TEST MCQ SKILLS | A Place to test Your Knowledge

You have an Azure subscription named Subscription1. Subscription1 contains a resource group named RG1. RG1 contains resources that were deployed by using templates. You need to view the date and time when the resources were created in RG1. Solution: From the RG1 blade, you click Automation script. Does this meet the goal?

Yes

Correct! Wrong!

Explanation: From the RG1 blade, click Deployments. You see a history of deployment for the resource group. Reference: https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/template-tutorial-create-first-template?tabs=azure-powershell

You create the following resources in an Azure subscription: An Azure Container Registry instance named Registry1 An Azure Kubernetes Service (AKS) cluster named Cluster1 You create a container image named App1 on your administrative workstation. You need to deploy App1 to Cluster1. What should you do first?

Run the docker push command.

Create an App Service plan.

Run the az acr build command.

Run the az aks create command.

Correct! Wrong!

Explanation: You should sign in and push a container image to Container Registry. Run the az acr build command to build and push the container image. az acr build \ --image contoso-website \ --registry $ACR_NAME \ --file Dockerfile . Reference: https://docs.microsoft.com/en-us/learn/modules/aks-deploy-container-app/5-exercise-deploy-app

Your company has three offices. The offices are located in Miami, Los Angeles, and New York. Each office contains datacenter. You have an Azure subscription that contains resources in the East US and West US Azure regions. Each region contains a virtual network. The virtual networks are peered. You need to connect the datacenters to the subscription. The solution must minimize network latency between the datacenters. What should you create?

three Azure Application Gateways and one On-premises data gateway

three virtual hubs and one virtual WAN

three virtual WANs and one virtual hub

three On-premises data gateways and one Azure Application Gateway

Correct! Wrong!

Reference: https://docs.microsoft.com/en-us/azure/virtual-wan/virtual-wan-about

You plan to deploy several Azure virtual machines that will run Windows Server 2019 in a virtual machine scale set by using an Azure Resource Manager template. You need to ensure that NGINX is available on all the virtual machines after they are deployed. What should you use?

the Publish-AzVMDscConfiguration cmdlet

Azure Application Insights

Azure Custom Script Extension

the New-AzConfigurationAssignement cmdlet

Correct! Wrong!

Explanation: Note: There are several versions of this question in the exam. The question has two correct answers: 1. a Desired State Configuration (DSC) extension 2. Azure Custom Script Extension The question can have other incorrect answer options, including the following: Deployment Center in Azure App Service a Microsoft Intune device configuration profile Reference: https://docs.microsoft.com/en-us/azure/architecture/framework/devops/automation-configuration

You have an Azure subscription named Subscription1. Subscription1 contains a resource group named RG1. RG1 contains resources that were deployed by using templates. You need to view the date and time when the resources were created in RG1. Solution: From the Subscriptions blade, you select the subscription, and then click Programmatic deployment. Does this meet the goal?

Yes

Correct! Wrong!

You have an Azure subscription named Subscription1. You deploy a Linux virtual machine named VM1 to Subscription1. You need to monitor the metrics and the logs of VM1. What should you use?

Azure HDInsight

Linux Diagnostic Extension (LAD) 3.0

the Azure Performance Diagnostics extension

Azure Analysis Services

Correct! Wrong!

Explanation: You can use extensions to configure diagnostics on your VMs to collect additional metric data. The basic host metrics are available, but to see more granular and VM-specific metrics, you need to install the Azure diagnostics extension on the VM. The Azure diagnostics extension allows additional monitoring and diagnostics data to be retrieved from the VM. Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/linux/tutorial-monitoring

You plan to deploy three Azure virtual machines named VM1, VM2, and VM3. The virtual machines will host a web app named App1. You need to ensure that at least two virtual machines are available if a single Azure datacenter becomes unavailable. What should you deploy?

all three virtual machines in a single Availability Zone

all virtual machines in a single Availability Set

each virtual machine in a separate Availability Zone

each virtual machine in a separate Availability Set

Correct! Wrong!

