You are tasked with deploying a critical LOB application, which will be installed on a virtual machine, to Azure.
You are informed that the application deployment strategy should allow for a guaranteed availability of 99.99 percent. You need to make sure that the strategy requires as little virtual machines and availability zones as possible.
Solution: You include one virtual machine and two availability zones in your strategy.
Does the solution meet the goal?
Yes
No
Answer is No
An availability zone is a physically separate data center within an Azure region, with its own power, cooling, and networking infrastructure. The use of multiple availability zones ensures that even if one zone experiences a failure, the application can continue to run in another zone.
In this scenario, using two availability zones means that the application will have redundancy across two separate physical data centers within the same region. This helps to ensure that the application remains available in the event of a failure in one of the zones.
However, the use of only one virtual machine in this solution raises questions about whether it can provide sufficient redundancy to meet the requirement of 99.99 percent availability. If the virtual machine fails, the application will go down, regardless of the availability zones. Therefore, it is not clear if the use of one virtual machine alone can provide the necessary level of availability.
It is worth noting that there are different ways to achieve high availability in Azure, and the best solution will depend on the specific requirements of the application. In general, using multiple virtual machines in conjunction with multiple availability zones can provide a higher level of redundancy and availability than using only one virtual machine.
Deploying one virtual machine and two availability zones does not meet the goal of achieving a guaranteed availability of 99.99 percent. To achieve such a high level of availability, you typically need to distribute your application across multiple instances in multiple availability zones or sets.
You are tasked with deploying a critical LOB application, which will be installed on a virtual machine, to Azure.
You are informed that the application deployment strategy should allow for a guaranteed availability of 99.99 percent. You need to make sure that the strategy requires as little virtual machines and availability zones as possible.
Solution: You include two virtual machines and two availability zones in your strategy.
Does the solution meet the g
Yes
No
Answer is Yes
"For all Virtual Machines that have two or more instances deployed across two or more Availability Zones in the same Azure region, we guarantee you will have Virtual Machine Connectivity to at least one instance at least 99.99% of the time."
Your company's developers intend to deploy a large number of custom virtual machines on a weekly basis. They will also be removing these virtual machines during the same week it was deployed. Sixty percent of the virtual machines have Windows Server 2016 installed, while the other forty percent has Ubuntu Linux installed.
You are required to make sure that the administrative effort, needed for this process, is reduced by employing a suitable Azure service.
Solution: You recommend the use of Microsoft Managed Desktop.
Does the solution meet the g
Yes
No
Answer is No
Azure DevTest Labs enable you to quickly create environments using reusable templates and artifacts.
The key message in the question is repetitive task and cross-platform environment whereas Windows plays major role. I'll go for Azure PowerShell as a solution.
Question 194
Your company's developers intend to deploy a large number of custom virtual machines on a weekly basis. They will also be removing these virtual machines during the same week it was deployed. Sixty percent of the virtual machines have Windows Server 2016 installed, while the other forty percent has Ubuntu Linux installed.
You are required to make sure that the administrative effort, needed for this process, is reduced by employing a suitable Azure service.
Solution: You recommend the use of Azure Reserved Virtual Machines (VM) Instances.
Does the solution meet the g
Yes
No
Answer is No
Azure DevTest Labs enable you to quickly create environments using reusable templates and artifacts.
Azure Reserved Virtual Machine Instances is compared to pay-as-you-go prices—with one-year or three-year terms on Windows and Linux virtual machines (VMs).
Your company's developers intend to deploy a large number of custom virtual machines on a weekly basis. They will also be removing these virtual machines during the same week it was deployed. Sixty percent of the virtual machines have Windows Server 2016 installed, while the other forty percent has Ubuntu Linux installed.
You are required to make sure that the administrative effort, needed for this process, is reduced by employing a suitable Azure service.
Solution: You recommend the use of Azure DevTest Labs.
Does the solution meet the g
Yes
No
Answer is Yes
Quickly provision development and test environments
Minimize waste with quotas and policies
Set automated shutdowns to minimize costs
Build Windows and Linux environments
You have been informed by your superiors of the company's intentions to automate server deployment to Azure. There is, however, some concern that administrative credentials could be uncovered during this process.
You are required to make sure that during the deployment, the administrative credentials are encrypted using a suitable Azure solution.
Solution: You recommend the use of Azure Information Protection.
Does the solution meet the g
Yes
No
Answer is No
Azure Information Protection (AIP) is a cloud-based solution that enables organizations to discover, classify, and protect documents and emails by applying labels to content.
You have been informed by your superiors of the company's intentions to automate server deployment to Azure. There is, however, some concern that administrative credentials could be uncovered during this process.
You are required to make sure that during the deployment, the administrative credentials are encrypted using a suitable Azure solution.
Solution: You recommend the use of Azure Multi-Factor Authentication (MFA).
Does the solution meet the goal?
Yes
No
Answer is No
MFA adds an aditional layer to the authentication process, but it doesn't keep your credential safe.
Your company has an Azure Active Directory (Azure AD) environment. Users occasionally connect to Azure AD via the Internet.
You have been tasked with making sure that users who connect to Azure AD via the internet from an unidentified IP address, are automatically encouraged to change passwords.
Solution: You configure the use of Azure AD Identity Protection.
Does the solution meet the goal?
Yes
No
Answer is Yes
Identity Protection identifies risks of many types, including:
Anonymous IP address use
Atypical travel
Malware linked IP address
Unfamiliar sign-in properties
Leaked credentials
Password spray
Your company has an Azure Active Directory (Azure AD) environment. Users occasionally connect to Azure AD via the Internet.
You have been tasked with making sure that users who connect to Azure AD via the internet from an unidentified IP address, are automatically encouraged to change passwords.
Solution: You configure the use of Azure AD Privileged Identity Management.
Does the solution meet the goal?
Yes
No
Answer is No
Privileged Identity Management (PIM) is a service in Azure Active Directory (Azure AD) that enables you to manage, control, and monitor access to important resources in your organization. These resources include resources in Azure AD, Azure, and other Microsoft Online Services such as Microsoft 365 or Microsoft Intune.
Correct service would be Azure AD Identity Protection.
You are planning a strategy to deploy numerous web servers and database servers to Azure.
This strategy should allow for connection types between the web servers and database servers to be controlled.
Solution: You include network security groups (NSGs) in your strategy.
Does the solution meet the goal?
Yes
No
Answer is Yes
Azure network security group to filter network traffic to and from Azure resources in an Azure virtual network.