Practice Test 1

Question 1

Who is responsible for the security of the physical servers in an Azure data center?

Azure is responsible for securing the physical data centers

I am responsible for securing the physical data centers

Answer 1

Azure is responsible for securing the physical data centers

Question 2

In the context of cloud computing and Azure services, how would you define ‘compute resources’?

They are resources that execute tasks requiring CPU cycles

They include all resources listed in the Azure Marketplace

They refer exclusively to Virtual Machines

They encompass Virtual Machines, Storage Accounts, and Virtual Networks

Answer 2

They are resources that execute tasks requiring CPU cycles

Overall explanation

The correct answer is “They are resources that execute tasks requiring CPU cycles”.

In cloud computing, the term “compute” refers to the amount of computational power required to process a task - essentially, it’s anything that uses processing power (CPU cycles) to perform operations. This includes, but is not limited to, running applications, executing scripts, and processing data.

Question 3

Which of the following characteristics of a cloud-based system primarily contributes to its elasticity?

The system’s ability to recover automatically after a crash.

The system’s ability to dynamically increase and decrease capacity based on real-time demand.

The system’s ability to withstand the denial-of-service attacks.

The system’s ability to maintain availability while updates are being implemented.

Answer 3

The system’s ability to dynamically increase the decrease capacity based on real-time demand.

Overall explanation

The correct answer is “The ability to increase and reduce capacity based on actual demand.” This characteristic refers to the concept of elasticity in cloud computing. An elastic system is one that can automatically adjust its resources (compute, storage, etc.) in response to changing workloads and demands. This is done to ensure optimal performance and cost-effectiveness. When demand increases, the system can scale out by adding more resources, and when demand decreases, it can scale in by reducing resources, all without significant manual intervention.

Question 4

In Microsoft Azure, what is the maximum number of virtual machines that can be included in a single Virtual Machine Scale Set, as per Azure’s standard guidelines and capabilities?

10,000

Unlimited

500

1000

Answer 4

1000

Overall explanation

The correct answer is 1000.

Azure Virtual Machine Scale Sets are a service provided by Azure that allows you to manage, scale, and distribute large numbers of identical virtual machines. As per the limitations set by Microsoft Azure, a single Virtual Machine Scale Set can support up to 1000 VM instances.

This capacity allows for high availability and network load balancing across a large number of virtual machines, providing a robust and efficient solution for applications that require heavy compute resources. However, if you are using custom VM images, this limit decreases to 600 instances.

This functionality is part of Azure’s Infrastructure as a Service (IaaS) offerings, providing flexibility and scalability to businesses and developers.

Question 5

True or false: You cannot have more than one Azure subscription per company

True

False

Answer 5

False

Overall explanation

You can have multiple subscriptions, as a way to separate out resources between billing units, business groups, or for any reason you wish.

Question 6

Which feature within Azure collects all of the logs from various resources into a central dashboard, where you can run queries, view graphs, and create alerts on certain events?

Azure Monitor

Azure Portal Dashboard

Microsoft Defender for Cloud

Storage Account or Event Hub

Answer 6

Azure Monitor

Overall explanation

Azure Monitor - a centralized dashboard that collects all the logs, metrics and events from your resources

Question 7

Which major cloud provider offers the most international locations for customers to provision virtual machines and other servers?

Google Cloud Platform

Microsoft Azure

Amazon AWS

Answer 7

Microsoft Azure

Overall explanation

Microsoft Azure offers the most extensive global coverage among major cloud providers regarding geographical regions. This allows customers to provision virtual machines, databases, and other services in various international locations closer to their user base, which can enhance performance, reduce latency, and comply with local regulations regarding data residency.

Question 8

You are explaining the different cloud deployment models to a colleague. Which of the following statements correctly describes the difference between a public cloud and a private cloud?

Both public and private clouds are available to the general public and are owned by a cloud service provider.

Both public and private clouds are owned and operated by a single organization for exclusive use.

A public cloud is owned and operated by a single organization for exclusive use, while a private cloud is available to the general public or a large industry group and is owned by a cloud service provider.