Explanation: Use availability zones to protect from datacenter level failures. Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/manage-availability https://docs.microsoft.com/en-us/azure/virtual-machines/windows/tutorial-availability-sets

You have an Azure Kubernetes Service (AKS) cluster named AKS1. You need to configure cluster autoscaler for AKS1. Which two tools should you use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Please select 2 correct answers

the kubectl command

the az aks command

the Set-AzVm cmdlet

the Azure portal

the Set-AzAks cmdlet

Correct! Wrong!

Explanation: A: The following example uses the kubectl autoscale command to autoscale the number of pods in the azure-vote-front deployment. If average CPU utilization across all pods exceeds 50% of their requested usage, the autoscaler increases the pods up to a maximum of 10 instances. A minimum of 3 instances is then defined for the deployment: kubectl autoscale deployment azure-vote-front --cpu-percent=50 --min=3 --max=10 B: Use the az aks update command to enable and configure the cluster autoscaler on the node pool for the existing cluster. Reference: https://docs.microsoft.com/en-us/azure/aks/tutorial-kubernetes-scale https://docs.microsoft.com/en-us/azure/aks/cluster-autoscaler

You have an Azure subscription named Subscription1. Subscription1 contains a resource group named RG1. RG1 contains resources that were deployed by using templates. You need to view the date and time when the resources were created in RG1. Solution: From the Subscriptions blade, you select the subscription, and then click Resource providers. Does this meet the goal?

Yes

Correct! Wrong!

You have an Azure virtual machine named VM1 that runs Windows Server 2019. The VM was deployed using default drive settings. You sign in to VM1 as a user named User1 and perform the following actions: * Create files on drive C. * Create files on drive D. * Modify the screen saver timeout. * Change the desktop background. You plan to redeploy VM1. Which changes will be lost after you redeploy VM1?

the modified screen saver timeout

the new desktop background

the new files on drive D

the new files on drive C

Correct! Wrong!

You have an Azure subscription that contains an Azure virtual machine named VM1. VM1 runs a financial reporting app named App1 that does not support multiple active instances. At the end of each month, CPU usage for VM1 peaks when App1 runs. You need to create a scheduled runbook to increase the processor performance of VM1 at the end of each month. What task should you include in the runbook?

Add the Azure Performance Diagnostics agent to VM1.

Modify the VM size property of VM1.

• Add VM1 to a scale set.

Increase the vCPU quota for the subscription.

Add a Desired State Configuration (DSC) extension to VM1.

Correct! Wrong!

Reference: https://docs.microsoft.com/en-us/azure/automation/automation-quickstart-dsc-configuration

You have an Azure subscription that contains a policy-based virtual network gateway named GW1 and a virtual network named VNet1. You need to ensure that you can configure a point-to-site connection from an on-premises computer to VNet1. Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Please select 2 correct answers

Add a service endpoint to VNet1

Reset GW1

Create a route-based virtual network gateway

Add a connection to GW1

Delete GW1

Add a public IP address space to VNet1

Correct! Wrong!

Explanation: C: A VPN gateway is used when creating a VPN connection to your on-premises network. Route-based VPN devices use any-to-any (wildcard) traffic selectors, and let routing/forwarding tables direct traffic to different IPsec tunnels. It is typically built on router platforms where each IPsec tunnel is modeled as a network interface or VTI (virtual tunnel interface). E: Policy-based VPN devices use the combinations of prefixes from both networks to define how traffic is encrypted/decrypted through IPsec tunnels. It is typically built on firewall devices that perform packet filtering. IPsec tunnel encryption and decryption are added to the packet filtering and processing engine. Incorrect Answers: F: Point-to-Site connections do not require a VPN device or a public-facing IP address. Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/create-routebased-vpn-gateway-portal https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-connect-multiple-policybased-rm-ps

You plan to deploy several Azure virtual machines that will run Windows Server 2019 in a virtual machine scale set by using an Azure Resource Manager template. You need to ensure that NGINX is available on all the virtual machines after they are deployed. What should you use?

