Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
Q1. - (Topic 4)
You need to upload video to the company's Azure environment. What should you do?
A. Create a site-to-site VPN connection.
B. Write directly to the storage REST APIs.
C. Create an ExpressRoute connection.
D. Use the Azure Import/Export service to move the data.
Answer: B
Q2. - (Topic 5)
You need to recommend the appropriate technology to provide the predictive analytics for passenger pickup.
What should you do?
A. Use Power BI to analyze the traffic data and PowerPivot to categorize the results.
B. Use HDInsight to analyze the traffic data and write a .NET program to categorize the results.
C. Use Machine Learning Studio to create a predictive model and publish the results as a web service.
D. Use Hadoop on-premises to analyze the traffic and produce a report that shows high
traffic zones.
Answer: C
Explanation: * Scenario: Predictive Routing:
/ An Azure solution must be used for prediction systems.
/ Predictive analytics must be published as a web service and accessible by using the REST API.
* Microsoft Azure Machine Learning Studio is a collaborative visual development environment that enables you to build, test, and deploy predictive analytics solutions that operate on your data. The Machine Learning service and development environment is cloud-based, provides compute resource and memory flexibility, and eliminates setup and installation concerns because you work through your web browser.
Reference: What is Azure Machine Learning Studio?
https://azure.microsoft.com/en-us/documentation/articles/machine-learning-what-is-ml- studio/
Q3. - (Topic 7)
You need to support processing for the WGBLeaseLeader app. Which technology should you use?
A. Azure Event Hubs
B. Azure Service Fabric
C. Azure Service Bus Queues
D. Azure Storage Queues
Answer: A
Topic 8, Fourth Coffee
Background
You are the new cloud architect for Fourth Coffee. I he company hosts an on-premises ASP.NET MVC web application to allow online purchases and to support their retail store operations.
The new chief information officer (CIO) has announced several initiatives for the new year, including a new mobile application, online training for retail store employees, and moving the current web application and other services to the cloud.
The marketing team hopes to see an increase in the up-time for the web application. The team would also like to allow users to use social-Nogms in addition to the current username and password system.
Fourth Coffee has chosen Microsoft Azure to support their initiatives.
Current environment
In the Azure portal, you create an Azure Mobile App for the API. You create a Service Bus queue in Azure and install the Azure Storage SDK for Nodejs.
Problem statements
The mobile team attempts to use continuous deployment with the Azure App Service and the new API project. They receive the following error message: "Unable to access 'http://fourthcoffeeapi.azurewebsites.net/': Failed to connect to https://fourthcoffeeapi.scm.azurewebsites.net/"
Business requirement
Web Application
*You must increase up-time for the application.
*The application must support additional regions and languages.
*Marketing must be able to validate the web application before updates to the application
are published to the production environment.
Mobile
*The marketing team must be able to send frequent and timely updates to specific users and devices including Apple iPad. iPhone, Android. Windows, and Windows Phone devices.
*Users must be able to use their social accounts to sign in to the application. You must support Linkedln, Facebook and Google logons.
*The application must remain responsive, even during peak periods.
Training
Video streaming content must be made available and streamed to employee’s browsers. Training content must only include on-demand streaming. There will be no live content.
Technical requirement Web Application
*You must update the deployment process to support cloud deployments.
*All data must be formatted as JSON during transport.
*You must implement Team Foundation Version Control (TFVC) as the version control system for the web application.
*Incoming messages to the API must be persisted to queue storage to ensure they are delivered and processed. You must restrict the size of messages between the mobile app and the API to no more than 5 gigabytes (GB).
*The web application must use geo-redundant replication.
Mobile
*You must use Node.js as a technology platform. You must support all mobile initiatives when possible.
*You must implement Git as the version control system for the mobile app.
*You must develop a REST API by using Node.js. Express, and MongoDB. You must use the Mobile Apps feature of the Azure App Service to host the API in Standard mode.
*You must implement the following Push Notification Services by using Azure Media Services:
*Apple Push Notification Service (APNS) for iPad and iPhone devices
*Google Cloud Messaging service (GCM) for Android devices
*Windows Notification Service (WNS) for Windows devices
*Microsoft Push Notification Service (MPNS) for Windows Phone devices
Security and Disaster Recovery
*You must integrate the on-premises Active Directory Domain Services with Azure Active
Directory (Azure AD).