A public cloud is available to the general public or a large industry group and is owned by a cloud service provider, while a private cloud is owned and operated by a single organization for exclusive use.

Answer 8

A public cloud is available to the general public or a large industry group and is owned by a cloud service provider, while a private cloud is owned and operated by a single organization for exclusive use.

Overall explanation

A public cloud is a cloud computing model where services and infrastructure are provided by a cloud service provider and are available to the general public or a large industry group. Examples of public cloud providers include Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). On the other hand, a private cloud is dedicated to a single organization and is owned and operated by that organization or a third party. Private clouds are used for exclusive use by that organization, offering greater control over resources and security.

Question 9

What is the MAIN management tool used for managing Azure resources with a graphical user interface?

Azure Portal

Azure Storage Explorer

PowerShell

Remote Desktop Protocol (RDP)

Answer 9

Azure Portal

Overall explanation

Azure Portal is the website used to manage your resources in Azure

Question 10

Which tool within Azure helps you to track your compliance with various international standards and government laws?

Service Trust Portal

Azure Government Services

Purview Compliance Manager

Microsoft Privacy Statement

Answer 10

Purview Compliance Manager

Overall explanation

Purview Compliance Manager will track your own compliance with various standards and laws.

Question 11

In the context of cloud computing, how is the benefit of ‘agility’ best described?

It refers to the system’s ability to easily scale up when it reaches full capacity.

It refers to the ability to rapidly provision new resources.

It refers the the ability to quickly respond to and drive changes in the market.

It refers to the ability to swiftly recover from a large-scale regional failure

Answer 11

It refers to the ability to quickly respond to and drive changes in the market.

Overall explanation

The correct answer is “It refers to the ability to quickly respond to and drive changes in the market”. Agility, in the context of cloud computing, refers to the ability of an organization to rapidly adapt to market and environmental changes in productive and cost-effective ways. It involves quickly adjusting and adapting strategic and operational capabilities to respond to and take advantage of changes in the business environment.

Question 12

In the context of Azure’s Service Level Agreement (SLA) for virtual machines, which of the following deployment strategies would offer the highest level of availability?

Deploying two or more virtual machines within an availability set.

Deploying a single virtual machine.

Deploying two or more virtual machines across different availability zones within the same region.

Deploying two or more virtual machines within the same data center.

Answer 12

Deploying two or more virtual machines across different availability zones within the same region.

Overall explanation

The correct answer is “Deploying two or more virtual machines across different availability zones within the same region”.

Service Level Agreement (SLA) is a commitment by a service provider on the level of service - like uptime, performance, or other key metrics - that users can expect. Azure provides an SLA for various services, including Virtual Machines.

Question 13

Can you give someone else access to your Azure subscription without giving them your user name and password?

NO

YES

Answer 13

YES

Overall explanation

Yes, anyone can create their own Azure account and you can give them access to your subscription with granular control as to permissions

Question 14

What is a primary benefit of opting for a consumption-based pricing model over a time-based pricing model in cloud services?

A simpler and easier-to-understand pricing model

It always being cheaper to pay for consumption rather than paying hourly

Significant cost savings when the resources aren’t needed for constant use

The ability to easily predict the future cost of the service

Answer 14

Significant cost savings when the resources aren’t needed for constant use.

Overall explanation

The correct answer is “Significant cost savings when the resources aren’t needed for constant use”. In a consumption-based pricing model, also known as pay-as-you-go, customers are billed only for the specific resources they use. This model provides cost-efficiency for workloads with variable usage patterns or for resources that aren’t needed continuously.

Question 15

You are planning to deploy a critical application on Azure and want to ensure high availability and reliability for your services. Which of the following statements about Azure Service Level Agreements (SLAs) is correct and should be considered when designing your solution?

SLAs vary by service and can include guarantees for uptime, performance, and connectivity

You do not need to consider SLAs when designing your solution, as Azure automatically ensure the highest availability

The SLA guarantees that the service will be available 99.9% of the time for all Azure services

Azure provides a 100% SLA for all services

Answer 15

SLAs vary by service and can include guarantees for uptime, performance and connectivity

Explanation
This statement is correct. Azure SLAs are specific to each service and can include guarantees for uptime, performance, and connectivity. It is essential to review the SLA for each service you plan to use to ensure it meets your availability and reliability requirements.

