A Cloud Guru - Azure Fundamentals Flashcards

Question 1

Q

Which Azure products and services are available through the Azure portal?

A) Only products that are globally available

B) Only products that are not in private or public preview

C) Only products and services that aren’t free

D) All products and services that are generally available and in private or public preview

Answer

A

D) All products and services that are generally available and in private or public preview

You can access all generally available Azure products and services through the Azure portal with any type of subscription. You will also see services in both private and public preview available in the Azure portal.

Question 2

Q

What is a PowerShell cmdlet?

A) A PowerShell scripting language specifically for Azure

B) A piece of advice from Microsoft about PowerShell updates

C) A lightweight command that is used in the PowerShell environment to perform an action

D) A lightweight version of PowerShell that can run on mobile devices

Answer

A

C) A lightweight command that is used in the PowerShell environment to perform an action

Cmdlets make up the majority of Azure features for PowerShell. This makes it easier to be consistent and efficient when interacting with Azure resources. PowerShell works with many different services.

Question 3

Q

What are three use cases for the Azure mobile app?

(Choose 3)

A) It is a replacement for using the Azure portal for everyday tasks, such as creating resources and analyzing Azure Monitor logs.

B) Interact with your Azure resources via Azure Resource Manager.

C) Maintain insight on the go into the current status and health of your Azure environment.

D) Respond to outages and emergencies from anywhere you have an internet connection.

Answer

A

B) Interact with your Azure resources via Azure Resource Manager.

All of your resources and subscriptions are visible on the mobile app. You can even manage resources in the CloudShell too. The Azure mobile app uses the Azure Resource Manager to interact with your Azure resources, which means it is in sync with the Azure CLI, Azure portal, or whatever else you use to interact with Azure.

C) Maintain insight on the go into the current status and health of your Azure environment.

The Azure mobile app provides a quick overview of your resources.

D) Respond to outages and emergencies from anywhere you have an internet connection.

Alerts are instantly visible, and you can investigate all your resources as well.

Question 4

Q

Why would you use the Azure Cloud Shell?

A) The Cloud Shell gets new features first.

B) The Cloud Shell is free for 12 months.

C) Cloud Shell enables access to a browser-based command-line experience built with Azure management tasks in mind.

D) You can update the Cloud Shell independently of Azure CLI and Azure PowerShell.

Answer

A

C) Cloud Shell enables access to a browser-based command-line experience built with Azure management tasks in mind.

Cloud Shell is 100% browser based and provides a complete environment where you can choose between Bash or PowerShell.

Question 5

Q

What are some of the key advantages of using ARM templates for creating cloud infrastructure?

(Choose 3)

A) Source control

B) Idempotency

C) Declarative

D) Faster processing in the Azure Resource Manager

E) Service integrations

Answer

A

A) Source control

Use source control to track changes to the ARM template over time. This can identify any issues that come from changes to the template.

B) Idempotency

You can execute a template any number of times with the same result.

C) Declarative

You only say “what” you want to create, not “how.” Azure takes care of the “how.”

Question 6

Q

Why is cloud agility important for businesses?

A) To automatically improve the fidelity of resource usage and utilize the platform better

B) To enable the ability to rapidly develop, test, and launch software applications that drive business growth

C) To be able to quickly scale resources when needed at short notice

D) To increase the return on investment from using cloud elasticity

Answer

A

B) To enable the ability to rapidly develop, test, and launch software applications that drive business growth

Cloud agility is tied to the rapid provisioning of computer resources. Cloud environments can usually provide new compute instances or storage in minutes, a far cry from the common weeks (or months, in some organizations) that the same provisioning process can take in typical IT shops.

Question 7

Q

What does fault tolerance describe for cloud computing?

A) A complete plan to recover critical business systems and normal operations, in case of a disaster

B) The ability for multiple regions within Azure to “cover” each other in case of an outage

C) A system within Azure that uses cloud computing resources to mitigate faults quickly

D) Ensuring services and applications remain available in the event of a failure

Answer

A

D) Ensuring services and applications remain available in the event of a failure

Fault tolerance means a failure can occur on Azure services and applications, but it will not affect its availability.

Question 8

Q

What is high availability in cloud computing?

A) High availability refers to the availability of the Azure portal. You can always get access to an overview of what your Azure services are doing.

B) Microsoft guarantees you will always have access to the resources on Azure.

C) Azure will provide an infinite number of resources to your application to make sure it always runs optimally.

D) If one resource on Azure dies unexpectedly, another resource will almost instantly take over the workload.

Answer

A

D) If one resource on Azure dies unexpectedly, another resource will almost instantly take over the workload.

High availability is one of the core benefits of using cloud computing. It ensures backup resources are ready to take over any workload.

Question 9

Q

Select all the true statements per Microsoft’s definitions of cloud types.

(Choose 3)

A) Private clouds can be hosted at your datacenter or hosted by a third-party service. Private clouds offer advantages of flexibility, control, and scalability.

B) Public clouds typically cost more than private clouds, but they are generally less reliable than on-premises infrastructure (private cloud).

C) A hybrid cloud combines a public cloud (such as Azure) with on-premises infrastructure (private cloud).

D) In private clouds, services and infrastructure are always maintained on a private network, and the hardware and software are dedicated solely to your organization.

Answer

A

A) Private clouds can be hosted at your datacenter or hosted by a third-party service. Private clouds offer advantages of flexibility, control, and scalability.

