Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
Q1. - (Topic 6)
A company has 10 on-premises SQL databases. The company plans to move the databases to SQL Server 2012 that runs in Azure Infrastructure-as-a-Service (IaaS). After migration, the databases will support a limited number of Azure websites in the same Azure Virtual Network.
You have the following requirements:
✑ You must restore copies of existing on-premises SQL databases to the SQL servers that run in Azure IaaS.
✑ You must be able to manage the SQL databases remotely.
✑ You must not open a direct connection from all of the machines on the on- premises network to Azure.
✑ Connections to the databases must originate from only five Windows computers.
You need to configure remote connectivity to the databases. Which technology solution should you implement?
A. Azure Virtual Network site-to-site VPN
B. Azure Virtual Network multi-point VPN
C. Azure Virtual Network point-to-site VPN
D. Azure ExpressRoute
Answer: C
Explanation: A point-to-site VPN would meet the requirements.
Reference: Configure a Point-to-Site VPN connection to an Azure Virtual Network https://azure.microsoft.com/en-us/documentation/articles/vpn-gateway-point-to-site-create/
Q2. HOTSPOT - (Topic 6)
You are migrating an on-premises application to Azure. The application requires secure storage of database connection strings. When the application is running locally, the connection strings are encrypted with an X509 certificate prior to being stored on disk. The X509 certificate is part of a trust chain to allow the certificate to be revoked by the Certificate Authority if a security breech is suspected.
The application must run on Azure. The X509 certificate must never be stored on disk or in RAM memory. A Certificate Authority must be able to revoke the certificate.
You need to configure Azure Key value.
How should you construct the Azure PowerShell script? To answer, select the appropriate A?ure PowerShell commands in the answer area.
Answer:
Q3. - (Topic 6)
A company has multiple Azure subscriptions. It plans to deploy a large number of virtual machines (VMs) into Azure.
You install the Azure PowerShell module, but you are unable connect to all of the company's Azure subscriptions.
You need to automate the management of the Azure subscriptions. Which two Azure PowerShell cmdlets should you run?
A. Get-AzurePublishSettingsFile
B. Import-AzurePublishSettingsFile
C. Add-AzureSubscription
D. Import-AzureCertificate
E. Get-AzureCertificate
Answer: A,B
Explanation: Before you start using the Windows Azure cmdlets to automate deployments, you must configure connectivity between the provisioning computer and Windows Azure. You can do this automatically by downloading the PublishSettings file from Windows Azure and importing it.
To download and import publish settings and subscription information
✑ At the Windows PowerShell command prompt, type the following command, and then press Enter.
Get-AzurePublishSettingsFile
2. Sign in to the Windows Azure Management Portal, and then follow the instructions to download your Windows Azure publishing settings. Save the file as a .publishsettings type file to your computer.
3. In the Windows Azure PowerShell window, at the command prompt, type the following command, and then press Enter.
Import-AzurePublishSettingsFile <mysettings>.publishsettings
Reference: How to: Download and Import Publish Settings and Subscription Information https://msdn.microsoft.com/en-us/library/dn385850%28v=nav.70%29.aspx
Q4. - (Topic 4)
You need to encrypt a media file.
Which type of encryption should you use?
A. secure token service
B. envelope
C. PlayReady
D. storage
Answer: C
Q5. DRAG DROP - (Topic 2)
You need to allow network traffic to the Trey Research subversion system.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q6. - (Topic 1)
You need to assign permissions for the Virtual Machine workloads that you migrate to Azure.
The solution must use the principal of least privileges. What should you do?
A. Create all VMs in the cloud service named Groupl and then connect to the Azure subscription. Run the following Windows PowerShell command:
New-AzureRoleAssignment -Mail user1@vanarsdelltd.com -RoleDefinitionName Contributor -ResourceGroupName group1
B. In the Azure portal, select an individual virtual machine and add an owner.
C. In the Azure portal, assign read permission to the user at the subscription level.
D. Create each VM in a separate cloud service and then connect to the Azure subscription. Run the following Windows PowerShell command:
Get-AzureVM | New-AzureRoleAssignment -Mail userl@vanarsdelltd.com - RoleDefinitionName Contributor
Answer: A
Explanation: * Scenario: Permissions must be assigned by using Role Based Access Control (RBAC).
* Role-Based access control (RBAC) in the Azure Portal and Azure Resource Management
API allows you to manage access to your subscription at a fine-grained level. With this feature, you can grant access for Active Directory users, groups, or service principals by assigning some roles to them at a particular scope.
Create a role assignment
Use New-AzureRoleAssignment to create a role assignment.
Example: This will create a role assignment for a group at a resource group level.
PS C:\> New-AzureRoleAssignment -ObjectID <group object ID> -RoleDefinitionName Reader -ResourceGroupName group1
Reference: Managing Role-Based Access Control with Windows PowerShell https://azure.microsoft.com/en-gb/documentation/articles/role-based-access-control-
powershell/
Q7. DRAG DROP - (Topic 2)
You need to recommend a test strategy for the disaster recovery system.