Question 16

Which Azure feature is specifically designed to help companies get their in-house developed code from the code repository, through automated unit testing, and onto Azure using a service called Pipelines?

GitHub

Azure Monitor

Virtual Machines

Azure DevOps

Answer 16

Azure DevOps

Overall explanation

Azure DevOps contains many services, one of which is Pipelines. Pipelines allows you to build an automation that moves code (and all related dependencies) through various stages from the development environment into deployment.

Question 17

If you wanted to simply use Azure as an extension of your own datacenter, not primarily hosting anything there but using it for extra storage or taking advantage of some services, what hosting model is that called?

Public cloud

Hybrid cloud

Private cloud

Answer 17

Hybrid Cloud

Overall explanation

The correct answer is “Hybrid cloud.” The scenario described in the question is a typical use case for a hybrid cloud model, which integrates private cloud or on-premises infrastructure with public cloud resources, such as those provided by Azure.

Question 18

True or false: you can create your own policies if built-in Azure Policy is not sufficient to your needs

TRUE

FALSE

Answer 18

True

Overall explanation

True, you can create custom policies using JSON

Question 19

Which Azure service is meant to be a security dashboard that contains all the security and threat protection in one place?

Azure Monitor

Microsoft Defender for Cloud

Azure Key Vault

Azure Portal Dashboard

Answer 19

Microsoft Defender for Cloud

Overall explanation

Microsoft Defender for Cloud - unified security management and threat protection; a security dashboard inside Azure Portal

Question 20

Which ways does the Azure Resource Manager model provide to deploy resources?

CLI

Azure Portal

REST API / SDK

Powershell

Answer 20

CLI

Azure Portal

Rest API/SDK

Powershell

Overall explanation

Azure Resource Manager (ARM) is the deployment and management service for Azure. It provides a management layer that enables you to create, update, and delete resources in your Azure account. The ARM model allows you to work with resources in a consistent manner, whether through Azure portal, PowerShell, REST APIs/SDKs, or the Command-Line Interface (CLI).

Azure Portal: This is a web-based, unified console that provides an alternative to command-line tools. You can manage your Azure resources directly through a GUI.

PowerShell: Azure PowerShell is a module that provides cmdlets to manage Azure through Windows PowerShell and PowerShell Core. You can use it to build scripts for managing and automating your Azure resources.

REST API / SDK: Azure provides comprehensive REST APIs that can be used directly or via Azure SDKs available in multiple languages. This allows developers to integrate Azure services in their applications, services, or tools.

CLI: Azure CLI is a cross-platform command-line program that connects to Azure and executes administrative commands on Azure resources. It's designed to make scripting easy, authenticate with Azure platform, and quickly run commands to perform common administrative tasks or deploy to Azure.

Each of these methods supports the full set of Azure Resource Manager features, and you can choose the one that best fits your workflow.

Question 21

What feature within Azure will make recommendations to you about reducing cost on your account?

Microsoft Defender for Cloud

Azure Dashboard

Azure Service Health

Azure Advisor

Answer 21

Azure Advisor

Overall explanation

Azure Advisor analyzes your account usage and makes recommendations for you based on its set rules

Question 22

What is Single Sign-On?

When an application outsources (federates) it’s identity service to a third-party platform

The ability to use an existing user id and password to sign in other applications, and not have to create/memorize a new one.

When you sign in to an application, it remembers who you are the next time you go there.

Answer 22

The ability to use an existing user ID and password to sign in other applications, and not have to create/memorize a new one.

Overall explanation

Single Sign-On - the ability to use the same user id and password to log into every application that your company has; enabled by Azure AD

Question 23

Logic apps, functions, and service fabric are all examples of what model of compute within Azure?

App Services Model

SaaS model

Serverless model

IaaS model

Answer 23

Serverless model

Overall explanation

The correct answer is the Serverless model. Azure Logic Apps, Azure Functions, and Azure Service Fabric are all examples of serverless computing in Azure.