Microsoft defines private clouds as being able to be hosted at your datacenter or hosted by a third-party service. Microsoft considers private clouds as offering more flexibility, control, and scalability. Note: Other cloud vendors would not agree with those advantages of private clouds, but it is best to be aware of Microsoft’s view in case it comes up on the exam.

C) A hybrid cloud combines a public cloud (such as Azure) with on-premises infrastructure (private cloud).

Microsoft defines hybrid cloud as combining a public cloud (such as Azure) with on-premises infrastructure (private cloud).

D) In private clouds, services and infrastructure are always maintained on a private network, and the hardware and software are dedicated solely to your organization.

A private cloud consists of cloud computing resources used exclusively by one business or organization. The private cloud can be physically located at your organization’s on-site datacenter, or it can be hosted by a third-party service provider. But in a private cloud, the services and infrastructure are always maintained on a private network, and the hardware and software are dedicated solely to your organization.

Question 10

Q

What does Infrastructure as a Service describe?

A) A type of cloud computing service that offers essential compute, storage, and networking resources on demand, on a pay-as-you-go basis

B) A complete development and deployment environment in the cloud, with resources that enable you to deliver everything from simple cloud-based apps to sophisticated, cloud-enabled enterprise applications

C) Any service on Azure that you can rent or buy upfront

D) A type of cloud computing service that allows users to connect to and use cloud-based apps over the internet

Answer

A

A) A type of cloud computing service that offers essential compute, storage, and networking resources on demand, on a pay-as-you-go basis

Infrastructure as a service (IaaS) is a type of cloud computing service that offers essential compute, storage, and networking resources on demand, on a pay-as-you-go basis. IaaS lets you bypass the cost and complexity of buying and managing physical servers and datacenter infrastructure. Each resource is offered as a separate service component, and you only pay for a particular resource for as long as you need it.

Question 11

Q

What is the difference between OpEx and CapEx?

A) OpEx is better return on investment in the short term. CapEx is better return on investment in the long term.

B) OpEx is costs for acquiring assets. CapEx is an ongoing cost for running a business.

C) OpEx is a cost on services you don’t own, such as cloud computing. CapEx is a cost of ownership.

D) OpEx is an ongoing cost for running a business. CapEx is the cost of acquiring and maintaining assets.

Answer

A

D) OpEx is an ongoing cost for running a business. CapEx is the cost of acquiring and maintaining assets.

Knowing the difference between OpEx and CapEx is critical to get the best value out of Azure for your company. Capital expenditures (CapEx) generally result in the acquisition and maintenance of assets, such as server hardware. Operating expenditures (OpEx) are the ongoing costs of running a business, such as paying for cloud services on a recurring basis. By moving costs to OpEx, businesses can plan for ongoing costs rather than large investments.

Question 12

Q

What’s the best definition for scalability on Azure?

A) Scalability is the ability of a system to handle increased load. Services covered by Azure Autoscale can scale automatically to match demand to accommodate workload.

B) Scaling of resources on Azure is currently not possible.

C) If an account has more than one Azure region active, resources can be copied between these regions.

D) Scalability is the ability to quickly expand or decrease computer processing, memory, and storage resources to meet changing demands without worrying about capacity planning and engineering for peak usage.

Answer

A

A) Scalability is the ability of a system to handle increased load. Services covered by Azure Autoscale can scale automatically to match demand to accommodate workload.

Scalability is a core benefit of cloud computing and allows any application to add resources almost instantly as demand increases

Question 13

Q

What is consumption-based pricing on Azure?

A) Some core services on Azure are consumed constantly to keep your applications running. You pay for this consumption.

B) Any service you use on Azure has a consumption component as part of the pricing.

C) Consumption-based pricing is the model for paying for any services on a free Azure account.

D) Consumption-based pricing is when you are charged for only what you use (pay-as-you-go rate).

Answer

A

D) Consumption-based pricing is when you are charged for only what you use (pay-as-you-go rate).

Consumption-based pricing is indeed when you are charged for only what you use (pay-as-you-go rate). Consumption-based pricing is not limited to free accounts, and the services are not necessarily consumed all the time.

Question 14

Q

Which cloud ability does elasticity describe?

A) The ability to quickly expand or decrease computer processing, memory, and storage resources

B) The ability to create identical resources in multiple locations globally

C) The ability to turn resources on and off quickly across regions

D) The same as scalability and describes an increase in resources

Answer

A

A) The ability to quickly expand or decrease computer processing, memory, and storage resources

Elasticity is a core benefit of cloud computing and lets even small businesses take advantage of the cloud.

Question 15

Q

What is a benefit of a hybrid cloud approach?

A) It requires no changes to existing code or applications, allowing companies to scale their infrastructure into the cloud.

B) It enables companies to use a mix of private and public cloud components.

C) Using alternative energy sources for powering some services can create tax benefits in some regions.

D) All maintenance is handled by Microsoft Azure, so it reduces support costs.

Answer

A

B) It enables companies to use a mix of private and public cloud components.

A hybrid cloud model is the best of private and public cloud that can be used to avoid disruptions and outages, adhere to regulation and governance, span solutions across both public and private cloud, and alleviate CapEx investments.

Question 16

Q

What is “serverless” computing?