Deployment Center in Azure App Service

A Desired State Configuration (DSC) extension

the New-AzConfigurationAssignment cmdlet

a Microsoft Intune device configuration profile

Correct! Wrong!

Explanation: Azure virtual machine extensions are small packages that run post-deployment configuration and automation on Azure virtual machines. In the following example, the Azure CLI is used to deploy a custom script extension to an existing virtual machine, which installs a Nginx webserver. az vm extension set \ --resource-group myResourceGroup \ --vm-name myVM --name customScript \ --publisher Microsoft.Azure.Extensions \ --settings '{"commandToExecute": "apt-get install -y nginx"} Note: There are several versions of this question in the exam. The question has two correct answers: 1. a Desired State Configuration (DSC) extension 2. Azure Custom Script Extension The question can have other incorrect answer options, including the following: the Publish-AzVMDscConfiguration cmdlet Azure Application Insights Reference: https://docs.microsoft.com/en-us/azure/architecture/framework/devops/automation-configuration

Your on-premises network contains an SMB share named Share1. You have an Azure subscription that contains the following resources: * A web app named webapp1 * A virtual network named VNET1 You need to ensure that webapp1 can connect to Share1. What should you deploy?

an Azure Application Gateway

an Azure Active Directory (Azure AD) Application Proxy

an Azure Virtual Network Gateway

Correct! Wrong!

Explanation: A Site-to-Site VPN gateway connection can be used to connect your on-premises network to an Azure virtual network over an IPsec/IKE (IKEv1 or IKEv2) VPN tunnel. This type of connection requires a VPN device, a VPN gateway, located on-premises that has an externally facing public IP address assigned to it. Incorrect Answers: B: Application Proxy is a feature of Azure AD that enables users to access on-premises web applications from a remote client. Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal

You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?

Diagram in VNet1

Diagnostic settings in Azure Monitor

Diagnose and solve problems in Traffic Manager profiles

The security recommendations in Azure Advisor

IP flow verify in Azure Network Watcher

Correct! Wrong!

Explanation/Reference: Explanation: Scenario: Contoso must meet technical requirements including: Ensure that VM3 can establish outbound connections over TCP port 8080 to the applications servers in the Montreal office. IP flow verify checks if a packet is allowed or denied to or from a virtual machine. The information consists of direction, protocol, local IP, remote IP, local port, and remote port. If the packet is denied by a security group, the name of the rule that denied the packet is returned. While any source or destination IP can be chosen, IP flow verify helps administrators quickly diagnose connectivity issues from or to the internet and from or to the on-premises environment. Reference: https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview

You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains four subnets named Gateway, Perimeter, NVA, and Production. The NVA subnet contains two network virtual appliances (NVAs) that will perform network traffic inspection between the Perimeter subnet and the Production subnet. You need to implement an Azure load balancer for the NVAs. The solution must meet the following requirements: The NVAs must run in an active-active configuration that uses automatic failover. The NVA must load balance traffic to two services on the Production subnet. The services have different IP addresses. Which three actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Please select 3 correct answers

Deploy a basic load balancer

Deploy a standard load balancer

Add two load balancing rules that have HA Ports and Floating IP enabled

Add two load balancing rules that have HA Ports enabled and Floating IP disabled

Add a frontend IP configuration, a backend pool, and a health probe

Add a frontend IP configuration, two backend pools, and a health probe

Correct! Wrong!

Explanation: A standard load balancer is required for the HA ports. Two backend pools are needed as there are two services with different IP addresses. Floating IP rule is used where backend ports are reused. Incorrect Answers: E: HA Ports are not available for the basic load balancer. Reference: https://docs.microsoft.com/en-us/azure/load-balancer/load-balancer-standard-overview https://docs.microsoft.com/en-us/azure/load-balancer/load-balancer-multivip-overview

You have an Azure virtual machine named VM1 that runs Windows Server 2019. You save VM1 as a template named Template1 to the Azure Resource Manager library. You plan to deploy a virtual machine named VM2 from Template1. What can you configure during the deployment of VM2?

operating system

administrator username

virtual machine size

resource group

Correct! Wrong!

