ExamGecko
Search Search Login
Home Home / Microsoft / AZ-800

Microsoft AZ-800 Practice Test - Questions Answers, Page 5

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Task 4 You need to run a container that uses the mcrmicrosoft.com/windows/servercofe/iis image on SRV1. Port 80 on the container must be published to port 5001 on SRV1 and the container must run in the background
SIMULATION LAB 8 You need to create an Active Directory Domain Services (AD DS) site named Site2 that is associated to an IP address range of 192.168.2.0 to 192.168.2.255.
SIMULATION LAB 10 You need to configure Hyper-V to ensure that running virtual machines can be moved between SRV1 and SRV2 without downtime. You do NOT need to move any virtual machines at this time.
Your network contains an Active Directory Domain Services (AD DS) forest named contoso.com. The root domain contains the domain controllers shown in the following table. A failure of which domain controller will prevent you from creating application partitions?
Task 10 You use a Group Policy preference to map \\dd.contoso.com\instal1 as drive H for all users>. If a user already has an existing drive mapping for H. the new drive mapping must take precedence.
SIMULATION LAB 9 You plan to create group managed service accounts (gMSAs). You need to configure the domain to support the creation of gMSAs.
DRAG DROP You have a disaggregated cluster deployment. The deployment contains a scale-out file server (SOFS) cluster that runs Windows Server and a compute duster that has the Hyper-V role enabled. You need to implement Storage Quality of Service (QoS). The solution must ensure that you can control the bandwidth usage between the SOFS cluster and the Hyper-V cluster. Which cmdlet should you run on each cluster? To answer, drag the appropriate cmdlets to the correct clusters. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point. Answer:
Task 8 You need to deploy a new primary DNS zone named fabrikam.com to DC1. The zone must be signed.
Task 6 You need to use Azure File Sync 10 replicate the contents of C:\app on SRV1 to an Azure file share named sharel1. file://dc1.contoso.com/install' > The required source files are located in a folder named \\dc1.contoso.com\install .
HOTSPOT Your network contains two VLANs for client computers and one VLAN for a datacenter Each VLAN is assigned an IPv4 subnet Currently, all the client computers use static IP addresses. You plan to deploy a DHCP server to the VLAN in the datacenter. You need to use the DHCP server to provide IP configurations to all the client computers. What is the minimum number of scopes and DHCP relays you should create? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Question 41

Report
Export
Collapse

Your network contains an on -premises Active Directory Domain Services (AD DS) domain named contoso.com The domain contains the objects shown in the following table.

You plan to sync contoso.com with an Azure Active Directory (Azure AD) tenant by using Azure AD Connect You need to ensure that all the objects can be used in Conditional Access policies What should you do?

A.
Change the scope of Group2 to Universal
A.
Change the scope of Group2 to Universal
Answers
B.
Clear the Configure device writeback option.
B.
Clear the Configure device writeback option.
Answers
C.
Change the scope o' Group1 and Group2 to Global
C.
Change the scope o' Group1 and Group2 to Global
Answers
D.
Select the Configure Hybrid Azure AD join option.
D.
Select the Configure Hybrid Azure AD join option.
Answers
Suggested answer: D

Explanation:

Hybrid Azure AD join needs to be configured to enable Computer1 to be used in Conditional Access Policies. Synchronized users, universal groups and domain local groups can be used in Conditional Access Policies.

Question 42

Report
Export
Collapse

Your network contains a multi-site Active Directory Domain Services (AD DS) forest. Each Active Directory site is connected by using manually configured site links and automatically generated connections. You need to minimize the convergence time for changes to Active Directory.

What should you do?

A.
For each site link, modify the options attribute.
A.
For each site link, modify the options attribute.
Answers
B.
For each site link, modify the site link costs.
B.
For each site link, modify the site link costs.
Answers
C.
For each site link, modify the replication schedule.
C.
For each site link, modify the replication schedule.
Answers
D.
Create a site link bridge that contains all the site links.
D.
Create a site link bridge that contains all the site links.
Answers
Suggested answer: C

Explanation:

Reference:

https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/determining-the-interval

Question 43

Report
Export
Collapse

Your network contains an Active Directory Domain Services (AD DS) domain- The domain contains 10 servers that run Windows Server. The servers have static IP addresses. You plan to use DHCP to assign IP addresses to the servers.

You need to ensure that each server always receives the same IP address.

Which type of identifier should you use to create a DHCP reservation for each server?

A.
universally unique identifier (UUID)
A.
universally unique identifier (UUID)
Answers
B.
fully qualified domain name (FQDN)
B.
fully qualified domain name (FQDN)
Answers
C.
NetBIOS name
C.
NetBIOS name
Answers
D.
MAC address
D.
MAC address
Answers
Suggested answer: D

Explanation:

Reference:

https://docs.microsoft.com/en-us/powershell/module/dhcpserver/adddhcpserverv4reservation?view=windowsserver2022-ps

Question 44

Report
Export
Collapse

You have an on-premises server named Server1 that runs Windows Server. You have an Azure virtual network that contains an Azure virtual network gateway. You need to connect only Server1 to the Azure virtual network What should you use?