*You must implement the latest federated identity standards to provide authentication and authorization to applications.
*You must implement Multi-Factor Authentication.
*The web application and the API must be able to recover from a disaster.
Scaling
The web application and API must auto-scale according to the following rules:
*Scale up by one instance if CPU is above 70%.
*Scale down by one instance if CPU is below 50%.
Training
*Streaming must include Content Delivery Network (CDN) capabilities to support global
locations.
*Content must be encrypted and protected by using AES and PlayReady.
*Streaming must include one gigabit (GB) per second of dedicated egress capacity.
*All videos must use adaptive bitrate MP4 encoded content and include a streaming manifest file
(.ism).
*You must support the following streaming formats for video files: MPEG DASH, HI_S, Smooth Streaming, HDS. You must not need to re-encode the content.
Q4. You need to implement the security requirements. What should you implement?
A. the GraphAPI to query the directory
B. LDAP to query the directory
C. single sign-on
D. user certificates
Answer: C
Q5. CORRECT TEXT - (Topic 6)
You have an Azure subscription.
You plan to deploy five virtual machines that will have similar configurations and will run the same workload.
You need to recommend a solution to ensure the availability of the virtual machines during Azure maintenance periods. At any given time, only one virtual machine can be offline for maintenance.
What should you include in the recommendation? To answer, select the appropriate options in the answer area.
Answer:
Q6. DRAG DROP - (Topic 2)
You need to ensure that customer data is secured both in transit and at rest.
Which technologies should you recommend? To answer, drag the appropriate technology to the correct security requirement. Each technology may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
* Azure Rights Management service
Azure Rights Management service uses encryption, identity, and authorization policies to help secure your files and email, and it works across multiple devices—phones, tablets, and PCs. Information can be protected both within your organization and outside your organization because that protection remains with the data, even when it leaves your organization’s boundaries.
* Transparent Data Encryption
Transparent Data Encryption (often abbreviated to TDE) is a technology employed by both Microsoft and Oracle to encrypt database files. TDE offers encryption at file level. TDE solves the problem of protecting data at rest, encrypting databases both on the hard drive and consequently on backup media.
* TLS/SSL
Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols designed to provide communications security over a computer network. They use X.509 certificates and hence asymmetric cryptography to authenticate the counterparty with whom they are communicating, and to negotiate a symmetric key.
Q7. - (Topic 6)
You design an Azure application that processes images. The maximum size of an image is 10 MB. The application includes a web role that allows users to upload images and a worker role with multiple instances that processes the images. The web role communicates with the worker role by using an Azure Queue service.
You need to recommend an approach for storing images that minimizes storage transactions.
What should you recommend?
A. Store images in Azure Blob service. Store references to the images in the queue.
B. Store images in the queue.
C. Store images in OneDrive attached to the worker role instances. Store references to the images in the queue.
D. Store images in local storage on the web role instance. Store references to the images in the queue.
Answer: A
Explanation: Azure Queues provide a uniform and consistent programming model across queues, tables, and BLOBs – both for developers and for operations teams.
Microsoft Azure blob storage can be used to store the image data, the application can use a worker role in Azure to perform background processing tasks on the images, how the application may use shared access signatures to control access to the images by users. Azure blobs provide a series of containers aimed at storing text or binary data. Block blob containers are ideal for streaming data, while page blob containers can be used for random read/write operations.
Reference: 5 – Executing Background Tasks
https://msdn.microsoft.com/en-gb/library/ff803365.aspx
Reference: Azure Queues and Service Bus Queues - Compared and Contrasted https://msdn.microsoft.com/en-us/library/azure/hh767287.aspx
Q8. - (Topic 6)
You are designing an Azure application that processes graphical image files. The graphical Images are processed in batches by remote applications that run on multiple servers.
You have the following requirements:
✑ The application must remain operational during batch-processing operations.
✑ Users must be able to roll back each image to a previous version.
You need to ensure that each remote application has exclusive access to an image while the application processes the image. Which type of storage should you use to store the images?
A. Table service
B. Queue service
C. Blob service
D. A single Azure VHD that is attached to the web role
Answer: C
Explanation: * Blob Leases allow you to claim ownership to a Blob. Once you have the lease you can then update the Blob or delete the Blob without worrying about another process changing it underneath you. When a Blob is leased, other processes can still read it, but any attempt to update it will fail. You can update Blobs without taking a lease first, but you do run the chance of another process also attempting to modify it at the same time.
