ExamCollection Premium 70-532

70-532.examcollection.premium.exam.
322q
Number: 70-532
Passing Score: 800
Time Limit: 120 min
File Version: 13.0
70-532
Developing Microsoft Azure Solutions
Version 13.0
Testlet 1
Background
You are developing a web-based solution that students and teachers can use to collaborate on
written assignments. Teachers can also use the solution to detect potential plagiarism, and they can
manage assignments and data by using locally accessible network shares.
Business Requirements
The solution consists of three parts: a website where students work on assignments and where
teachers view and grade assignments, the plagiarism detection service, and a connector service to
manage data by using a network share.
The system availability agreement states that operating hours are weekdays between midnight on
Sunday and midnight on Friday.
Plagiarism Service
The plagiarism detection portion of the solution compares a new work against a repository of existing
works. The initial dataset contains a large database of existing works. Teachers upload additional
works. In addition, the service itself searches for other works and adds those works to the repository.
Technical Requirements
Website
The website for the solution must run on an Azure web role.
Plagiarism Service
The plagiarism detection service runs on an Azure worker role. The computation uses a random
number generator. Certain values can result in an infinite loop, so if a particular work item takes
longer than one hour to process, other instances of the service must be able to process the work
item. Computation results are cached in local storage resources to reduce computation time.
Repository of Existing Works

The plagiarism detection service works by comparing student submissions against a repository of
existing works by using a custom matching algorithm. The master copies of the works are stored in
Azure blob storage. A daily process synchronizes files between blob storage and a file share on a
virtual machine (VM). As part of this synchronization, the ExistingWorkRepository object adds the
files to Azure Cache to improve the display performance of the website. If a student's submission is
overdue, the Late property is set to the number of days that the work is overdue. Work files can be
downloaded by using the Work action of the TeacherController object
Network Connector
Clients can interact with files that are stored on the VM by using a network share. The network
permissions are configured in a startup task in the plagiarism detection service.
Service Monitoring
The CPU of the system on which the plagiarism detection service runs usually limits the plagiarism
detection service. However, certain combinations of input can cause memory issues, which results in
decreased performance. The average time for a given computation is 45 seconds. Unexpected
results during computations might cause a memory dump. Memory dump files are stored in the
Windows temporary folder on the VM that hosts the worker role.
Security
Only valid users of the solution must be able to view content that users submit. Privacy regulations
require that all content that users submit must be retained only in Azure Storage. All documents that
students upload must be signed by using a certificate named DocCert that is installed in both the
worker role and the web role.
Solution Development
You use Microsoft Visual Studio 2013 and the Azure emulator to develop and test both the compute
component and the storage component. New versions of the solution must undergo testing by using
production data.
Scaling
During non-operating hours, the plagiarism detection service should not use more than 40 CPU
cores. During operating hours, the plagiarism detection service should automatically scale when 500
work items are waiting to be processed. To facilitate maintenance of the system, no plagiarism
detection work should occur during non-operating hours. All ASP.NET MVC actions must support
files that are up to 2 GB in size.
Biographical Information
Biographical information about students and teachers is stored in a Microsoft Azure SQL database.
All services run in the US West region. The plagiarism detection service runs on Extra Large
instances. The Azure worker role must fully utilize all available CPU cores.
Solution Structure
Relevant portions of the solution files are shown in the following code segments. Line numbers in the
code segments are included for reference only and include a two-character prefix that denotes the
specific file to which the line belongs.
QUESTION 1
DRAG DROP
You need to configure storage for the solution.
What should you do? To answer, drag the appropriate XML segments to the correct locations. Each
XML segment may be used once, more than once, or not at all. You may need to drag the split bar
between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation/Reference:
Explanation:
References: http://msdn.microsoft.com/en-us/library/azure/ee758708.aspx
QUESTION 2
You are deploying the web-based solution in the West Europe region.
You need to copy the repository of existing works that the plagiarism detection service uses. You
must achieve this goal by using the least amount of time.
What should you do?
A. Copy the files from the source file share to a local hard disk. Ship the hard disk to the West
Europe data center by using the Azure Import/Export service.
B. Create an Azure virtual network to connect to the West Europe region. Then use Robocopy to
copy the files from the current region to the West Europe region.
C. Provide access to the blobs by using the Microsoft Azure Content Delivery Network (CDN).
Modify the plagiarism detection service so that the files from the repository are loaded from the
CDN.
D. Use the Asynchronous Blob Copy API to copy the blobs from the source storage account to a
storage account in the West Europe region.
Correct Answer: D
Section: [none]
Explanation
Explanation:
Reference: http://blogs.msdn.com/b/windowsazurestorage/archive/2012/06/12/introducing-
asynchronous-cross-account-copy-blob.aspx
QUESTION 3
HOTSPOT
You need to find all existing works about World History that are overdue and are stored in the
repository.
How should you complete the relevant code? To answer, select the appropriate option or options in
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 4
DRAG DROP
You need to insert code at line WR16 to implement the GetWork method.
How should you complete the relevant code? To answer, drag the appropriate code segment to the
correct location. Each code segment may be used once, more than once, or not at all. You may
need to drag the split bar between panes or scroll to view content.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 5
HOTSPOT
The Compute method in the PlagiarismCalculation class takes a significant amount of time to load
existing works from blob storage. To improve performance, the service must load existing works
from the cache.
You need to modify the Compute method in the class PlagiarismCalculation.
How should you modify the method? To answer, select the appropriate option or options in the
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 6
You update the portion of the website that contains biographical information about students.
You need to provide data for testing the updates to the website.
Which approach should you use?
A. Use SQL Server data synchronization.

B. Use the Active Geo-Replication feature of Azure SQL Database.
C. Use SQL Replication.
D. Use the Geo-Replication feature of Azure Storage.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 7
HOTSPOT
You need to configure scaling for the plagiarism detection service.
What should you do? To answer, select the appropriate values in the dialog box in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 8
HOTSPOT
You need to implement the Work action on the TeacherController object.
How should you complete the relevant code? To answer, select the appropriate options in the
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 9
DRAG DROP
You recently started working with a client named Contoso, Ltd. The client reports that hackers have
compromised devices on its network.
You need to ensure that devices from Contoso cannot connect to your corporate network.
How should you complete the relevant Windows PowerShell script? To answer, drag the appropriate
Azure PowerShell segment to the correct location. Each Azure PowerShell segment may be used
once, more than once, or not at all. You may need to drag the split bar between panes or scroll to
view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Background
Contoso, Ltd. is developing a patient monitoring solution for a hospital. The solution consists of an
Azure website and a set of mobile applications that health care providers use to monitor patients
remotely.
Monitoring devices that run the embedded version of Windows will be attached to patients. The
devices will collect information from patients and will transmit real-time continuous data to a service
that runs on Azure. The service collects and distributes data. The data that the service provides
must be accessible by the website and by the mobile applications.
Patients
All patient data must be stored securely on Azure. Data security must meet or exceed Health
Insurance Portability and Accountability Act of 1996 (HIPAA) standards in the United States and
must meet or exceed ISO/ICE 27002 data security standards in the rest of the world.
Contractors
Third-party contractors will develop the mobile applications. All contractors must develop the
applications by using virtual machines (VMs) that are hosted on Azure. Only authorized contractors
and authorized IP addresses are permitted to access the VMs. The contractors can use Near Field
Communication (NFC) tags to launch Remote Desktop (RD) connections to the VMs from NFC-
enabled devices. For testing purposes, contractors must be able to run multiple instances of mobile
applications within the VMs.
Data Collection and Distribution Service

The service must monitor the patient data and send out alerts to health care providers when specific
conditions are detected. The service must send the alerts to mobile applications and to the website
in real time so that doctors, nurses, and caregivers can attend to the patient. Partner organizations
and diagnostic laboratories must be able to securely access the data and the website from remote
locations.
Current Issues
A partner that is testing a prototype of the website reports that after signing in to the website, the
partner is redirected to the settings page instead of to the home page.
The data from the patient devices is slow to appear on the website and does not always appear. All
patient devices online have active connections to the data collection service.
Contractors
All contractors will use virtual machines that are initially configured as size A3. Contractors must sign
in to the assigned VM by using IP addresses from a list of preapproved addresses.
Data Collection and Distribution Service

The service runs Node.js in a worker role.
The service must use at least 2048-bit encryption and must use port 8888.
All patient information must be encrypted and stored by using a NoSQL data store.
Data must be stored and retrieved securely by using RESTful endpoints.
Data must NOT be stored within a virtual machine.
All deployed services must send an alert email to watchguard@contoso.com when any of the
following conditions is met:
The CPU Percentage metric is at or above 85 percent for at least 10 minutes.
The Network In metric is at or above 2 KB for at least 10 minutes.
The Network Out metric is at or above 2 KB for at least 10 minutes.
The Disk Write metric is at or above 1 KB/sec for at least 30 minutes.
The Disk Read metric is at or above 1 KB/sec for at least 30 minutes.
Website and Mobile Devices
The website must be secure and must be accessible only within the hospital's physical grounds. All
mobile applications and websites must be responsive. All websites must produce error logs that can
be viewed remotely.
Virtual Machines
All Azure instances must be deployed and tested on staging instances before they are deployed
to production instances.
All deployed instances must scale up to the next available CPU instance at a CPU usage
threshold of 90 percent and scale down when the usage is below 10 percent.
Application Structure
Relevant portions of the application files are shown in the following code segments. Line numbers in
the code segments are included for reference only and include a two-character prefix that denotes
the specific file to which they belong.
QUESTION 1
DRAG DROP
You need to configure a VM for a new contractor.
Which three actions should you perform in sequence? To answer, move the appropriate actions from
the list of actions to the answer area and arrange them in the correct order.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 2
HOTSPOT
You run the following Windows PowerShell script. Line numbers are included for reference only.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 3
The website does not receive alerts quickly enough.
There is a lengthy delay between the time an alert is sent and when it is received by the Web App.
You need to resolve the issue.
What should you do?
A. Enable automatic scaling for the Web App.

B. Decrease the instance count for the worker role.
C. Increase the amount of swap memory for the VM instance.
D. Set the monitoring level toVerbosefor the worker role.
E. Enable automatic scaling for the worker role.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 4
HOTSPOT
You need to implement the worker role to support the real-time continuous data-collection service.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 5
You need to implement data storage for patient information.
What should you do?
A. Use the Update Entity operation of the Table Service REST API.
B. Use the Put Blob operation of the Blob Service REST API.
C. Use the Put Message operation of the Create Queue REST API.
D. Use the Set Share Metadata operation of the File Service REST API.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 6
You create a VM named cVM_005 for a newly hired contractor.
The contractor reports that the VM runs out of memory when the contractor attempts to test the
mobile applications.
You need to double the memory that is available for the VM.
Which Windows PowerShell command should you use?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 7
Users report that after periods of inactivity the website is slow to render pages and to process sign-in
attempts.
You need to ensure that the website is always responsive.
What should you do?
A. Add the following markup at line WC14:<sessionState timeout-"86400" />

B. Add the following markup at line WC08:<add key="timeout" value="null" />
C. Add the following markup at line WC14:<sessionState timeout="fl" />
D. In the Azure management portal, enable Always On support for the website.
E. In the Azure management portal, disable Always On support for the website.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 8
HOTSPOT
You configure alerts in Azure. The metrics shown in the following exhibit represent the average
values for each five-minute period.
To answer, make the appropriate selections in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 9
You need to implement tracing for the website after the website is deployed.
Which code segment should you insert at line CF13?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 10
DRAG DROP
Contoso, Ltd. reports that hackers have compromised a computer on its network.
You need to prevent access to the site from all Contoso, Ltd. computers.
How should you complete the relevant Windows PowerShell script? To answer, drag the appropriate
Windows PowerShell segment to the correct location. Each Windows PowerShell segment may be
used once, more than once, or not at all. You may need to drag the split bar between panes or scroll
to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 11
You need to implement error logging.
Which code segment should you insert at line CF13?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 12
You need to implement data storage for patient information.
What should you do?
A. Use the Set Blob Properties operation of the Blob Service REST API.
B. Use the Insert Entity operation of the Table Service REST API.
C. Use the Set Queue Metadata operation of the Create Queue REST API.
D. Use the Query Entities operation of the Table Service REST API.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 13
The Web App does not receive alerts quickly enough.
There is a lengthy delay between the time an alert is sent and when it is received by the Web App.
You need to resolve the issue.

What should you do?
A. Increase the amount of swap memory for the VM instance.

B. Enable automatic scaling for the Web App.
C. Decrease the instance count for the worker role.
D. Enable automatic scaling for the worker role.
E. Set the monitoring level to Verbose for the worker role.
Correct Answer: C
Section: [none]
Explanation
Explanation:
From scenario: The data collection service runs Node.js in a worker role.
All deployed instances must scale up to the next available CPU instance at a CPU usage threshold
of 90 percent and scale down when the usage is below 10 percent.
Testlet 1
Background
A company is developing a website that supports mortgage loan processing. You use the Azure
management portal to create a website. You initially configure the website to use the Basic hosting
plan. You register a custom domain for the website with a valid registrar.
Customers complete mortgage applications and upload supporting documents to the website. A
custom executable named FileProcessor.exe processes all of the information received. An on-
premises server that runs Windows Server hosts the executable.
You create a virtual hard disk (VHD) image of the on-premises server. You plan to use this VHD to
replace the on-premises server with a new virtual machine (VM) that is hosted in Azure.
Business stakeholders have identified the following requirements for the mortgage loan processing
website:
The website must provide a secure mortgage application process for the customer.
Business users must validate new versions of the website before you publish them to the
production site. You must be able to revert to the previous version easily when issues arise.
The website must remain available to users while new features and bug fixes are deployed.
Network traffic must be monitored on all ports that the website uses.
General:
You must develop the website by using Microsoft Visual Studio 2013.
The website must be stateless. Subsequent requests from a user might or might not be routed
back to the website instance that the user initially connected to.
Security:
You must secure the custom domain and all subdomains by using SSL.
Storage:
The custom executable must use native file system APIs to share data between different parts of
the website.
The custom executable must continue to use a network file share to access files.
Monitoring:
The website must use port 6000 with UDP to submit information to another process. This port must
be actively monitored by using the same external port number.
Deployment:
You must deploy the VM and the associated VHD. You will need to move this VM to a different
Azure subscription after deployment.
You must establish a continuous deployment process that uses staged publishing.
The custom domain must handle requests for multiple subdomains.
The custom domain must use a www CNAME record that points to the domain's @ A record.
The custom executable must run continuously and must be deployed as an Azure web job
named FileProcessor
Application Request Routing (ARR) affinity must be disabled for the website.
Solution Structure
The solution structure for the website is shown in the following exhibit.
QUESTION 1
HOTSPOT
You need to implement endpoint monitoring.
What should you do? To answer, configure the appropriate options in the dialog box in the answer
area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 2
You need to debug the Azure Web App remotely.
Which three actions should you take? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. In the Azure management portal, configure a monitoring endpoint.

B. Install the Azure SDK for .NET on the computer that runs Visual Studio.
C. In the Azure management portal, set the web hosting plan to Standard.
D. In the Azure management portal, set remote debugging to On and set the Visual Studio version
to 2013.
E. In the web.config file for the Web App, set the debug attribute of the compilation element to true.
Correct Answer: BDE

Section: [none]
Explanation
Explanation:
QUESTION 3
You need to move the VM.
What should you do?
A. Use the Blob Service REST API

B. Use the Service Management REST API
C. Run the Azure PowerShell Convert-VHD cmdlet.
D. Run the Azure PowerShell New-AzureVM cmdlet
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 4
You need to configure session affinity for the website.
Which two actions will achieve the goal? Each correct answer presents a complete solution.
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: BD
Section: [none]
Explanation
Explanation:
QUESTION 5
DRAG DROP
You need to complete the domain configuration for the website.
Which four actions should you perform in sequence? To answer, move the appropriate actions from
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
Reference: http://azure.microsoft.com/en-gb/documentation/articles/web-sites-custom-domain-
name/
QUESTION 6
You need to implement the web application deployment workflow.
In the Azure management portal, what should you do?
A. Create a new resource group. Move the Web App to the new resource group after the business
users have validated the updates.
B. Set the web hosting plan to Standard. Use Azure PowerShell to create a new deployment slot to
publish the incremental updates. Swap the deployment slot after the business users have
validated the updates.
C. Create a new App Service plan. Move the Web App to the new web hosting plan after the
business users have validated the updates.
D. Download the publish profile. Use Visual Studio to import the publish profile. Deploy the web
application by using the Visual Studio Publish Web wizard after the business users have
validated the updates.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 7
You need to choose an Azure storage service solution.
Which solution should you choose?
A. Queue storage
B. Blob storage
C. File storage
D. Table storage
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 8
DRAG DROP
You need to create the VM to replace the on-premises server.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 9
DRAG DROP
You need to secure the Azure Web App.
Select and Place:
Correct Answer:
Section: [none]
Explanation
References:
https://docs.microsoft.com/en-us/azure/app-service/app-service-web-tutorial-custom-ssl
QUESTION 10
HOTSPOT
You need to deploy the FileProcessor.exe program.
How should you update the project configuration file for the program? To answer, select the
appropriate option or options in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 11
You need to select an Azure storage service solution for completed mortgage applications and
supporting documents.
Which solution should you use?
A. table storage
B. blob storage
C. queue storage
D. file storage
Correct Answer: D
Section: [none]
Explanation
Explanation:
File storage is required to access the files via a network file share.
The custom executable must continue to use a network file share to access files.
Testlet 1
Background
You are developing an Azure solution that individuals and small businesses will use to prepare and
file tax-related documents.
General
The solution must provide a way for customers to enter personal and demographic information.
Customers must be able to upload income documents and related documents to the solution. The
solution must provide reports and summary documents for customers in PDF format.
Scope and Device Accessibility

The solution must support two operational modes: On-Peak and Off-Peak. On-Peak is defined as
the first quarter of a year. Off-Peak is defined as the other three quarters of a year. Customers must
be able to access the solution by using desktop computers, laptop computers, mobile devices, and
tablets.
High Availability and Business Continuity

The solution must be available at all times. When the solution transitions between Off-Peak mode
and On-Peak mode, solution availability must not be affected. Disaster recovery must be established
for the customers' stored data.
Diagnostics
The solution must log relevant diagnostic data that can be used to troubleshoot the cloud service.
Scalability
The solution must scale out while transitioning from Off-Peak mode to On-Peak mode.
Cost
The solution must use cloud resources optimally to minimize operating costs.
Storage and Security

The solution must be secure to prevent any anonymous access (including read access) to the
customers' tax documents.
Cross-Premises Networking
The solution must extend the developers' on-premises network into Azure.
The logical design for the solution is shown in the following exhibit.
Platform-as-a-Service (PaaS)
The solution must have two roles: a web role and worker role. The web interface of the solution uses
a web role to accept and send user input and any related documents. The worker role must access
the stored data and prepare the tax documents in the background.
Computer
The solution must support a minimum of 10 role instances. When the solution is in On-Peak mode,
each role instance must be allocated at least 6 GB of memory. The memory can be scaled down to 3
GB when the solution is in Off-Peak mode.
The solution must cache documents locally. The cache does not need to be refreshed during the
lifecycle of the worker role.
Role instances that are running should not be affected by topology changes such as an increase in
instance count.
Storage
The web role must store documents in blob storage. A SQL database is used to store customer
information. The worker role must use queues to process the final tax documents.
Performance and Scalability

When the solution is in Off-Peak mode, it must support at least 150 concurrent database sessions,
and the maximum size of the database is 50 GB. When the solution is in On-Peak mode, it must
support 750 concurrent database sessions, and the maximum size of the database is 300 GB. Geo-
replication must be enabled and must be configurable by using the Azure management portal.
Software Prerequisites
The solution must install the software that is necessary to generate PDF documents on the server.
The software will be provided as a Windows Installer package.
Debugging
Solution errors and warnings that occur in a web role must be logged. The worker role must log any
crash dump files. Detailed information about errors and their context must be collected so that the
environment in which errors occurred can be simulated locally.
Security
At the time that a customer's tax information and documents are accepted, the solution must send
an email to the customer. The email contains a secure hyperlink that the customer can use to upload
any additional necessary documents. The customer is asked to upload these documents within 48
hours. If the customer does not upload the documents within 48 hours, the solution should not issue
a new hyperlink. The solution must send an email to the customer to remind the customer to use the
original hyperlink to upload any additional necessary documents.
Network Services
The solution must use a cross-premises secure network. The network must be configurable by using
the Azure management portal.
Social Structure
Relevant portions of the solution files are shown in the following code segments. Line numbers in the
code segments are included for reference only and include a two-character prefix that denotes the
specific file to which they belong.
QUESTION 1
You need to configure diagnostics for the Azure solution.
Which two types of diagnostic data should you collect? Each correct answer presents part of the
solution.
A. event logs
B. IIS logs
C. crash dumps
D. trace logs
E. performance counters
F. infrastructure logs
Correct Answer: AC
Section: [none]
Explanation
Explanation:
QUESTION 2
You need to configure the virtual network.
What are two possible ways to achieve this goal? Each correct answer presents a complete solution.
A. Configure a point-to-site virtual network.