A) A complete development and deployment environment in the cloud

B) A way for developers to build applications faster by eliminating the need for them to manage infrastructure

C) An application that is running on the cloud platform without the use of servers

D) A theory for making computing completely cloud-based for certain scenarios

Answer

A

B) A way for developers to build applications faster by eliminating the need for them to manage infrastructure

Serverless computing solutions provide a simple way to create manageable and scalable solutions at low costs. There is always a server somewhere to run your application, but you don’t control it. Serverless is a kind of extreme PaaS.

Question 17

Q

What are the two types of scaling on Azure?

A) Scaling up/down and scaling out

B) Scaling out and scaling across

C) Scale sets and high availability

D) There is only one type of scaling: scaling up/down.

Answer

A

A) Scaling up/down and scaling out

Scaling up/down is making a resource, such as a VM, larger or smaller. This is also known as scaling vertically. Scaling out is adding more resources of the same type, known as scaling horizontally.

Question 18

Q

Select all the true statements regarding Azure Resource Manager.

(Choose 3)

A) If a user sends a request from any Azure tools, APIs, or SDKs, Azure Resource Manager handles the request.

B) Azure Resource Manager templates (ARM templates) always deploy resources in the same consistent state.

C) Azure Resource Manager is the deployment and management service for Azure.

D) Azure Resource Manager enables the managing of your infrastructure through scripts rather than declarative templates.

Answer

A

A) If a user sends a request from any Azure tools, APIs, or SDKs, Azure Resource Manager handles the request.

Azure Resource Manager handles the request for any Azure tools, APIs, or SDKs.

B) Azure Resource Manager templates (ARM templates) always deploy resources in the same consistent state.

When you deploy your resources using ARM templates, you can be confident it happens in the same way every single time. Your resources will be deployed in a consistent state.

C) Azure Resource Manager is the deployment and management service for Azure.

Azure Resource Manager enables you to create, update, and delete resources in your Azure account.

Question 19

Q

When can you delete a resource group from Azure?

A) Only when the resource group is empty

B) When an account is deactivated

C) At any time, as long as your resources or resource group are not locked by a related service

D) When all the resources in the resource group have stopped

Answer

A

C) At any time, as long as your resources or resource group are not locked by a related service

When a resource group is removed or deleted, all of the resources within it are deleted with it. You can remove resource groups at any time. To delete a resource group, you need access to the delete action. You also need delete for all resources in the resource group. If you have the required access, but the delete request fails, it may be because there’s a lock on the resources or resource group. Even if you didn’t manually lock a resource group, it may have been automatically locked by a related service. Or, the deletion can fail if the resources are connected to resources in other resource groups that aren’t being deleted. For example, you can’t delete a virtual network with subnets that are still in use by a virtual machine.

Question 20

Q

Which statement is true of resource groups in Azure?

A) Resource groups don’t contain any data and are assigned rather than created.

B) Resource groups can only hold foundational resource types.

C) Resource groups are transferrable between regions.

D) Resource groups are containers that hold related resources for an Azure solution.

Answer

A

D) Resource groups are containers that hold related resources for an Azure solution.

Resources belong to a resource group, which can be a geographical, logical, customer-specific, or any other type of grouping.

Question 21

Q

What is an availability zone?

A) A set of datacenters close together

B) One or more datacenters that are close together to provide backup

C) A collection of software that can enable high scalability at short notice

D) A unique physical location within a region that is made up of one or more datacenters equipped with independent power, cooling, and networking

Answer

A

D) A unique physical location within a region that is made up of one or more datacenters equipped with independent power, cooling, and networking

AZs are individual physical locations within a region. Each zone is made up of one or more datacenters equipped with independent power, cooling, and networking.

Question 22

Q

What is an Azure region?

A) A collection of similar services that can be hosted in an Azure data center

B) A geographical part of the Azure platform

C) A set of datacenters, deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network

D) One or more datacenters equipped with independent power, cooling, and networking

Answer

A

C) A set of datacenters, deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network

An Azure region is a set of datacenters, deployed within a latency-defined perimeter and connected through a dedicated regional low-latency network. With more global regions than any other cloud service provider, Azure gives customers the flexibility to deploy applications where they need. An Azure region has discrete pricing and service availability.

Question 23

Q

What is an Azure Function?

(Choose 2)

A) The smallest compute service on Azure that represents a single function of compute

B) A function to update any resources on Azure

C) A serverless solution that allows you to write less code, maintain less infrastructure, and save on costs.

D) An add-on to any paid Azure subscription that allows using Azure services as functions in your applications

E) A foundational component of any Azure infrastructure

Answer

A

A) The smallest compute service on Azure that represents a single function of compute

Azure Functions are the smallest compute services on Azure that represent a single function of compute. Functions can be called or invoked via standard web address (URL).

C) A serverless solution that allows you to write less code, maintain less infrastructure, and save on costs.

Azure Functions is a serverless solution that allows you to write less code, maintain less infrastructure, and save on costs. Instead of worrying about deploying and maintaining servers, the cloud infrastructure provides all the up-to-date resources needed to keep your applications running.

Question 24

Q

What is a fully managed platform on Azure?

A) Every part of your Azure services are looked after by Microsoft. This means you don’t have to worry about your application development.

B) Servers, network, storage, and more are all managed by Azure. You focus on your business value and logic.

C) A fully managed platform on Azure is a specific subscription that provides extra support for your Azure services.

D) You can pay a monthly fee to have Microsoft look after the maintenance of your applications and services on Azure.