Serverless computing is a cloud computing model where the cloud provider automatically manages the provisioning and allocation of servers, hence the term “serverless”. The serverless model allows developers to focus on writing the code and business logic rather than worrying about the underlying infrastructure, its setup, maintenance, scaling, and capacity planning.

Question 24

Which of the following best describes the primary benefit of a Content Delivery Network (CDN) in a cloud computing context?

It provides fast and inexpensive data retrieval for later use.

It enables temporary session information storage for web visitors, such as their login ID or name.

For a nominal fee, Azure will manage your virtual machine, perform OS updates, and ensure optimal performance.

It mitigates server load for static, unchanging files like images, videos, and PDFs by distributing them across a network of servers.

Answer 24

It mitigates server load for static, unchanging files like images, videos, and PDFs by disturbing them across a network of servers.

The correct answer, “It mitigates server load for static, unchanging files”, is indeed the core benefit of a Content Delivery Network (CDN). A CDN stores copies of a website’s static files on servers distributed globally. These static files could be anything that doesn’t change frequently, like images, CSS, JavaScript, videos, etc. When a user visits the site, they are served these static files from the CDN server nearest to them geographically. This reduces the latency, as the data has a shorter distance to travel. Additionally, it reduces the load on the original server because the CDN handles a significant portion of the traffic. As a result, not only is the user experience improved due to faster load times, but the operational efficiency and performance of the original server are also enhanced. Therefore, CDNs are essential for sites serving large amounts of static content to a geographically dispersed user base.

Question 25

What is the name of Azure's hosted SQL database service? Cosmos DB Table Storage SQL Server in a VM Azure SQL Database

Answer 25

Azure SQL Database Overall explanation SQL Database is a SQL Server compatible option in Azure, a database as a service

Question 26

Your organization has implemented an Azure Policy that restricts the type of Virtual Machine instances you can use. How can you create a VM that is blocked by the policy? Use an account that has Contributor or above permissions to the resource group The only way is to remove the policy, create the resource and add the policy back Subscription Owners (Administrators) can create resources regardless of what the policy restricts

Answer 26

The only way is to remove the policy, create the resource and add the policy back. Overall explanation You cannot perform a task that violates policy, so you have to remove the policy in order to perform the task.

Question 27

Which of the following is a feature of the cool access tier for Azure Storage? Cheapest option when it comes to bandwidth costs to access your files Significant delays in accessing your data, up to several hours Most expensive option when it comes to bandwidth cost to access your files Much cheaper to store your files than the hot access tier

Answer 27

Much cheaper to store your files than the hot access tier Overall explanation Cool access tier offers cost savings when you expect to store your files and not need to access them often

Question 28

When establishing a Site-to-Site VPN connection with Azure, what kind of network device needs to be present or installed in your company's on-premises network infrastructure? An Azure Virtual Network A compatible VPN Gateway device An Application Gateway A dedicated virtual machine

Answer 28

A compatible VPN Gateway device Overall explanation The correct answer is a compatible VPN Gateway device. In order to establish a site-to-site VPN connection with Azure, a VPN Gateway is required on your company's internal network. A VPN Gateway is a specific type of virtual network gateway that sends encrypted traffic across a public network, like the Internet.

Question 29

What is Azure's preferred Identity/authentication service? Microsoft Entra ID (formerly Azure Active Directory) Facebook Connect Network Security Group Live Connect

Answer 29

Microsoft Entra ID (formerly Azure Active Directory) Overall explanation Microsoft Entra ID (formerly Azure Active Directory) - Microsoft’s preferred Identity as a Service solution

Question 30

Which of the following characteristics is essential for a system to be considered highly available in a cloud computing environment? The system must operate on a minimum of two virtual machines. The system must maintain 100% availability at all times. It's impossible to create a highly available system. The system must be designed for resilience, with no single points of failure.