B. Configure a site-to-site virtual network.
C. Configure a multi-site virtual network.
D. Configure a cloud-only virtual network.
Correct Answer: AB
Section: [none]
Explanation
Explanation:
QUESTION 3
You need to configure role instances.
Which size should you specify for the VM?
A. Use Small for Off-Peak mode.

B. Use Large for On-Peak mode.
C. Use Extra Large for On-Peak mode.
D. Use Extra Small for Off-Peak mode.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 4
You need to meet the performance and scalability requirements.
Which SQL Database configuration should you use?
A. Use the S1 performance level for On-Peak mode.

B. Use the P2 performance level for On-Peak mode.
C. Use the S2 performance level for On-Peak mode.
D. Use the P1 performance level for On-Peak mode.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 5
DRAG DROP
You need to insert markup at line SD22 to install the software that generates PDF documents.
How should you complete the relevant markup? To answer, drag the appropriate code segments to
the correct locations. Each code segment may be used once, more than once, or not at all. You may
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 6
HOTSPOT
You need to insert code at line SB11 to apply the storage access policy.
How should you complete the relevant code segment? To answer, select the appropriate option or
options in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 7
You need to debug the Azure solution.
Which tool should you use?
A. Compute emulator
B. Remote debugging
C. Emulator Express
D. IntelliTrace
E. Profiling
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 8
DRAG DROP
You need to develop the web role.
How should you complete the relevant code? To answer, drag the appropriate code segments to the
correct locations. Each code segment may be used once, more than once, or not at all. You may
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 9
DRAG DROP
You need to meet the high availability and business continuity requirements.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 10
DRAG DROP
You need to insert code at line SB17 to create the hyperlink that customers use to upload additional
necessary documents.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 11
HOTSPOT
You need to insert markup at line SD06 to cache the client documents.
How should you complete the relevant markup? To answer, select the appropriate option or options
in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Case Study
This is a case study. Case studies are not timed separately. You can use as much exam time as you
would like to complete each case. However, there may be additional case studies and sections on
this exam. You must manage your time to ensure that you are able to complete all questions
included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is
provided in the case study. Case studies might contain exhibits and other resources that provide
more information about the scenario that is described in the case study. Each question is
independent of the other question on this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your
answers and to make changes before you move to the next sections of the exam. After you begin a
new section, you cannot return to this section.
To start the case study
To display the first question on this case study, click the Next button. Use the buttons in the left pane
to explore the content of the case study before you answer the questions. Clicking these buttons
displays information such as business requirements, existing environment, and problem statements.
If the case study has an All Information tab, note that the information displayed is identical to the
information displayed on the subsequent tabs. When you are ready to answer a question, click the
Question button to return to the question.
Background
You are a developer for Fabrikam, a company that specializes in payment processing. Fabrikam is
developing a solution to process payments for various events, such as music concerts. You develop
an ASP.NET MVC website that is hosted in Azure to support an upcoming music concert. The music
concert is expected to generate a large volume of ticket sales in a short amount of time.
The website uploads information to an Azure storage queue. A worker role in Azure retrieves
information from the queue and generates the concert tickets in a PDF file format after the financial
transaction is approved.
You observe a delay between the time the website adds a message to a queue and the time it
becomes available to read from the queue. After examining the queue, you determine that no queue
messages have a DequeueCount value greater than zero. The website does not throw any errors.
Payments
The music concert website must be able to submit event payment information for processing. The
website must remain responsive while submitting payment information. Customers must be able to
add notes about their orders to a free-form control on the website. These notes must be submitted
with the payment when the customer submits an order.
Customers often enter notes that exceed 7 KB in size.
Payment Submission and Processing
Event payment information must be sent from the website to a Windows Communication Foundation
(WCF) service worker role. The worker role must submit the information to the payment processor in
JSON format.
Payment Processing
You have the following payment processing requirements:

If the number of messages in a queue goes above or below a specified threshold, worker role
instances must be created or deleted as needed. This process must be completed by using the
least amount of effort. It must be easy to reconfigure role instance thresholds.
Payments must be retrieved from the queue in the maximum batch sizes that are allowed by the
queue and pulled from the queue for 5 minutes.
The payment queue must not be re-created when processing payments.
During single Payment processing, the number of tickets available for an event must be updated.
The update operation must be retried for 30 seconds or 5 retry attempts, whichever occurs first.
Each retry should pause for at least two seconds and for one second longer than the previous
attempt. If the update fails, the payment should be placed in the poison queue.
Storage
You have the following storage requirements:

Payment information must be stored by using Azure Queue storage. Connection to the Azure
storage account has been established in a configured setting named StorageConnectionString,
which is configured for the web and worker roles.
A payment processing queue and a poison payment queue must be used when processing
payments.
Azure Queue message content must be XML-safe and UTF-8 encoded.
An Azure storage account must be established for diagnostic information in a configured setting
named DiagnosticsStorageConnectionString, which is configured for both the web and worker
roles.
Security and Monitoring
Security
The web role must be secured by using HTTPS.
Monitoring
You must collect diagnostic data for both the web and worker roles by using the Diagnostics module.
Diagnostics configuration changes must not require the code of the roles to be rebuilt. The
diagnostic data is used for debugging and troubleshooting, measuring performance, monitoring
resource usage, traffic analysis and capacity planning, and auditing.
Performance testing must evaluate the roles under normal and stress conditions without incurring
changes for running Azure. Memory allocation, function time, and multithreading concurrency issues
must be evaluated.
Deployment
You purchase a custom domain name fabrikamfunding.com to host the website, web role, and
worker roles. You must deploy an HTTPS certificate with the web role, and you must update
associated configuration files accordingly.
Web role and worker role instance sizes must be specified as Medium. You must deploy one web
role instance named FabrikamFundingPaymentGenerator, and worker role instances named
FabrikamFundingPaymentProcessor.
Relevant portions of the app files are shown below. Line numbers are included for reference only
and include a two-character prefix that denotes the specific file to while they belong.
QUESTION 1
HOTSPOT
You need to implement the SendMessagesAsync method in the QueueManager class.
How should you complete the relevant code? To answer, select the appropriate code segment from
each list in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 2
DRAG DROP
You need to implement the ProcessPaymentAsync method in the QueueManager class.
Develop the solution by selecting and arranging the required code blocks in the correct order.
NOTE: You will not need all of the code segments.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 3
The SendMessageAsync method of the QueueManager class occasionally throws errors.
You need to correct the errors.
What should you do?
A. Remove all attributes from the EventPayment class.

B. Encode the notes field content by using UTF-32 encoding.
C. Update the notes field to a byte array. Binary encode and decode the notes content when
sending or receiving an EventPayment class.
D. Update the SendMessageAsync method of the QueueManager class to store the notes field in
BLOB storage. Update the EventPayment class to store the BLOB uniform resource identifier
(URI). Extract the notes BLOB information by using the BLOB URI in the
ProcessMessagesAsync method of the QueueManager class.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 4
You need to diagnose the source of the performance issues when preparing concert tickets.
Which two actions should you perform? Each correct answer presents a complete solution.
A. Examine the Storage Logging logs for any queue operations that have higher than expected
latency.
B. Examine the Storage Client Library logs to determine whether there is a decrease in the total
number of requests for storage operations.
C. Examine the diagnostic message logs for the worker role to determine whether the worker role is
failing to process messages.
D. Examine the Storage Client Library logs to determine whether there are repeated retries for
storage operations.
Correct Answer: AD
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/storage/storage-monitoring-diagnosing-troubleshooting#you-
are-experiencing-unexpected-delays-in-message-delivery
QUESTION 5
The SendMessageAsync method of the QueueManager class occasionally throws errors.
You need to correct the errors.

What should you do?
A. Update the QueueManager to use the Put Message operation of the Queue Service REST API.
Use HTTP compression for all calls made to the REST API.
B. Encode the notesfield content by using UTF-32 encoding.
C. UpdateSendMessageAsyncmethod of the QueueManagerclass to store the notesfield in BLOB
storage. Update the EventPaymentclass to store the BLOB uniform resource identifier (URI).
Extract the notes BLOB information by using the BLOB URI in the
ProcessMessagesAsyncmethod of the QueueManagerclass.
D. Update the notesfield to a byte array. Binary encode and decode the notescontent when sending
or receiving an EventPaymentclass.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Testlet 1
Case Study
This is a case study. Case studies are not timed separately. You can use as much exam time as you
would like to complete each case. However, there may be additional case studies and sections on
this exam. You must manage your time to ensure that you are able to complete all questions
included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is
provided in the case study. Case studies might contain exhibits and other resources that provide
more information about the scenario that is described in the case study. Each question is
independent of the other question on this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your
answers and to make changes before you move to the next sections of the exam. After you begin a
new section, you cannot return to this section.
To start the case study
To display the first question on this case study, click the Next button. Use the buttons in the left pane
to explore the content of the case study before you answer the questions. Clicking these buttons
displays information such as business requirements, existing environment, and problem statements.
If the case study has an All Information tab, note that the information displayed is identical to the
information displayed on the subsequent tabs. When you are ready to answer a question, click the
Question button to return to the question.
Background
You are a developer for LitWare, Inc., a game development company. You are developing a
backend service for an online social gaming platform named GamerData. The game is built around
point generators, which are associated with physical landmarks. Players claim point generators
which give them a set amount of points per day.
Mobile App
The game itself runs on various mobile devices and is developed by TailSpin Toys, a company that
specializes in mobile game development. The mobile app will periodically make calls to the
GamerData service to find the five closest point generators that are located less than the specified
distance from the player’s current location. If no point generators are found, the search distance
increases until one is found.
The mobile app shows all the point generators owned by each player. The mobile app allows for
each player to search for claimed point generators by player name. This search does not require
exact spelling of names. The details for each claimed generator is shown in the app.
When a player claims a point generator, they should receive an email notification. An Azure Function
named EmailPlayer has been developed to email players with details about recently claimed point
generators.
Sponsors
The platform allows business to sponsor point generators within a business location.
Reports
A report named Daily Sponsor Report must be generated each day at midnight. The report must
contain a section for each sponsor. Each sponsor section must contain two subsections.
The first subsection of the report contains the names of the point generators for that sponsor,
ordered by the last time the point generator was claimed. The second subsection contains the
current owners for each of the point generators for the sponsor. Generation of reports must not
impact the GamerData service.
GamerData Service
All data for the GamerData service is stored in an Azure DocumentDB instance named GamerData.
Business and players interact with the service by using a REST API.
The REST API must:

Produce valid Swagger API specifications for non-obsolete actions.
Be optimized for loading specific point generators.
Follow REST best practices.
Include appropriate terms of service.
Costs for all Azure services must be minimized.
Build and Deployment
The GamerData service will be deployed to Azure in a private VNet.
Security
Sponsors have accounts in an Azure Active Directory (Azure AD) with business-to-consumer (B2C)
enabled named litwaregamerdata.onmicrosoft.com managed by Litware, Inc. for both GamerData
and LitWare, Inc. services.
Only Litware, Inc. developers and automated testing tools should be able to directly access the
GamerData service. All other use of the service must be through Azure API Management. A
description of the security practices used during development, available on Microsoft SharePoint,
must be available to users of the API under the terms of service.
Reporting
Azure Search will be used as the source for running reports. The properties of indexes in Azure
Search must match the names of the properties in DocumentDB.
Performance
The Azure DocumentDB must not be used for reporting purposes. All services must perform queries
in the data store when possible.
Startup.cs
Relevant portions of the app files are shown below. (Line numbers in the code segments are
included for reference only and include a two-character prefix that denotes the specific file to which
they belong.)
PointController.cs
they belong.)
PointGenerator.cs
they belong.)
QUESTION 1
HOTSPOT
You need to create the Azure Search index.
How should you configure the Azure Search index? To answer, select the appropriate options in the
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 2
DRAG DROP
You need to write a method to return the email address for a given sponsor.
What should you do? To answer, drag the appropriate code segment to the correct location. Each
code segment may be used once, more than once, or not at all. You may need to drag the split bar
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 3
You need to add a routing constraint.
Which code segment should you add at line PC29?
A. [HttpDelete]
B. [HttpPost]
C. [HttpOptions]
D. [HttpsHead]
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 4
DRAG DROP
You need to ensure that sponsors can interact with the GamerData service by using the same
credentials as they use for other LitWare, Inc. services.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 5
You need to write an Azure Search Query to return data for the first subsection of the Daily Sponsor
Report.
Which query string should you use?
A. facets=currentOwner&sort=dateLastClaimed
B. $filter=sponsor&sort=dateLastClaimed
C. search=currentOwner&sort=dateLastClaimed
D. group=sponsor&sort=dateLastClaimed
E. facets=sponsor&sort=dateLastClaimed
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 6
You need to trigger the EmailPlayer Azure Function when a point generator is claimed.
What are two possible ways to achieve this goal? Each correct answer presents a complete solution.
A. Insert code after line PC35 to create a Queue trigger and send a queue message.
B. Create a trigger based on the primary data store.
C. Create a trigger based on the reporting data store.
D. Insert code after line PC14 to create a Service Bus trigger and send a message.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 7
HOTSPOT
You need to build a Swagger specification for creating the GamerData managed API.
What should you do? To answer, select the appropriate options in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 8
You need to decrease the amount of time it takes to query point generators by configuring API
management caching.
In the Azure portal, which value should you use for the Vary by Query string parameters setting?
A. name
B. longitude;latitude;minDistance
C. longitude;latitude;dateLastClaimed
D. Id
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 9
You need to insert code at line PC26 to implement the search requirements.
How should you complete the code segment? To answer, select the appropriate options in the
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Background:
You are a developer for ProseWare Inc., a software-as-a-service (SaaS) company that provides a
comment system that websites use to allow for end users to post comments associated with a
webpage or topic on a customer’s website.
Business requirements
Moderation:
The moderation of comments is a feature of the software, and usually involves the editing of a
comment.
Only users who have accounts in a group in Azure Active Directory (Azure AD) have the ability
moderate. External users can also become moderators, but only by explicit invitation.
Any moderation action must include the name of the moderator.
Comment navigation:
Each comment is identified by a unique string consisting of a random string of characters.
Within the body of a comment, internal links to other comment threads can be specified using the
link format: “/<parent comment id> / <child comment id>”
Comment search:
Comments can be searched using Azure Search. Searches must do the following:
Searching for email addresses must match email addresses in comments.
Searching must work for the client’s language.
Internal links to other comments using the link format should be searched.
Content screening:
Comment content is screened for inappropriate language, length, and topic using content analysis.
Content must be screened, but can appear prior to be screened.
Mobile App:
The moderation functionality can be accessed using a Universal Windows Platform (UWP) app
named ProsewareApp. The app includes functionality that notifies moderators when changes are
made to a comment they modified.
Export:
Customers can perform an export of all comments to a customer supplied Microsoft OneDrive folder
on demand. The export functionality is implemented as an Azure Logic App, and it must be able to
be triggered by the customer from their local network.
Interaction agents:
Interaction agents are parts of the system that interact with comment threads. The main purpose is
to modify a comment's body based on the contents of the comment. For example, one of the agents
is WikiAgent, which adds links to Wikipedia articles when it sees text in the comment body that
exactly matches a Wikipedia article title. Interaction Agents are implemented in Service Fabric.
Interaction agents must meet the following requirements:

Only successfully process each comment once
Any errors encountered during the processing of a comment should be retried
Must run on systems that allow for custom applications to be installed
Must run in a VNet or private network space
Must be run on a system that can scale up and down based on demand
A single user’s usage of Interaction Agents must not impact other users' usage of Interaction
Agents
Technical requirements
Authentication:
ProseWare Inc. allows for user authentication through Azure AD and Twitter.
Storage:
The application runs as a Web App on Azure. Comments are stored in an Azure DocumentDB
database named “Proseware”.
Performance:
The product includes a service level agreement (SLA) for individual method performance. All data
retrieval methods must return within 100ms 99% of the time.
API:
The ProseWare Inc. API is made available to public callers using an Azure API App. Azure AD and
Twitter are the Authentication Providers.
Application structure
CommentController.cs:
cleaner.csx:
ICommentAgent.cs:
WikiAgent.cs:
Comment.cs:
DataStore.cs:
MainPage.xaml.cs:
QUESTION 1
Note: This question is part of a series of questions that present the same scenario. Each question in
the series contains a unique solution that might meet the stated goals. Some question sets might
have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these
questions will not appear in the review screen.
You need to implement the infrastructure for the Interaction Agents.
Solution: Create an Azure Container Service cluster and create a container for running Service
Fabric.
Does the solution meet the goal?
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 2
Solution: Create a set of Azure virtual machines (VMs) using Azure Resource Manager (ARM)
templates, and use Chef to install the Service Fabric runtime.

A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 3
Solution: Create an Azure virtual machine (VM) scale set and use Azure Desired State Configuration
(DSC) extension handler to install Service Fabric runtime.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 4
Solution: Create a Service Fabric cluster with Bronze durability and reliability tiers.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 5
Note: This question is part of a series of questions that present the same scenario. Each
question in the series contains a unique solution that might meet the stated goals. Some
question sets might have more than one correct solution, while others might not have a
correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result,
these questions will not appear in the review screen.
You need to ensure that moderators can be added to the system.
Which authentication approach should you use?
A. Microsoft Office 365 directory

B. Azure AD self-service signup
C. Azure AD Organizational Units (OU)
D. Active Directory Federation
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 6
You need to create the index for comment search.
Which set of tokenizers should you enable?
A. classic
path_hierarchy_v2
microsoft_language_steming_tokenizer
B. classic
nGram
microsoft_language_tokenizer
C. uax_url_email
path_hierarchy_v2
microsoft_language_tokenizer
D. uax_url_email
keyword_v2
nGram
Correct Answer: C
Section: [none]
Explanation
QUESTION 7
DRAG DROP
You need to add JSON code to the bindings file to ensure that comments are screened.
How should you complete the JSON code segment? To answer, drag the appropriate JSON
segments to the correct locations. Each JSON segment may be used once, more than once, or not
at all. You may need to drag the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Background
You are a developer working for Fourth Coffee, a company that sells coffee and coffee accessories
through an Azure-based website and retail locations. Features of the website include the ability to
write product reviews, comment on reviews and find whether a particular product is available at a
specific retail location.
Fourth Coffee licenses a product from Contoso, Ltd, that provides an Azure-based website for users
in Japan. The website includes reviews and comments. All comments and product reviews are
shared between Fourth Coffee’s website and the Japanese website.
Product Reviews
User-submitted product reviews are provided by Contoso and are stored in the Japanese language
in an HTML file format. When a review is submitted, you must remove specific keywords from the
review and translate the review to the English language before you load the review onto the Fourth
Coffee website. Translation processing and migration must occur with a minimum delay.
Product reviews can be loaded by third party websites, but only after they are processed and
reviewed by Fourth Coffee employees. Reviews can be loaded up to one year after they are made
public on the Fourth Coffee website.
Comments
Users can post comments about product reviews. After a comment is posted, all other users who
comment on that product receive a notification on their Android or Windows Phone device.
Product Reviews
The product reviews from Contoso are stored as HTML files in BLOB storage with the format “/
reviews/<guid>html”.
Fourth Coffee stores reviews in BLOB storage, with the format “/users/reviews/<guid>.md” where
<guid> matches the file name of the review. After a Fourth Coffee employee approves the review, a
metadata property named Reviewed with the value true is set on the BLOB.
Some product reviews contain language-specific terms that require additional processing. The
additional processing is done by a python script named cleanup.py. The script relies on a data file
names term.data that contains terms and their replacement values. All running instances of the
script must use the same instance of the data file.
Security
To simplify the security configuration, Contoso and Fourth Coffee agree to configure the website and
services to allow for communication between the services without the traffic being visible on the
public Internet.
To prevent third parties from harvesting review data, whenever the system returns public reviews, it
records the IP address of the request and increments a count of the times that data is retrieved from
a particular IP address. If an IP address makes more than 10 requests a minute, the client must be
redirected to a static page named ratelimit.html.
Azure
The Fourth Coffee website and related services that run on Azure are located in the US West region
and are on a single virtual network named Main with the address 10.1.0.0/16.
The Contoso website and related services that run on Azure are located in the Japan West region
and are on a single virtual network named CT with the address 10.2.0.0/24.
Comments
Product review comments must be processed, at most, one time. When a comment is posted, it
must be associated with the identity of the user who posted the comment. Product review comments
are indexed by a web service that accepts the body of the comment in an HTTP POST. When
comments are ported, they must be indexed for search within 15 minutes. Each comment must be
indexed exactly once. All mobile device notifications are sent by using the Azure Notification Hub
service.
CommentIndexer.cs
Relevant portions of the CommentIndexer.cs file are shown below. Line numbers are included for
reference only and include a two-character prefix that denotes the specific file to which the code
belongs.
ReviewController.cs
Relevant portions of the ReviewController.cs file are shown below. Line numbers are included for
belongs.
TranslateJob.cs
Relevant portions of the TranslateJob.cs file are shown below. Line numbers are included for
belongs.
AccessRateFilter.cs
Relevant portions of the AccessRateFilter.cs file are shown below. Line numbers are included for
belongs.
QUESTION 1
DRAG DROP
You need to implement the translation web job.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 2
HOTSPOT
You need to implement the OnActionExecuting method of the AccessRateFilter class.