Answer

A

B) Servers, network, storage, and more are all managed by Azure. You focus on your business value and logic.

A fully managed platform means the provider manages the infrastructure layer, such as VMs, disks, networks, and more. You only have to focus on the core functionality of your application. Fully managed services on Azure are available on all subscription types and come at no extra cost.

Question 25

Q

What is a scale set?

A) A set of similar services that all work together for a service or application

B) A set of virtual machines running in the same data center

C) A range of sizes of virtual machines ready to take over a workload

D) A set of individual virtual machines that can be configured and managed as a single group

Answer

A

D) A set of individual virtual machines that can be configured and managed as a single group

Azure virtual machine scale sets let you create and manage a group of load balanced VMs. The number of VM instances can automatically increase or decrease in response to demand or a defined schedule. Scale sets provide high availability to your applications and allow you to centrally manage, configure, and update a large number of VMs. With virtual machine scale sets, you can build large-scale services for areas such as compute, big data, and container workloads.

Question 26

Q

Which definition best describes compute on Microsoft Azure?

A) A virtual machine

B) An optional component to improve the efficiency of Azure

C) Any serverless service, such as Azure Functions

D) Any service that performs or enables a computation

Answer

A

D) Any service that performs or enables a computation

Compute is one of three foundational components of cloud computing. The other two are network and storage. This means any service that performs a compute function on Azure is part of “Compute” on Azure. It isn’t a single service.

Question 27

Q

What are the three kinds of App Service?

(Choose 3)

A) Azure Standard Apps

B) Web Apps

C) Web App for Containers

D) API Apps

E) Event Grid for App Services

F) Web App for Linux

Answer

A

B) Web Apps

Web Apps allows you to easily deploy web-based applications with a number of languages.

C) Web App for Containers

Web App for Containers makes it simple to deploy web applications based in containers.

D) API Apps

API Apps is specifically used for building apps that will host APIs (application programming interfaces) used by other applications.

Question 28

Q

Which cloud service model do virtual machines belong to?

A) Software as a Service

B) Infrastructure as a Service

C) Platform as a Service

D) Serverless

Answer

A

B) Infrastructure as a Service

Infrastructure as a Service includes services that emulate hardware, such as virtual machines, networks, and storage.

Question 29

Q

Your company suddenly has a bunch of new remote employees, who all need a Windows environment to work from. Which is the best Azure solution to get them up and running quickly?

A) Azure Kubernetes Service (AKS)

B) Azure Virtual Desktop (formerly Windows Virtual Desktop)

C) Preconfigured laptop devices that connect directly to Azure VMs

D) Virtual machine with Windows 10

Answer

A

B) Azure Virtual Desktop (formerly Windows Virtual Desktop)

Azure Virtual Desktop (formerly Windows Virtual Desktop) helps you quickly set up an environment, and even lets you reuse any existing Windows 10 licenses you have.

Question 30

Q

What is the best scenario for using Azure ExpressRoute?

A) Connecting your on-premises networks into the Microsoft cloud over a private connection without a connectivity provider

B) Connecting your on-premises networks into the Microsoft cloud over a private connection with the help of a connectivity provider

C) Extending a VLAN to Azure using ExpressRoute

D) Connecting your on-premises networks into the Microsoft cloud over the public internet with the help of a connectivity provider

Answer

A

B) Connecting your on-premises networks into the Microsoft cloud over a private connection with the help of a connectivity provider

ExpressRoute lets you extend your on-premises networks into the Microsoft cloud over a private connection with the help of a connectivity provider. With ExpressRoute, you can establish connections to Microsoft cloud services, such as Microsoft Azure and Microsoft 365.

Question 31

Q

What is an address space on a virtual network?

A) A definition of what types of resources can connect to either a private or public network hosted on Azure

B) A reserved number of public IP addresses that you can use to connect a virtual network to the public internet

C) A range of IP addresses that can be assigned to resources attached to the virtual network

D) A portion of the complete address space for a given Azure subscription that can be assigned to a virtual network

Answer

A

C) A range of IP addresses that can be assigned to resources attached to the virtual network

An address space on a virtual network is a number of IP addresses that are unique only on the specific virtual network. These IP addresses are assigned to resources connected to the VNet, which allows the resources to interact and communicate. There is no limit to the number of VNets you can have, nor on the number of address spaces.

Question 32

Q

Which of the following is a function of an Azure VPN Gateway?

A) To handle any suspicious activity trying to access your Azure subscription

B) To manage the IP addresses for an Azure Subscription and ensure only secure traffic is allowed

C) To make sure the connection from a virtual network to the internet is secure

D) To balance data coming into your Azure services from an external private network

E) To send encrypted traffic between an Azure Virtual Network and an on-premises location over the public internet

Answer

A

E) To send encrypted traffic between an Azure Virtual Network and an on-premises location over the public internet

A VPN gateway is an important part of a hybrid Azure infrastructure. It allows encrypted traffic to flow between on-premises services and Azure services.

Question 33

Q

How do resources on Azure use a virtual network?

A) Resources on a free account don’t have to be on a virtual network to use Azure.

B) Azure Virtual Network enables Azure resources to securely communicate with each other, the internet, and on-premises networks.

C) All Azure resources that communicate with the public internet must be on a virtual network.

D) All resources must be connected to a virtual network to use the Azure platform.

