Remaining

Question 1

What is AzCopy?

Answer 1

To share blobs or files (including synchronous files) to or from storage account/ cloud providers

Question 2

What is Azure Storage Explorer?

Answer 2

Provides a graphical interface to manage files and blobs in Azure Storage Account

Question 3

What is Azure File Sync?

Answer 3

Lets you centralize your file shares. Bi-directionally syncing files in Azure and local systems

Question 4

What are the differences between the different Azure AD tiers?

Answer 4

Free - same
Office 365 - same
Premium P1 — RBAC & Conditional access
Premium P2 — Identity protection, Self-service entitlement management and privileged Identity management

Question 5

How do tags work?

Answer 5

• Tags apply to resource, resource groups and subscriptions
• typically max of 50 tags
• resources do not inherit resource group tags, however permissions are inherited by resources

Question 6

What is an initiative?

Answer 6

Group of Azure policies

Question 7

What is a blueprint?

Answer 7

Azure Blueprints is the combination of one or more Policy, Role, ARM Template, and Resource Group.

Question 8

What is network peering?

Answer 8

Virtual network peering: Connecting virtual networks within the same Azure region.
Global virtual network peering: Connecting virtual networks across Azure regions.

Benefits:
- A low-latency, high-bandwidth connection between resources in different virtual networks.
- The ability for resources in one virtual network to communicate with resources in a different virtual network.
- The ability to transfer data between virtual networks across Azure subscriptions, Azure Active Directory tenants, deployment models, and Azure regions.
- The ability to peer virtual networks created through the Azure Resource Manager.
- The ability to peer a virtual network created through Resource Manager to one created through the classic deployment model.
- No downtime to resources in either virtual network when creating the peering, or after the peering is created.

Question 9

What is a network security group?

Answer 9

Network Security Group (NSG) is an internal Firewall inside Azure Virtual Network. It allows/blocks traffic based on IP address and Port. NSG can restrict traffic between resources, it can allow Database access only to Web Servers from the outside world.
NSG is attached with subnet and network interface.

Question 10

What is the Azure App Gateway?

Answer 10

Azure Application Gateway can do URL-based routing. It is a web traffic load balancer which enables us to manage traffic to our web application hosted in the Azure cloud. Layer 7

Question 11

What is the Azure Load Balancer?

Answer 11

Layer 4 overall load balancer

Question 12

What is the Azure traffic manager?

Answer 12

DNS based load balancing

Question 13

What is Azure Express Route?

Answer 13

Azure Express Route is a private and dedicated connection between Azure cloud and an on-premise data centre. It gives high bandwidth with high security.

Question 14

What are the Azure Defender features?

Answer 14

• Generates a secure score for your subscriptions based on an assessment of your connected resources compared with the guidance in Microsoft cloud security benchmark.
• Provides hardening recommendations
• Analyze and secure your attack paths through the cloud security graph, which is a graph-based context engine that exists within Defender for Cloud.
• Defend PaaS services, things on other clouds and on premise stuff

Question 15

What is Azure Senteniel?

Answer 15

Azure Sentinel is an intelligent security analytics service for the entire enterprise. It is a security information and event management (SIEM).
Azure Sentinel detect threats and respond very fast with the help of AI.

Question 16

What are the benefits of Azure Advisor?

Answer 16

Azure Advisor provides a score to improve the reliability and performance.
For example – Azure Advisor can recommend to take backup, If a VM data backup is not enabled by user.
It also creates Azure Service Health alerts to let the user know about issues in Azure Services.
It also send alerts for optimizing VM by adding or removing VM instances.

Gives guidance on well architecture framework categories.

Question 17

What does Azure Service Health do?

Answer 17

It also tells about an Azure service which will be decommissioned in future, outages and planned maintenance. Done at the regional level.

Question 18

What does Azure status do? (part of service health??)

Answer 18

Go to status.azure.com to check Azure health globally per service

Question 19

What does azure resource health do? (part of service health??)

Answer 19

Is there any issue with resource within your Azure subscription

Question 20

What is Azure Migrate

Answer 20

Unified Migration tool

Question 21

What is Azure Databox?

Answer 21

AES encrypted mass data (TB) movement tool to export/import that is NIST 880 compliant for when network options aren’t available. Can either use physical device, data box service or local web UI to implement it.

Question 22

What is Azure Arc?

Answer 22

Unified tool to manage components between azure, other clouds and on-prem

Question 23

What is Azure VPN Gateway?

Answer 23

Cheaper version of ExpressRoute (connects on premise to cloud )so the lesser specs are useful for smaller organizations

Question 24

What is the email/phone support for each support tier?

Answer 24

Developer: Business hrs. by Email
Standard: 24x7
Pro Direct: 24x7

Question 25

What is the SLA for each support tier?

Answer 25

Developer: Sev C <8 hours
Standard: Sev. A < 1 hr. | Sev. B < 4 hrs. | Sev. C < 8 hrs.
Pro Direct: Sev. A < 1 hr. | Sev. B < 2 hrs. | Sev. C < 4 hrs.

Question 26

What guidance is received for each support tier?

Answer 26

Developer: General Guidance
Standard: General Guidance
Pro Direct: Guidance from Delivery Manager

Question 27

What are the 3 password less authentication methods?

Answer 27

• Windows Hello for Business
• Microsoft Authenticator app
• FIDO2 security keys

Question 28

What is Azure Cloud Shell?

Answer 28

browser-based shell tool that allows you to create, configure, and manage Azure resources using a shell.

Azure Cloud Shell support both Azure PowerShell and the Azure Command Line Interface (CLI), which is a Bash shell.

Question 29

What is Azure Powershell?

Answer 29

• shell with which developers, DevOps, and IT professionals can run commands called command-lets (cmdlets). - These commands call the Azure REST API to perform management tasks in Azure.

Question 30

What is Azure CLI?

Answer 30

• The Azure CLI is functionally equivalent to Azure PowerShell, with the primary difference being the syntax of commands.
• While Azure PowerShell uses PowerShell commands, the Azure CLI uses Bash commands.

Question 31

What does Azure Monitor do?

Answer 31

Contains:

Log Analytics: Run queries against log/data gathered by monitor.
Azure Monitor Alerts: sends alerts based on defined threshold conditions in monitor
App Insights: monitors app performance in azure, on-prem or other clouds

Question 32

When should you use SQL server on VM vs Managed Instance vs SQL Database?

Answer 32

SQL Server on VM: When you want full control (IaaS) solution for migrated db
SQL MI: Most cloud migrations should use this as it is the PaaS solution with highest on premise compatibility
SQL DB: New cloud apps or migrated apps with minimal dependencies

Question 33

What are the 4 storage accounts and their redundancies?

Answer 33

Standard general-purpose v2: LRS,GRS,RA-GRS,ZRS,GZRS,RA-GZRS

Premium block blobs: LRS,ZRS

Premium File shares: LRS,ZRS

Premium page blobs: LRS

Question 34

How is conditional access implemented?

Answer 34

Through policies

Question 35

What are example use cases for VMs?

Answer 35

During testing and development
When running applications in the cloud
When extending your datacenter to the cloud
During disaster recovery