How should you complete the relevant code segment? To answer, select the appropriate code
segment from each list in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 3
You need to create a web job that performs post processing for reviews.
What should you do?
A. Rename the post-processing file to action.py, and add a file named settings.job that includes the
following content:
{ “is_in_place”: false)
B. Rename the post-processing file to run.exe, and add a file named settings.job that includes the
following content:
{ “is_in_place”: false)
C. Rename the post-processing file to run.py, and add a file named settings.job that includes the
following content:
{ “is_in_place”: true)
D. Rename the post-processing file to action.exe, and add a file named settings.job that includes
the following content:
{ “is_in_place”: true)
Correct Answer: C
Section: [none]
Explanation
Explanation:
Some product reviews contain language-specific terms that require additional processing. The
additional processing is done by a python script named cleanup.py. The script relies on a data file
names term.data that contains terms and their replacement values. All running instances of the
script must use the same instance of the data file.
QUESTION 4
HOTSPOT
You need to add code after line RC06 to complete the implementation of the AddComment method.
How should you complete the relevant code segment? To answer, select the appropriate code
segment from each list in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Background
Overview
Trey Research Inc. is a software as a service (SaaS) company that provides solutions to the legal
industry including a mobile app named Finder. The company supports users globally.
Case files
Case files are documents about legal proceedings, such as trial transcripts, legal research, and
summaries of trial results. Case files are used to capture trial information for future use.
Before starting a trial, a new case file is created. Researchers link other potentially relevant case
files to the new case file.
During a trial, users create transcripts and notes related to the trial. Users may create documents on
a variety of platforms including Linux, Mac, OS, and Windows. The files may be created in a variety
of formulas including Microsoft Word documents, images, and text files.
All documents are uploaded to a file share. Once documents are uploaded, the system imports the
documents as case files.
When a trial is concluded, the case file for that trial is marked as finished and made available as
research for future trials. During this process, all licensed case files are removed from case file
association.
Finder
Lawyers use Finder to search for and view information and documents that relate to a case. The
interface includes an auto-complete text box where users can enter search terms. Searches must be
performed using combination of characters in the search input.
IntelligentAssist
You plan to build an application named IntelligentAssist that lawyers will use during trials.
IntelligentAssist uses several third-party servers to automatically generate a set of case files using
licensed data. These third-party case files have an expiration data, after which they must not be
accessed.
Requirements
Transcripts and notes

The transcripts and notes created during a trial are uploaded from machines that do not have
consistent Internet connections. Documents may be uploaded multiple times with different file
names. This action must not result in multiple case files being generated. The processing of
uploaded documents must be started by an Azure function.
Case Files
All operations on case files must be billed when an operation is performed. Processing of an
uploaded file is considered a single operation.
Security
When a Service Fabric Actor is activated, the information about the activation must be stored in
Cosmos DB.
Users of the system will authenticate using their organization's Active Directory. When a user is
removed from an organization's Active Directory, their access to the IntelligentAssist product must
be revoked as soon as possible.
CaseFile.cs
Relevant portions of the app files are shown below. Line numbers in the code segments are included
for reference only and include a two-character prefix that denotes the specific file to which they
belong.
MainPage.cs
belong.
CaseFileController.cs
belong.
ActorProgram.cs
belong.
CaseFileActor.cs
belong.
CaseFileSwagger.json
belong.
QUESTION 1
Note: This question in the series contains a unique solution that might meet the stated goals.
Some question sets might have more than one correct solution, while others might not have
a correct solution.
You need to ensure that users can upload transcripts and notes.
Solution: You use Azure Resource Manager (ARM) to provision a storage account, and then use
ARM to provision an Azure Cosmos DB database.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Azure Resource Manager should be used.
The infrastructure for your application is typically made up of many components – maybe a virtual
machine, storage account, and virtual network, or a web app, database, database server, and 3rd
party services. You do not see these components as separate entities, instead you see them as
related and interdependent parts of a single entity. You want to deploy, manage, and monitor them
as a group. Azure Resource Manager enables you to work with the resources in your solution as a
group. You can deploy, update, or delete all the resources for your solution in a single, coordinated
operation. You use a template for deployment and that template can work for different environments
such as testing, staging, and production. Resource Manager provides security, auditing, and tagging
features to help you manage your resources after deployment.
Scenario: The transcripts and notes created during a trial are uploaded from machines that do not
have consistent Internet connections. Documents may be uploaded multiple times with different file
References: https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-group-
overview
QUESTION 2
a correct solution.
Solution: You use Azure Resource Manager (ARM) to provision a storage account, and then use the
Azure portal to create an Azure File share.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
overview
QUESTION 3
a correct solution.
Solution: You use Azure Resource Manager (ARM) to provision a storage account, and then use
Azure PowerShell to provision an Azure File share.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
overview
QUESTION 4
DRAG DROP
You need to ensure that third-party data providers can upload case files using the API.
What should you insert at line CS30? To answer, drag the appropriate JSON fragment to the correct
location. Each JSON fragment may be used once, more than once, or not at all. You may need to
drag the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 5
HOTSPOT
You need to add code at line MP11 to ensure that the solution meets third-party license
requirements. How should you complete the code? To answer, select the appropriate options in the
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 6
a correct solution.
Solution: You create a virtual machine (VM) image that contains a Server Message Block (SMB)
share, and then use Azure Resource Manager (ARM) to provision a VM based on the image.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
overview
QUESTION 7
DRAG DROP
You need to ensure that operations are billed correctly.
Which code should you insert at line AP09? To answer, drag the appropriate code fragment to the
correct location. Each code fragment may be used once, more than once, or not at all. You may

Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Scenario: All operations on case files must be billed when an operation is performed. Processing of
an uploaded file is considered a single operation.
References: https://docs.microsoft.com/en-us/dotnet/api/
microsoft.servicefabric.actors.runtime.actorservicesettings?view=azure-dotnet
QUESTION 8
DRAG DROP
You need to add code at line CA17 to ensure that third-party licenses are handled correctly when a
case is closed.
How should you complete the code segment? To answer, drag the appropriate code segment to the
Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Scenario: You plan to build an application named IntelligentAssist that lawyers will use during trials.
IntelligentAssist uses several third-party servers to automatically generate a set of case files using
licensed data. These third-party case files have an expiration data, after which they must not be
accessed.
QUESTION 9
HOTSPOT
You need to complete the CaseFileActor class to ensure that you can process transcripts and
notes.
Which code segments should you insert? To answer, select the appropriate options in the answer
area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 10
HOTSPOT
You need to insert code at line CC07 to ensure that licensing of third-party case files is not violated.
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Testlet 1
Background
Contoso Pharmaceuticals has an on-premises solution for patients in hospice care. The solution
consists of a Xamarin mobile application and a Microsoft SQL Server database. Health care
providers use the solution to monitor and manage patient drug dosages and treatments. The solution
uses third-party software to calculate drug prices and dosages. The third-party software has several
different modules that run on various server systems.
Contoso Pharmaceuticals would like to migrate the solution to the cloud and leverage several
features of Azure. The company would like to use Platform-as-a-Service (PaaS) where possible.
You are evaluating the use of Azure Service Fabric as well as Azure App Service API Apps to host
several of the software's functionality as REST API services.
You develop a drug pricing endpoint as an Azure App Service API app. The drug pricing endpoint
requires API discovery that uses the Swagger RESTful API Documentation Specification (also
known as the OpenAPI specification). Developers would like to generate operation identifiers for
overloads of their controller methods. In addition, developers are finding it difficult to secure the API
endpoints by using authentication and authorization to restrict access to certain resources within the
app without writing extra, custom code.
You develop a drug dosage endpoint as a Service Fabric, OWIN-hosted, HTTPS endpoint.
Developers are having difficulty writing and maintaining code to wrap client-side communication
libraries in a retry loop for situations when the endpoints are down.
DevOps have extensive experience with PowerShell and would like to maintain Azure resources by
using Azure PowerShell.
Patients
Patient data must be stored securely. Data security must meet the Health Insurance Portability and
Accountability Act of 1996 (HIPAA) standards in the United States and must meet the ISO/ICE
27002 data security standards in the rest of the world.
Drug Pricing and Dosage Software

The third-party software was a very large investment for the company and contains several different
modules that run on various server systems. The solution must be moved to Azure as the on-
premises data center is costing the company too much in hardware renewal fees, not being properly
backed up for a disaster recovery situation, and not being securely maintained to organizational
security and compliance requirements.
Drug Pricing and Dosage Software Platform-as-a-Service (PaaS)

The company is looking to migrate to a PaaS solution to include implementation of the various
software features. The business would like to see a reduction in costs while increasing scalability,
reliability, and resiliency. The company would like to ensure a seamless transition to the new
solution while maintaining all features of the current drug pricing and dosage software.
Mobile
Several health care providers have connectivity issues with their mobile devices. The patient
information and drug dosages is vital information that must be captured at each patient visit. The
business would like the information to be delivered to a central location to be securely stored and
used for reporting purposes.
Drug Pricing and Dosage Software

The software requires several virtual machines (VMs) due to the software's use of the operating
system and code operation. The software cannot run on an Azure PaaS service due to this
restriction. The organization requires the VMs to be secured while active and at rest using industry
standard encryption technology to address organizational security and compliance requirements.
You plan to use Azure Key Vault to control the VM boot using keys and policies to comply with audit
requirements. All VMs will be created by using the Azure Resource Manager.
The software consists of several VMs that run differing operating systems and handle differing
workloads. The VMs are defined as follows:
DrugPricingVM - The Linux VM runs Ubuntu Server and requires a Server Message Block (SMB)
interface to access files from the VM. The VM must allow the use of file system APIs. The VM
must also access on-premises resources while hosted in Azure.
DrugDosageVM - The Linux VM runs Ubuntu Server and uses REST APIs to store very large
amounts of unstructured data for random access and streaming used to process drug dosages.
DrugProcessingVM - The Windows VM runs Windows Server and includes a Windows
Communication Foundation (WCF) service to process drug pricing and dosage requests. The VM
requires a storage solution that guarantees first-in-first-out (FIFO) ordered delivery to ensure
processing order of the requests is maintained. Standard processing requests are less than 256
kilobyte (KB) and include automatic duplicate detection.
DrugDataVM - The Windows VM runs Windows Server and SQL Server to store the patient
treatments, dosage information, as well as finalized costing information for the treatments.
All VMS must be deployed using automated, repeatable processes that can be audited and
validated. All VMs should be initially created, configured, and deployed as one logical unit within a
single resource group. In addition, all VMs should include monitoring and diagnostics to be enabled
by using the Azure Diagnostics extension. All diagnostics and monitoring of VMs should be captured
and stored by using a storage account.
Drug Pricing and Dosage Software Platform-as-a-Service (PaaS)

Architecture is evaluating the use of Azure Service Fabric as well as Azure App Service API Apps to
host several of the software's functionality as REST API services.
A drug pricing endpoint has been developed and implemented as an Azure App Service API app.
The drug pricing endpoint requires API discovery using the Swagger RESTful API Documentation
Specification (also known as the OpenAPI specification). Developers would like to generate
operation identifiers for overloads of their controller methods. In addition, developers are finding it
difficult to secure the API endpoints by using authentication and authorization to restrict access to
certain resources within the app without writing custom code. The API endpoints should be secured
to only allow communication between each of the endpoints and disallow access from external
communications.
A drug dosage endpoint has been developed and implemented as a Service Fabric, OWIN-hosted,
HTTPS endpoint. Developers are having difficulty writing and maintaining code to wrap client-side
communication libraries in a retry loop for situations when the endpoints are down.
Network Communications
All VMS require inbound traffic communications on port 50001 for both UDP and TCP
communications. All VMs must be configured to run within the same subnet.
Mobile
The connectivity for mobile devices must support offline mode to allow users to continue modifying
and creating data when the device is offline. When the app is back online, it must synchronize local
charges with a central data repository stored in Azure.
The mobile app must cache server data locally on each device. The solution must synchronize data
across multiple devices while detecting conflicts when the same record is modified by two or more
devices. The synchronization must be incremental to reduce network traffic.
Development
Developers must use Microsoft Visual Studio on their desktops and store all code in a source
repository hosted by using Visual Studio Team Services.
QUESTION 1
You need to create, configure, and deploy all VMs for the drug pricing and dosage software.
What should you do?
A. Deploy the solution by using Visual Studio Team Services Release Management.
B. Use the Azure Command-Line Interface (CLI) to run the azure provider register command for
each VM resource.
C. Provision each VM by using the Azure portal.
D. Install and configure a VM agent. Use Azure PowerShell to set the value of the
ProvisionVMAgent property to True.
Correct Answer: A
Section: [none]
Explanation
Explanation:
Release Management is a service in Visual Studio Team Services (VSTS) and Team Foundation
Server (TFS 2015.2 and later) and an essential element of DevOps that helps your team
continuously deliver software to your customers at a faster pace and with lower risk. You can fully
automate the testing and delivery of your software in multiple environments all the way to production,
or set up semi-automated processes with approvals and on-demand deployments.
Scenario: All VMS must be deployed using automated, repeatable processes that can be audited
and validated. All VMs should be initially created, configured, and deployed as one logical unit within
a single resource group.
References: https://docs.microsoft.com/en-us/vsts/build-release/concepts/definitions/release/what-
is-release-management?view=vsts
QUESTION 2
You need to secure all patient data stored in persistent storage. What should you do?
A. Enable Transparent Data Encryption (TDE) for all database instances.

B. Use Azure Disk Encryption and a Key Encryption Key (KEK) to enable and deploy Azure disk
encryption for Azure VMs.
C. Use the Azure Security Center to define policies for the Azure subscription and resource groups
to include daily scanning of all VMs.
D. Use the Azure Storage Client Library and the Azure Key Vault to enable client-side encryption by
using a content encryption key (CEK).
Correct Answer: A
Section: [none]
Explanation
Explanation:
Transparent data encryption (TDE) helps protect Azure SQL Database and Azure Data Warehouse
against the threat of malicious activity. It performs real-time encryption and decryption of the
database, associated backups, and transaction log files at rest without requiring changes to the
application.
References: https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/
transparent-data-encryption-azure-sql?view=azuresqldb-current
QUESTION 3
correct solution.
You need to enable monitoring and diagnostic logging for the VMs.
Solution: Run the Azure PowerShell command Set-AzureRmDiagnosticsSetting and include the
resource identifier for the storage account and VM.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
When creating a new Cloud Service deployment you can enable the diagnostics extension by
passing in the ExtensionConfiguration parameter to the New-AzureDeployment cmdlet. The
ExtensionConfiguration parameter takes an array of diagnostics configurations that can be created
using the New-AzureServiceDiagnosticsExtensionConfig cmdlet.
Scenario: All VMs should include monitoring and diagnostics to be enabled by using the Azure
Diagnostics extension. All diagnostics and monitoring of VMs should be captured and stored by
using a storage account.
References: https://docs.microsoft.com/en-us/azure/cloud-services/cloud-services-diagnostics-
powershell
QUESTION 4
correct solution.
Solution: Add the Azure Diagnostics extension as a VM resource in the ARM template for the
specified VM to include the diagnostics storage account parameters. Redeploy the VM by using
Azure PowerShell.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
powershell
QUESTION 5
correct solution.
Solution: Run the Azure PowerShell command Get-AzureRmVMDiagnosticsExtension and

include the VM name and resource group name as parameters.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
powershell
QUESTION 6
correct solution.
Solution: Run the command-line interface (CLI) command azure insights diagnostic set and
include the resource identifier for the storage account and VM.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
powershell
QUESTION 7
You need to secure all patient data stored in persistent storage.
What should you do?
A. Use the Azure Storage Client Library and the Azure Key Vault to enable client-side encryption by
using a content encryption key (CEK).
B. Enable the Azure Storage Service Encryption (SSE) for all Azure storage accounts.
C. Use TLS/SSL to enable encryption for all traffic between the VMs and the client systems.
D. Use the Azure Security Center to define policies for the Azure subscription and resource groups
to include daily scanning of all VMs.
Correct Answer: B
Section: [none]
Explanation
Explanation:
Azure Storage Service Encryption for Data at Rest helps you protect your data to meet your
organizational security and compliance commitments. With this feature, Azure Storage automatically
encrypts your data before persisting it to Azure Storage, and decrypts the data before retrieval. The
handling of encryption, encryption at rest, decryption, and key management in Storage Service
Encryption is transparent to users.
Scenario: Patient data must be stored securely. Data security must meet the Health Insurance
Portability and Accountability Act of 1996 (HIPAA) standards in the United States and must meet the
ISO/ICE 27002 data security standards in the rest of the world.
References: https://docs.microsoft.com/en-us/azure/storage/common/storage-service-encryption
QUESTION 8
You need to update the Swagger API metadata to support all drug pricing and dosage software API
methods. What are two possible ways to achieve the goal? Each correct answer presents a
complete solution.
A. Update all controller methods by giving the methods unique names.

B. Update the Network Security Group security rules.
C. Create a custom IOperationFilter and cause Swashbuckle to use the implementation.
D. Update all methods with XML documentation comments and update the Swashbuckle
configuration to use the XML documentation file.
E. Add the SwaggerResponse attributes to the Web API action methods.
Correct Answer: DE
Section: [none]
Explanation
Explanation:
D: Swashbuckle.AspNetCore is an open source project for generating Swagger documents for
ASP.NET Core Web APIs.
We can tell Swashbuckle to use XML comments to add more details to the Swagger metadata.
These are the same XML comments that ASP.NET Help Pages uses.
E: A template can help you start writing your first OpenAPI definition. The definition template feature
creates a sparse OpenAPI definition by using all the metadata in the function.json file for each of
your HTTP trigger functions. You'll need to fill in more information about your API from the OpenAPI
specification, such as request and response templates.
Scenario: You develop a drug pricing endpoint as an Azure App Service API app. The drug pricing
endpoint requires API discovery that uses the Swagger RESTful API Documentation Specification
(also known as the OpenAPI specification).
References: http://wmpratt.com/swagger-and-asp-net-web-api-part-1/
https://docs.microsoft.com/en-us/azure/azure-functions/functions-api-definition
QUESTION 9
DRAG DROP
You need to ensure that the drug dosage endpoint is always resolved and accessible.
the list of actions to the answer area and arrange them in the correct order
NOTE: More than one order of answer choices is correct. You will receive credit for any of the
correct orders you select.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
Step 1: The reverse proxy addresses services in the cluster that exposes HTTP endpoints including
HTTPS. The reverse proxy greatly simplifies calling other services and their methods by having a
specific URI format and handles the resolve, connect, retry steps required for one service to
communicate with another using the Naming Service. In other words, it hides the Naming Service
from you when calling other services by making this as simple as calling a URL.
You can use the Azure Resource Manager template to enable the reverse proxy in Service Fabric
for the cluster.
Step 2: Instead of configuring the port of an individual service in Load Balancer, you can configure
just the port of the reverse proxy in Load Balancer. This configuration lets clients outside the cluster
reach services inside the cluster by using the reverse proxy without additional configuration.
Scenario: You develop a drug pricing endpoint as an Azure App Service API app. The drug pricing
endpoint requires API discovery that uses the Swagger RESTful API Documentation Specification
(also known as the OpenAPI specification). Developers would like to generate operation identifiers
for overloads of their controller methods. In addition, developers are finding it difficult to secure the
API endpoints by using authentication and authorization to restrict access to certain resources within
the app without writing extra, custom code.
You develop a drug dosage endpoint as a Service Fabric, OWIN-hosted, HTTPS endpoint.
Developers are having difficulty writing and maintaining code to wrap client-side communication
libraries in a retry loop for situations when the endpoints are down.
DevOps have extensive experience with PowerShell and would like to maintain Azure resources by
using Azure PowerShell.
QUESTION 10
You need to create, configure, and deploy all VMs for the drug pricing and dosage software.
What should you do?
A. Provision each VM by using the Azure portal.