A.
Azure Network Adapter
A.
Azure Network Adapter
Answers
B.
a Site-to-SiteVPN
B.
a Site-to-SiteVPN
Answers
C.
an ExpressRoute circuit
C.
an ExpressRoute circuit
Answers
D.
Azure Extended Network
D.
Azure Extended Network
Answers
Suggested answer: B

Explanation:


Question 45

Report
Export
Collapse

You have a server that runs Windows Server and has the DHCP Server role installed. The server has a scope named Scope! that has the following configurations:

• Address range: 192.168.0.2 to 192.16B.1.2M . Mask 255.255.254.0

• Router: 192.168.0.1

• Lease duration: 3 days

• DNS server 172.16.0.254

You have 50 Microsoft Teams Phone devices from the same vendor. All the devices have MAC addresses within the same range. You need to ensure that all the Teams Phone devices that receive a lease from Scope1 have IP addresses in the range of 192.168.1.100 to 192.168.1.200. The solution must NOT affect other DHCP clients that receive IP configurations from Scope1.

What should you create?

A.
a policy
A.
a policy
Answers
B.
a scope
B.
a scope
Answers
C.
a fitter
C.
a fitter
Answers
D.
scope options
D.
scope options
Answers
Suggested answer: A

Explanation:

Reference:

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/dn425040(v=ws.11)

Question 46

Report
Export
Collapse

You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with an Azure Active Directory (Azure AD) tenant The on-premises network is connected to Azure by using a Site-to- Site VPN. You have the DNS zones shown in the following table.

You need to ensure that names from (aDiifcam.com can be resolved from the on-premises network Which two actions should you perform? Each correct answer presents part of the solution, NOTE:

Each correct selection Is worth one point

A.
Create a conditional forwarder for fabrikam.com on DC1.
A.
Create a conditional forwarder for fabrikam.com on DC1.
Answers
B.
Create a stub zone for fabrikam.com on DC1.
B.
Create a stub zone for fabrikam.com on DC1.
Answers
C.
Create a secondary zone for fabnlcam.com on DO.
C.
Create a secondary zone for fabnlcam.com on DO.
Answers
D.
Deploy an Azure virtual machine that runs Windows Server. Modify the DNS Servers settings for the virtual network.
D.
Deploy an Azure virtual machine that runs Windows Server. Modify the DNS Servers settings for the virtual network.
Answers
E.
Deploy an Azure virtual machine that runs Windows Server. Configure the virtual machine &s a DNS forwarder.
E.
Deploy an Azure virtual machine that runs Windows Server. Configure the virtual machine &s a DNS forwarder.
Answers
Suggested answer: A, E

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/private-link/private-endpoint-dns#on-premises-workloadsusing-a-dns-forwarder

Question 47

Report
Export
Collapse

Your company has a main office and a branch office. The two offices are connected by using a WAN link. Each office contains a firewall that filters WAN traffic. The network in the branch office contains 10 servers that run Windows Server. All servers are administered from the main office only. You plan to manage the servers in the branch office by using a Windows Admin Center gateway.

On a server in the branch office, you install the Windows Admin Center gateway by using the defaults settings. You need to configure the firewall in the branch office to allow the required inbound connection to the Windows Admin Center gateway. Which inbound TCP port should you allow?

A.
443
A.
443
Answers
B.
3389
B.
3389
Answers
C.
5985
C.
5985
Answers
D.
6516
D.
6516
Answers
Suggested answer: A

Question 48

Report
Export
Collapse

You have an Azure subscription that contains the following resources:

• An Azure Log Analytics workspace

• An Azure Automation account

• Azure Arc.

You have an on-premises server named Server1 that is onboaraed to Azure Arc You need to manage Microsoft updates on Server! by using Azure Arc Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point

A.
Add Microsoft Sentinel to the Log Analytics workspace
A.
Add Microsoft Sentinel to the Log Analytics workspace
Answers
B.
On Server1, install the Azure Monitor agent
B.
On Server1, install the Azure Monitor agent
Answers
C.
From the Automation account, enable Update Management for Server1.
C.
From the Automation account, enable Update Management for Server1.
Answers
D.
From the Virtual machines data source of the Log Analytics workspace, connect Server1.
D.
From the Virtual machines data source of the Log Analytics workspace, connect Server1.
Answers
Suggested answer: B, C

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/manage/hybrid/server/bestpractices/arc-update-management

Question 49

Report
Export
Collapse

You have an Azure virtual machine named VM1 that has a private IP address only.

You configure the Windows Admin Center extension on VM1.

You have an on-premises computer that runs Windows 11. You use the computer for server management.

You need to ensure that you can use Windows Admin Center from the Azure portal to manage VM1.

What should you configure?

A.
an Azure Bastion host on the virtual network that contains VM1.
A.
an Azure Bastion host on the virtual network that contains VM1.
Answers
B.
a VPN connection to the virtual network that contains VM1.
B.
a VPN connection to the virtual network that contains VM1.
Answers
C.
a network security group 1NSG) rule that allows inbound traffic on port 443.
C.
a network security group 1NSG) rule that allows inbound traffic on port 443.
Answers
D.
a private endpoint on the virtual network that contains VM1.
D.
a private endpoint on the virtual network that contains VM1.
Answers
Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/windows-server/manage/windows-admin-center/azure/managevm

Question 50

Report
Export
Collapse

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your network contains an Active Directory Domain Services (AD DS) forest. The forest contains three Active Directory sites named Site1, Site2, and Site3. Each site contains two domain controllers. The sites are connected by using DEFAULTIPSITELINK.

You open a new branch office that contains only client computers.

You need to ensure that the client computers in the new office are primarily authenticated by the domain controllers in Site1. Solution: You create an organization unit (OU) that contains the client computers in the branch office. You configure the Try Next Closest Site Group Policy Object (GPO) setting in a GPO that is linked to the new OU. Does this meet the goal?

A.
Yes
A.
Yes
Answers
B.
No
B.
No
Answers
Suggested answer: B
Total 229 questions
Go to page: of 23
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms