VOUCHER GIẢM LỆ PHÍ THI GIÁ TỐT NSE FORTINET VOUCHERS 100% LỆ PHÍ THI
Liên hệ
Free Dumps, Free Microsoft Dump

Free AZ-305 Dump

Topic 4 – Question Set 4

Question #1Topic 4

You have an Azure subscription that contains a Basic Azure virtual WAN named VirtualWAN1 and the virtual hubs shown in the following table.

You have an ExpressRoute circuit in the US East Azure region.

You need to create an ExpressRoute association to VirtualWAN1.

What should you do first?

  • A. Upgrade VirtualWAN1 to Standard.
  • B. Create a gateway on Hub1.
  • C. Enable the ExpressRoute premium add-on.
  • D. Create a hub virtual network in US East.

Correct Answer: A

A basic Azure virtual WAN does not support express route. You have to upgrade to standard.

Reference:

https://docs.microsoft.com/en-us/azure/virtual-wan/virtual-wan-about

Community vote distribution

A (100%)

Question #2Topic 4

You have an Azure subscription that contains a storage account.

An application sometimes writes duplicate files to the storage account.

You have a PowerShell script that identifies and deletes duplicate files in the storage account. Currently, the script is run manually after approval from the operations manager.

You need to recommend a serverless solution that performs the following actions:

✑ Runs the script once an hour to identify whether duplicate files exist

✑ Sends an email notification to the operations manager requesting approval to delete the duplicate files

✑ Processes an email response from the operations manager specifying whether the deletion was approved

✑ Runs the script if the deletion was approved

What should you include in the recommendation?

  • A. Azure Logic Apps and Azure Event Grid
  • B. Azure Logic Apps and Azure Functions
  • C. Azure Pipelines and Azure Service Fabric
  • D. Azure Functions and Azure Batch

Correct Answer: B

You can schedule a powershell script with Azure Logic Apps.

When you want to run code that performs a specific job in your logic apps, you can create your own function by using Azure Functions. This service helps you create Node.js, C#, and F# functions so you don’t have to build a complete app or infrastructure to run code. You can also call logic apps from inside Azure functions.

Reference:

https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-azure-functions

Community vote distribution

B (100%)

Question #3Topic 4

Your company has the infrastructure shown in the following table.

The on-premises Active Directory domain syncs with Azure Active Directory (Azure AD).

Server1 runs an application named App1 that uses LDAP queries to verify user identities in the on-premises Active Directory domain.

You plan to migrate Server1 to a virtual machine in Subscription1.

A company security policy states that the virtual machines and services deployed to Subscription1 must be prevented from accessing the on-premises network.

You need to recommend a solution to ensure that App1 continues to function after the migration. The solution must meet the security policy.

What should you include in the recommendation?

  • A. Azure AD Application Proxy
  • B. the Active Directory Domain Services role on a virtual machine
  • C. an Azure VPN gateway
  • D. Azure AD Domain Services (Azure AD DS)

Correct Answer: D

Azure Active Directory Domain Services (Azure AD DS) provides managed domain services such as domain join, group policy, lightweight directory access protocol (LDAP), and Kerberos/NTLM authentication.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory-domain-services/overview

Community vote distribution

D (96%)

4%

Question #4Topic 4

You need to design a solution that will execute custom C# code in response to an event routed to Azure Event Grid. The solution must meet the following requirements:

✑ The executed code must be able to access the private IP address of a Microsoft SQL Server instance that runs on an Azure virtual machine.

✑ Costs must be minimized.

What should you include in the solution?

  • A. Azure Logic Apps in the Consumption plan
  • B. Azure Functions in the Premium plan
  • C. Azure Functions in the Consumption plan
  • D. Azure Logic Apps in the integrated service environment

Correct Answer: B

Virtual connectivity is included in the Premium plan.

Reference:

https://docs.microsoft.com/en-us/azure/azure-functions/functions-scale#hosting-plans-comparison

Community vote distribution

B (99%)

1%

Question #5Topic 4

You have an on-premises network and an Azure subscription. The on-premises network has several branch offices.

A branch office in Toronto contains a virtual machine named VM1 that is configured as a file server. Users access the shared files on VM1 from all the offices.

You need to recommend a solution to ensure that the users can access the shared files as quickly as possible if the Toronto branch office is inaccessible.

What should you include in the recommendation?

  • A. a Recovery Services vault and Windows Server Backup
  • B. Azure blob containers and Azure File Sync
  • C. a Recovery Services vault and Azure Backup
  • D. an Azure file share and Azure File Sync

Correct Answer: D

Use Azure File Sync to centralize your organization’s file shares in Azure Files, while keeping the flexibility, performance, and compatibility of an on-premises file server. Azure File Sync transforms Windows Server into a quick cache of your Azure file share.