B. Install and configure a VM agent. Use Azure PowerShell to set the value of the
ProvisionVMAgent property to True.
C. Create and configure a new Content Delivery Network. Upload a sysprep snapshot image for
each VM to the Content Delivery Network.
D. Create a new JSON ARM template and run an Azure PowerShell script that uses the template.
Correct Answer: D
Section: [none]
Explanation
Explanation:
Scenario: All VMS must be deployed using automated, repeatable processes that can be audited
and validated. All VMs should be initially created, configured, and deployed as one logical unit within
a single resource group.
QUESTION 11
DRAG DROP
You need to access the diagnostic data for the drug pricing and dosage software VMs.
Which REST API should you use for each data source? To answer, drag the appropriate REST APIs
to the correct data sources. Each REST API may be used once, more than once, or not at all. You
may need to drag the split bar between panes or scroll to view content.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
Azure Diagnostics infrastructure logs:
Infrastructure logs are stored in the WADDiagnosticInfrastructureLogsTable.
Windows Event logs:

Event logs are stored in the WADWindowsEventLogsTable.
Crash dumps: Blob Service

Crash dumps are located in the wad-crush-dumps blob container.
References: https://docs.microsoft.com/en-us/azure/vs-azure-tools-diagnostics-for-cloud-services-
and-virtual-machines
Testlet 1
Background
Contoso, Ltd. designs and manufactures medical vaccines. The company has sales and
manufacturing facilities in locations all over the world. The company must permanently retain all data
from clinical testing of vaccines. Contoso is subject to penalties and lawsuits if any data is lost
You maintain an application that allows medical professionals to manage data about patients,
vaccine results, and possible side effects of the vaccines. You host the application in Microsoft
Azure and manage the application by using the Azure portal.
Current environment
Applications
You have two on-premises applications that connect to Azure resources. The first application is
named Contoso1. Contoso1 uses Windows identity Foundation (WIF) and includes a secured area
of the application that is used for single-sign on with credentials from Azure Active Directory (AD).
The second application is an auditing application, named ClinicalSearch. It allows you to search for
clinical test results. The application resides on an Azure Virtual Machine (VM) and must meet Azure
Service Level Agreements (SLAs) for availability. Auditors will be given access to the application in
24 hour intervals.
You have a data Collection and distribution service named DataCollect. The service runs Node.js in
an Azure cloud service The service must use a minimum of 2048-bit encryption.
Infrastructure
You provision the following objects:
Premium storage
Two SQL Azure databases named CONTOSO-SQL1 and CONTOSO-SQL2. CONTOSO-SQL1
will store current product data and will be scaled up to optimize performance during peak hours,
CONTOSO-SQL2 will store archived product data,
Table storage
Deployment
You deploy resources as a resource group by using Azure Resource Manager (ARM). You use
templates to deploy resources to different environments. The cloud service is deployed using
standard methods. You provide medical professionals and other clients access to the storage
resources.
Problem statements
Users are reporting that during peak hours, it takes a long time to save documents to the
environment. Researchers report that the DataCollect service takes a long time to respond when
data is being sent to the service.
Monitoring
You enable minimal monitoring metrics for the application. You enable boot diagnostics for all VMs.
Requirements
Security
You identify the following security-related requirements:
You must not make changes to any application itself.

You must not save any data on the local drive of any device that uses any application.
You must secure access to data and network connections between any application and Azure
resources.
You must delete all resources that exist in the resource group not specified in the templates.
Any new code introduced to the environment needs to be submitted for architectural review with
senior IT architects.
Monitoring
You must monitor the application at all times. You have two monitoring events, Monitoring event 1
and Monitoring event 2.
Monitoring event 1 monitors entity group transactions.

Monitoring event 2 monitors entity versioning.
System administrators must include graphical views of monitoring information in a daily report. The
graphs need to be obtained using minimal effort.
QUESTION 1
HOTSPOT
You need to configure the solutions.
For each solution, which protocol should you use? To answer, select the appropriate protocol from
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
Scenario: The first application is named Contoso1. Contoso1 uses Windows identity Foundation
(WIF) and includes a secured area of the application that is used for single-sign on with credentials
from Azure Active Directory (AD).
The second application is an auditing application, named ClinicalSearch. It allows you to search for
clinical test results. The application resides on an Azure Virtual Machine (VM) and must meet Azure
Service Level Agreements (SLAs) for availability. Auditors will be given access to the application in
24 hour intervals.
Reference:
https://msdn.microsoft.com/en-us/library/bb498017.aspx#wsfedver1_topic4
https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-single-sign-on-
protocol-reference
QUESTION 2
You need to save the diagnostics information.
What should you use?
A. the Check Health feature

B. a Standard storage account for the diagnostics
C. a custom script to store the diagnostics in the storage account
D. a Remote Desktop connection to access the VM and save the log files
Correct Answer: B
Section: [none]
Explanation
Explanation:
Scenario: You enable minimal monitoring metrics for the application. You enable boot diagnostics for
all VMs.
Enable diagnostics on a new virtual machine

1. When creating a new virtual machine from the Azure Portal, select the Azure Resource Manager
from the deployment model dropdown:
2. In Settings, enable the Boot diagnostics, and then select a storage account that you would like to
place these diagnostic files.
3. If you are deploying from an Azure Resource Manager template, navigate to your virtual machine
resource and append the diagnostics profile section.
4. If you are deploying from an Azure Resource Manager template, navigate to your virtual machine
resource and append the diagnostics profile section.
References: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/boot-diagnostics
QUESTION 3
HOTSPOT
You need to configure monitoring.
For each event, which property should you use? To answer, select the appropriate property from
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
Monitoring event 1: PartitionKey
An entity group transaction must meet the following requirement:
All entities subject to operations as part of the transaction must have the same PartitionKey value.
Monitoring event 2: RowKey
Scenario: You must monitor the application at all times. You have two monitoring events, Monitoring
event 1 and Monitoring event 2.
Monitoring event 1 monitors entity group transactions.

Monitoring event 2 monitors entity versioning.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/performing-entity-group-
transactions
Testlet 1
Background
Contoso, Ltd. develops, manufactures, and sells paint, wallpaper, and other home improvement
items. The company currently uses a third-party service that sells Contoso’s products through their
e-commerce solution. Contoso plans to take over the entire process. Customers complete the
purchase process and provide billing information to the web application. An executable named
SalesProcess.exe processes all of the information received. An on-premises server that runs
Windows Server 2012 hosts the executable.
Build and Deploy
You create an Azure Web App using the Azure Management Portal, and configure the Web App to
use the Basic App Service plan. The Web App will support the full process of browsing inventory,
placing orders, billing, and order fulfillment. Contoso registers the custom domain www.contoso.com
for use by the application.
For future production builds, Contoso plans to use Microsoft Visual Studio Team Services and
configure Azure continuous deployment. Contoso currently uses Team Foundation Server 2013 for
source control.
Performance and Monitoring
Contoso runs performance tests and identifies some concerns. During periods of heavy load, the
cache is performing poorly and messages are not processed.
You enable diagnostics for the Web App, but diagnostics data is not logged to storage. You confirm
that sufficient storage and permissions are present. You have a device named PC1 that runs
Windows 10. PC1 is a dedicated device for debugging the cloud service.
Business requirements
You identify the following business requirements:
The web application must provide a secure shopping experience for the customer.
Quality Assurance testers must validate all new versions of the web application before they are
published to production.
You must be able to revert to previous versions after deployment if necessary.
The solution must eventually reside completely in the cloud.
You must enable remote debugging for the web application
You must test the solution with a limited number of users for the first six-month period after you
initially deploy the web application. During this period, you must minimize costs associated with the
Azure subscription.
Technical requirements
You identify the following technical requirements:
Network traffic must be monitored on all ports that the web application uses.
The web application must remain available to users during deployment of new features.
The custom domain must be secured by using SSL.
You must use an X.509 certificate.
The web application must auto-scale to a larger instance size when CPU load reaches 50
percent
Web App details
You configure the following properties for the Web App:

Resource Group: contoso
Web App Name: contosoapp
Slot Name: contoso1
Deployment package location: C:\
Deployment package name: contosoweb.zip
QUESTION 1
HOTSPOT
You need to ensure that the Web App scales correctly.
For each option, which value should you use? To answer, select the appropriate value from each list
in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 2
You need to use the least expensive App Service plan tier that will allow you to deploy and roll back
the Contoso Web App.
Which App Service plan tier should you use?
A. Shared
B. Standard
C. Premium
D. Free
E. Basic
Correct Answer: B
Section: [none]
Explanation
QUESTION 3
HOTSPOT
You need to revert to the last functioning version.
How should you configure the relevant Azure PowerShell command? To answer, select the
appropriate Azure PowerShell segments from each list in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
References:
https://docs.microsoft.com/en-us/azure/app-service/web-sites-staged-publishing
QUESTION 4
HOTSPOT
You need to deploy the Web App.
How should you complete the relevant Azure PowerShell command? To answer, select the
appropriate Azure PowerShell segment from each list in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Question Set 1
QUESTION 1
You develop a service that runs on a worker role in Azure. The service caches a large amount of
data from a database at startup. The service has a configuration file that includes two settings
named ConnectionString and SleepInterval.
The service must restart when the value of the ConnectionString setting changes. The service must
NOT restart when the value of the SleepInterval setting changes.
You have the following code. Line numbers are for reference only.
You need to configure the service.
Which code segment should you insert at line 21?

A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 2
You have an ASP.NET application that runs in a cloud service. A new version of the application is
ready for release. The new version contains code changes and new SSL certificates. The application
consists of six instances of a web role and four instances of a worker role.
The application performs at or near full capacity. The cloud service uses the default number of fault
domains and upgrade domains.
You plan to deploy the new version of the application. The performance and capacity of the web
roles must not degrade during the deployment. Temporary degradation of the worker roles is
acceptable. The deployment must take a maximum of six hours.
You need to deploy the new version of the ASP.NET application to the cloud service.
Which two approaches will achieve the goal? Each correct answer presents a complete solution.
A. Increase the number of web role instances to eight, and then deploy the new version of the
application by using an in-place update. Reduce the number of web role instances to six after the
upgrade is completed.
B. Deploy the new version of the application by using an in-place update. Use upgrade domains to
ensure that there is sufficient capacity during the upgrade.
C. Deploy the new version of the application into the staging slot for the cloud service. Then activate
the new version of the application by swapping virtual IP (VIP) addresses.
D. Delete the old version of the application, and deploy the new version of the application.
Correct Answer: BC
Section: [none]
Explanation
Explanation:
QUESTION 3
DRAG DROP
The Azure Queue service hosts a queue named userRegistrationQueue. You are developing a web
job to process messages from the queue. You create a new console application by using Microsoft
Visual Studio. You also create an Azure storage connection string and store the connection string in
the application configuration file.
All trigger listeners and jobs must run on the current thread.
You need to ensure that the web job processes the messages from the queue.
correct location or locations. Each code segment may be used once, more than once, or not at all.
You may need to drag the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 4
DRAG DROP
You create a new web application by using a single Azure website deployment. The deployment
uses the shared web hosting plan. User activity varies significantly and unpredictably.
The application must automatically scale to a maximum of eight virtual machines based on CPU
utilization.
You need to configure the environment.
In the Azure management portal, which three actions should you perform in sequence? To answer,
move the appropriate actions from the list of actions to the answer area and arrange them in the
correct order.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 5
You have a website that is hosted on Azure. You connect to the site by using the URI http://
www.contoso.com. You plan to publish a new version of the website.
You need to acquire the publishing profile for the website.
Which two actions will achieve the goal? Each correct answer presents a complete solution.
A. Run the following Windows PowerShell cmdlet:Get-AzurePublishSettingsFile

B. Run the following Windows PowerShell cmdlet:Get-AzureSubscription
C. Navigate to the following URI: https://www.contoso.com/download/publishprofile.aspx
D. Navigate to the following URI: https://windows.azure.com/download/publishprofile.aspx
Correct Answer: AD
Section: [none]
Explanation
Explanation:
QUESTION 6
HOTSPOT
You use the storage client library to develop an application that manages Azure table storage data.
The application reports error codes when it saves data. You must use a custom retry policy to
handle the error codes.
The custom retry policy must meet the following requirements:

Retry when a conflict error code is encountered.
Retry when a storage exception is encountered.
Retry until the maximum number of retry attempts is reached.
You create the following code segment. Line numbers are included for reference only.
You need to insert code at line 14 to implement the retry policy.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 7
You deploy a website to Azure. When the website starts, it loads and caches common data.
Updates to the website must occur without downtime or performance degradation that is noticeable
to users.
You need to upgrade to a new version of website code.
What should you do?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 8
You deploy a stateless ASP.NET application to an Azure website. You scale out the application by
adding website instances.
Only newly signed in users are routed to the recently added website instances. Users must be
evenly distributed among all of the instances.
You need to configure the environment to ensure that the load balancer evenly distributes requests.
What should you do?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 9
HOTSPOT
You plan to migrate a website named Contoso from one hosting plan to another hosting plan. The
website is currently in a hosting plan named webhostingplan1. You create a resource group named
ContosoGroup.
You create the following PowerShell script by using the Azure PowerShell tools. Line numbers are
included for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 10
You maintain an application that is used by local food delivery companies. When a customer
requests a delivery, the application sends a message to all of the delivery companies. One company
accepts the request and fulfills the order.
The application currently supports orders of 100 products or fewer. Some of the delivery companies
can now deliver large orders that contain up to 500 products.
You must modify the application so that it supports both small orders and large orders. Messages
about large orders should be sent to only delivery companies that can fulfill them. Messages about
small orders should be sent to all delivery companies.
Which service should you use?
A. Azure Service Bus Queue

B. Azure Service Bus Relay
C. Azure Service Bus Topics
D. Azure Service Bus Namespace
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 11
DRAG DROP
You are developing a web application that uses Azure push notifications to interact with users.
You need to send a text notification to users to alert them that the application is ready to test.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 12
HOTSPOT
You create a cache for a project by using Azure Redis Cache. You are writing test code that verifies
that the cache is available.
You need to ensure that data can be saved to the cache and retrieved from the cache.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 13
DRAG DROP
You are developing a web application that integrates with Azure Active Directory (AD). The
application uses the OAuth 2.0 protocol to authorize secure connections to a web service that is at
https://service.adatum.com.
The application must request an access token to invoke the web service methods.
You need to submit an HTTP request to the Azure AD endpoint.
How should you complete the request? To answer, drag the appropriate code segments to the
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 14
A company plans to increase its virtual network capacity by adding virtual network subscriptions.
You must increase the number of subscriptions from 3 to 15.
You need to configure the virtual networks.
What should you do?
A. Export and modify the network configuration file. Then import the modified file.
B. Export and modify the service definition file. Then import the modified file.
C. Create and import a new network configuration file.
D. Create a multi-site virtual network.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 15
You are maintaining an application that uses the Azure Content Delivery Network (CDN) to serve
terabytes of content that is stored in page blobs.
Your bill for CDN services is higher than you expect.
You need to monitor the application to find issues that increase costs.
Which two operations should you monitor? Each correct answer presents part of the solution.
A. The Time-To-Live (TTL) of the blobs.

B. The country of origin for the client computer and the CDN region.
C. The number of requests that result in an HTTP status code over 400.
D. The allocated size of page blobs.
E. The expiration date of the blobs.
Correct Answer: BD
Section: [none]
Explanation
Explanation:
QUESTION 16
You create a software-as-a-service (SaaS) application. Websites, cloud services, and virtual
machines (VMs) read common data values from the database for the application.
The application does not scale efficiently. All VMs, websites, and cloud services must read from the
same data source.
You need to design a cache solution for the SaaS application.
What should you do?
A. Deploy a cache by using Azure Redis Cache. Access the cache from the websites, cloud
services, and VMs.
B. Configure a cache by using ASP.NET. Access the cache from the websites, cloud services, and
VMs.
C. Use Azure Redis Cache to deploy one cache for each website, one cache for each cloud service,
and one cache for each VM. Configure each cache to ensure that data is consistent in all the
cache instances.
D. Deploy a cache by using Azure Redis Cache. Configure the cache to use database connection
strings.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 17
You are modifying a web application so that it uses Azure Active Directory to manage users. You
create a security group named Users and a security group named Administrators. The
Administrators security group is a member of the Users security group.
You create the following code segment. Line numbers are included for reference only.
You need to implement the canAccessUserResources function.
Which code segment should you insert at line 02?
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 18
You are developing a messaging solution to integrate two applications named WeatherSummary
and WeatherDetails. The WeatherSummary application displays a summary of weather information
for major cities. The WeatherDetails application displays weather details for a specific city.
You need to ensure that the WeatherDetails application displays the weather details for the city that
the user selects in the WeatherSummary application.
What should you do?
A. Create an Azure Service Bus Queue communication. In the WeatherDetails application,

implement the PeekLock method.
B. Create an Azure Service Bus Topics object. In the WeatherDetails application, create a filter.
C. Create an Azure Service Bus Relay object. In the WeatherDetails application, create a filter.
D. Create an Azure Service Bus Queue communication. In the WeatherDetails application,
implement the ReceiveAndDelete method.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 19
You store data by using table storage in Azure.
The storage analytics logs do not contain any data.
You must configure the Azure storage account to retain logs for the maximum length of time that
Azure permits.
In the Azure management portal, what should you do?
A. Set the monitoring level to Minimal, and set the number of days the data in the logs is retained to
0.
B. Set the monitoring level to Verbose, and set the number of days the data in the logs is retained to
365.
C. Set the monitoring level to Minimal, and set the number of days the data in the logs is retained to
99.
D. Set the monitoring level to Verbose, and set the number of days the data in the logs is retained to
30.
Correct Answer: A
Section: [none]
Explanation
Explanation:
Reference: http://azure.microsoft.com/en-gb/documentation/articles/storage-monitor-storage-
account/
QUESTION 20
You host an application on an Azure virtual machine (VM) that uses a data disk. The application
performs several input and output operations per second.
You need to disable disk caching for the data disk.
Which two actions will achieve the goal? Each answer presents a complete solution.
A. Use the Azure Resource Manager REST API

B. Use the Service Management REST API.
C. Run the following Windows PowerShell cmdlet:Remove-AzureDataDisk
D. Run the following Windows PowerShell cmdlet:Set-AzureDataDisk
Correct Answer: AD
Section: [none]
Explanation
Explanation:
Reference: http://msdn.microsoft.com/en-us/library/azure/jj157190.aspx
QUESTION 21
You are developing a REST API service that provides data about products. The service will be
hosted in an Azure virtual machine (VM).
The product data must be stored in Azure tables and replicated to multiple geographic locations.
API calls that use the HTTP GET operation must continue to function when the data tables at the
primary Azure datacenter are not accessible.
You need to configure storage for the service.
Which type of replication should you choose?
A. Locally Redundant Storage replication

B. Geo-Redundant Storage replication
C. Zone-Redundant Storage replication
D. Read-Access Geo-Redundant Storage replication
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 22
HOTSPOT
Your company runs existing applications on virtual machines (VMs) that are hosted on Azure.
You are preparing additional Azure services to support the existing applications.
You run the following script. Line numbers are provided for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 23
You are migrating an existing solution to Azure. The solution includes a user interface tier and a
database tier. The user interface tier runs on multiple virtual machines (VMs). The user interface tier
has a website that uses Node.js. The user interface tier has a background process that uses Python.
This background process runs as a scheduled job. The user interface tier is updated frequently. The
database tier uses a self-hosted MySQL database.
The user interface tier requires up to 25 CPU cores. You must be able to revert the user interface
tier to a previous version if updates to the website cause technical problems. The database requires
up to 50 GB of memory. The database must run in a single VM.
You need to deploy the solution to Azure.
What should you do first?
A. Deploy the entire solution to an Azure Web App. Use a web job that runs continuously to host the
database.
B. Configure Microsoft Visual Team Services to continuously deploy the user interface tier to the
Azure Web App service. Deploy the production builds and the staging builds of the user interface
tier to separate slots.
C. Deploy the entire solution to an Azure Web App. Use a web job that runs continuously to host the
user interface tier.
D. Deploy the user interface tier to a VM. Use multiple availability sets to continuously deploy
updates from Microsoft Visual Studio Online.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 24
You store data in an Azure blob. Data accumulates at a rate of 0.10 GB per day.
You must use storage analytics data to verify that the service level agreement (SLA) has been met
and to analyze the performance of VHDs, including the pattern of usage.
Analytics data must be deleted when it is older than 100 days or when the total amount of data
exceeds 10 GB.
You need to configure storage analytics and access the storage analytics data.
Which two approaches will achieve the goal? Each correct answer presents part of the solution.
A. Disable the data retention policy.