What should you do? To answer, drag the appropriate test strategy to the correct business application. Each test strategy may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
* Distribution tracking
The company wants to ensure that the distribution tracking data is stored at a location that is geographically close to the customers who will be using the information.
* / HRApp
The data must remain on-premises and cannot be stored in the cloud.
* / Metrics application
Data is stored on an on-premises SQL Server database, but this data should be moved to the cloud.
Q8. - (Topic 7)
You need to support loan processing for the WGBLoanMaster app. Which technology should you use?
A. Azure Storage Queues
B. Azure Service Fabric
C. Azure Service Bus Queues
D. Azure Event Hubs
Answer: D
Q9. DRAG DROP - (Topic 6)
You have a website that displays text, pictures, video files, and audio files. The website processes requests from countries and regions all over the world. You plan to migrate the website to the Azure platform.
The website has the following requirements:
✑ Encode, store, and stream audio and video at scale.
✑ Load-balance communications with the website instance that is closest to the user's location.
✑ Deliver content with high-bandwidth and low latency.
You need to recommend the technologies to implement the solution.
Which technologies should you recommend? To answer, drag the appropriate technology to the correct requirement. Each technology may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
* MediaServices
Azure Media Services is being used to power consumer and enterprise streaming solutions worldwide. Combining powerful and highly scalable cloud-based encoding, encryption and steaming components, Azure Media Services is helping customers with valuable and premium video content to easily reach larger audiences on today’s most popular digital devices, such as tablets and mobile phones.
Q10. HOTSPOT - (Topic 1)
You need to design the contractor information app.
What should you recommend? To answer, select the appropriate options in the answer area.
Answer:
Explanation:
/ They also plan to extend their on-premises Active Directory into Azure for mobile app authentication
/ VanArsdel mobile app must authenticate employees to the company's Active Directory.
Q11. DRAG DROP - (Topic 8)
Marketing is ready to start their web application validations and is excited to be expanding globally.
You need to support the global web application requirements.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q12. You need to implement the security requirements. What should you implement?
A. the GraphAPI to query the directory
B. LDAP to query the directory
C. single sign-on
D. user certificates
Answer: C
Q13. - (Topic 6)
You are designing an Azure application that stores data.
You have the following requirements:
✑ The data storage system must support storing more than 500 GB of data.
✑ Data retrieval must be possible from a large number of parallel threads.
✑ Threads must not block each other.
You need to recommend an approach for storing data. What should you recommend?
A. Azure Notification Hubs
B. A single SQL database in Azure
C. Azure Queue storage
D. Azure Table storage
Answer: D
Explanation: * Azure Table Storage can be useful for applications that must store large amounts of nonrelational data, and need additional structure for that data. Tables offer key- based access to unschematized data at a low cost for applications with simplified data- access patterns. While Azure Table Storage stores structured data without schemas, it does not provide any way to represent relationships between the data.
* As a solution architect/developer, consider using Azure Table Storage when:
/ Your application stores and retrieves large data sets and does not have complex relationships that require server-side joins, secondary indexes, or complex server-side logic.
/ You need to achieve a high level of scaling without having to manually shard your dataset.
Reference: Azure Table Storage and Windows Azure SQL Database - Compared and Contrasted
https://msdn.microsoft.com/en-us/library/azure/jj553018.aspx
Q14. - (Topic 6)
You are designing an Azure application. The application includes two web roles and three instances of a worker role. The web roles send requests to the worker role by using one or more Azure Queues.
You need to recommend a queue design for sending requests to the worker role. What should you recommend?
A. Create a queue for each combination of web roles and worker role instances. Send requests to all worker role instances based on the sending web role.
B. Create a single queue. Send all requests on the single queue.
C. Create a queue for each worker role instance. Send requests on each worker queue by using a round robin rotation.
D. Create a queue for each web role. Send requests on all queues at the same time.
Answer: B
Explanation: To communicate with the worker role, a web role instance places messages on to a queue. A worker role instance polls the queue for new messages, retrieves them, and processes them. There are a couple of important things to know about the way the queue service works in Azure. First, you reference a queue by name, and multiple role instances can share a single queue. Second, there is no concept of a typed message; you construct a message from either a string or a byte array. An individual message can be no more than 64 kilobytes (KB) in size.
Reference: 5 – Executing Background Tasks https://msdn.microsoft.com/en-gb/library/ff803365.aspx Reference: .NET Multi-Tier Application Using Service Bus Queues
http://azure.microsoft.com/en-gb/documentation/articles/cloud-services-dotnet-multi-tier- app-using-service-bus-queues/
Q15. - (Topic 5)
You need to recommend a solution that meets the requirements for data storage for the NorthRide app.
What should you include in the recommendation?
A. Azure Remote App
B. Azure Service Bus
C. Azure Connect
D. Azure SQL Database
Answer: B
Explanation: Service Bus queues are part of a broader Azure messaging infrastructure that supports queuing as well as publish/subscribe, Web service remoting, and integration patterns.
Service Bus Queue support Push-style API (while Azure Queue messaging does not).
Reference: Azure Queues and Service Bus Queues - Compared and Contrasted https://msdn.microsoft.com/en-us/library/azure/hh767287.aspx