Reference:

https://docs.microsoft.com/en-us/azure/storage/files/storage-sync-files-deployment-guide

Community vote distribution

D (100%)

Question #6Topic 4

HOTSPOT –

You have an Azure subscription named Subscription1 that is linked to a hybrid Azure Active Directory (Azure AD) tenant.

You have an on-premises datacenter that does NOT have a VPN connection to Subscription1. The datacenter contains a computer named Server1 that has

Microsoft SQL Server 2016 installed. Server is prevented from accessing the internet.

An Azure logic app resource named LogicApp1 requires write access to a database on Server1.

You need to recommend a solution to provide LogicApp1 with the ability to access Server1.

What should you recommend deploying on-premises and in Azure? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Correct Answer: 

Box 1: An on-premises data gateway

For logic apps in global, multi-tenant Azure that connect to on-premises SQL Server, you need to have the on-premises data gateway installed on a local computer and a data gateway resource that’s already created in Azure.

Box 2: A connection gateway resource

Reference:

https://docs.microsoft.com/en-us/azure/connectors/connectors-create-api-sqlazure

Question #7Topic 4

HOTSPOT –

Your company develops a web service that is deployed to an Azure virtual machine named VM1. The web service allows an API to access real-time data from

VM1.

The current virtual machine deployment is shown in the Deployment exhibit.

The chief technology officer (CTO) sends you the following email message: “Our developers have deployed the web service to a virtual machine named VM1.

Testing has shown that the API is accessible from VM1 and VM2. Our partners must be able to connect to the API over the Internet. Partners will use this data in applications that they develop.”

You deploy an Azure API Management (APIM) service. The relevant API Management configuration is shown in the API exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Hot Area:

Correct Answer: 

Reference:

https://docs.microsoft.com/en-us/azure/api-management/api-management-using-with-vnet

Question #8Topic 4

DRAG DROP –

Your company has an existing web app that runs on Azure virtual machines.

You need to ensure that the app is protected from SQL injection attempts and uses a layer-7 load balancer. The solution must minimize disruptions to the code of the app.

What should you recommend? To answer, drag the appropriate services to the correct targets. Each service may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Select and Place:

Correct Answer: 

Box 1: Azure Application Gateway

The Azure Application Gateway Web Application Firewall (WAF) provides protection for web applications. These protections are provided by the Open Web

Application Security Project (OWASP) Core Rule Set (CRS).

Box 2: Web Application Firewall (WAF)

Reference:

https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/application-gateway-customize-waf-rules-portal

Question #9Topic 4

You are designing a microservices architecture that will be hosted in an Azure Kubernetes Service (AKS) cluster. Apps that will consume the microservices will be hosted on Azure virtual machines. The virtual machines and the AKS cluster will reside on the same virtual network.

You need to design a solution to expose the microservices to the consumer apps. The solution must meet the following requirements:

✑ Ingress access to the microservices must be restricted to a single private IP address and protected by using mutual TLS authentication.

✑ The number of incoming microservice calls must be rate-limited.

✑ Costs must be minimized.

What should you include in the solution?

  • A. Azure App Gateway with Azure Web Application Firewall (WAF)
  • B. Azure API Management Standard tier with a service endpoint
  • C. Azure Front Door with Azure Web Application Firewall (WAF)
  • D. Azure API Management Premium tier with virtual network connection

Correct Answer: D

One option is to deploy APIM (API Management) inside the cluster VNet.

The AKS cluster and the applications that consume the microservices might reside within the same VNet, hence there is no reason to expose the cluster publicly as all API traffic will remain within the VNet. For these scenarios, you can deploy API Management into the cluster VNet. API Management Premium tier supports

VNet deployment.

Reference:

https://docs.microsoft.com/en-us/azure/api-management/api-management-kubernetes

Community vote distribution

D (92%)

 

Question #10Topic 4

You have a .NET web service named Service1 that performs the following tasks:

✑ Reads and writes temporary files to the local file system.

✑ Writes to the Application event log.

You need to recommend a solution to host Service1 in Azure. The solution must meet the following requirements:

✑ Minimize maintenance overhead.

✑ Minimize costs.

What should you include in the recommendation?

  • A. an Azure App Service web app
  • B. an Azure virtual machine scale set
  • C. an App Service Environment (ASE)
  • D. an Azure Functions app

Correct Answer: A

Azure Web App meets the requirements and is less expansive compared to VM scale sets.

Reference:

https://docs.microsoft.com/es-es/azure/app-service/troubleshoot-diagnostic-logs

Community vote distribution

A (87%)

 

Question #11Topic 4

You have the Azure resources shown in the following table.

You need to deploy a new Azure Firewall policy that will contain mandatory rules for all Azure Firewall deployments. The new policy will be configured as a parent policy for the existing policies.