Explanation: When deploying a virtual machine from a template, you must specify: the Resource Group name and location for the VM the administrator username and password an unique DNS name for the public IP Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/ps-template

You have an Azure subscription named Subscription1 that contains two Azure virtual networks named VNet1 and VNet2. VNet1 contains a VPN gateway named VPNGW1 that uses static routing. There is a site-to-site VPN connection between your on-premises network and VNet1. On a computer named Client1 that runs Windows 10, you configure a point-to-site VPN connection to VNet1. You configure virtual network peering between VNet1 and VNet2. You verify that you can connect to VNet2 from the on-premises network. Client1 is unable to connect to VNet2. You need to ensure that you can connect Client1 to VNet2. What should you do?

Download and re-install the VPN client configuration package on Client1.

Select Allow gateway transit on VNet1.

Select Allow gateway transit on VNet2.

Enable BGP on VPNGW1

Correct! Wrong!

Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-point-to-site-routing

You have five Azure virtual machines that run Windows Server 2016. The virtual machines are configured as web servers. You have an Azure load balancer named LB1 that provides load balancing services for the virtual machines. You need to ensure that visitors are serviced by the same web server for each request. What should you configure?

Floating IP (direct server return) to Enabled

Floating IP (direct server return) to Disabled

a health probe

Session persistence to Client IP and Protocol

Correct! Wrong!

Explanation: With Sticky Sessions when a client starts a session on one of your web servers, session stays on that specific server. To configure An Azure Load-Balancer For Sticky Sessions set Session persistence to Client IP.

You need to deploy an Azure virtual machine scale set that contains five instances as quickly as possible. What should you do?

Deploy five virtual machines. Modify the Availability Zones settings for each virtual machine.

Deploy five virtual machines. Modify the Size setting for each virtual machine.

Deploy one virtual machine scale set that is set to VM (virtual machines) orchestration mode.

Deploy one virtual machine scale set that is set to ScaleSetVM orchestration mode.

Correct! Wrong!

Explanation/Reference: Reference: https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/orchestration-modes

You plan to deploy several Azure virtual machines that will run Windows Server 2019 in a virtual machine scale set by using an Azure Resource Manager template. You need to ensure that NGINX is available on all the virtual machines after they are deployed. What should you use?

You have an Azure subscription named Subscription1. You deploy a Linux virtual machine named VM1 to Subscription1. You need to monitor the metrics and the logs of VM1. What should you use?

You plan to deploy three Azure virtual machines named VM1, VM2, and VM3. The virtual machines will host a web app named App1. You need to ensure that at least two virtual machines are available if a single Azure datacenter becomes unavailable. What should you deploy?

You have an Azure Kubernetes Service (AKS) cluster named AKS1. You need to configure cluster autoscaler for AKS1. Which two tools should you use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

You plan to deploy several Azure virtual machines that will run Windows Server 2019 in a virtual machine scale set by using an Azure Resource Manager template. You need to ensure that NGINX is available on all the virtual machines after they are deployed. What should you use?

Your on-premises network contains an SMB share named Share1. You have an Azure subscription that contains the following resources: * A web app named webapp1 * A virtual network named VNET1 You need to ensure that webapp1 can connect to Share1. What should you deploy?

You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?

You have an Azure virtual machine named VM1 that runs Windows Server 2019. You save VM1 as a template named Template1 to the Azure Resource Manager library. You plan to deploy a virtual machine named VM2 from Template1. What can you configure during the deployment of VM2?

You need to deploy an Azure virtual machine scale set that contains five instances as quickly as possible. What should you do?

Ads Blocker Detected!!!