 questions

Question 66

Report Export Collapse

A company uses an Azure Virtual Network (VNet) gateway named VNetGW1. VNetGW1 connects to a partner site by using a site-to-site VPN connection with dynamic routing. The company observes that the VPN disconnects from time to time.

You need to troubleshoot the cause for the disconnections.

What should you verify?

The partner's VPN device and VNetGW1 are configured using the same shared key.
The partner's VPN device and VNetGW1 are configured using the same shared key.
The partner's VPN device is configured for one VPN tunnel per subnet pair.
The partner's VPN device is configured for one VPN tunnel per subnet pair.
The public IP address of the partner's VPN device is configured in the local network gateway address space on VNetGW1.
The public IP address of the partner's VPN device is configured in the local network gateway address space on VNetGW1.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
Suggested answer: B
Explanation:

To troubleshoot the cause for the VPN disconnections between VNetGW1 and the partner site, you should verify that the partner’s VPN device is configured for one VPN tunnel per subnet pair.

asked 02/10/2024
Keshava Channabyraiah
38 questions

Question 67

Report Export Collapse

A company deploys ExpressRoute.

The company reports that there is an autonomous system (AS) number mismatch.

You need to identify the AS number of the circuit.

Which PowerShell cmdlet should you run?

Get-AzExpressRouteCircuitPeeringConfig
Get-AzExpressRouteCircuitPeeringConfig
Get-AzExpressRouteCircuitStats
Get-AzExpressRouteCircuitStats
Get-AzExpressRouteCircuitRouteTable
Get-AzExpressRouteCircuitRouteTable
Get-AzExpressRouteCircuit
Get-AzExpressRouteCircuit
Suggested answer: D
Explanation:

To identify the AS number of the circuit when there is an autonomous system (AS) number mismatch in ExpressRoute, you should run the Get-AzExpressRouteCircuit PowerShell cmdlet. Therefore, option D is correct. You should run the Get-AzExpressRouteCircuit PowerShell cmdlet.

asked 02/10/2024
Laurence Peterson
35 questions

Question 68

Report Export Collapse

A company has two virtual networks (VNets) that reside in the same Azure region.

An administrator reports that virtual machines (VMs) in each VNet are unable to connect to VMs in the other VNet. You need to configure a connection between the two networks that maximizes throughput and minimizes latency. What should you do?

Configure a VPN gateway.
Configure a VPN gateway.
Create a site-to-site VPN connection.
Create a site-to-site VPN connection.
Configure virtual network peering.
Configure virtual network peering.
Create a point-to-site VPN connection.
Create a point-to-site VPN connection.
Suggested answer: C
Explanation:

To configure a connection between two virtual networks (VNets) that reside in the same Azure region that maximizes throughput and minimizes latency, you should configure virtual network peering. Therefore, option C is correct. You should configure virtual network peering.

asked 02/10/2024
Amidou Florian TOURE
36 questions

Question 69

Report Export Collapse

A company migrates existing Ubuntu Linux servers from their on-premises vSphere infrastructure to Azure. The virtual machines (VMs) are experiencing a low network throughput of 20 Mbps. The VMs are expected to sustain 300 Mbps. You need to ensure that the VMs are compatible with Azure.

Which change should you make?

Install a kernel name that ends with -azure.
Install a kernel name that ends with -azure.
Configure the network interfaces to 1000 Mbps/full duplex.
Configure the network interfaces to 1000 Mbps/full duplex.
Redeploy the VM with Accelerated Networking enabled.
Redeploy the VM with Accelerated Networking enabled.
Increase the TCP buffers and window size kernel parameters.
Increase the TCP buffers and window size kernel parameters.
Suggested answer: C
Explanation:

To ensure that Ubuntu Linux servers are compatible with Azure and to increase network throughput from 20 Mbps to 300 Mbps, you should redeploy the VM with Accelerated Networking enabled. Therefore, option C is correct. You should redeploy the VM with Accelerated Networking enabled.

asked 02/10/2024
Koen Poos
47 questions

Question 70

Report Export Collapse

A company deploys an Azure Virtual Network gateway. The company connects to the gateway by using a site-to-site VPN connection. The company's on-premises VPN gateway is reporting an issue with the Phase 1 proposal from the Azure Virtual Network gateway. You need to troubleshoot the issue by reviewing the logs.

Which log should you analyze?

P2SDiagnosticLog
P2SDiagnosticLog
GatewayDiagnosticLog
GatewayDiagnosticLog
IKEDiagnosticLog
IKEDiagnosticLog
RouteDiagnosticLog
RouteDiagnosticLog
Suggested answer: C
Explanation:

To troubleshoot an issue with the Phase 1 proposal from an Azure Virtual Network gateway when connecting to a site-to-site VPN connection by reviewing logs, you should analyze the IKE Diagnostic log. Therefore, option C is correct. You should analyze the IKE Diagnostic log.

asked 02/10/2024
Keletso Rafedile
39 questions
Total 119 questions
Go to page: of 12
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT A company named Contoso connects its on-premises resources to Azure by using ExpressRoute. An administrator reports that the circuit is in a failed state. You need to resolve the issue. How should you complete the PowerShell commands?
You need to resolve the issue with VM10. What should you do?
A company has an Azure point-to-site virtual private network (VPN) that uses certificate-based authentication. A user reports that the following error message when they try to connect to the VPN by using a VPN client on a Windows 11 machine: A certificate could not be found You need to resolve the issue. Which three actions should you perform?
A company has an Azure Virtual Network gateway named VNetGW1. The company enables point-tosite connectivity on VNetGW1. An administrator configures VNetGW1 for the following: OpenVPN for the tunnel type. Azure certificate for the authentication type. Users receive a certificate mismatch error when connecting by using a VPN client. You need to resolve the certificate mismatch error. What should you do?
A company migrates an on-premises Windows virtual machine (VM) to Azure. An administrator enables backups for the VM by using the Azure portal. The company reports that the Azure VM backup job is failing. You need to troubleshoot the issue. Solution: Configure the retention range for the current VM backup policy. Does the solution meet the goal?
You need to resolve the issue repotted by Admin2. What should you do?
You need to resolve the VM2 routing issue. What should you do?
You need to resolve the issue with internet traffic from VM1 being routed directly to the internet. What should you do?
HOTSPOT You need to resolve the issue. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT You need to troubleshoot and resolve issues reported for contosostorage1. What should you do? To answer, select the appropriate option in the answer area. NOTE: Each correct selection is worth one point.