What is the minimum number of additional Azure Firewall policies you should create?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Correct Answer: D

Firewall policies work across regions and subscriptions.

Place all your global configurations in the parent policy.

The parent policy is required to be in the same region as the child policy.

Each of the three regions must have a new parent policy.

Reference:

https://docs.microsoft.com/en-us/azure/firewall-manager/overview

Community vote distribution

D (78%)

B (22%)

Question #12Topic 4

Your company has an app named App1 that uses data from the on-premises Microsoft SQL Server databases shown in the following table.

App1 and the data are used on the first day of the month only. The data is not expected to grow more than 3 percent each year.

The company is rewriting App1 as an Azure web app and plans to migrate all the data to Azure.

You need to migrate the data to Azure SQL Database and ensure that the database is only available on the first day of each month.

Which service tier should you use?

  • A. vCore-based General Purpose
  • B. DTU-based Standard
  • C. vCore-based Business Critical
  • D. DTU-based Basic

Correct Answer: A

Note: App1 and the data are used on the first day of the month only. See Serverless compute tier below.

The vCore based purchasing model.

The term vCore refers to the Virtual Core. In this purchasing model of Azure SQL Database, you can choose from the provisioned compute tier and serverless compute tier.

* Provisioned compute tier: You choose the exact compute resources for the workload.

* Serverless compute tier: Azure automatically pauses and resumes the database based on workload activity in the serverless tier. During the pause period, Azure does not charge you for the compute resources.

Reference:

DTU and vCore based models for Azure SQL Databases

Community vote distribution

A (89%)

 

Question #13Topic 4

You are developing a sales application that will contain several Azure cloud services and handle different components of a transaction. Different cloud services will process customer orders, billing, payment, inventory, and shipping.

You need to recommend a solution to enable the cloud services to asynchronously communicate transaction information by using XML messages.

What should you include in the recommendation?

  • A. Azure Service Fabric
  • B. Azure Data Lake
  • C. Azure Service Bus
  • D. Azure Traffic Manager

Correct Answer: C

Asynchronous messaging options in Azure include Azure Service Bus, Event Grid, and Event Hubs.

Reference:

https://docs.microsoft.com/en-us/azure/architecture/guide/technology-choices/messaging

Community vote distribution

C (100%)

Question #14Topic 4

Your company has 300 virtual machines hosted in a VMware environment. The virtual machines vary in size and have various utilization levels.

You plan to move all the virtual machines to Azure.

You need to recommend how many and what size Azure virtual machines will be required to move the current workloads to Azure. The solution must minimize administrative effort.

What should you use to make the recommendation?

  • A. Azure Pricing calculator
  • B. Azure Advisor
  • C. Azure Migrate
  • D. Azure Cost Management

Correct Answer: C

Azure Migrate provides a centralized hub to assess and migrate on-premises servers, infrastructure, applications, and data to Azure. It provides the following:

Unified migration platform: A single portal to start, run, and track your migration to Azure. Range of tools: A range of tools for assessment and migration.

Reference:

https://docs.microsoft.com/en-us/azure/migrate/migrate-services-overview

Community vote distribution

C (100%)

Question #15Topic 4

You plan to provision a High Performance Computing (HPC) cluster in Azure that will use a third-party scheduler.

You need to recommend a solution to provision and manage the HPC cluster node.

What should you include in the recommendation?

  • A. Azure Automation
  • B. Azure CycleCloud
  • C. Azure Purview
  • D. Azure Lighthouse

Correct Answer: B

You can dynamically provision Azure HPC clusters with Azure CycleCloud.

Azure CycleCloud is the simplest way to manage HPC workloads.

Note: Azure CycleCloud is an enterprise-friendly tool for orchestrating and managing High Performance Computing (HPC) environments on Azure. With

CycleCloud, users can provision infrastructure for HPC systems, deploy familiar HPC schedulers, and automatically scale the infrastructure to run jobs efficiently at any scale. Through CycleCloud, users can create different types of file systems and mount them to the compute cluster nodes to support HPC workloads.

Reference:

https://docs.microsoft.com/en-us/azure/cyclecloud/overview

Community vote distribution

B (100%)

Question #16Topic 4

HOTSPOT –

You are designing an Azure App Service web app.

You plan to deploy the web app to the North Europe Azure region and the West Europe Azure region.

You need to recommend a solution for the web app. The solution must meet the following requirements:

✑ Users must always access the web app from the North Europe region, unless the region fails.

✑ The web app must be available to users if an Azure region is unavailable.

✑ Deployment costs must be minimized.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Correct Answer: 

Box 1: A Traffic Manager profile

To support load balancing across the regions we need a Traffic Manager.

Box 2: Priority traffic routing –

Priority traffic-routing method.

Often an organization wants to provide reliability for their services. To do so, they deploy one or more backup services in case their primary goes down. The

‘Priority’ traffic-routing method allows Azure customers to easily implement this failover pattern.