Answer 30

The system must be designed for resilience, with no single points of failure. Overall explanation The correct answer is "A system specifically designed to be resilient, with no single point of failures". High availability in a system means that it is designed to operate continuously without failure for a long period of time. This is achieved by building redundancy into the system, eliminating single points of failure, and enabling rapid recovery from any failures that do occur. In other words, even if a component of the system fails, there are other components that can take over, allowing the system to continue operating seamlessly.

Question 31

What is the name of the group of services inside Azure that hosts the Apache Hadoop big data analysis tools? Azure Hadoop Services HDInsight Azure Data Factory Azure Kubernetes Services

Answer 31

HDInsight Overall explanation The correct answer is HDInsight. HDInsight is Microsoft Azure's offering for hosting the Apache Hadoop big data analysis tools. Apache Hadoop is an open-source software platform that supports data-intensive distributed applications. This platform enables processing large amounts of data across clusters of computers. Azure HDInsight is a cloud distribution of the Hadoop components from the Hortonworks Data Platform. It allows Azure users to process vast amounts of data with popular open-source frameworks such as Hadoop, Hive, HBase, Storm, and others. Additionally, the HDInsight service also supports R, Python, Scala, and .NET. So, it's not just limited to traditional Hadoop tools.

Question 32

You are exploring new features on Azure and come across a service that is in private preview mode. Which of the following statements about services in private preview mode is true? Access to services in private preview mode is limited and usually requires approval from Microsoft or an invitation. Services in private preview mode are generally available (GA) and can be used in production environments. All Azure customers automatically have access to services in private preview mode. Services in private preview mode have the same level of support and SLA guarantees as generally available services.

Answer 32

Access to services in private preview mode is limited and usually requires approval from Microsoft or an invitation. Explanation This statement is correct. Access to services in private preview mode is restricted and typically requires approval from Microsoft or an invitation. This is to control access to the service and gather feedback from a select group of users before making it generally available.

Question 33

In the context of Azure's high availability solutions, what is the primary purpose of Azure Availability Zones? They are synonymous with an Azure region. They allow manual selection of data centers for virtual machine placement to achieve superior availability compared to other options. They represent certain server racks within individual data centers, specifically designed by Azure for higher uptime. They serve as a folder structure in Azure used for organizing resources such as databases, virtual machines, and virtual networks.

Answer 33

They allow manual selection of data centers for virtual machine placement to achieve superior availability compared to other options. Overall explanation The correct answer is: "They allow manual selection of data centers for virtual machine placement to achieve superior availability compared to other options." Azure Availability Zones are a high availability offering that protects applications and data from datacenter failures. Each Azure region is composed of multiple datacenters, and each datacenter is essentially an Availability Zone. They are unique physical locations within a region, equipped with their own independent power, cooling, and networking.

Question 34

What type of container is used to collect log and metric data from various Azure Resources? Log Analytics Workspace Azure Monitor account Managed Storage Append Blob Storage

Answer 34

Log Analytics Workspace Overall explanation Log Analytics Workspace is required to collect logs and metrics

Question 35

What is the basic way of protecting an Azure Virtual Network subnet? Azure Firewall Application Gateway with WAF Azure DDos Standard protection Network Security Group

Answer 35

Network Security Group Overall explanation Network Security Group (NSG) - a fairly basic set of rules that you can apply to both inbound traffic and outbound traffic that lets you specify what sources, destinations, and ports are allowed to travel through from outside the virtual network to inside the virtual network

Question 36

Which of the following Azure features is most likely to deliver the most immediate savings when it comes to reducing Azure costs? Auto shutdown of development and QA servers over night and on weekends Using Azure Reserved Instances for most of your virtual machines Changing your storage accounts from globally redundant (GRS) to locally redundant (LRS) Using Azure Policy to restrict the user of expensive VM SKUs

Answer 36

Using Azure Reserved Instances for most of your virtual machines Overall explanation Reserved Instances often offer 40% or more savings off of the price of pay-as-you-go virtual machines

Question 37

True or False: Azure has the responsibility to manage the hardware in the Infrastructure as a Service model FALSE TRUE

Answer 37

Overall explanation The correct answer is TRUE. In an Infrastructure as a Service (IaaS) model, the cloud service provider, in this case Microsoft Azure, is responsible for managing the underlying physical hardware. This includes servers, storage, networking hardware, and the virtualization layer. Azure ensures that these resources are available and maintained, providing capabilities like automated backup, disaster recovery, and scaling.

