AZ-400 Chapter 11 - 14

Question 1

Storing secrets in service connections

Answer 1

like for git or jenkins
will have a token or password

Question 2

OWASP

Answer 2

Security vulnerabilities
Test them with OWASP ZAP - does a baseline scan or a full active scan (can install on VM or container)
It’s a passive pen test

Question 3

Azure Policy

Answer 3

use this to configure and enforce business rules
protects settings changes
can provide audit results

Question 4

Defender for Cloud

Answer 4

closes server vulnerabilities
continually assess/hardens security

Question 5

Monitor apps (mobile and desktop)

Answer 5

Mobile - use App Center. have to install crashes NuGet package in the app you deployed
Desktop - use Raygun, have to install it in the app via NuGet

Question 6

Monitor Web Apps

Answer 6

structured logging - parameterized text
Application Insights - logs and metrics in this, lets you see availability
Metrics are stored for 93 days, metrics include requests/min, transactions/minute, error rate

Question 7

Live Site Review

Answer 7

review an alert event
talk about what happened, what worked, what to improve, was the alert adequate

Question 8

What is direct feedback?

Answer 8

In-product: non-intrusive, users do it inside the app. Anonymous
Public roadmap: share the backlog and get requests
Focus groups: time intensive

Question 9

What is indirect feedback?

Answer 9

Gathering metrics
Sentiment analysis (twitter)
hypothesis development - test to see what users like

Question 10

What KPI metrics can show DevOps success?

Answer 10

lead time
deployment freq
change failure rate

Question 11

What is value stream mapping?

Answer 11

Keeping a lean process by eliminating waste
1 - get a baseline
2 - target a future state
3 - gains are analyzed
watch Lead Time and Process Time

Question 12

Keys for data driven Devops

Answer 12

measure what matters
report against benchmarks
automate
develop insights

Question 13

What are the 2 kinds of feedback loops?

Answer 13

Reinforcing - when one thing increases, so does another
Stabalizing - when one thing increases, another decreases. Eventually they come into balance

Question 14

Application Insights

Answer 14

houses logs and metrics
can determine availability
use release annotations to see build data here
can implement tests in VS for this to trigger (called multi-step tests)
need an instrumentation key for this to reference App Insights
Can have KQL queries for searching logs (render will make bar chart)

Question 15

Azure Monitor

Answer 15

can be added to the pipeline to check for active alerts

Question 16

Which scans should run when?

Answer 16

Infrastructure scan should be nightly
Static code scans should be pull request
vulnerability scans should be CI
pen test should be deployment

Question 17

If you want to track bugs and user stories on Kanban you choose..

Answer 17

Agile

Question 18

If you want to track the backlog on a Kanban board you choose..

Answer 18

Scrum

Question 19

SonarQube needs…

Answer 19

Gradle

Question 20

Use this git command to tag a release

Answer 20

git tag -m “thing”

Question 21

YAML pipeline caching does what?

Answer 21

Downloads libraries and caches them so they can be re-used

Question 22

KQL basic commands

Answer 22

take - view sample of records
project - to define what columns to see
summarize - group by the ‘by’ clause
count - provides count