Reference:

https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/app-service-web-app/multi-region https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-routing-methods

Question #17Topic 4

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You plan to deploy multiple instances of an Azure web app across several Azure regions.

You need to design an access solution for the app. The solution must meet the following replication requirements:

✑ Support rate limiting.

✑ Balance requests between all instances.

✑ Ensure that users can access the app in the event of a regional outage.

Solution: You use Azure Traffic Manager to provide access to the app.

Does this meet the goal?

  • A. Yes
  • B. No

Correct Answer: B

Azure Traffic Manager is a DNS-based traffic load balancer. This service allows you to distribute traffic to your public facing applications across the global Azure regions. Traffic Manager also provides your public endpoints with high availability and quick responsiveness. It does not provide rate limiting.

Note: Azure Front Door would meet the requirements. The Azure Web Application Firewall (WAF) rate limit rule for Azure Front Door controls the number of requests allowed from clients during a one-minute duration.

Reference:

https://docs.microsoft.com/en-us/azure/app-service/web-sites-traffic-manager https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview https://docs.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-rate-limit-powershell

Community vote distribution

B (100%)

Question #18Topic 4

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You plan to deploy multiple instances of an Azure web app across several Azure regions.

You need to design an access solution for the app. The solution must meet the following replication requirements:

✑ Support rate limiting.

✑ Balance requests between all instances.

✑ Ensure that users can access the app in the event of a regional outage.

Solution: You use Azure Load Balancer to provide access to the app.

Does this meet the goal?

  • A. Yes
  • B. No

Correct Answer: B

Azure Application Gateway and Azure Load Balancer do not support rate or connection limits.

Note: Azure Front Door would meet the requirements. The Azure Web Application Firewall (WAF) rate limit rule for Azure Front Door controls the number of requests allowed from clients during a one-minute duration.

Reference:

https://www.nginx.com/blog/nginx-plus-and-azure-load-balancers-on-microsoft-azure/ https://docs.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-rate-limit-powershell

Community vote distribution

B (100%)

Question #19Topic 4

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You plan to deploy multiple instances of an Azure web app across several Azure regions.

You need to design an access solution for the app. The solution must meet the following replication requirements:

✑ Support rate limiting.

✑ Balance requests between all instances.

✑ Ensure that users can access the app in the event of a regional outage.

Solution: You use Azure Application Gateway to provide access to the app.

Does this meet the goal?

  • A. Yes
  • B. No

Correct Answer: B

Azure Application Gateway and Azure Load Balancer do not support rate or connection limits.

Note: Azure Front Door would meet the requirements. The Azure Web Application Firewall (WAF) rate limit rule for Azure Front Door controls the number of requests allowed from clients during a one-minute duration.

Reference:

https://www.nginx.com/blog/nginx-plus-and-azure-load-balancers-on-microsoft-azure/ https://docs.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-rate-limit-powershell

Community vote distribution

B (100%)

Question #20Topic 4

HOTSPOT –

Your company has two on-premises sites in New York and Los Angeles and Azure virtual networks in the East US Azure region and the West US Azure region.

Each on-premises site has ExpressRoute Global Reach circuits to both regions.

You need to recommend a solution that meets the following requirements:

✑ Outbound traffic to the internet from workloads hosted on the virtual networks must be routed through the closest available on-premises site.

✑ If an on-premises site fails, traffic from the workloads on the virtual networks to the internet must reroute automatically to the other site.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Correct Answer: 

Box 1: Border Gateway Protocol (BGP)

An on-premises network gateway can exchange routes with an Azure virtual network gateway using the border gateway protocol (BGP). Using BGP with an Azure virtual network gateway is dependent on the type you selected when you created the gateway. If the type you selected were:

ExpressRoute: You must use BGP to advertise on-premises routes to the Microsoft Edge router. You cannot create user-defined routes to force traffic to the

ExpressRoute virtual network gateway if you deploy a virtual network gateway deployed as type: ExpressRoute. You can use user-defined routes for forcing traffic from the Express Route to, for example, a Network Virtual Appliance.

Box 2: Border Gateway Protocol (BGP)

Incorrect:

Microsoft does not support HSRP or VRRP for high availability configurations.

Reference:

https://docs.microsoft.com/ja-jp/azure/expressroute/designing-for-disaster-recovery-with-expressroute-privatepeering https://docs.microsoft.com/en-us/azure/expressroute/expressroute-routing

Trả lời

Email của bạn sẽ không được hiển thị công khai. Các trường bắt buộc được đánh dấu *

you are using free dumps!!!

Please help to click ads to support the website

Buy Premium Dumps For Ads-free
Buy Vouchers

DỊCH VỤ iT

Thiết kế Website

Biên tập Video theo yêu cầu

THÔNG TIN CHI TIẾT