Question 38

Which feature of Microsoft Entra ID (formerly Azure Active Directory) will require users to have their mobile phone in order to be able to log in? Advanced Threat Protection (ATP) Microsoft Defender for Cloud Multi-Factor Authentication Azure Information Protection (AIP)

Answer 38

Multi-Factor Authentication Overall explanation Multi-Factor Authentication (MFA) - the concept of having something additional to a “password” that is required to log in; passwords are find-able or guessable; but having your mobile phone on you to receive a phone call, text or run an app to get a code is harder for an unknown hacker to get

Question 39

Who is responsible for the security of your Azure Storage account access keys? Azure is responsible for securing the access keys I am responsible for securing the access keys

Answer 39

I am responsible for securing the access keys Overall explanation Customers are responsible to secure the access keys they are given and regenerate them if they are exposed.

Question 40

Within the landscape of cloud service models, how would Microsoft's Outlook 365 be best categorized? Infrastructure as a Service (IaaS) Platform as a Service (PaaS) Software as a Service (SaaS)

Answer 40

Software as a Service (SaaS) Overall explanation The correct answer is SaaS, which stands for Software as a Service. Outlook 365, part of Microsoft's Office 365 suite, is a cloud-based service that provides access to various applications and services, including email, calendars, and contact management, which are delivered over the internet. In a SaaS model, the service provider is responsible for the infrastructure, platform, and software, and ensures their maintenance and updates. Users simply access the services via a web browser or app, without needing to worry about the underlying infrastructure, platform, or software updates. This contrasts with Infrastructure as a Service (IaaS), where the user is responsible for managing the operating systems, middleware, and applications, and Platform as a Service (PaaS), where the user manages only the applications and data. In both these models, the users have more responsibilities compared to SaaS. Since Outlook 365 is a software application delivered over the web with all underlying infrastructure and platform taken care of by Microsoft, it falls into the SaaS hosting model.

Question 41

What is a DDoS attack? An attempt to read the contents of a web page from another website, thereby stealing the user's private information An attempt to send SQL commands to the server in a way that it will execute them against the database An attempt to guess a user's password through brute force methods A denial of service attack that sends so much traffic to a network that it cannot respond fast enough; legitimate users become unable to use the service

Answer 41

A denial of service attack that sends so much traffic to a network that it cannot respond fast enough; legitimate users become unable to use the service Overall explanation Distributed Denial of Service attacks (DDoS) -a type of attack that originates from the Internet that attempts to overwhelm a network with millions of packets of bad traffic that aims to prevent legitimate traffic from getting through

Question 42

Which Azure Service contains pre-built machine learning models that you can use in your own code, using an API? Azure Functions Azure AI Services (formerly Cognitive Services) App Services Azure Policy

Answer 42

Azure AI Services (formerly Cognitive Services) Overall explanation Cognitive Services is an API that Azure provides, that gives access to a set of pre-built machine learning models including vision services, speech services, knowledge management and chat bots.

Question 43

You have decided to subscribe to Azure DDoS Protection at the IP Protection Tier. This provides advanced protection to defend against DDoS attacks. What type of DDoS attack does DDoS Protection NOT protect against? Transport (L4) level attacks Application (L7) level attacks Network (L3) level attacks

Answer 43

Application (L7) attacks Application-level attacks are attacks that target the application layer of the network protocol stack, such as HTTP and DNS. Azure DDoS Protection IP Protection Tier does not protect against application-level attacks, because it is designed to protect against network and transport-level attacks. To protect against application-level attacks, you need to use a web application firewall (WAF). A WAF is a software appliance that sits in front of your application and filters out malicious traffic. WAFs can be configured to protect against a wide variety of application-level attacks, such as SQL injection, cross-site scripting, and denial of service attacks.