B. Access analytics data by using the Service Management REST APL
C. Access analytics data by using the APIs used to read blob and table data.
D. Configure a data retention policy of 100 days.
Correct Answer: CD
Section: [none]
Explanation
Explanation:
QUESTION 25
HOTSPOT
You store JSON data in a blob by using the Azure Blob service. Web applications access the JSON
data by using client-side JavaScript calls.
JSON data is stored in a container that is configured to allow anonymous access. Web applications
that are allowed to make updates to the data have access to any necessary shared access
signatures (SASs) and storage keys.
You configure one Cross-Origin Resource Sharing (CORS) rule for the https://fabrikam.com domain
and then run the following method. Line numbers are provided for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 26
You develop a web application that will use the Azure Table service. The web application will store
entities in the form of XML data within a single table.
The web application must support high traffic throughput.
You need to avoid exceeding the throttle limit for the table.
Which two actions should you take? Each correct answer presents part of the solution.
A. Add additional partition keys to the table.

B. Batch transactions for entities that are in the same partition group in the table.
C. Compress the entities before storing them in the table.
D. Store the entities in JSON format.
Correct Answer: BD
Section: [none]
Explanation
Explanation:
QUESTION 27
You are managing an application. The application uses data that is stored in an Azure SQL
database.
You must be able to reset the application to the state that existed on any day in the previous 35
days.
You need to choose a backup solution.
What should you do?
A. Run SQL replication on the SQL database once a day.

B. Use Microsoft Azure SQL Database Point in Time Restore
C. Use the SQL Server Data-Tier Application Framework to build a data-tier application (DAC) file
once a day.
D. Use the bcp utility to export data to an Azure page blob once a day.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 28
HOTSPOT
Tailspin Toys uses a website to manage its inventory. The website is hosted on Azure. You are
writing a Windows Store app that uses data from the blob storage.
You need to retrieve an image from the following URI:
https://tailspintoys.blob.core.windows.net/Trains/Caboose2jpg.
How should you complete the relevant code? To answer, select the appropriate code segments in
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 29
You develop a web application that uses table storage in Azure.
You create a storage account named Contoso that stores a table named CityPopulationData.
The web application stores entities in this table.
You need to query the table data by using OData.
Which URL should you use?
A. http://contoso.table.core.windows.net/citypopulationdata
B. http://contoso.table.core.windows.net/odata/citypopulationdata
C. http://azurestorage.table.core.windows.net/contoso
D. http://microsoft.table.core.windows.net/contoso
E. http://azure.table.core.windows.net/contoso/citypopulationdata
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 30
HOTSPOT
Your company works with trusted partners. These partners upload files into a storage account that
you control.
Partners must be able to create, read, and write files. Partners must NOT be allowed to see files
from other partners. You generate a shared access signature (SAS) for each partner.
You create the following Windows PowerShell script to create a new container for each partner. Line
numbers are included for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 31
A company maintains an Azure storage account. The storage account uses blobs and tables.
Customers access the storage account by using shared access signatures (SASs).
You need to monitor the usage of the storage services. You need to do the following:
Understand which storage areas perform operations that incur an Azure fee.
Understand which requests are denied because of insufficient permissions.
Validate that the performance of the storage account meets the service level agreement (SLA)
for the Azure Storage service.
Which three data analysis tasks should you perform? Each correct answer presents part of the
solution.
A. Use data from the logs of the storage services to find individual storage access attempts that do
not comply with the SLA.
B. Use data from the logs of the storage services to calculate aggregate server latency across
individual requests. Determine whether the results of this calculation indicate that the Azure
Storage service is in compliance with the SLA.
C. Analyze the logs of the storage services to determine which storage services were inaccessible
because of permissions issues.
D. Review the Azure documentation to determine which storage operations are billable. Then find
records of those operations in the logs of the storage services.
E. Analyze the logs of the storage services to find records of operations that are marked as billable.
F. Correlate the data logged from the storage service with the permissions to store data in the
individual blobs and containers. Determine which storage services were inaccessible because of
permissions issues.
Correct Answer: BCD

Section: [none]
Explanation
Explanation:
QUESTION 32
HOTSPOT
You are creating a set of load-balanced virtual machines (VMs) that are hosted on Azure.
You run the following Windows PowerShell script. Line numbers are included for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 33
You are creating virtual machines (VMs) that are hosted on Azure.
You must be able to change the Remote Desktop access settings for the VMs. You must also be
able to change the password for the built-in administrator account on all VMs. You identify the
VMAccess VM extensions that have the required capabilities.
You need to enable the VMAccess VM extensions.

A. Download and install the Microsoft Installer file to enable the VM Agent on each VM.
B. Use the Azure management portal to restart each VM.
C. When you configure the new VMs, use the Azure management portal to install the VM Agent.
D. For each VM, use Windows PowerShell cmdlets to enable the VM Agent and the VMAccess VM
extensions.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 34
HOTSPOT
You use the Windows PowerShell Desired State Configuration (DSC) feature to configure your
company's servers. Line numbers are included for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 35
HOTSPOT
You have an existing server that runs Windows Server. You plan to create a base image of this
server. You will use this base image to prepare several virtual servers for future use. After the base
image is prepared, you will capture it by using the Azure management portal.
You must use the System Preparation Tool (Sysprep) to prepare the server so that the base image
can be captured.
You need to prepare the server so that the base image can be captured.
What should you do? To answer, configure the appropriate options in the dialog box in the answer
area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 36
HOTSPOT
A company creates an Azure worker role to manage products.
The number of customers who inquire about how many products are in inventory rapidly increases.
You need to ensure that the worker role can scale to accommodate the increased workload.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 37
You connect to an existing service over the network by using HTTP. The service listens on HTTP
port 80. You plan to create a test environment for this existing service by using an Azure virtual
machine (VM) that runs Windows Server.
The service must be accessible from the public Internet over HTTP port 8080.
You need to configure the test environment.
A. Configure an endpoint to route traffic from port 8080 to port 80.

B. Configure an endpoint to route traffic from port 80 to port 8080.
C. Ensure that the public IP address is configured as a static IP address.
D. Configure the Windows Server firewall to allow incoming and outgoing traffic on port 8080.
E. Configure the Windows Server firewall to allow incoming and outgoing traffic on port 80.
Correct Answer: AE
Section: [none]
Explanation
Explanation:
QUESTION 38
HOTSPOT
You are developing a messaging solution for a financial services company named Adatum. The
solution must integrate an application named Enrollment and an application named Activation.
The Enrollment application is used to enroll new customers. The Activation application is used to
activate accounts for new customers.
You need to ensure that each message that the Enrollment application sends is stored in a queue
for ten minutes before the Activation application uses the message.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 39
An application sends Azure push notifications to a client application that runs on Windows Phone,
iOS, and Android devices.
Users cannot use the application on some devices. The authentication mechanisms that the
application uses are the source of the problem.
You need to monitor the number of notifications that failed because of authentication errors.
Which three metrics should you monitor? Each correct answer presents part of the solution.
A. Microsoft Push Notification Service (MPNS) authentication errors

B. External notification system errors
C. Apple Push Notification Service (APNS) authentication errors
D. Channel errors
E. Windows Push Notification Services (WNS) authentication errors
F. Google Cloud Messaging (GCM) authentication errors
Correct Answer: ACF
Section: [none]
Explanation
Explanation:
QUESTION 40
You deploy an application as a cloud service in Azure.
The application consists of five instances of a web role.
You need to move the web role instances to a different subnet.
Which file should you update?
A. Service definition
B. Diagnostics configuration
C. Service configuration
D. Network configuration
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 41
DRAG DROP
You are converting an existing ASP.NET web application to use the Azure Active Directory (AD)
Access Control service for authentication. The application will authenticate users by using their
Yahoo account credentials.
You need to determine the correct payload for each stage of the authentication process.
What should you do? To answer, drag the appropriate payload format to the correct location on the
dialog box. Each payload format may be used once, more than once, or not at all. You may need to
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 42
correct solution.
After you answer a question in this sections, you will NOT be able to return to it. As a result,
You plan to deploy an application as a cloud service. The application uses a virtual network to
extend your on-premises network into Azure.
You need to configure a site-to-site VPN for cross-premises network connections.
Which two objects should you configure? Each correct answer presents part of the solution.
A. Dynamic routing gateway

B. External-facing IPv6 address
C. VPN gateway
D. External-facing IPv4 address
Correct Answer: AD
Section: [none]
Explanation
Explanation:
A Site-to-Site VPN gateway connection is used to connect your on-premises network to an Azure
virtual network over an IPsec/IKE (IKEv1 or IKEv2) VPN tunnel.
Verify that you have an externally facing public IPv4 address for your VPN device. This IP address
cannot be located behind a NAT.
References: https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-
resource-manager-portal#VPNDevice
QUESTION 43
HOTSPOT
You have a WebJob object that runs as part of an Azure website. The WebJob object uses features
from the Azure SDK for .NET. You use a well-formed but invalid storage key to create the storage
account that you pass into the UploadDataToAzureStorage method.
The WebJob object contains the following code segment. Line numbers are included for reference
only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 44
DRAG DROP
You create a web application. You publish the source code of the web application to a GitHub
repository by using Microsoft Visual Studio. You create an Azure Web App by using the Azure portal.
You must continuously deploy the web application from the GitHub repository website to the Azure
Web App.
You need to deploy the source code of the web application.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 45
A company creates an API and makes it accessible on an Azure Web App. External partners use the
API occasionally. The Web App uses the Standard web hosting plan.
Partners report that the first API call in a sequence of API calls occasionally takes longer than
expected to run. Subsequent API calls consistently perform as expected.
You need to ensure that all API calls perform consistently.
What should you do?
A. Configure the Web App to use the Basic web hosting plan.
B. Enable Always On support.
C. Configure the Web App to automatically scale.
D. Add a trigger to the web.config file for the Web App that causes the website to recycle
periodically.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 46
HOTSPOT
You have a cloud service that runs an external process that is named MyStartupTask.cmd. The
cloud service runs this external process when the web role starts. The external process writes
information to the Windows registry. You set the value of an environment variable named MyID to
the deployment ID for the current web role instance.
The external process must complete writing the information to the Windows registry before the web
role starts to accept web traffic.
You need to configure the cloud service.
How should you complete the relevant markup? To answer, select the appropriate option or options
in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 47
DRAG DROP
You deploy an application as a cloud service to Azure. The application contains a web role to
convert temperatures between Celsius and Fahrenheit.
The application does not correctly convert temperatures. You must use Microsoft Visual Studio to
determine why the application does not correctly convert temperatures.
You need to debug the source code in Azure.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 48
DRAG DROP
Your team uses a proprietary source control product. You use FTP to manually deploy an Azure
website.
You must move your source code from the proprietary source control product to a secure on-
premises Git versioning system. Instead of deploying the website by using FTP, the website must
automatically deploy to Azure each time developers check-in source files.
You need to implement the new deployment strategy.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 49
HOTSPOT
You are developing an Azure cloud service for a company. The cloud service monitors a queue for
incoming messages and then processes invoices based on the contents of these messages.
Some messages are formed incorrectly and cause exceptions. There is no time limit for how long the
service takes to process an individual message.
All messages must be processed at least once by using the ProcessMessage method. Messages
must not be processed more than twice by using the ProcessMessage method. Messages that fail
normal processing must be processed by using the ProcessPoisonMessage method.
You need to configure message processing.
the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 50
HOTSPOT
You deploy a new version of a cloud-service application to a staging slot. The application consists of
one web role. You prepare to swap the new version of the application into the production slot. Your
Azure account has access to multiple Azure subscriptions. You load the Azure PowerShell cmdlets
into the Windows PowerShell command shell. The command shell is NOT configured for certificate-
based authentication.
You must use the Windows PowerShell command window to configure the application.
You need to create five instances of the web role.
How should you configure the relevant Windows PowerShell script? To answer, select the
appropriate option or options in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 51
Which of the following applications would be a good candidate to move to a cloud-based platform?
A. Mission critical financial data

B. Customer Relationship Management (CRM)
C. High-performance computing
D. Database that requires a low latency for indexing
Correct Answer: B
Section: [none]
Explanation
Explanation:
The best place to start is with new applications that are customer-, partner- and employee-facing.
Cloud CRM (or CRM cloud) means any customer relationship management (CRM) technology
where the CRM software, CRM tools and the organization's customer data resides in the cloud and
is delivered to end-users via the Internet.
Cloud CRM typically offers access to the application via Web-based tools (or Web browser) logins
where the CRM system administrator has previously defined access levels across the organization.
Employees can log in to the CRM system, simultaneously, from any Internet-enabled computer or
device. Often, cloud CRM provide users with mobile apps to make it easier to use the CRM on
smartphones and tablets.
References:
https://azure.microsoft.com/en-us/blog/a-key-it-decision-which-apps-to-move-to-the-cloud/
http://www.webopedia.com/TERM/C/crm_cloud.html
QUESTION 52
Companies that are looking to move from capital expenses to operating expenses benefit from cloud
services.
A. True
B. False
Correct Answer: A
Section: [none]
Explanation
Explanation:
"Capex vs. Opex" refers to the fact that stocking your own data center requires capital expenditure,
while using an external cloud service that offers pay-as-you-go service falls into ongoing operating
expenditures: thus the contrast of "Capex vs. Opex."
References: http://www.cio.com/article/2430099/virtualization/capex-vs--opex--most-people-miss-
the-point-about-cloud-economics.html
QUESTION 53
A private cloud is defined as:
A. A deployment model that uses an external cloud to provide host application services that are
Internet accessible.
B. A deployment model that partners with other industry related companies to provide infrastructure
services.
C. A deployment model that uses virtualization technologies to provide infrastructure on demand
within its network.
D. A deployment model that uses an external cloud provider to provide host infrastructure services
that are Internet accessible.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Private cloud is a type of cloud computing that delivers similar advantages to public cloud, including
scalability and self-service, but through a proprietary architecture. Unlike public clouds, which deliver
services to multiple organizations, a private cloud is dedicated to a single organization.
Private cloud expenses include virtualization, cloud software and cloud management tools.
References: http://searchcloudcomputing.techtarget.com/definition/private-cloud
QUESTION 54
Which of the following is the logical progression in internal private cloud adoption?
A. Virtualize, PaaS, IaaS and SaaS

B. SaaS, PaaS, IaaS and Virtualize
C. Virtualize, IaaS, PaaS and SaaS
D. IaaS, PaaS, Virtualize and SaaS
Correct Answer: C
Section: [none]
Explanation
Explanation:
Cloud computing service models arranged as layers in a stack.
References: https://en.wikipedia.org/wiki/Cloud_computing#Service_models
QUESTION 55
A cloud computing vendor is focusing on delivering applications to customers. The goal is to simplify
the deployment of database functionality while removing the need for customers to manage the
operation system and application patching. Which of the following types of solution is the vendor
offering?
A. IT as a Service
B. Infrastructure as a Service
C. Anything as a Service
D. Platform as a Service
E. Software as a Service
Correct Answer: D
Section: [none]
Explanation
Explanation:
PaaS includes infrastructure — servers, storage, and networking — but also middleware,
development tools, business intelligence (BI) services, database management systems, and more.
Note:
References: https://azure.microsoft.com/en-us/overview/what-is-paas/
QUESTION 56
Which of the following describes what is meant by the ITIL Service Strategy component?
A. Defining processes required to manage the solution.

B. Designing the solution to the ITIL specifications.
C. Ensuring changes are designed to meet customer expectations.
D. Understanding the intended customer and what services are required.
Correct Answer: D
Section: [none]
Explanation
Explanation:
The objective of ITIL Service Strategy is to decide on a strategy to serve customers. Starting from an
assessment of customer needs and the market place, the Service Strategy lifecycle stage
determines which services the IT organization is to offer and what capabilities need to be developed.
Its ultimate goal is to make the IT organization think and act in a strategic manner.
References: http://wiki.en.it-processmaps.com/index.php/ITIL_Service_Strategy
QUESTION 57
Using https instead of http for accessing a cloud service is considered more secure.
A. True
B. False
Correct Answer: A
Section: [none]
Explanation
Explanation:
HTTPS (also called HTTP over TLS, HTTP over SSL, and HTTP Secure) is a protocol for secure
communication over a computer network which is widely used on the Internet.
References: https://en.wikipedia.org/wiki/HTTPS
QUESTION 58
A company is designing a new web-based software application that must be highly available and
resistant. Which of the following is the BEST environment for the application?
A. The primary instance of the application will be locally hosted with a weekly copy of the instance
send to a cloud service provider.
B. The primary instance of the application will be locally hosted with a nightly file-level backup being
performed to an off-site location.
C. The primary instance of the application will be running a cloud service provider’s hosted
environment with a continuous backup to the company’s local infrastructure.
D. The primary instance of the application will be locally hosted with a nightly copy of the instance
sent to a client service provider.
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 59
Which of the following are the MOST important benefits of a cloud computing solution for an
application development provider? (Select two.)
A. Reduced training time for new developers

B. Reduced storage requirements.
C. Reduced complexity for users.
D. Reduced bandwidth usage.
E. Reduced cost.
F. Reduced development timeframe.
Correct Answer: EF
Section: [none]
Explanation
Explanation:
The biggest promise of Azure-based applications is the ability to write them to scale as needed in
real-time. Customers will therefore only use the amount of resources they need, rather than
budgeting a set amount of resources that can overtax or underutilize their current setup.
References: http://searchcloudcomputing.techtarget.com/tutorial/An-introduction-to-developing-for-
Microsoft-Azure
QUESTION 60
Which of the following virtualization characteristics allows the use of different types of physical types
or physical servers?
A. Security
B. Hardware independence
C. Scalability
D. Variable costs
Correct Answer: B
Section: [none]
Explanation
Explanation:
Virtualization is a conversion process that translates unique IT hardware into emulated and
standardized software-based copies. Through hardware independence, virtual servers can easily be
moved to another virtualization host, automatically resolving multiple hardware-software
incompatibility issues. As a result, cloning and manipulating virtual IT resources is much easier than
duplicating physical hardware.
References: http://whatiscloud.com/virtualization_technology/hardware_independence
QUESTION 61
Which of the following cloud computing services requires the MOST involvement from a company’s
in-house staff?
A. IaaS
B. MaaS
C. PaaS
D. SaaS
Correct Answer: A
Section: [none]
Explanation
Explanation:
Infrastructure as a service (IaaS) is an instant computing infrastructure, provisioned and managed
over the Internet. Quickly scale up and down with demand, and pay only for what you use.
IaaS helps you avoid the expense and complexity of buying and managing your own physical
servers and other datacenter infrastructure. Each resource is offered as a separate service
component, and you only need to rent a particular one for as long as you need it. The cloud
computing service provider manages the infrastructure, while you purchase, install, configure, and
manage your own software—operating systems, middleware, and applications.
References: https://azure.microsoft.com/en-us/overview/what-is-iaas/
QUESTION 62
As part of a cloud provider’s services, customers can provision a new virtual machine as needed
without human interaction with the provider. The scenario is BEST described by which of the
following cloud characteristics?
A. On-demand self-service
B. Measured service
C. Broad network access
D. Rapid elasticity
Correct Answer: A
Section: [none]
Explanation
Explanation:
On-demand self service refers to the service provided by cloud computing vendors that enables the
provision of cloud resources on demand whenever they are required. In on-demand self service, the
user accesses cloud services through an online control panel.
On-demand self service resource sourcing is a prime feature of most cloud offerings where the user
can scale the required infrastructure up to a substantial level without disrupting the host operations.
References: https://www.techopedia.com/definition/27915/on-demand-self-service
QUESTION 63
A business has recently implemented a hybrid cloud federated solution, which will allow it to rapidly
and dynamically allocate recourses during high demand, and quickly implement its Disaster
Recovery Plan (DRP) and Continuity of Operations (COOP). Given this implementations, the IT
director is mostly likely concerned about:
A. maintaining strategic flexibility

