This page was exported from Exam for engine [ http://blog.test4engine.com ]
Export date: Mon Nov 18 4:22:59 2024 / +0000 GMT

[Dec 07, 2022] Fully Updated Azure Solutions Architect Expert (AZ-304) Certification Sample Questions [Q172-Q190]




[Dec 07, 2022] Fully Updated Azure Solutions Architect Expert (AZ-304) Certification Sample Questions

Latest Microsoft AZ-304 Real Exam Dumps PDF


Design Data Storage: 15-20%

  • Choose the relevant storage account: the applicants should know how to choose between available storage tiers; recommend storage access solutions and storage management tools.
  • Design solutions for databases: this requires your skills in choosing relevant data platforms based on the prerequisites; recommending database service-tier sizing, solutions for database scalability, and encryption of data at rest, data in use, and data in transmission.
  • Design data integration: the students should be able to recommend the data flow that fulfills the business requirements; recommend solutions for data integration, such as Azure Data Bricks, Azure Synapse Analytics, Azure Data Factory, and Azure Data Lake.

 

Q172. You plan to create an Azure environment that will have a root management group and five child and five child management groups. Each child management group will contains five Azure subscriptions. You plan to have between 10 and 30 resource group in each subscription.
Ensure that you can update RBAC role assignment all the subscription and resource groups.
Minimize administrative effort.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Q173. You are evaluating the components of the migration to Azure that require you to provision an Azure Storage account.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Q174. You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager resource deployments in your subscription What should you include in the recommendation?

 
 
 
 

Q175. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has an on-premises Active Directory Domain Services (AD DS) domain and an established Azure Active Directory (Azure AD) environment.
Your company would like users to be automatically signed in to cloud apps when they are on their corporate desktops that are connected to the corporate network.
You need to enable single sign-on (SSO) for company users.
Solution: Configure an AD DS server in an Azure virtual machine (VM). Configure bidirectional replication.
Does the solution meet the goal?

 
 

Q176. You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant. The subscription contains 10 resource groups, one for each department at your company.
Each department has a specific spending limit for its Azure resources.
You need to ensure that when a department reaches its spending limit, the compute resources of the department shut down automatically.
Which two features should you include in the solution? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

 
 
 
 
 

Q177. You plan to deploy an application named App1 that will run on five Azure virtual machines. Additional virtual machines will be deployed later to run App1.
You need to recommend a solution to meet the following requirements for the virtual machines that will run App1:
* Ensure that the virtual machines can authenticate to Azure Active Directory (Azure AD) to gain access to
* an Azure key vault, Azure Logic Apps instances, and an Azure SQL database.
* Avoid assigning new roles and permissions for Azure services when you deploy additional virtual machines.
* Avoid storing secrets and certificates on the virtual machines.
Which type of identity should you include in the recommendation?

 
 
 
 

Q178. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an on-premises Hyper-V cluster that hosts 20 virtual machines. Some virtual machines run Windows Server 2016 and some run Linux.
You plan to migrate the virtual machines to an Azure subscription.
You need to recommend a solution to replicate the disks of the virtual machines to Azure. The solution must ensure that the virtual machines remain available during the migration of the disks.
Solution: You recommend implementing an Azure Storage account that has a file service and a blob service, and then using the Data Migration Assistant.
Does this meet the goal?

 
 

Q179. You have an Azure subscription that contains resources in three Azure regions.
You need to implement Azure Key Vault to meet the following requirements:
* In the event of a regional outage, all keys must be readable.
* All the resources in the subscription must be able to access Key Vault.
* The number of Key Vault resources to be deployed and managed must be minimized.
How many instances of Key Vault should you implement?

 
 
 
 

Q180. Your company develops a web service that is deployed to an Azure virtual machine named VM1. The web service allows an API to access real-time data from VM1.
The current virtual machine deployment is shown in the Deployment exhibit. (Click the Deployment tab).