Answer

A

B) Azure Virtual Network enables Azure resources to securely communicate with each other, the internet, and on-premises networks.

Azure Virtual Network enables Azure resources to securely communicate with each other, the internet, and on-premises networks. Key scenarios that you can accomplish a virtual network include: communication of Azure resources with the internet, communication between Azure resources, communication with on-premises resources, filtering network traffic, routing network traffic, and integration with Azure services.

Question 34

Q

Why would you use a content delivery network?

(Choose 2)

A) To provide better performance and improved user experience for end users

B) To better handle instantaneous high loads, such as the start of a product launch event

C) To ensure maximum uptime for an application that is hosted in more than one datacenter

D) To ensure requests made from users are securely handled and served

E) For incoming traffic, to make routing decisions based on additional attributes of an HTTP request, such as URI path or host headers

Answer

A

A) To provide better performance and improved user experience for end users

B) To better handle instantaneous high loads, such as the start of a product launch event

A CDN keeps a recent copy of your web application and can deliver this much faster to users close to an endpoint. CDNs can handle a lot more data than a typical web server, which makes it ideal to handle traffic spikes as well. CDNs don’t generally handle individual traffic routing rules, nor security.

Question 35

Q

Which benefits does adding a load balancer provide?

(Choose 3)

A) A load balancer ensures only healthy servers process requests.

B) A load balancer ensures the load is evenly distributed between two to five virtual machines only.

C) A load balancer can log traffic that passes through it.

D) When a virtual disk is running out of space on a virtual machine, the incoming data can be directed to another virtual machine to manage the load.

E) When there is too much incoming network traffic for a single VM to handle, a load balancer can distribute the load to many VMs.

Answer

A

A) A load balancer ensures only healthy servers process requests.

C) A load balancer can log traffic that passes through it.

E) When there is too much incoming network traffic for a single VM to handle, a load balancer can distribute the load to many VMs.

A load balancer sits in front of two or more virtual machines to manage, and balance, the load to the virtual machines. This can be based on amount of incoming traffic or specific properties in the traffic. A load balancer has nothing to do with virtual disks, and the max number of VMs to manage goes up to 1,000. A load balancer ensures only healthy instances receive traffic and will stop sending traffic to any server that does not pass health checks. All Azure load balancers can log traffic that passes through them.

Question 36

Q

What are valid managed disk storage types on Azure?

(Choose 3)

A) Premium HDD

B) Premium Disk

C) Premium SSD and Standard SSD

D) Standard HDD

E) Ultra Disk

F) Slow HDD

Answer

A

C) Premium SSD and Standard SSD

D) Standard HDD

E) Ultra Disk

Azure offers four types of manage disk storage: Standard HDD, Standard SSD, Premium SSD, and Ultra Disk.

Question 37

Q

Which types of blobs are supported by Azure Storage?

(Choose 3)

A) File blob

B) Standard blob

C) Page blob

D) Append blob

E) Block blob

F) Fast blob

Answer

A

C) Page blob

Page blobs are used for random read/write operations. Picture this like the computing equivalent of having a scrap piece of paper (or “page”) on your desk to scribble notes on that you only need for temporary periods of time.

D) Append blob

Append blobs are used for operations where you are appending new data to existing content, rather than replacing it. Picture this like a log that you’re constantly adding to.

E) Block blob

Block blobs are used for handling large amounts of data very effectively.

Question 38

Q

What type of storage is Archive Storage?

A) Disk storage

B) Blob storage

C) File storage

D) Archive storage

Answer

A

B) Blob storage

Archive Storage is a very cheap version of blob storage meant to store data that is very infrequently used, such as system backups.

Question 39

Q

What significance does the name for your Azure storage account have?

A) The name you give the storage account becomes the main web address for accessing the files in it. It must be unique within your Azure subscription.

B) No significance. You can name a storage account what you want.

C) Each storage account name is linked to a set of users that can access it.

D) The combination of the storage account name and the Azure Storage service endpoint forms the endpoints for your storage account. Your storage account name must be unique within Azure.

Answer

A

D) The combination of the storage account name and the Azure Storage service endpoint forms the endpoints for your storage account. Your storage account name must be unique within Azure.

A storage account provides a unique namespace in Azure for your data. Every object you store in Azure Storage has an address that includes your unique account name. The combination of the account name and the Azure Storage service endpoint forms the endpoints for your storage account. Your storage account name must be unique within Azure. No two storage accounts can have the same name.

Question 40

Q

What is a suitable use case for the Azure Files storage service?

A) Replace or supplement on-premises file servers.

B) Archive large amounts of data.

C) Provide temporary file storage for a web application.

D) Store files larger than 2 GB.

Answer

A

A) Replace or supplement on-premises file servers.

Azure Files can be used to completely replace or supplement traditional on-premises file servers or NAS devices. Popular operating systems such as Windows, macOS, and Linux can directly mount Azure file shares wherever they are in the world. SMB Azure file shares can also be replicated with Azure File Sync to Windows Servers, either on-premises or in the cloud, for performance and distributed caching of the data where it’s being used.

Question 41

Q

What is the primary use for disk storage?

A) To attach to a Virtual Machine to act as a Virtual hard drive.

B) Attach to a load balancer to increase performance and throughput.

C) Store files larger than 2 GB

D) Archive large amounts of data.