B. reducing OPEX allocations
C. hiring additional IT staff
D. eliminations security risks
Correct Answer: D
Section: [none]
Explanation
Explanation:
Initially, the differences between Disaster Recover and Business Continuity should be understood. In
comparison they are very similar in that they are (or should be) detailed plans to prepare an
organization for events in which a situation presents itself which can cause internal systems failures,
or a disruption of business systems in which they are no longer able to function to meet the
requirements to perform day to day tasks. These situations almost always result in loss of revenue,
and in some cases, loss of client base. Where these plans differ is in the main concept topic for
which they prepare. Business Continuity Plans generally focus on the continuation of business
services in the event of any type of interruptions whether its IT based or other. Disaster Recover
Plans often refer to a company’s strategy if something happens to crucial business data, and how to
restore / recover that data (generally in the shortest amount of time possible).
References: https://stumpj.wordpress.com/2010/10/18/coop-and-drp-what-is-the-difference/
QUESTION 64
Which of the following is the primary difference between private and public cloud?
A. Tenancy of the cloud

B. Management of the cloud
C. Service model of the cloud
D. Locations on the cloud
Correct Answer: D
Section: [none]
Explanation
Explanation:
A private cloud hosting solution, also known as an internal or enterprise cloud, resides on company’s
intranet or hosted data center where all of your data is protected behind a firewall.
The main differentiator between public and private clouds is that you aren’t responsible for any of the
management of a public cloud hosting solution. Your data is stored in the provider’s data center and
the provider is responsible for the management and maintenance of the data center.
References: https://www.expedient.com/blog/private-vs-public-cloud-whats-difference/
QUESTION 65
After migrating the company’s entire datacenter infrastructure to a private IaaS solution, while at the
same time maintaining the current network and server logical configuration, the IT director eliminated
50% of the IT engineering staff. The remaining staff has now shifted focus from a daily server
maintenance and upkeep role, to more of a service provisioning, performance, and reporting role.
Which of the following was MOST impacted by this migration?
A. Service design
B. Service strategy
C. Service operation
D. Service transitions
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 66
A small company with an in-house IT staff is considering implementing a new technology that their
current IT staff is unfamiliar with. The company would like to implement the new technology as soon
as possible but does not have the budget to hire new IT staff. Which of the following should the
company consider?
A. Cloud computing
B. New hardware
C. Outsourcing
D. Virtualization
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 67
A company wants to implement an internal virtualized infrastructure to provide its employees with on
demand storage which will be the accessible through a web interface over the public Internet. This is
an example of which of the following?
A. Public cloud
B. Community cloud
C. Hybrid cloud
D. Private cloud
Correct Answer: C
Section: [none]
Explanation
Explanation:
A hybrid cloud is an integrated cloud service utilizing both private and public clouds to perform
distinct functions within the same organization.
QUESTION 68
Which of the following enables hardware independence?
A. In-sourcing
B. Outsourcing
C. Virtualization
D. Abstraction
Correct Answer: C
Section: [none]
Explanation
Explanation:
Virtualization is a conversion process that translates unique IT hardware into emulated and
References: http://whatiscloud.com/virtualization_technology/hardware_independence
QUESTION 69
Which of the following are the common elements of platform as a service and software as a service?
(Select two.)
A. Both allow the OS to be patched by the customer.

B. Both take advantage of incremental scalability.
C. Both require the customer to maintain the hardware.
D. Both provide granular access to the backend storage.
E. Both implement hardware abstraction.
Correct Answer: BE
Section: [none]
Explanation
Explanation:
QUESTION 70
When using SaaS, the cloud computing vendor is responsible to maintain which of the following?
A. Client infrastructure
B. Client firewall
C. Updates and licenses.
D. Workstation OS version.
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 71
Which of the following is the MOST significant risk to business continuity when using an external
cloud service provider?
A. Unauthorized access to customer data

B. Vendor being purchased
C. Virtual server failure
D. Vendor going out of business
Correct Answer: A
Section: [none]
Explanation
Explanation:
If your application stores and retrieves very sensitive data, you might not be able to maintain it in the
cloud. Similarly, compliance requirements could also limit your choices.
References: http://cloudacademy.com/blog/cloud-migration-benefits-risks/
QUESTION 72
Which of the following is an example of SaaS?
A. Offshore help desk support

B. Hosted database software and development tools
C. Hosted email software
D. Hosted network hardware
Correct Answer: C
Section: [none]
Explanation
Explanation:
If you’ve used a web-based email service such as Outlook, Hotmail, or Yahoo! Mail, then you’ve
already used a form of SaaS. With these services, you log into your account over the Internet, often
from a web browser. The email software is located on the service provider’s network, and your
messages are stored there as well. You can access your email and stored messages from a web
browser on any computer or Internet-connected device.
References: https://azure.microsoft.com/en-us/overview/what-is-saas/
QUESTION 73
Cloud computing relies heavily on which of the following virtualization characteristics? (Select two.)
A. User federation
C. Simplistic setup
D. Scalable resources
E. Information sharing
Correct Answer: BD
Section: [none]
Explanation
Explanation:
B: Virtualization is a conversion process that translates unique IT hardware into emulated and
D: Infrastructure as a Service (IaaS) is a form of cloud computing that provides virtualized computing
resources over the Internet. IaaS platforms offer highly scalable resources that can be adjusted on-
demand.
References:
http://whatiscloud.com/virtualization_technology/hardware_independence
http://searchcloudcomputing.techtarget.com/definition/Infrastructure-as-a-Service-IaaS
QUESTION 74
Following an IT Service Management lifecycle approach, a Chef Information Officer would take
which of the following paths to implement a cloud solution?
A. Choose the SaaS provider, Design the application; Choose whether to develop the service
application in-house or outsource; Operate the service application in the cloud.
B. Decide whether to implement on the cloud; Choose a XaaS provider, Design the application;
Choose where to develop the service application; Operate the service application in the cloud.
C. Decide whether to implement the application on the cloud; Choose an IaaS provider; Choose
whether to develop the service in-house; Operate the Service application in the cloud.
D. Strategize which IaaS provider to use; Design the application; Transition processes to the cloud;
Operate the service application in the cloud.
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 75
An organization wants to host a critical application on two redundant leased servers located on the
ISP’s datacenter. Which of the following is this an example of?
A. PaaS
B. IaaS
C. Public cloud
D. SaaS
Correct Answer: B
Section: [none]
Explanation
Explanation:
Infrastructure as a service (IaaS) is an instant computing infrastructure, provisioned and managed
over the Internet.
IaaS helps you avoid the expense and complexity of buying and managing your own physical
servers and other datacenter infrastructure. Each resource is offered as a separate service
component, and you only need to rent a particular one for as long as you need it. The cloud
computing service provider manages the infrastructure, while you purchase, install, configure, and
manage your own software—operating systems, middleware, and applications.
References: https://azure.microsoft.com/en-us/overview/what-is-iaas/
QUESTION 76
A cloud usage metering scheme allows for which of the following customer chargeback alternatives?
A. Cost allocation
B. Cost amortization
C. Shared cost
D. Direct cost
Correct Answer: D
Section: [none]
Explanation
Explanation:
CHARGEBACK METHODS
A range of approaches have been developed for implementing chargeback in an organization, as
summarized in the figure below. The degree of complexity, degree of difficulty, and cost to
implement decreases from the top of the chart [service-based pricing (SBP)], to the bottom [high-
level allocation (HLA)]. HLA is the simplest method; it uses a straight division of IT costs based on a
generic metric such as headcount. Slightly more effort to implement is low-level allocation (LLA),
which bases consumer costs on something more related to IT activity such as the number of users
or servers. Direct cost (DC) more closely resembles a time and materials charge but is often tied to
headcount as well.
Figure, Methods for chargeback allocation.

References: https://journal.uptimeinstitute.com/it-chargeback-drives-efficiency/
QUESTION 77
From a risk assessment perspective, which of the following is MOST important to acquire and review
before a business integrates cloud computing into its existing environment?
A. Cloud provider DRP and COOP

B. The time to market expectation
C. The total cost of ownership
D. The company original RFP
Correct Answer: A
Section: [none]
Explanation
Explanation:
A disaster recovery plan (DRP) - sometimes referred to as a business continuity plan (BCP) or
business process contingency plan (BPCP) - describes how an organization is to deal with potential
disasters.
QUESTION 78
Which of the following describes the commonality between cloud computing and outsourcing?
A. Shift from CAPEX to OPEX

B. Reduced compliance cost
C. Simplified security management
D. Reduced system architecture complexity.
Correct Answer: A
Section: [none]
Explanation
Explanation:
"Capex vs. Opex" refers to the fact that stocking your own data center requires capital expenditure,
while using an external cloud service that offers pay-as-you-go service falls into ongoing operating
expenditures: thus the contrast of "Capex vs. Opex."
References: http://www.cio.com/article/2430099/virtualization/capex-vs--opex--most-people-miss-
the-point-about-cloud-economics.html
QUESTION 79
Virtual Desktop Interface (VDI) will present challenges for the network administrator as they move
their users to the cloud. Which of the following would be considered a major challenge?
A. Developing a backup environment for the end user

B. Troubleshooting the users’ applications
C. Supporting multiple devices (e.g. tablets, thin clients)
D. Centralizing the applications
Correct Answer: C
Section: [none]
Explanation
Explanation:
References: https://msdn.microsoft.com/en-us/library/dn903170.aspx
QUESTION 80
A company Chef Information Officer (CIO) who wants to ensure rapid elasticity for the company’s
cloud solution would MOST likely choose which of the following types of cloud?
A. Public cloud
B. Private community cloud
C. Private cloud
D. Community cloud
Correct Answer: C
Section: [none]
Explanation
Explanation:
Rapid elasticity is a cloud computing term for scalable provisioning, or the ability to provide scalable
services.
Software that can scale in a private cloud faces two security related issues:
Although the private cloud infrastructure can enable rapid elasticity in the supply of virtual
resources, hosted applications and services must be designed correctly if they are to function
securely when they are scaled out.
Hosted applications and services that initiate scaling requests automatically based on monitored
demand or a timetable must perform these operations without impacting their own or other
services availability within the cloud.
References: http://social.technet.microsoft.com/wiki/contents/articles/6810.private-cloud-security-
challenges-rapid-elasticity.aspx
QUESTION 81
Consumption statistics for individual cloud service offerings is used by which of the following ITIL
processes?
A. Supplier management
B. Continuous service improvement
C. Service level management
D. Information security management
Correct Answer: C
Section: [none]
Explanation
Explanation:
ITIL defines Service Management as “a set of specialized organisational capabilities for providing
value to customers in the form of services”.
The managed service provider will intermediate between the cloud service provider and consumer,
aligning the two and ensuring minimal service disruptions.
ITIL Service Level Management aims to negotiate Service Level Agreements with the customers and
to design services in accordance with the agreed service level targets. Service Level Management is
also responsible for ensuring that all Operational Level Agreements and Underpinning Contracts are
appropriate, and to monitor and report on service levels.
References:
https://blog.kloud.com.au/2016/04/06/consumption-based-service-management/
http://wiki.en.it-processmaps.com/index.php/Service_Level_Management
QUESTION 82
An application development company is considering implementing a cloud solution to help improve
time to market with new software upgrades. The existing application has been in use by customers
for several years and contains a large amount of code. Which of the following types of clouds would
be BEST for this company to implement?
A. IaaS
B. XaaS
C. PaaS
D. SaaS
Correct Answer: C
Section: [none]
Explanation
Explanation:
Platform as a service (PaaS) is a complete development and deployment environment in the cloud,
with resources that enable you to deliver everything from simple cloud-based apps to sophisticated,
cloud-enabled enterprise applications. You purchase the resources you need from a cloud service
provider on a pay-as-you-go basis and access them over a secure Internet connection.
Like IaaS, PaaS includes infrastructure — servers, storage, and networking — but also middleware,
development tools, business intelligence (BI) services, database management systems, and more.
PaaS is designed to support the complete web application lifecycle: building, testing, deploying,
managing, and updating.
PaaS allows you to avoid the expense and complexity of buying and managing software licenses,
the underlying application infrastructure and middleware or the development tools and other
resources. You manage the applications and services you develop, and the cloud service provider
typically manages everything else.
QUESTION 83
A critical internal IT server provisioning process is under review and the IT manager is considering
moving the process to the cloud. The IT staff has selected the cloud provider and must now migrate
the process. Which of the following MUST the IT staff do to ensure the transaction meets the IT
manager’s requirements?
A. Pilot the process using cloud resources and perform a comprehensive test.
B. Survey the business users and implement the solution that received the most positive feedback.
C. Ask the server administrator to sign off and approve the implementation plan.
D. Shift the current process to the cloud since the SLA will guarantee 99.999% availability.
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 84
One of the strategic reasons to source component technology purchases from multiple providers is
to:
A. Avoid vendor lock-in.

B. Influence governmental organizations.
C. Keep vendor prices down.
D. Encourage vendor control.
Correct Answer: A
Section: [none]
Explanation
Explanation:
When it comes to building applications for the cloud, John Gossman, an employee of Microsoft,
thinks agility and portability are essential. "You don't want to get locked in too much to a particular
vendor, strategy, technology, whatever," he says.
Likewise, he added, you aren't likely to last long if your plan is to pick a single public cloud vendor
and host everything there.
References: http://www.theregister.co.uk/2014/12/06/microsoft_linux_and_the_cloud/
QUESTION 85
A graphic design company regularly runs out of storage space on its file servers due to the large size
of its customer artwork files. The company is considering migrating to cloud computing to solve this
problem. Which of the following characteristics of cloud computing is the MOST beneficial reason
the company should implement a cloud solution?
A. Scalability
B. Security
C. Variable costs
D. Hardware independence
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 86
Which of the following will allow an organization to integrate internal identity management services
with a cloud provider in order to provide single sign-on across the internal and cloud-hosted
environments?
A. Virtualization
B. Federation
C. Role-based authentication
D. Outsourcing
Correct Answer: B
Section: [none]
Explanation
Explanation:
Azure AD supports three different ways to sign in to applications:

Federated Single Sign-On enables applications to redirect to Azure AD for user authentication
instead of prompting for its own password. This is supported for applications that support
protocols such as SAML 2.0, WS-Federation, or OpenID Connect, and is the richest mode of
single sign-on.
Password-based Single Sign-On
Existing Single Sign-On
References: https://azure.microsoft.com/en-us/documentation/articles/active-directory-
appssoaccess-whatis/
QUESTION 87
Which of the following is a potential advantage of using Storage as a Service?
A. Data is accessible when the Internet is not functioning

B. In-house IT staff controls all data
C. Increase in encryption technologies
D. Decrease in IT management of the platform
Correct Answer: D
Section: [none]
Explanation
Explanation:
One advantages of SaaS is that is makes it easy to “mobilize” your workforce because users can
access SaaS apps and data from any Internet-connected computer or mobile device. You don’t need
to worry about developing apps to run on different types of computers and devices because the
service provider has already done so. In addition, you don’t need to bring special expertise onboard
to manage the security issues inherent in mobile computing. A carefully chosen service provider will
ensure the security of your data, regardless of the type of device consuming it.
QUESTION 88
Which of the following describes the difference between SaaS and IaaS?
A. SaaS defines a standard while IaaS implements the standard.

B. SaaS enables the software developer while IaaS provides the specifications.
C. SaaS provides applications while IaaS provides equipment.
D. SaaS implements security while IaaS provides information.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Software as a service (SaaS) allows users to connect to and use cloud-based apps over the
Internet.
QUESTION 89
Locating datacenters close to target markets is the result of which of the following strategic
initiatives?
A. Geoproximity
B. Geodiversity
C. Geography
D. Localization
Correct Answer: A
Section: [none]
Explanation
Explanation:
Azure allows specification of geographical regions or affinity groups. Geographical regions are
related to the data centers, like North Central US, South Central US, Anywhere US, East Asia, North
Europe, and so on. The list of options will grow as more data centers are added.
Instead of selecting a region, it is possible to specify an affinity group. Affinity groups are hints to
Azure that essentially state that everything within the group should be as close in proximity as Azure
will allow. That usually means keeping items within the same data center, which besides having the
benefit of geo-location, can sometimes offer performance improvements for communication.
References: https://docs.microsoft.com/en-us/azure/load-balancer/load-balancer-overview
QUESTION 90
A company regularly doubles the number of employees ever the summer by hiring on temporary
stuff. The company currently pays the same price every month for its email software, equal to the
maximum number of employees on staff who have email addresses. The company would like to only
pay for the number of active email addresses and is considering migrating to a cloud solution. Which
of the following characteristics of cloud computing is the MOST beneficial reason the company
should implement a cloud solution?
A. Scalability
C. Variable costs
D. Security
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 91
Which of the following is a benefit of public cloud computing?
A. Enhances fixed expenditures for hardware and software

B. Contributes to the quality of user input data
C. Reduces OPEX costs for application and databases
D. Adds flexibility and agility to enterprise architecture
Correct Answer: D
Section: [none]
Explanation
Explanation:
Public cloud computing offers greater flexibility, agility, and scalability.
QUESTION 92
Which of the following is the cloud characteristic that speeds up development, deployment and
overall time of market?
A. Rapid elasticity
B. Cloud bursting
C. Universal access
D. Network pooling
Correct Answer: A
Section: [none]
Explanation
Explanation:
Rapid elasticity is a cloud computing term for scalable provisioning, or the ability to provide scalable
services. Experts point to this kind of scalable model as one of five fundamental aspects of cloud
computing.
Rapid elasticity allows users to automatically request additional space in the cloud or other types of
services.
References: https://www.techopedia.com/definition/29526/rapid-elasticity
QUESTION 93
A company would like to move an application to the cloud which resides on a single physical server
in their datacenter. The server has two drives, one of which hosts operating system, and the other
hosts the application data. The operating system has been showing errors recently and the
application data was corrupted last Friday at 4:00PM. Data is backed up every day at 1:00PM.
Which of the following would be the BEST option for migrating this application to the cloud?
A. Setup a server in the cloud, install an operating system, install the application and copy the data
to the cloud server from last Friday’s backup.
B. Setup a server in the cloud, install an operating system, install and configure the application and
copy the data to the cloud server from last Thursday’s backup.
C. Clone or P2V the server with both drivers to the cloud platform.
D. Clone or P2V the server with the application to the cloud platform and copy the operating system
to the cloud server.
Correct Answer: A
Section: [none]
Explanation
Explanation:
Use the latest backup of the application data.
QUESTION 94
An existing capability is being migrated into the cloud. Capacity management issues have been
noticed in the past and an exercise is being performed to calculate current and future volumes. In
which of the following lifecycle phases is this likely to be performed?
A. Operation
B. Design
C. Transition
D. Strategy
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 95
An entrepreneur has decided to open an e-commerce site to complement their retail store. After
researching their options, they decide that a PaaS solution will be sufficient. To reduce upfront cost,
the entrepreneur intends to build the site themselves. Which of the following skill-tests will be
needed?
A. Firewall Administration
B. Web-Server Administration
C. Security standard development
D. Application development
Correct Answer: D
Section: [none]
Explanation
Explanation:
Platform as a service (PaaS) is a complete development and deployment environment in the cloud,
with resources that enable you to deliver everything from simple cloud-based apps to sophisticated,
cloud-enabled enterprise applications.
PaaS allows you to avoid the expense and complexity of buying and managing software licenses,
the underlying application infrastructure and middleware or the development tools and other
resources. You manage the applications and services you develop, and the cloud service provider
typically manages everything else.
QUESTION 96
An organization is planning to host a number of its critical applications in the cloud. Which of the
following is the Best way to gain a broad assurance of the cloud provider’s security posture?
A. A review that includes interviewing key security stakeholders and identifying the key controls that
they operate.
B. A review that includes security policies, evidence of the controls, physical site assessments and
vulnerability scanning.
C. A review that includes the right to audit on a yearly basis and review of the security clauses in the
contract.
D. A review that includes security applications, external audits, intrusion detection and firewall policy
reviews.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 97
One major impact that cloud computing has had on the application development process is the need
for greater:
A. security
B. speed
C. isolation
D. standardization
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 98
Why is it important to know the physical location for a governmental cloud based storage solution?
A. Data stored in other countries could be accessed by the local government.