* You can opt to use either optimistic or pessimistic concurrency models to manage access to blobs and containers in the blob service.
Reference: Azure Blob Storage Part 8: Blob Leases
http://justazure.com/azure-blob-storage-part-8-blob-leases/
Reference: Using Blob Leases to Manage Concurrency with Table Storage http://www.azurefromthetrenches.com/?p=1371
Q9. DRAG DROP - (Topic 3)
You need to deploy the virtual machines to Azure.
Which four Azure PowerShell scripts should you run in sequence? To answer, move the appropriate scripts from the list of scripts to the answer area and arrange them in the correct order.
Answer:
Explanation:
Box 1:
Box 2:
Box 3:
Box 4:
Note:
* In order to upload a VHD file to Azure, we need :
✑ Azure PowerShell SDK
✑ A publish setting file
✑ An affinity group
✑ A Storage account
✑ A container
Topic 4, Lucerne Publishing
Background
Overview
Lucerne Publishing creates, stores, and delivers online media for advertising companies. This media is streamed to computers by using the web, and to mobile devices around the world by using native applications. The company currently supports the iOS, Android, and Windows Phone 8.1 platform.
Lucerne Publishing uses proprietary software to manage its media workflow. This software has reached the end of its lifecycle. The company plans to move its media workflows to the cloud. Lucerne Publishing provides access to its customers, who are third-party companies, so that they can download, upload, search, and index media that is stored on Lucerne Publishing servers.
Apps and Applications
Lucerne Publishing develops the applications that customers use to deliver media. The
company currently provides the following media delivery applications:
✑ Lucerne Media W - a web application that delivers media by using any browser
✑ Lucerne Media M - a mobile app that delivers media by using Windows Phone 8.1
✑ Lucerne Media A - a mobile app that delivers media by using an iOS device
✑ Lucerne Media N - a mobile app that delivers media by using an Android device
✑ Lucerne Media D - a desktop client application that customer's install on their local computer
Business Requirements
Lucerne Publishing's customers and their consumers have the following requirements:
✑ Access to media must be time-constricted once media is delivered to a consumer.
✑ The time required to download media to mobile devices must be minimized.
✑ Customers must have 24-hour access to media downloads regardless of their location or time zone.
✑ Lucerne Publishing must be able to monitor the performance and usage of its customer-facing app.
Lucerne Publishing wants to make its asset catalog searchable without requiring a database redesign.
✑ Customers must be able to access all data by using a web application. They must
also be able to access data by using a mobile app that is provided by Lucerne Publishing.
✑ Customers must be able to search for media assets by key words and media type.
✑ Lucerne Publishing wants to move the asset catalog database to the cloud without formatting the source data.
Other Requirements Development
Code and current development documents must be backed up at all times. All solutions
must be automatically built and deployed to Azure when code is checked in to source control.
Network Optimization
Lucerne Publishing has a .NET web application that runs on Azure. The web application analyzes storage and the distribution of its media assets. It needs to monitor the utilization of the web application. Ultimately, Lucerne Publishing hopes to cut its costs by reducing data replication without sacrificing its quality of service to its customers. The solution has the following requirements:
✑ Optimize the storage location and amount of duplication of media.
✑ Vary several parameters including the number of data nodes and the distance from node to customers.
✑ Minimize network bandwidth.
✑ Lucerne Publishing wants be notified of exceptions in the web application.
Technical Requirements Data Mining
Lucerne Publishing constantly mines its data to identify customer patterns. The company
plans to replace the existing on-premises cluster with a cloud-based solution. Lucerne Publishing has the following requirements:
Virtual machines:
✑ The data mining solution must support the use of hundreds to thousands of processing cores.
✑ Minimize the number of virtual machines by using more powerful virtual machines.
Each virtual machine must always have eight or more processor cores available.
✑ Allow the number of processor cores dedicated to an analysis to grow and shrink automatically based on the demand of the analysis.
✑ Virtual machines must use remote memory direct access to improve performance.
Task scheduling:
The solution must automatically schedule jobs. The scheduler must distribute the jobs based on the demand and available resources.