E) Backup facility for virtual machines

Answer

A

A) To attach to a Virtual Machine to act as a Virtual hard drive.

Disk storage is a full Virtual hard disk that you can access. It is ideal as the disk for a Virtual machine. In fact, when you create a Virtual machine, disk storage is created too.

Question 42

Q

What can you store in a blob container inside Azure Storage?

A) Any kind of binary file, such as videos, images, documents, and applications

B) Any kind of binary file that is less than 4096 KB in size

C) Binary files that comply with the Azure data types defined for the storage type

D) Only known binary formats such as images, video, and text documents

Answer

A

A) Any kind of binary file, such as videos, images, documents, and applications

Blob containers on Azure act similar to directories in a file system. They can contain an unlimited number of blobs.

Question 43

Q

What are the advantages of using a database for storing data?

(Choose 2)

A) It is a very powerful way of getting the data out in exactly the format you want.

B) Databases are more secure for storing data than regular Azure storage.

C) It is a much cheaper option than using regular Azure storage.

D) They offer the ability to sort and index data.

E) You can manage access to data in a database more granularly than for any other type of storage.

F) You can store more data in less space due to the compression algorithms used by databases.

Answer

A

A) It is a very powerful way of getting the data out in exactly the format you want.

D) They offer the ability to sort and index data.

The power of a database is how the data is sorted and indexed, as well as the flexibility in how to get the data out again. Databases are not cheaper, more secure, or more space efficient than other types of storage.

Question 44

Q

What is a recommended use case for Azure SQL?

A) Migrate Cosmos DB data if only a single geographical location is used.

B) Migrate your on-premises SQL Server instances directly to Azure and get all the benefits of managed instances.

C) Migrate all instances of Microsoft SQL Server to Azure SQL to improve security and reduce cost.

D) Update on-premises SQL Server to gain better performance and lower cost.

Answer

A

B) Migrate your on-premises SQL Server instances directly to Azure and get all the benefits of managed instances.

Using Azure Database Migration Service, you can migrate directly from Microsoft SQL Server to Azure SQL. It is recommended by Azure to move your on-premises SQL Server instances to Azure SQL to improve efficiency and lower costs.

Question 45

Q

What are the advantages of Cosmos DB?

(Choose 3)

A) Great backup facilities for other Azure services, such as App Services and Azure Functions

B) Improved Azure portal experience for managing the various Cosmos DB locations in your application

C) Very low latency

D) Very cheap data storage

E) Near-infinite scaling to handle any demand

F) A large range of tools to work with Cosmos DB, such as SDKs, APIs and more

Answer

A

C) Very low latency

E) Near-infinite scaling to handle any demand

F) A large range of tools to work with Cosmos DB, such as SDKs, APIs and more

Cosmos DB is a globally scaled distributed database solution that offers very low latency, a range of tools to interact with the data, and near-infinite scaling to handle demand. Cosmos DB is not meant as a cheap storage service, nor for backup of data. Azure has archive data services for that.

Question 46

Q

Which of the following is a true statement regarding Microsoft SQL Server or Azure SQL?

A) Microsoft SQL Server is a managed service, meaning Azure takes care of all the infrastructure maintenance.

B) Azure SQL is a managed service, meaning Azure takes care of all the infrastructure maintenance.

C) Microsoft SQL Server is faster than Azure SQL.

D) Azure SQL is faster than Microsoft SQL Server.

Answer

A

B) Azure SQL is a managed service, meaning Azure takes care of all the infrastructure maintenance.

Azure SQL is a managed service, which means Microsoft takes care of all the hardware and maintenance tasks for running the database. You only have to worry about using the database for storing and retrieving data. There is no noticeable performance advantage with using either SQL service.

Question 47

Q

What is a definition of authorization?

A) The ability of a system to determine your location when accessing it

B) Being able to log in to the Azure portal from anywhere.

C) Determination of access to a system based on assigned roles/permissions

D) Confirmation of your identity for a system.

Answer

A

C) Determination of access to a system based on assigned roles/permissions

Question 48

Q

How many tenants can a single user belong to in Azure Active Directory?

A) Two

B) 500

C) It depends on the Azure subscription type.

D) There is no limit.

Answer

A

B) 500

A single user can belong to a maximum of 500 Azure AD tenants as a member or a guest.

Question 49

Q

What is a definition of authentication?

A) Being able to log in to the Azure portal from anywhere

B) Determination of access to a system based on authorization

C) Confirmation of your identity for a system

D) The ability of a system to determine your location when accessing it

Answer

A

C) Confirmation of your identity for a system

Authentication is the process of determining that you are you. This is most commonly done using a username and password, but it could also be with a fingerprint or face recognition.

Question 50

Q

Which are authentication methods used to verify a user with multi-factor authentication?

(Choose 3)

A) Something you know

B) Something you are

C) Something you can recall quickly

D) Something you have

E) Something you feel

F) Something you say

Answer

A

A) Something you know

B) Something you are

D) Something you have

Azure multi-factor authentication (MFA) helps safeguard access to data and applications while maintaining simplicity for users. It provides additional security by requiring a second form of authentication and delivers strong authentication via a range of easy-to-use authentication methods, which are something you know, have, or are.

Question 51

Q

Which are Internet of Things services on Azure?

(Choose 2)

A) IoT Services

B) IoT App Services

C) IoT Hub.

