Podcast
Questions and Answers
A company has several departments, each with its own virtual machines (VMs) inside a resource group RG1. To associate each VM with its respective department, which action should you take?
A company has several departments, each with its own virtual machines (VMs) inside a resource group RG1. To associate each VM with its respective department, which action should you take?
- Modify the settings of the virtual machines.
- Create a resource group for each department.
- Assign tags to the virtual machines. (correct)
- Create Azure Management Groups for each department. (correct)
An Azure AD conditional access policy requires members of the Global Administrators group to use Multi-Factor Authentication when connecting to Azure AD from untrusted locations. Access alterations to user settings via the multi-factor authentication page will meet the stated goal.
An Azure AD conditional access policy requires members of the Global Administrators group to use Multi-Factor Authentication when connecting to Azure AD from untrusted locations. Access alterations to user settings via the multi-factor authentication page will meet the stated goal.
False (B)
An Azure AD conditional access policy is configured to require MFA for Global Admins. Altering the session control of the Azure AD conditional access policy via the Azure portal meets the goal of requiring MFA.
An Azure AD conditional access policy is configured to require MFA for Global Admins. Altering the session control of the Azure AD conditional access policy via the Azure portal meets the goal of requiring MFA.
False (B)
An Azure AD conditional access policy requires MFA for Global Admins. Altering the grant control of the Azure AD conditional access policy via the Azure portal can satisfy this requirement.
An Azure AD conditional access policy requires MFA for Global Admins. Altering the grant control of the Azure AD conditional access policy via the Azure portal can satisfy this requirement.
You need to deploy an Azure virtual machine. Which tool should you use?
You need to deploy an Azure virtual machine. Which tool should you use?
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Reconfiguring the existing usage model via the Azure portal will meet the goal.
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Reconfiguring the existing usage model via the Azure portal will meet the goal.
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Reconfiguring the existing usage model via the Azure CLI will meet the goal.
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Reconfiguring the existing usage model via the Azure CLI will meet the goal.
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Creating a new Multi-Factor Authentication provider with a backup from the existing Multi-Factor Authentication provider data will meet the goal.
A company uses MFA only when users are not in the office, configured with Per Authentication and a smaller company is acquired and needs to use MFA. Creating a new Multi-Factor Authentication provider with a backup from the existing Multi-Factor Authentication provider data will meet the goal.
A new user account has been created in the on-premise Active Directory, and replication to Azure AD is needed immediately. Which PowerShell cmdlet should be run?
A new user account has been created in the on-premise Active Directory, and replication to Azure AD is needed immediately. Which PowerShell cmdlet should be run?
A new user account has been created in on-premise AD and you need to replicate to Azure AD immediately. Utilizing Active Directory Sites and Services to replicate the Global Catalog on a domain controller will meet the goal.
A new user account has been created in on-premise AD and you need to replicate to Azure AD immediately. Utilizing Active Directory Sites and Services to replicate the Global Catalog on a domain controller will meet the goal.
A new user account has been created in on-premise AD and replication to Azure AD is needed immediately. Restarting the NetLogon service on a domain controller will achieve this replication.
A new user account has been created in on-premise AD and replication to Azure AD is needed immediately. Restarting the NetLogon service on a domain controller will achieve this replication.
A company has datacenters in Los Angeles and New York and wants to configure them as geo-clustered sites for site resiliency. Data must be stored on multiple nodes in separate geographic locations and be readable from the secondary location. Which Azure storage redundancy option should you recommend?
A company has datacenters in Los Angeles and New York and wants to configure them as geo-clustered sites for site resiliency. Data must be stored on multiple nodes in separate geographic locations and be readable from the secondary location. Which Azure storage redundancy option should you recommend?
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Resource Group blade to determine if the ARM template reviewed satisfies the requirements.
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Resource Group blade to determine if the ARM template reviewed satisfies the requirements.
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Virtual Machine blade to determine if the ARM template reviewed satisfies the requirements.
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Virtual Machine blade to determine if the ARM template reviewed satisfies the requirements.
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Container blade to determine if the ARM template reviewed satisfies the requirements.
A senior colleague, Jon Ross, uses a solitary Azure Resource Manager (ARM) template to deploy a virtual machine and additional storage account, accessing the Container blade to determine if the ARM template reviewed satisfies the requirements.
A company has three virtual machines (VMs) in an availability set. You are trying to resize one of the VMs, but it returns an allocation failure message. What action should you take to ensure the VM is resized?