Data analysis results:
The solution must provide a web service that allows applications to access the results of analyses.
Other Requirements Feature Support
✑ Ad copy data must be searchable in full text.
✑ Ad copy data must indexed to optimize search speed.
✑ Media metadata must be stored in Azure Table storage.
✑ Media files must be stored in Azure BLOB storage.
✑ The customer-facing website must have access to all ad copy and media.
✑ The customer-facing website must automatically scale and replicate to locations around the world.
✑ Media and data must be replicated around the world to decrease the latency of data transfers.
✑ Media uploads must have fast data transfer rates (low latency) without the need to upload the data offline.
Security
✑ Customer access must be managed by using Active Directory.
✑ Media files must be encrypted by using the PlayReady encryption method.
✑ Customers must be able to upload media quickly and securely over a private connection with no opportunity for internet snooping.
Q10. - (Topic 6)
You are designing an Azure web application.
All users must authenticate by using Active Directory Domain Services (AD DS) credentials.
You need to recommend an approach to enable single sign-on to the application for domain-authenticated users.
Which two actions should you recommend? Each correct answer presents part of the solution.
A. Use Forms authentication to generate claims.
B. Use the SQL membership provider in the web application.
C. Use Windows Identity Foundation in the web application.
D. Use Active Directory Federation Services (AD FS) to generate claims.
Answer: C,D
Explanation:
Reference: What is Windows Identity Foundation? https://msdn.microsoft.com/en-us/library/ee748475.aspx
Reference: DirSync with Single Sign-On https://msdn.microsoft.com/en-us/library/azure/dn441213.aspx
Q11. - (Topic 4)
You need to ensure that the website scales. What should you do?
A. Deploy Traffic Manager and configure it to route user traffic to specified endpoints to other Azure datacenters.
B. Enter multiple DNS entries in each virtual network to route requests to other Azure datacenters.
C. Set up a new Azure datacenter to Azure datacenter VPN to enable the solution to communicate across regions.
D. Use a virtual network to route network traffic in a single Azure datacenter.
Answer: C
Explanation: Scenario: The customer-facing website must automatically scale and replicate to locations around the world.
Azure ExpressRoute enables you to create private connections between Azure datacenters and infrastructure that’s on your premises or in a colocation environment. ExpressRoute connections do not go over the public Internet, and offer more reliability, faster speeds, lower latencies and higher security than typical connections over the Internet. In some cases, using ExpressRoute connections to transfer data between on-premises and Azure can also yield significant cost benefits.
Reference: ExpressRoute, Experience a faster, private connection to Azure http://azure.microsoft.com/en-us/services/expressroute/
Q12. - (Topic 2)
You need to assign permissions for Her four employees. Which role should you assign?
A. Security Manager
B. Website Contributor
C. Owner
D. Network Contributor
Answer: C
Q13. DRAG DROP - (Topic 6)
You are developing an ASP.NET Web API that you will host by using the Open Web Interface for .NET (OWIN) libraries. The API is used by an ASP.NET MVC Web App that is hosted in Azure.
You need to secure the API by using Azure Active Directory (Azure AD) B2C.
In which order should you perform the actions? To answer, move all actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q14. - (Topic 4)
You need to configure the deployment of the storage analysis application. What should you do?
A. Create a new Mobile Service.
B. Configure the deployment from source control.
C. Add a new deployment slot.
D. Turn on continuous integration.
Answer: B
Explanation:
Scenario: Data analysis results:
The solution must provide a web service that allows applications to access the results of analyses.
Q15. - (Topic 5)
You need to configure the Northwind website.
Which two solutions should you use? Each correct answer presents part of the solution.
A. Configure a hybrid connection to the database.
B. Create Azure virtual machines that run Windows and Linux servers in Azure data centers.
C. Use Azure Zone Redundant Storage to provide redundancy across Azure global data centers.
D. Deploy the Northwind site to an Azure web app.
E. Implement Azure ExpressRoute to increase the bandwidth for users of the Northwind public website.
Answer: B,D
Topic 6, Mix Questions
40. - (Topic 6)
You are designing an Azure application that will use a worker role. The worker role will create temporary files.
You need to minimize storage transaction charges. Where should you create the files?
A. In Azure local storage
B. In Azure Storage page blobs
C. On an Azure Drive
D. In Azure Storage block blobs