D) IoT Virtual Box

E) IoT Management Studio

F) IoT Central

Answer

A

C) IoT Hub

F) IoT Central

Question 52

Q

Which of the following are tools in Azure DevOps?

(Choose 3)

A) Azure Boards

B) Azure Artifacts

C) Azure Automation

D) Azure Deployment

E) Azure Operations

F) Azure Pipelines

Answer

A

A) Azure Boards

B) Azure Artifacts

F) Azure Pipelines

There are currently five services in Azure DevOps: Boards for managing and tracking projects; Azure Pipelines for building, testing, and deploying projects; Azure Repos for storing and managing code; Azure Test Plans for conducting manual tests and automating tests; and Azure Artifacts for hosting and sharing packages to share functionality across teams.

Question 53

Q

What are some of the likely outcomes from using Azure Data Lake Analytics to analyze big data?

(Choose 3)

A) Better decision-making from immediate analysis

B) A decoupling of business decisions from the development of new products

C) More secure access to company infrastructure

D) Cheaper and more accessible cloud computing products

E) Creating products better aligned to customer needs

F) A cost reduction on data storage

Answer

A

A) Better decision-making from immediate analysis

E) Creating products better aligned to customer needs

F) A cost reduction on data storage

Analyzing Big Data can often lead to more precise decision-making for a business, a cost reduction on the storage of the data using a service like Azure Data Lake, and better products that take customer feedback and behavior into account.

Question 54

Q

What is the best definition of Azure DevOps?

A) A way to write better code and find bugs faster

B) A suite of five different tools to create more robust software, faster

C) A platform to manage Azure resources meant for development, such as App Services, Azure Functions, and Visual Studio Online.

D) A specific section of the Azure portal where you can manage operational parts of your infrastructure

Answer

A

B) A suite of five different tools to create more robust software, faster

Azure DevOps is a set of modern tools to create more robust software, faster. It is used by both operational people and developers to manage the entire lifecycle of software products. It has its own separate web portal, but it is fully integrated into Azure. It isn’t only meant for development services on Azure but all services to which you can deploy code and infrastructure.

Question 55

Q

When would you use Azure Logic Apps to solve a problem?

(Choose 2)

A) When you have to use more than one Azure subscription

B) For fundamental compute actions that can be run millions of times per second if needed

C) To schedule, automate, and orchestrate tasks and processes

D) To connect systems both inside and outside of the Azure platform

E) To perform single tasks that run once every time they are invoked

Answer

A

C) To schedule, automate, and orchestrate tasks and processes

D) To connect systems both inside and outside of the Azure platform

There are a lot of ways to schedule, automate, and orchestrate tasks and processes using Logic Apps.

Logic Apps connect systems both inside and outside of the Azure platform, integrating not only apps but also data flows, services, and entire systems.

Question 56

Q

What is the purpose of “models” in machine learning and artificial intelligence?

A) The definition of what you want your machine learning implementation to learn

B) The size and capacity of the machine learning service

C) The framework for integrating other Azure services with your particular machine learning instance

D) Defining the version of your machine learning application

Answer

A

A) The definition of what you want your machine learning implementation to learn

A model is the way you define what you want your machine learning implementation to learn. You give it a model, which is a set of rules, and the application then starts playing this model over and over again with the data you have provided. Over time, usually very fast, the model will find patterns in the data that follow the rules you have provided.

Question 57

Q

Which statements are TRUE about Azure Key Vault?

(Choose 2)

A) You can share a password with a third party to use, without ever revealing the password itself.

B) Azure Key Vault defines security policies for Azure services.

C) Access to secrets and passwords can be granted or denied very fast and as needed.

D) A third-party app can pass access to a secret to another third-party app, if authorized in the Azure portal.

E) Azure Key Vault removes the need for passwords in your services.

Answer

A

A) You can share a password with a third party to use, without ever revealing the password itself.

C) Access to secrets and passwords can be granted or denied very fast and as needed.

Azure Key Vault is a secure place to store passwords and other secrets. Once stored, you can never retrieve the actual value or keys, but you can share access to the value or specific versions of a secret with other third-party clients and other Azure services. You can also restrict or deny access easily and quickly, should it be necessary.

Question 58

Q

What is a distributed denial-of-service attack?

A) An attack where lots of computers target a single server or website with the aim of making it stop

B) An attack meant to target multiple services and bring them to a stop

C) An attack carried out from multiple Azure datacenters

D) An attack that is partly generated by cloud services and partly by on-premises servers

Answer

A

A) An attack where lots of computers target a single server or website with the aim of making it stop

A distributed denial-of-service (DDoS) attack comes from a large number of sources with the sole aim of stopping your service. This is done through sending web traffic to your service until it can’t handle it all and stops working. Azure has tools to protect against DDoS attacks, which sometimes aren’t attacks at all but just increased visitor interest in services or content.

Question 59

Q

What is the purpose of having defense in depth?

A) To provide several layers of defense for your resources, data, and assets

B) To ensure multi-cloud strategies don’t compromise the Azure infrastructure

C) To use multiple Azure regions for failover protection in case of service outages

D) To use machine learning models to improve the defense measures of your Azure infrastructure

Answer

A

A) To provide several layers of defense for your resources, data, and assets

The defense-in-depth concept stipulates that you need more than just one security measure for your data and resources, such as firewalls, network gateways, and physical measures.

Question 60

Q

If you don’t want to share the hardware your VMs run on, how can you manage that in Azure?