B. Data stored in other countries could slow down application response.
C. Data stored in other countries could impact access latency.
D. Data stored in other countries could reduce revenue for the originating country.
Correct Answer: A
Section: [none]
Explanation
Explanation:
With Azure Government all data, applications, and hardware reside in the continental United States.
References: https://azure.microsoft.com/en-us/overview/clouds/government/
QUESTION 99
Which of the following should be measured with a direct cost chargeback method?
A. Power and cooling consumed

B. CPU cycles used
C. Technical staff
D. Square footage cost of the facility
Correct Answer: A
Section: [none]
Explanation
Explanation:
CHARGEBACK METHODS
A range of approaches have been developed for implementing chargeback in an organization, as
summarized in the figure below. The degree of complexity, degree of difficulty, and cost to
implement decreases from the top of the chart [service-based pricing (SBP)], to the bottom [high-
level allocation (HLA)]. HLA is the simplest method; it uses a straight division of IT costs based on a
generic metric such as headcount. Slightly more effort to implement is low-level allocation (LLA),
which bases consumer costs on something more related to IT activity such as the number of users
or servers. Direct cost (DC) more closely resembles a time and materials charge but is often tied to
headcount as well.
References: https://journal.uptimeinstitute.com/it-chargeback-drives-efficiency/
QUESTION 100
An organization is moving web server clusters to a public IaaS cloud while keeping database servers
in the company owned datacenter. The organization will continue utilizing the internal service desk to
manage the application. Which of the following ITIL processes will plan the move?
A. Release Management
B. Incident Management
C. Problem Management
D. Change Management
Correct Answer: D
Section: [none]
Explanation
Explanation:
Change Management is an IT service management discipline. The objective of change management
in this context is to ensure that standardized methods and procedures are used for efficient and
prompt handling of all changes to control IT infrastructure, in order to minimize the number and
impact of any related incidents upon service.
References: https://en.wikipedia.org/wiki/Change_management_(ITSM)
QUESTION 101
After you answer a question in this sections, you will NOT be able to return to it. As a result, these
You are administrating an Azure environment for your company. You plan to deploy virtual machines
(VMs) for a mobile application. You have the following requirements:
Ensure that all VMs use the Standard D3 size.
Ensure that at least two of the four servers must be available at all times.
Ensure that users of the application do not experience downtime or loss of connection.
You need to configure four VMs for application development.
Solution: Create a Virtual Machine Scale Set (VMSS) that has an instance count of 4.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 102
Solution: You create an availability set that has two fault domains and two update domains by using
the Azure portal. You create four virtual machines and assign the new availability set to each VM.

A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 103
Solution: Create two resource groups by using the Azure portal. Create four VMs. Assign two VMs to
the first resource group and two to the second group.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 104
DRAG DROP
Your team uses a proprietary source control product. You use FTP to manually deploy an Azure
Web App.
You must move your source code from the proprietary source control product to a secure on-
premises Git versioning system. Instead of deploying the website by using FTP, the website must
automatically deploy to Azure each time developers check-in source files.
You need to implement the new deployment strategy.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/aspnet/core/publishing/azure-continuous-deployment
QUESTION 105
You are building an ASP.NET Azure Web App that is built from source code on GitHub. Automatic
deployment is used for integration testing. The web.config file has settings that are updated during
development deployments by using a TransformXml MSBuild task.
The settings in the web.config must be set to specific values during integration testing.
You need to ensure that the web.config is updated when the Web App is deployed to Azure.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Add the integration settings and values to the ServiceDefinition.csdef and

ServiceConfiguration.csfg files.
B. In Azure, create a new deployment slot namedIntegration.
C. Create an XML Document Transform (XDT) file namedweb.Integration.configthat converts the
values to the integration test values.
D. In Azure, add a tag with the keyEnvironmentand the valueIntegration.
Correct Answer: BC
Section: [none]
Explanation
Explanation:
QUESTION 106
DRAG DROP
You are developing an ASP.NET Software-as-a-Service (SaaS) application that stores database
credentials in Azure Key Vault.
When the application encounters an error, information about the error is shown to the end user for
support purposes. Information shown includes:
- stack trace
- application version and release date
- configuration values
Database credentials must not be accessible to end users.
You need to ensure that end users cannot view database credentials.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 107
You have an application that stores data in Azure Cosmos DB. You have the following class:
You need to determine which consistency level to apply to this code.

Which three consistency levels can you use? Each correct answer presents a complete solution.
A. Bounded Staleness
B. Session
C. Consistent Prefix
D. Strong
E. Eventual
Correct Answer: BCE

Section: [none]
Explanation
Explanation:
QUESTION 108
DRAG DROP
You are using Microsoft Visual Studio to develop an App Service Web App named WebApp.
The app must collect the statistics and details on the application dependencies.
You need to set up, configure, and validate monitoring using Application Insights.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/application-insights/app-insights-asp-net-trace-logs
QUESTION 109
A. Use Azure PowerShell cmdlets to change the name of the availability set to the same name for
all of the VMs.
B. Use the Azure portal to restart each VM.
C. In the Azure Portal, create an image from a virtual hard disk (VHD) for each VM by running
Sysprep.
D. For each VM, use Azure PowerShell cmdlets to enable the VM Agent and the VMAccess VM
extensions.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 110
You connect to an existing service over the network by using HTTP. The service listens on HTTP
port 80. You plan to create a test environment for this existing service by using an Azure virtual
machine (VM) that runs Windows Server.
The service must be accessible from the public Internet over HTTP port 8080.
You need to configure the test environment.
A. Configure a Network Security Group to route traffic from port 8080 to port 80
B. Configure a Network Security Group to route traffic from port 80 to port 8080.
C. Ensure that the public IP address is configured as a static IP address.
D. Configure the Windows Server firewall to allow incoming and outgoing traffic on port 8080.
E. Configure the Windows Server firewall to allow incoming and outgoing traffic on port 80.
Correct Answer: AE
Section: [none]
Explanation
Explanation:
QUESTION 111
DRAG DROP
You plan to run SQL Server Enterprise Edition by using an Azure virtual machine (VM).
You must configure the VM to run all SQL Server high volume workloads.
You need to optimize SQL Server performance for workloads that run on the new VM.
What should you do? To answer, drag the appropriate optimization technique to the correct
configuration option. Each optimization technique may be used once, more than once, or not at all.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sql/virtual-machines-windows-sql-
performance
QUESTION 112
HOTSPOT
You are administering an Azure environment for your company that requires multiple virtual
machines (VMs) for a production application. You have the following requirements:
Two VMs are required for application data.
Seven VMs are required for image processing.
VM sizes should be set to Standard D2.
Only two image processing servers can be rebooted at a time.
You need to configure an availability set for the image processing VMs.
How many fault domain and update domains should you implement? To answer, configure the
appropriate options in the dialog box in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/manage-availability
QUESTION 113
DRAG DROP
You have six Ubuntu Linux virtual machines (VMs) that run a Hadoop cluster on Azure. All VMs were
deployed by using Azure Resource Manager (ARM) templates and Azure PowerShell cmdlets. One
of the VMs runs a custom web user interface that allows users to examine the processing jobs within
the Hadoop cluster. You are planning a backup strategy for long-term retention and recovery that
includes geo-replication.
The backup and recovery solution must be cost effective.

You need to backup all VMs.
Which five actions should you perform in sequence? To answer, move the appropriate actions from
the list of actions in the answer area and arrange them in the correct order.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 114
HOTSPOT
You administer an Azure environment that contains multiple virtual machines (VMs).
You need to view and retrieve diagnostic logs for all VMs.
Which storage type should you use for each data source? To answer, select the appropriate options
in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/cloud-services/cloud-services-dotnet-diagnostics-storage
QUESTION 115
HOTSPOT
You deploy a cloud service that reads and processes orders from a queue by using a worker role.
The service includes a C# class named OrderProcessor.
Your organization is moving all Azure resources to use Azure Resource Manager (ARM) templates.
You must migrate the code to Service Fabric. You establish a new Service Fabric cluster to deploy
the updated code. You migrate all settings from the ServiceConfiguration.cscfg to a new
Settings.xml file that each Service Fabric instance will use.
You need to update the code for the OrderProcessor class.
answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-cloud-services-migration-worker-
role-stateless-service
QUESTION 116
You have an existing virtual network with a gateway that is deployed to Azure. You delete all objects
that are deployed to the virtual network.
You use the Azure portal to delete the virtual network, but the deletion fails.
You need to determine the cause of the error.
What should you do first?
A. Delete any local network settings and DNS servers.

B. Save all settings.
C. Delete all point-to-site virtual network connections.
D. Delete the virtual network gateway.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 117
You have an on-premises Windows Identity Foundation (WIF) application. A section of the
application uses resources that are hosted in Azure. The application uses Azure Active Directory
(Azure AD) to control access to the section of the application that accesses Azure resources. You
synchronize all user principals to Azure Active Directory.
The application has the following requirements:

Use Windows integrated credentials for single sign-on (SSO).
Use Azure Active Directory as an identity provider.
You need to create an endpoint to use for web sign-in to the secured section of the application.
Which endpoint should you use?
A. SAML-P
B. OAuth
C. Azure AD Graph API
D. WS-Federation
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 118
DRAG DROP
You plan to connect a customer’s on-premises infrastructure to Azure. You have several
connections available.
You have the following requirements:

All connections must be secure.
All on-premises solutions must support hybrid functionality.
You need to recommend connectivity solutions.
Which solutions should you recommend? To answer, drag the appropriate connection strategy to the
correct connection. Each connection strategy may be used once, more than once, or not at all. You
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 119
DRAG DROP
You are developer working on a project that will be deployed to Azure. The project includes a local
SQL Server database.
You need to migrate the database to Azure SQL.
How should you complete the code segment? To answer, drag the appropriate code segment to the
correct location or locations. Each code segment may be used once, more than once, or not at all.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 120
DRAG DROP
You need to implement the StartNotify method in MainPage.xaml.cs to enable the receiving of
notifications.
How should you complete the code? To answer, drag the appropriate code segments to the correct
locations. Each code segment may be used once, more than once, or not at all. You may need to
NOTE: Each correct selection is worth point.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 121
DRAG DROP
You need to add code at line CC63 to ensure that the Interaction Agent is invoked.

Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 122
HOTSPOT
You need to implement exception handling for the ModifyCommentText method in the WikiAgent
class.
How should you complete the code? To answer, select the appropriate options in the answer area.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 123
DRAG DROP
You need to add code to CommentController.cs to enable moderation of comments.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 124
DRAG DROP
You are developing an ASP.NET Web App that makes a large number of calls to Azure Blob
storage.
You observe that the app suffers from Azure Blob storage throttling.
You need to resolve throttling failures when loading data from Azure Blob storage.
What should you do? To answer, drag the appropriate code segment to the correct location. Each
between panes or scroll to view content
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 125
HOTSPOT
You are developing a multitenant application that uses Azure Search services. You have the
following tenants:
You must minimize costs associated with implementing any solution. The cost model must be
predictable.
You need to design the search experience for the application.
Which Azure Search pattern should you use for each tenant? To answer, select the appropriate
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 126
You deploy a Virtual Machine Scale Set (VMSS) named CorpWebVMSS to Azure by using Azure
PowerShell and set the instance count to 1. The VMSS includes a storage account, load balancer,
public IP address. and six Standard_A1 Windows virtual machines (VMs) that run Internet
Information Services (IIS). All components are deployed to a resource group named CorpWebRG.
You must increase the instance count to support the increased load on IIS.
You need to manually scale out the number of VMs in the scale set to 5.
Solution: You run the following command by using the Azure Command-Line Interface (CLI):
azure vmss scale -g CorpWebRG -n CorpWebVMSS -c 5
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
QUESTION 127
Solution: You deploy the following JSON template by using Azure PowerShell:
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-scale-sets-
autoscale-overview
QUESTION 128
Solution: You run the following Azure PowerShell commands:
$vmss = Get-AzureRmVmss -ResourceGroupName CorpWebRG –VMScalesSetName

CorpWebVMSS
$vmss.Sku.Capacity = 5
Update-AzureRmVmss -ResourceGroupName CorpWebRG -Name CorpWebVMSS -
VirtualMachineScaleSet $vmss
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 129
You manage API management policies in Azure.
You attempt to add a policy that is marked as unavailable.
You need to ensure that you can add the desired policy.
What should you do?
A. Modify the API Management policy definition.

B. Enable custom caching for the API Management service.
C. Modify the scope of the API policy.
D. Integrate the API Management service with the Azure Event Hub service.
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 130
DRAG DROP
Contoso has an Azure DocumentDB database that contains contact information for customers.
You have a collection named Companies. The collection includes the following data:
You plan to collect the following information for contacts that are located in the South region only:
Company name
Given name
Surname
You need to create the query.
Which three Transact-SQL segments should you use to develop the solution? To answer, move the
appropriate Transact-SQL segments from the list of Transact-SQL segments to the answer area and
arrange them in the correct order.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 131
You manage an on-premises server that runs Windows Server 2016. The server has a disk that
contains 4 terabytes (TB) of data and thousands of files. None of the individual files are larger than 1
TB. You plan to create a virtual machine (VM) in Azure to process the workload currently handled by
the on-premises server.
You need to create a storage location for the data.
What should you do?
A. Create premium storage account. Use a D-series VM.

B. Configure a StorSimple virtual array. Configure the VM to use the array with the SMB protocol.
C. Add a new table storage account. Update the VM workload to use the table storage.
D. Add a singleﬁle share to the VM. In the VM operating system, assign a drive letter.
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 132
DRAG DROP
You have six Ubuntu Linux virtual machines (VMS) that run a Hadoop cluster on Azure. One of the
VMs hosts a custom web user interface that allows users to examine the processing jobs within the
Hadoop Cluster.
You need to select the appropriate Azure Storage type for each Azure VM scenario.
Which Azure Storage types should you use? To answer, drag the appropriate Azure Storage type to
the correct target. Each Azure Storage type may be used once, more than once, or not at all. You
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 133
You administer an Azure-based solution that performs image processing. You have four Standard
D3 Azure Resource Manager (ARM) virtual machines (VMs). All VMs are deployed in a Virtual
Machine Scale Set (VMSS).
The servers must scale up or down as the workload increases or decreases.
You need to configure auto-scaling to scale the VMSS when the server workload is above 95
percent or below 5 percent.
What should you do?
A. Navigate to the VM's Size panel and increase the instance count.
B. Navigate to the VMSS Metric panel and add a new alert for the CPU Percentage Metric.
Configure the alert to notify Via email.
C. Navigate to the VM's Metric panel and enable diagnostics for basic metrics.
D. Navigate to the VMSS Metric panel and add a new alert for the CPU Percentage Metric.
Configure the alert to notify via webhook.
Correct Answer: D
Section: [none]
Explanation
Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-scale-sets-
vertical-scale-reprovision
QUESTION 134
HOTSPOT
You deploy an application that uses a secure data storage solution to Azure. You use Redis Cache
and select the Premium tier.

Create point-in-time snapshots of the dataset at specific intervals.
Limit specific clients from using the cache.
Use primary/replica cache pairs.
You need to configure the environment.
Which feature should you implement for each requirement? To answer. select the appropriate
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 135
correct solution.
You are developing a new Azure Logic App. The Logic App requires a custom action to evaluate
data from an internal, proprietary system. You create a custom ASP>NET Web API to retrieve data
from the system and update the Logic App to use the API.
The Logic App generates a timeout error when it requests data from the API.
You need to eliminate the timeout error and allow the Logic App to retrieve data by using the API.
What should you do?
A. Update the API to immediately return an HTTP ‘102 PROCESSING’ response when a request is
received and an HTTP ‘205 RESET CONTENT’ response when the data is returned from the
system.
B. Update the Logic App to use a new HTTPWebhook trigger to call out to the API’s newly-created
subscribe and unsubscribe methods.
C. Update the API to immediately return an HTTP ‘202 ACCEPTED’ response when a request is
received and an ‘200 OK’ response when the data is returned from the system.
D. Update the Logic App adding a wait action to include the interval object’s unit and count
properties set to valid values.
Correct Answer: C
Section: [none]
Explanation
Explanation:
QUESTION 136
HOTSPOT
You plan to migrate an Azure Web App named Contoso from an App Service plan named
AppServicePlan1 to another App Service plan. You create a resource group named ContosoGroup.
You create the following Azure PowerShell script. Line numbers are included for reference only.
Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 137
You develop an Azure App Service Mobile App.
The Azure App Service must use Twitter as an authentication provider. You start by registering your
application with Twitter.
You need to update your app’s authentication and authorization in the Azure Portal.
Which two values should you provide? Each correct answer presents part of the solution.
A. API Key
B. Azure Active Directory (Azure AD) Bearer Token
C. JSON Web Token (JWT)
D. API Secret
E. Mobile App gateway URL
Correct Answer: AD
Section: [none]
Explanation
Explanation:
QUESTION 138
DRAG DROP
You are developing a business-to-business (B2B) solution by using an Azure Logic App. You plan to
use the Enterprise Integration Pack to allow the exchange of the X12 industry standard message
format within your Logic App workflow. You start by creating a new Azure Resource Manager (ARM)
resource group and Azure App Service plan.
You need to create the B2B solution.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 139
You are developing an Azure-hosted application that processes request messages for multiple office
locations. You create an Azure Service Bus topic named Requests. The topic has a maximum size
of 5 gigabytes (GB) and a default message time to live (TTL) of 5 minutes. You also create
subscriptions named PriorityRequest and StandardRequest and include appropriate logic to route
the messages.
Users report that the application has not processed messages from PriorityRequest in several days.
You need to retrieve the number of messages in the PriorityRequest subscription.
Which metric Should you use?
A. Subscription Length
B. Subscription Incoming Requests
C. Topic Incoming Messages
D. Topic Size
Correct Answer: D
Section: [none]
Explanation
Explanation:
QUESTION 140
correct solution.
You develop an enterprise application that will be used only by the employees of a company. The
application is not Internet-facing. You deploy instances of the application to Azure datacenters on
two continents.
You must implement a load balancing solution that meets the following requirements:
Provide network-level distribution of traffic across all instances of the application.
Support HTTP and HTTPS protocols.
Manage all inbound and outbound connections.
Any back-end virtual machine (VM) must be able to service requests from the same user or client
session.
Solution: You implement Traffic Manager.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
A Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to
globally distributed endpoints. Clients then connect to those endpoints directly.
An application manager, which works at the Application level (Layer 7), is also required.
References: https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-
introduction
QUESTION 141
correct solution.
two continents.
session.
Solution: You implement Traffic Manager and Application Gateway.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It
acts as a reverse-proxy service, terminating the client connection and forwarding requests to back-
end endpoints. It supports the HTTP, HTTPS, and WebSockets protocols.
Application Gateway is useful for applications that require requests from the same user/client
session to reach the same back-end virtual machine. Examples of these applications would be
shopping cart applications and web mail servers.
Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally
distributed endpoints. Clients then connect to those endpoints directly.
Microsoft Azure Traffic Manager allows you to control the distribution of user traffic for service
endpoints in different datacenters
References: https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview
QUESTION 142
correct solution.
two continents.
session.
Solution: You implement Application Gateway.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Traffic Manager is also needed. It allows you to control the distribution of user traffic for service
endpoints in different datacenters
References: https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview
QUESTION 143
You administer an Azure environment that includes six Azure Resource Manager (ARM) virtual
machines (VMs) that support development. The development team uses Azure SQL databases and
Azure Queues for application storage. All Azure resources are grouped within a single subscription
and resource group.
You need to reduce the recurring monthly Azure costs without degrading server performance. You
must minimize the administrative effort involved.
What should you do?
A. Configure an auto-shutdown schedule for each VM by using the Azure Portal.