A company has three virtual machines (VMs) in an availability set. You are trying to resize one of the VMs, but it returns an allocation failure message. What action should you take to ensure the VM is resized?
You have an Azure virtual machine (VM) with a single data disk. You need to attach this data disk to another Azure VM, minimizing downtime. Which action should you take FIRST?
You have an Azure virtual machine (VM) with a single data disk. You need to attach this data disk to another Azure VM, minimizing downtime. Which action should you take FIRST?
Match each Azure service/feature with its primary security function:
Match each Azure service/feature with its primary security function:
What value indicates that no limit is set in the resource manager?
What value indicates that no limit is set in the resource manager?
A company is deploying VMs using ARM templates that must be included in an availability set. Which value for the platformUpdateDomainCount property ensures maximum accessibility during maintenance?
A company is deploying VMs using ARM templates that must be included in an availability set. Which value for the platformUpdateDomainCount property ensures maximum accessibility during maintenance?
Flashcards
Tagging Azure VMs
Tagging Azure VMs
Assign tags to virtual machines (VMs) to associate them with their respective departments within an Azure subscription.
Azure AD Conditional Access
Azure AD Conditional Access
Azure AD Conditional Access policies ensure users in the Global Administrators group use Multi-Factor Authentication when connecting from untrusted locations.
Altering Grant controls
Altering Grant controls
Not meet the goal, because you need to alter the grant controls of Azure AD conditional access policy not the session control.
Reconfiguring MFA
Reconfiguring MFA
Signup and view all the flashcards
Azure CLI Solution
Azure CLI Solution
Signup and view all the flashcards
Start-ADSyncSyncCycle
Start-ADSyncSyncCycle
Signup and view all the flashcards
Geo-Redundant Storage
Geo-Redundant Storage
Signup and view all the flashcards
VM Access
VM Access
Signup and view all the flashcards
Accessing ARM
Accessing ARM
Signup and view all the flashcards
Availability Set
Availability Set
Signup and view all the flashcards
platformUpdateDomainCount
platformUpdateDomainCount
Signup and view all the flashcards
Study Notes
- To associate each VM with its respective department, assign tags to the virtual machines.
Azure AD Conditional Access Policy
- A company wants to implement an Azure AD Conditional Access policy.
- The policy must configure members of the Global Administrators group to use Multi-Factor Authentication (MFA) when connecting to Azure AD from untrusted locations.
- If you access the multi-factor authentication page to alter the user settings, the solution does not meet the goal.
- If you access the Azure portal to alter the session control of the Azure AD conditional access policy, the solution does not meet the goal.
- If you access the Azure portal to alter the grant control of the Azure AD conditional access policy, the solution meets the goal.
Multi-Factor Authentication (MFA)
- A company uses Multi-Factor Authentication (MFA) for remote users. The Per Authentication option has been configured as the usage model.
- After acquiring a smaller business and adding new staff to Azure Active Directory (Azure AD), you need to ensure that new employees use MFA.
- If reconfiguring the existing usage model via the Azure portal the solution does not meet the goal.
- If reconfiguring the existing usage model via the Azure CLI, the solution does not meet the goal.
- If you create a new Multi-Factor Authentication provider with a backup from the existing Multi-Factor Authentication provider data, the solution does not meet the goal.
Replicating User Information to Azure AD
- To replicate a new user account created in the on-premise Active Directory to Azure AD immediately, run the
Start-ADSyncSyncCycle -PolicyType InitialPowerShell cmdlet. - Alternatively, restart the NetLogon service on a domain controller.
- Forcing replication of the Global Catalog on a domain controller using Active Directory Sites and Services does not meet the goal.
Azure Storage Redundancy
- A company with datacenters in Los Angeles and New York wants to configure them as geo-clustered sites for site resiliency.
- Data storage requirements include storing data on multiple nodes in separate geographic locations, readable from both primary and secondary locations.
- Read-only geo-redundant storage is the recommended Azure storage redundancy option.
Azure Resource Manager (ARM) Templates
- To review the ARM template that was used, access the Resource Group blade.
Virtual Machine (VM) Resizing
- If resizing a VM in an availability set causes an allocation failure, stop all three VMs in the availability set.
Attaching Data Disks to Azure VMs
- For minimal downtime when attaching a data disk from one Azure VM to another, first detach the data disk.
platformUpdateDomainCount Property
- When deploying VMs using ARM templates and ensuring accessibility during maintenance, configure the
platformUpdateDomainCountproperty to 10.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