The chief technology officer (CTO) sends you the following email message: “Our developers have deployed the web service to a virtual machine named VM1. Testing has shown that the API is accessible from VM1 and VM2. Our partners must be able to connect to the API over the Internet. Partners will use this data in applications that they develop.” You deploy an Azure API Management (APIM) service. The relevant API Management configuration is shown in the API exhibit. (Click the

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Q181. You have an Azure App Service Web App that includes Azure Blob storage and an Azure SQL Database instance. The application is instrumented by using the Application Insights SDK.
You need to design a monitoring solution for the web app.
Which Azure monitoring services should you use? To answer, select the appropriate Azure monitoring services in the answer area.
NOTE: Each correct selection is worth one point.

Q182. You have the application architecture shown in the following exhibit.

Use the drop-down menus to select choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Q183. You need to design a resource governance solution for an Azure subscription. The solution must meet the following requirements:
Ensure that all ExpressRoute resources are created in a resource group named RG1.
Delegate the creation of the ExpressRoute resources to an Azure Active Directory (Azure AD) group named Networking.
Use the principle of least privilege.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Q184. Your company provides customer support for multiple Azure subscriptions and third-party hosting providers.
You are designing a centralized monitoring solution. The solution must provide the following services:
* Collect log and diagnostic data from all the third-party hosting providers into a centralized repository.
* Collect log and diagnostic data from all the subscriptions into a centralized repository.
* Automatically analyze log data and detect threats.
* Provide automatic responses to known events.
Which Azure service should you include in the solution?

 
 
 
 

Q185. You manage a network that includes an on-premises Active Directory Domain Services domain and an Azure Active Directory (Azure AD).
Employees are requires to use different accounts when using on-premises or cloud resources. You must recommend a solution that lets employees sign in to all company resources by using a single account. The solution must implement an identity provider.
You need provide guidance on the different identity providers.
How should you describe each identity provider? To answer, select the appropriate description from each list in the answer area.
NOTE: Each correct selection is worth one point.

Q186. Your company has the offices shown in the following table.

The network contains an Active Directory domain named contoso.com that is synced to Azure Active Directory (Azure AD).
All users connect to an application hosted in Microsoft 365.
You need to recommend a solution to ensure that all the users use Azure Multi-Factor Authentication (MFA) to connect to the application from one of the offices.
What should you include in the recommendation?

 
 
 
 

Q187. You need to design an Azure policy that will implement the following functionality:
* For new resources, assign tags and values that match the tags and values of the resource group to which the resources are deployed.
* For existing resources, identify whether the tags and values match the tags and values of the resource group that contains the resources.
* For any non-compliant resources, trigger auto-generated remediation tasks to create missing tags and values.
The solution must use the principle of least privilege.
What should you include in the design? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Q188. You need to design a resource governance solution for an Azure subscription. The solution must meet the following requirements:
Ensure that all ExpressRoute resources are created in a resource group named RG1.
Delegate the creation of the ExpressRoute resources to an Azure Active Directory (Azure AD) group named Networking.
Use the principle of least privilege.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Q189. You need to recommend a backup solution for the data store of the payment processing system.
What should you include in the recommendation?

 
 
 
 

Q190. You plan to deploy an application that will run at a Linux-based Docker container You need to recommend a solution to host the application in Azure. The solution must meet the following requirements:
* Support a custom domain name and an associated SSL certificate.
* Scale-out automatically based on demand
* Minimize administrative effort and costs.
What should you Include in the recommendation?

 
 
 
 


Who should take the AZ-304: Microsoft Azure Architect Design Exam

The AZ-304 Exam certification is an internationally-recognized certification which help to have validation for Azure Solution Architects who participate in all phases of advising stakeholders and translate business requirements into secure, scalable, and reliable solutions. Candidates should be proficient in IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance.

 

Microsoft AZ-304 Dumps - Secret To Pass in First Attempt: https://www.test4engine.com/AZ-304_exam-latest-braindumps.html

Post date: 2022-12-07 14:04:43
Post date GMT: 2022-12-07 14:04:43
Post modified date: 2022-12-07 14:04:43
Post modified date GMT: 2022-12-07 14:04:43