Question 44

Question 44Incorrect In the context of cloud computing, a virtual machine (VM) is primarily associated with which type of cloud hosting model? Platform as a Service (PaaS) Infrastructure as a Service (IaaS) Software as a Service (SaaS)

Answer 44

Infrastructure as a Service (IaaS) Overall explanation The correct answer is IaaS, which stands for Infrastructure as a Service. In the context of cloud computing, a virtual machine (VM) is typically provided as part of an IaaS offering. With IaaS, the provider manages the underlying physical infrastructure (like servers, network equipment, and storage), while the consumer controls the virtualized components of the infrastructure, such as the virtual machines, their operating systems, and the applications running on them. This is contrasted with the other options. In a Platform as a Service (PaaS) model, the consumer only controls the applications and possibly some configuration settings for the application-hosting environment, but does not manage the operating system, server hardware, or network infrastructure. Similarly, in a Software as a Service (SaaS) model, the consumer only uses the software and does not control any aspect of the infrastructure or platform where the application runs. Therefore, given that a virtual machine involves control over the operating system and applications within a cloud-managed infrastructure, it aligns with the IaaS hosting model.

Question 45

Which Azure website tool is available for you to estimate the future costs of your Azure products and services by adding products to a shopping basket and helping you calculate the costs? Microsoft Docs Azure Pricing Calculator Azure Advisor

Answer 45

Azure Pricing Calculator Overall explanation Azure Pricing Calculator lets you attempt to calculate your future bill based on resources you select and your estimates of usage

Question 46

Which of the following is something that Azure Cognitive Services API can currently do? Recognize text in an image Create text from audio Translate text from one language to another All of these! Azure can do it all! Speak text in an extremely realistic way

Answer 46

All of these! Azure can do it all! Overall explanation Azure can do all of them, of course.

Question 47

An IT administrator has the requirement to control access to a specific app resource using multi-factor authentication. What Azure service satisfies this requirement? Azure Function Microsoft Entra ID Azure Authentication Azure Authorization

Answer 47

Microsoft Entra ID Overall explanation You can use Microsoft Entra ID (new name for Azure AD) to control access to your apps and your app resources, based on your business requirements. In addition, you can use Microsoft Entra ID (Azure AD) to require multi-factor authentication when accessing important organizational resources.

Question 48

Azure Services can go through several phases in a Service Lifecycle. What are the three phases called? Announced, Coming Soon, and Live Development phase, QA phase, and Live phase Private Preview, Public Preview, and General Availability Preview Phase, General Availability Phase, and Unpublished

Answer 48

Private Preview, Public Preview, and General Availability Overall explanation Private Preview, Public Preview, and General Availability Domain Azure SLA

Question 49

What is the default amount of credits that you are given when you first create an Azure Free account? Azure does not give you any free credits when you create a free account The default is US$200 You can create 1 Linux VM, 1 Windows VM, and a number of other free services for the first year. You are given $50 per month, for one year towards Azure services

Answer 49

The default is $200 USD Overall explanation There are some other benefits to a free account, but you get US$200 to spend in the first month.

Question 50

In Microsoft Azure, which tool or service allows for the organization and management of multiple subscriptions within hierarchical structures? Management Groups Resource Groups RBAC (Role-Based Access Control) Microsoft Entra ID

Answer 50

Management Groups Overall explanation The correct answer is Management Groups. In Azure, Management Groups provide a way to manage access, policies, and compliance for multiple subscriptions. They can be structured into a hierarchy for the organization's needs. All subscriptions within a Management Group automatically inherit the conditions applied to the Management Group, facilitating governance on a large scale. Resource Groups, on the other hand, are containers for resources deployed on Azure. They do not provide management capabilities across multiple subscriptions. RBAC (Role-Based Access Control) is a system that provides fine-grained access management to Azure resources but it doesn't inherently support the organization of subscriptions into hierarchies. Entra ID is a service that provides identity and access management capabilities but does not provide a direct mechanism for managing multiple subscriptions in nested hierarchies. Hence, Management Groups is the correct answer as it directly allows for the management and organization of multiple subscriptions into nested hierarchies, which the other options do not.