A) Use Azure Security Center to create a private zone for your VM cluster.

B) Use Azure Dedicated Host.

C) Use Premium tier virtual machines.

D) Secure the network connection to your VM using a network security group.

Answer

A

B) Use Azure Dedicated Host.

Azure dedicated hosts run on their own dedicated hardware inside the Azure datacenter and only your chosen VMs will run on it.

Question 61

Q

What is the main function of Azure Information Protection?

A) To find vulnerabilities in the data passed to an Azure service in your subscription

B) To help an organization classify and (optionally) protect its documents and emails by applying labels

C) To protect your privacy when sharing access to Azure resources with third parties

D) To make sure attackers can’t get to the Azure services in your subscription

Answer

A

B) To help an organization classify and (optionally) protect its documents and emails by applying labels

Azure Information Protection helps secure email, documents, and sensitive data inside and outside your company walls. You can classify sensitive data, track activities on shared files and documents, collaborate securely, and much more. There is no active security service included, such as scanning the files being protected.

Question 62

Q

Which of the following are features of role-based access control?

(Choose 2)

A) Defining which users have access to specific Azure resources

B) Defining which actions users can take on a resource

C) Multi-factor authentication

D) Using any of the five predefined roles to make user management simple and straightforward

E) Tiered privacy protection for users within your Azure tenant

Answer

A

A) Defining which users have access to specific Azure resources

B) Defining which actions users can take on a resource

Role-based access control (RBAC) helps you manage who has access to Azure resources, what they can do with those resources, and what areas they have access to. You have very detailed control of resource actions, and you assign roles to users to let them take those actions. You can define as many roles as you wish in RBAC.

Question 63

Q

What is special about the China region in Azure?

(Choose 3)

A) All customer data is guaranteed to be geographically within China.

B) You have to be a Chinese citizen to use the China region.

C) It is priced purely in Chinese yuan and not American dollars.

D) You are guaranteed to be compliant with all Chinese data and IT regulations.

E) All Azure services available in the China region are physically located inside China.

Answer

A

A) All customer data is guaranteed to be geographically within China.

D) You are guaranteed to be compliant with all Chinese data and IT regulations.

E) All Azure services available in the China region are physically located inside China.

Services in the China region are hosted on a physically isolated instance of Azure. It is operated by 21Vianet, a company based in China. All of your customer data is kept within China and is bound by Chinese regulations.

Question 64

Q

What are the Microsoft services that can tell you more about trust in the Azure platform?

(Choose 2)

A) Trust Center

B) Service Trust Portal

C) Azure User Safety Portal

D) There isn’t a single service, as trust is part of every service on Azure.

E) Azure Privacy Portal

Answer

A

A) Trust Center

B) Service Trust Portal

You can use the Trust Center to find documentation on all the various compliance standards Azure adheres to. You can use the Service Trust Portal to read the audit reports for any part of Microsoft’s products, including Azure.

Answer 65

A

D) There isn’t a single service, as privacy is part of every service on Azure.

Privacy is a core component of each and every Azure service, so there isn’t a single service. All products are built with privacy as a first-class citizen.

Answer 66

A

A) Companies of any country must adhere to GDPR if their users and customers are located in the European Union.

Any company that wishes to interact with users located in the European Union must adhere to the many GDPR rules around privacy. The Microsoft Trust Center has more information on how to do this within Azure.

Answer 67

A

B) Both Azure services and on-premises services

Azure Monitor can accept data from almost any service, in order to monitor their operation and health. You get a single dashboard to view all of the current metrics, or you can delve into the archived data through the interactive query language.

Answer 68

A

A) Delete

B) Read-only

Locks can be put on resources to make sure there aren’t any accidental or nefarious actions taken on them. The two types of locks are delete, which means you can’t delete the resource, and read-only, which means you can’t make any changes to the resources.

Answer 69

A

A) To set up custom alerts to notify you of any outages, planned or otherwise

E) To track incidents with your services in real time and get a report afterwards

Azure Service Health notifies you about Azure service incidents and planned maintenance. You can use this information to take appropriate actions to limit any downtime. Azure Service Health can’t receive data from any of your applications or third-party services. It is only for Azure.

Answer 70

A

A) Visualizing future costs for your Azure account

B) Visualizing current costs for your Azure account

Azure Cost Management is a part of the Azure portal that can visualize your current and future costs. It also includes tools for financial governance to make sure you don’t get unexpected costs from incorrect use of Azure resources. There are no discounts, gamification, or automatic shutdown services.

Answer 71

A

A) Azure Pricing Calculator

The pricing calculator for Azure is a comprehensive tool you can use to estimate any combination of services on Azure. The Total Cost of Ownership Calculator can indicate the savings achieved by moving your on-premises services to Azure. The Azure portal can only estimate costs of existing services that you have in your account.

Answer 72

A

A) The location of the service or resource

B) How much bandwidth you will use

C) Resource size

The factors that influence the price of a service on Azure are resource size, resource location, and the bandwidth being used. How much you use a resource or the age of it do not influence the price.

Answer 73

A

C) The billing of Azure resources in your account is generated at the subscription scope.

A subscription represents a grouping of Azure resources. An invoice is generated at the subscription scope.

Brainscape's Knowledge GenomeTM

A Cloud Guru - Azure Fundamentals Flashcards

Brainscape's Knowledge Genome^TM