Topic 5: Misc. Questions

You need to recommend an App Service architecture that meets the requirements for Appl. The solution must minimize costs.
What should few recommend?

A.

one App Service Environment (ASE) per availability zone

B.

one App Service plan per availability zone

C.

one App Service plan per region

D.

one App Service Environment (ASE) per region

D.   

one App Service Environment (ASE) per region

You have an Azure subscription.
You need to deploy an Azure Kubernetes Service (AKS) solution that will use Windows Server 2019 nodes.
The solution must meet the following requirements:
Minimize the time it takes to provision compute resources during scale-out operations.
Support autoscaling of Windows Server containers.
Which scaling option should you recommend?

 

A.

cluster autoscaler

B.

horizontal pod autoscaler

C.

Kubernetes version 1.20.2 or newer

D.

Virtual nodes with Virtual Kubelet ACI

D.   

Virtual nodes with Virtual Kubelet ACI



Explanation:
Azure Container Instances (ACI) lets you quickly deploy container instances without additional infrastructure overhead. When you connect with AKS, ACI becomes a secured, logical extension of your AKS cluster. The virtual nodes component, which is based on Virtual Kubelet, is installed in your AKS cluster that presents ACI as a virtual Kubernetes node. Kubernetes can then schedule pods that run as ACI instances through virtual nodes, not as pods on VM nodes directly in your AKS cluster.

Your application requires no modification to use virtual nodes. Deployments can scale across AKS and ACI and with no delay as cluster autoscaler deploys new nodes in your AKS cluster.

Note: AKS clusters can scale in one of two ways:
The cluster autoscaler watches for pods that can't be scheduled on nodes because of resource constraints. The cluster then automatically increases the number of nodes.

The horizontal pod autoscaler uses the Metrics Server in a Kubernetes cluster to monitor the resource demand of pods. If an application needs more resources, the number of pods is automatically increased to meet the demand.

You need to recommend a solution that meets the data requirements for App1.
What should you recommend deploying to each availability zone that contains an instance of App1?

A.

an Azure Cosmos DB that uses multi-region writes

B.

an Azure Data Lake store that uses geo-zone-redundant storage (GZRS)

C.

an Azure SQL database that uses active geo-replication

D.

an Azure Storage account that uses geo-zone-redundant storage (GZRS)

A.   

an Azure Cosmos DB that uses multi-region writes



Explanation:
Scenario: App1 has the following data requirements:
Each instance will write data to a data store in the same availability zone as the instance.
Data written by any App1 instance must be visible to all App1 instances.
Azure Cosmos DB: Each partition across all the regions is replicated. Each region contains all the data partitions of an Azure Cosmos container and can serve reads as well as serve writes when multi-region writes is enabled.

You have 10 on-premises servers that run Windows Server.
You need to perform daily backups of the servers to a Recovery Services vault. The solution must meet the following requirements:
• Back up all the files and folders on the servers.
• Maintain three copies of the backups in Azure.
• Minimize costs.
What should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You plan to deploy 10 applications to Azure. The applications will be deployed to two Azure Kubernetes Service (AKS) clusters. Each cluster will be deployed to a separate Azure region.
The application deployment must meet the following requirements:
• Ensure that the applications remain available if a single AKS cluster fails.
• Ensure that the connection traffic over the internet is encrypted by using SSL without having to configure SSL on each container.
Which service should you include in the recommendation?

A.

AKS ingress controller

B.

Azure Traffic Manager

C.

Azure Front Door

D.

Azure Load Balancer

C.   

Azure Front Door



Explanation: Azure Front Door, which focuses on global load-balancing and site acceleration, and Azure CDN Standard, which offers static content caching and acceleration. The new Azure Front Door brings together security with CDN technology for a cloud-based CDN with threat protection and additional capabilities.

You are evaluating the components of the migration to Azure that require you to provision an Azure Storage account.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

A company named Contoso, Ltd. has an Azure Active Directory (Azure AD) tenant that is integrated with Microsoft Office 365 and an Azure subscription. Contoso has an on-premises identity infrastructure. The infrastructure includes servers that run Active Directory Domain Services (AD DS), and Azure AD Connect. Contoso has a partnership with a company named Fabrikam, Inc. Fabrikam has an Active Directory forest and an Office 365 tenant. Fabrikam has the same on-premises identity infrastructure as Contoso.

A team of 10 developers from Fabrikam will work on an Azure solution that will be hosted in the Azure subscription of Contoso. The developers must be added to the Contributor role for a resource in the Contoso subscription. You need to recommend a solution to ensure that Contoso can assign the role to the 10 Fabrikam developers. The solution must ensure that the Fabrikam developers use their existing credentials to access resources.

What should you recommend?

A.

Configure a forest trust between the on-premises Active Directory forests of Contoso and Fabrikam.

B.

Configure an organization relationship between the Office 365 tenants of Fabrikam and Contoso.

C.

In the Azure AD tenant of Contoso, use MIM to create guest accounts for the Fabrikam developers.

D.

Configure an AD FS relying party trust between the fabrikam and Contoso AD FS infrastructures.

A.   

Configure a forest trust between the on-premises Active Directory forests of Contoso and Fabrikam.



Explanation:
Trust configurations - Configure trust from managed forests(s) or domain(s) to the administrative forest.
A one-way trust is required from production environment to the admin forest.
Selective authentication should be used to restrict accounts in the admin forest to only logging on to the appropriate production hosts.

References:
https://docs.microsoft.com/en-us/windows-server/identity/securing-privilegedaccess/securing-privileged-access-reference-material

You need to recommend a solution to meet the database retention requirement. What should you recommend?

A.

Configure a long-term retention policy for the database.

B.

Configure Azure Site Recovery.

C.

Configure geo replication of the database.

D.

Use automatic Azure SQL Database backups.

A.   

Configure a long-term retention policy for the database.



Explanation:

In Azure SQL Database, you can configure a database with a long-term backup retention policy (LTR) to automatically retain the database backups in separate Azure Blob storage containers for up to 10 years

You design a solution for the web tier of WebApp1 as shown in the exhibit.

You need to recommend a strategy for migrating the database content of WebApp1 to Azure. What should you include in the recommendation?

A.

Use Azure Site Recovery to replicate the SQL servers to Azure.

B.

Use SQL Server transactional replication

C.

Copy the BACPAC file that contains the Azure SQL database file to Azure Blob storage.

D.

Copy the VHD that contains the Azure SQL database files to Azure Blob storage

D.   

Copy the VHD that contains the Azure SQL database files to Azure Blob storage



Explanation:
Before you upload a Windows virtual machine (VM) from on-premises to Azure, you must prepare the virtual hard disk (VHD or VHDX).
Scenario: WebApp1 has a web tier that uses Microsoft Internet Information Services (IIS) and a database tier that runs Microsoft SQL Server 2016. The web tier and the database tier are deployed to virtual machines that run on Hyper-V.
Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/prepare-for-upload-vhdimage
Page 10 out of 28 Pages
PreviousNext
67891011121314
Microsoft AZ-305 Practice Test Home