B. Update the development environment to use Azure Table storage.
C. Create an Azure Automation runbook that compresses unused virtual hard disk (VHD) files daily.
D. Create an Azure PowerShell script that backs up and deprovisions all Azure SQL databases
daily.
Correct Answer: B
Section: [none]
Explanation
Explanation:
Table storage is cheaper than SQL Databases.
It’s tempting to go with answer A. However, this would degrade server performance (although
shutting the servers down when not in use would save money). There is another version of this
question that does not include shutting down the servers as an answer option.
QUESTION 144
correct solution.
You have a web app that is deployed to Azure.
You need to download a compressed collection of the diagnostic logs.
A. Azure PowerShell
B. File Transfer Protocol (FTP)
C. Application Insights
D. Microsoft Visual Studio
Correct Answer: A
Section: [none]
Explanation
Explanation:
Diagnostic information stored to the web app file system can be accessed directly using FTP. It can
also be downloaded as a Zip archive using Azure PowerShell or the Azure Command-Line Interface.
References: https://docs.microsoft.com/en-us/azure/app-service/web-sites-enable-diagnostic-
log#download
QUESTION 145
HOTSPOT
correct solution.
You are developing an Azure application.
The image below represents the process flow for the application.
You need to complete the process flow.

What should you use? To answer, select the appropriate options in the answer area.
Each correct selection is worth one point.
Hot Area:
Correct Answer:
Section: [none]
Explanation
Explanation:
A webhook allows you to start a particular runbook in Azure Automation through a single HTTP
request.
Box 1: HTTP Post
To use a webhook after it has been created, your client application must issue an HTTP POST with
the URL for the webhook.
Box 2: RequestHeaders
Box 3: WebhookData
When a client starts a runbook using a webhook, it cannot override the parameter values defined in
the webhook. To receive data from the client, the runbook can accept a single parameter called
$WebhookData of type [object] that will contain data that the client includes in the POST request.
The $WebhookData object will have the following properties:

WebhookName - The name of the webhook.
RequestHeader - Hash table containing the headers of the incoming POST request.
RequestBody - The body of the incoming POST request. This will retain any formatting such as
string, JSON, XML, or form encoded data. The runbook must be written to work with the data
format that is expected.
References: https://docs.microsoft.com/en-us/azure/automation/automation-webhooks
QUESTION 146
You are planning to move streaming media content to Windows Azure Storage.
You need to recommend an approach for providing worldwide users the fastest possible access to
the content.
Which two actions should you recommend? (Choose two.)
A. Use a Shared Access Signature.

B. Use Windows Azure page blob storage.
C. Use Windows Azure block blob storage.
D. Use the Windows Azure Content Delivery Network (CDN).
Correct Answer: CD
Section: [none]
Explanation
Explanation:
You can store text and binary data in either of two types of blobs: Block blobs, which are optimized
for streaming. Page blobs, which are optimized for random read/write operations and which provide
the ability to write to a range of bytes in a blob. Windows Azure provides the Windows Azure
Content Delivery Network (CDN) to deliver Windows Azure Blob content. Windows Azure CDN
offers developers a global solution for delivering high-bandwidth content. The benefit of using a CDN
is better performance and user experience for users who are farther from the source of the content
stored in the Windows Azure blob storage.
QUESTION 147
You are designing a plan for migrating Virtual Hard Disks (VHDs) and video files to Windows Azure
Storage.
The VHDs must be optimized for random read/write operation.
The video files must be optimized for sequential access.
You need to recommend storage types for storing the VHDs and video files.
Which two storage types should you recommend? (Each correct answer presents part of the
solution. Choose two.)
A. Store VHDs in Windows Azure page blob storage.

B. Store VHDs in Windows Azure block blob storage.
C. Store video files in Windows Azure page blob storage.
D. Store video files in Windows Azure block blob storage.
Correct Answer: AD
Section: [none]
Explanation
Explanation:
the ability to write to a range of bytes in a blob. After you create or change the server image, you are
ready to upload the .vhd file that contains the image data to Windows Azure. There are two
opportunities for uploading VHDs to Windows Azure. When you initially create a VM role, you upload
a base VHD to Windows Azure, which is used as a template to create VM role instances.
QUESTION 148
You are designing a Windows Azure application that will use Windows Azure Table storage.
The application will allow teams of users to collaborate on projects.
Each user is a member of only one team. You have the following requirements:
Ensure that each user can efficiently query records related to his or her team's projects.
Minimize data access latency.
You need to recommend an approach for partitioning table storage entities.
What should you recommend?
A. Partition by user.
B. Partition by team.
C. Partition by project.
D. Partition by the current date.
Correct Answer: B
Section: [none]
Explanation
QUESTION 149
You are designing an upgrade strategy for a Windows Azure application that includes one web role
with one instance.

Test the application on the Windows Azure platform.
Ensure that application upgrades can be rolled back.
Ensure that upgrade and rollback processes do not cause downtime.
You need to recommend an approach for upgrading the application.
A. Deploy to the Production slot. Test the application, and then perform a VIP swap.
B. Deploy to the Staging slot. Test the application, and then perform a VIP swap.
C. Deploy to the Staging slot. Test the application, and then perform a manual in-place upgrade to
the Production slot.
D. Deploy to the Staging slot. Test the application, and then perform an automatic in-place upgrade
to the Production slot.
Correct Answer: B
Section: [none]
Explanation
Explanation:
Run Set-AzureDeploymentSlot from the service directory to set the deployment environment for the
current service to either Staging or Production.
This updates the DeploymentSettings.json file for the service.
A hosted service is a service that runs your code in the Windows Azure environment.
It has two separate deployment slots: staging and production. The staging deployment slot allows
you to test your service in the Windows Azure environment before you deploy it to production. You
can upgrade your service by deploying a new package to the staging environment and then
swapping the staging and production deployments. This type of upgrade is called a Virtual IP or VIP
swap, as it swaps the addresses of the two deployments.
Both deployments remain online during the swap process. You can swap VIPs using the Windows
Azure Platform Management Portal, or by using the Service Management API. If you are upgrading
your service with a new service definition file, you must swap VIPs; you cannot perform an in-place
upgrade. However, you can swap VIPs only if the number of endpoints specified by the service
definition is identical for both deployments. For example, if you add an HTTPS endpoint to a web
role that previously exposed only an HTTP endpoint, you cannot upgrade your service using a VIP
swap; you'll need to delete your production deployment and redeploy instead
QUESTION 150
You are migrating a solution to Windows Azure.
The solution includes a web application and a business logic layer.
The web application runs on three dual-core servers.
The business logic layer runs on two quad-core servers.
The Windows Azure application must match or exceed the current hardware specifications.
You need to recommend role instance sizes that minimize cost.
A. Small for the web application and Medium for the business logic layer
B. Small for the web application and Large for the business logic layer
C. Medium for the web application and Large for the business logic layer
D. Large for the web application and Extra Large for the business logic layer
Correct Answer: C
Section: [none]
Explanation
Explanation:
Virtual Machine Size CPU Cores Memory Disk Space for LSR in Web and Worker Roles Disk
Space for LSR in a VM Role Allocated Bandwidth (Mbps)
Extra Small Shared 768 MB 19,480 MB (6,144 MB is reserved for system files) 20 GB 5
Small 1 1.75 GB 229,400 MB (6,144 MB is reserved for system files) 165 GB 100
Medium 2 3.5 GB 500,760 MB (6,144 MB is reserved for system files) 340 GB 200
Large 4 7 GB 1,023,000 MB (6,144 MB is reserved for system files) 850 GB 400
Extra Large 8 14 GB 2,087,960 MB (6,144 MB is reserved for system files) 1890 GB 800
Pricing and Metering for Compute:
Each compute instance is a virtual server.
There are 5 compute virtual server sizes you can choose from.
The table below summarizes the resources provided by each Compute instance size.
Virtual Machine Size CPU Cores Memory Cost Per Hour
Extra Small Shared 768 MB $0.02
Small 1 1.75 GB $0.12
Medium 2 3.5 GB $0.24
Large 4 7 GB $0.48
Extra Large 8 14 GB $0.96
References: http://msdn.microsoft.com/en-us/library/windowsazure/ee814754.aspx
QUESTION 151
You are designing an automated deployment process for a Windows Azure application.
The process must deploy the application to Windows Azure without any user interaction.
You need to recommend a deployment strategy.
A. Use the Service Management API to deploy the application package.

B. Use the cspack and csrun command-line utilities and pass the cloud project as an argument.
C. Publish the cloud project to a local directory and upload the application package to Windows
Azure Blob storage.
D. Publish the cloud project to a local directory and use the Windows Azure Developer Portal to
upload the application.
Correct Answer: A
Section: [none]
Explanation
QUESTION 152
A Windows Azure application is running in the development fabric.
You need to recommend an approach for deploying the application to Windows Azure.
A. Use XCopy deployment.

B. Use the Windows Azure AppFabric.
C. Use the Windows Azure Storage Services REST API.
D. Use the Windows Azure Tools for Microsoft Visual Studio 2010.
Correct Answer: D
Section: [none]
Explanation
QUESTION 153
You are planning an upgrade strategy for a Windows Azure application.
You need to identify changes that will require application downtime.
Which change will always require downtime?
A. Changing the virtual machine size

B. Adding an HTTPS endpoint to a web role
C. Changing the value of a configuration setting
D. Upgrading the hosted service by deploying a new package
Correct Answer: B
Section: [none]
Explanation
QUESTION 154
You are designing a Windows Azure application.
The application contains one web role and three worker roles.
You need to recommend an approach for updating only one role without interrupting the other roles.
A. Perform a VIP swap.

B. Perform an in-place upgrade.
C. Delete the current deployment and then redeploy the application.
D. Copy the cloud package to blob storage and then restart the service.
Correct Answer: B
Section: [none]
Explanation
Explanation:
QUESTION 155
You are designing a Windows Azure application that will generate events for multiple clients.
Client web services might be behind NAT gateways.
You need to recommend an approach that will allow you to broadcast the events to clients.
A. Use ADO.NET Data Services and provide a shared key to clients.

B. Use Windows Azure Queues and provide a shared key to clients.
C. Use Windows Azure Table storage and provide a shared key to clients.
D. Use the Windows Azure AppFabric Service Bus and provide a shared secret to clients.
Correct Answer: D
Section: [none]
Explanation
Explanation:
The Windows Azure Service Bus provides a hosted, secure, and widely available infrastructure for
widespread communication, large-scale event distribution, naming, and service publishing. The
Service Bus provides connectivity options for Windows Communication Foundation (WCF) and other
service endpoints including REST endpoints -- that would otherwise be difficult or impossible to
reach. Endpoints can be located behind network address translation (NAT) boundaries, or bound to
frequently-changing, dynamically-assigned IP addresses, or both. The Service Bus provides both
"relayed" and "brokered" messaging capabilities. In the relayed messaging pattern, the relay service
supports direct one-way messaging, request/response messaging, and peer-to- peer messaging.
Brokered messaging provides durable, asynchronous messaging components such as Queues,
Topics, and Subscriptions, with features that support publish-subscribe and temporal decoupling:
senders and receivers do not have to be online at the same time;
the messaging infrastructure reliably stores messages until the receiving party is ready to receive
them.
QUESTION 156
The application includes a web role and a worker role that communicate by using a Windows Azure
Queue. The worker role processes each message within 10 seconds of retrieving it from the queue.
The worker role must process each message exactly one time.
If a process does not complete, the worker role must reprocess the message.
You need to recommend an approach for the worker role to manage messages in the queue.
A. Process the message and then delete it from the queue.

B. Delete the message from the queue when retrieving the message.
C. Set the visibility timeout of the message to 1 when retrieving the message.
D. Process the message and then set the visibility timeout of the message to the maximum value.
Correct Answer: A
Section: [none]
Explanation
QUESTION 157
The application includes two web roles and three instances of a worker role. The web roles will
send requests to the worker role through one or more Windows Azure Queues.

Ensure that each request is processed exactly one time.
Minimize the idle time of each worker role instance.
Maximize the reliability of request processing.
You need to recommend a queue design for sending requests to the worker role.
A. Create a single queue. Send requests on the single queue.

B. Create a queue for each web role. Send requests on all queues at the same time.
C. Create a queue for each worker role instance. Send requests on each worker queue in a round
robin.
D. Create a queue for each combination of web roles and worker role instances. Send requests to
all worker role instances based on the sending web role.
Correct Answer: A
Section: [none]
Explanation
QUESTION 158
You are designing a Windows Azure application that will process images. The maximum size of an
image is 10 MB.
The application includes a web role that allows users to upload images and a worker role with
multiple instances that processes the images.
The web role communicates with the worker role by using a Windows Azure Queue.
You need to recommend an approach for storing images that minimizes storage transactions.
A. Store images in the queue.

B. Store images in Windows Azure Blob storage. Store references to the images in the queue.
C. Store images in local storage on the web role instance. Store references to the images in the
queue.
D. Store images in Windows Azure Drives attached to the worker role instances. Store references
to the images in the queue.
Correct Answer: B
Section: [none]
Explanation
Explanation:
the ability to write to a range of bytes in a blob.
QUESTION 159
The application will store data in Windows Azure Blob storage.
Many of the application services will be interdependent.
You need to recommend an approach for optimizing the performance of the application.
A. Create one affinity group. Associate only the storage services with the affinity group.
B. Create one affinity group. Associate only the compute services with the affinity group.
C. Create one affinity group. Associate the compute services and storage services with the affinity
group.
D. Create two affinity groups. Associate the compute services with one group and the storage
services with the other group.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Use the following procedures to create an affinity group, which can be used to direct Windows Azure
storage accounts and hosted services to the same geographical grouping within a specified region.
Each affinity group is associated with a Windows Azure subscription, and can be used by multiple
storage accounts and hosted services for that subscription.
Affinity groups can be created and managed by the service administrator and co-administrators for a
subscription.
QUESTION 160
DRAG DROP
You are developing an ASP.NET Web API that runs as an Azure Web App. The App uses Azure
Active Directory (Azure AD) business-to-business (B2B) for authentication and authorization.
The application contains an ASP.NET Web API controller to retrieve test results. The directory
contains the Tester Azure AD group as shown below.
You need to ensure that the Get controller method is available only to members of the Tester group.
What should you do? To answer, drag the appropriate code segments to the correct locations. Each
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 161
Which of the following are valid differences between page blobs and block blobs? (Choose two.)
A. Page blobs are much faster for all operations.

B. Block blobs allow files to be uploaded and assembled later. Blocks can be resubmitted
individually.
C. Page blobs are good for all sorts of files, like video and images.
D. Block blobs have a max size of 200 GB. Page blobs can be 1 terabyte.
Correct Answer: BD
Section: [none]
Explanation
QUESTION 162
Which of the following are valid options for scaling queues? (Choose three.)
A. Distributing messages across multiple queues

B. Automatically scaling websites based on queue metrics
C. Automatically scaling VMs based on queue metrics
D. Automatically scaling cloud services based on queue metrics
Correct Answer: ACD

Section: [none]
Explanation
QUESTION 163
Which of the following is not true about metadata? (Choose two.)
A. Both containers and blobs have writable system properties.

B. Blob user-defined metadata is accessed as a key value pair.
C. System metadata can influence how the blog is stored and accessed in Azure Storage.
D. Only blobs have metadata; containers do not.
Correct Answer: AD
Section: [none]
Explanation
QUESTION 164
Which of the following are true regarding supported operations granted with an SAS token? (Choose
three.)
A. You can grant read access to existing blobs.

B. You can create new blob containers.
C. You can add, update, and delete queue messages.
D. You can add, update, and delete table entities.
E. You can query table entities.
Correct Answer: ADE

Section: [none]
Explanation
Explanation:
You can add or update but not delete queue messages.
References:
https://blogs.msdn.microsoft.com/windowsazurestorage/2012/06/12/introducing-table-sas-shared-
access-signature-queue-sas-and-update-to-blob-sas/
QUESTION 165
Which of the following are valid options for processing queue messages? (Choose Two.)
A. A single compute instance can process only one message at a time.

B. A single compute instance can process up to 31 messages at a time.
C. A single compute instance can retrieve up to 32 messages at a time.
D. Messages can be read one at a time or in batches of up to 32 messages at a time.
E. Messages are deleted as soon as they are read.
Correct Answer: CD
Section: [none]
Explanation
QUESTION 166
Which of the following statements are true of stored access policies? (Choose two.)
A. You can modify the start or expiration date for access.

B. You can revoke access at any point in time.
C. You can modify permissions to remove or add supported operations.
D. You can add to the list of resources accessible by an SAS token.
Correct Answer: AB
Section: [none]
Explanation
Explanation:
You can use a stored access policy to change the start time, expiry time, or permissions for a
signature, or to revoke it after it has been issued.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/establishing-a-stored-access-
policy
QUESTION 167
How should you choose a good partition key for a Table storage implementation? (Choose two.)
A. They should always be unique, like a primary key in a SQL table.

B. You should always use the same partition key for all records.
C. Think about how you're likely to update the data using batch transactions.
D. Find an even way to split them so that you have relatively even partition sizes.
Correct Answer: CD
Section: [none]
Explanation
QUESTION 168
Which of the following is not a method for replicating a Table storage account?
A. Transactional replication
B. Zone redundant storage
C. Read access geo-redundant storage
D. Geo-redundant storage
Correct Answer: A
Section: [none]
Explanation
QUESTION 169
Which of the following statements are correct for submitting operations in a batch? (Choose three.)
A. All operations have to be in the same partition.

B. Total batch size can't be greater than 4 MB.
C. Max operation count is 100.
D. Minimum operation count is three
Correct Answer: ABC

Section: [none]
Explanation
QUESTION 170
Which of the following statements are true of CORS support for storage? (Choose Two.)
A. It is recommended you enable CORS so that browsers can access blobs.

B. To protect CORS access to blobs from the browser, you should generate SAS tokens to secure
blob requests.
C. CORS is supported only for Blob storage.
D. CORS is disabled by default.
Correct Answer: BD
Section: [none]
Explanation
QUESTION 171
Which of the following is not a requirement for creating an online secondary for SQL Database?
A. The secondary database must have the same name as the primary.
B. They must be on separate servers.
C. They both must be on the different subscription.
D. The secondary server cannot be a lower performance tier than the primary.
Correct Answer: D
Section: [none]
Explanation
QUESTION 172
Which statement is true of Storage Analytics Metrics?
A. Capacity metrics are recorded only for blobs.
B. You can set hourly or by minute metrics through the management portal.
C. By default, metrics are retained for one year.
D. If you disable metrics, existing metrics are deleted from storage.
Correct Answer: A
Section: [none]
Explanation
QUESTION 173
Which metrics should you add to monitoring that will help you select the appropriate level of SQL
Database? (Choose three.)
A. CPU Processor Count

B. CPU Percentage
C. Physical Data Reads Percentage
D. Log Writes Percentage
Correct Answer: BCD

Section: [none]
Explanation
QUESTION 174
Which of the following are captured by Storage Analytics Logging? (Choose two.)
A. Successful requests for authenticated calls only

B. Failed requests for authenticated calls only
C. Server errors
D. Requests using SAS URIs.
Correct Answer: CD
Section: [none]
Explanation
QUESTION 175
Which statements are true of Storage Analytics Logging? (Choose two.)
A. Logs are stored in the same storage account where they are enabled and are measured as part
of your storage quota.
B. Logs can have duplicate entries.
C. Logs cannot be deleted.
D. You can log all read, write, and delete requests to blobs, queues, and tables in a storage
account.
Correct Answer: BD
Section: [none]
Explanation
QUESTION 176
From what you know about SQL Database architecture, what should you include in your client
application code? (Choose three.)
A. Connection resiliency, because you could failover to a replica.

B. Transaction resiliency so you can resubmit a transaction in the event of a failover.
C. Query auditing so you can baseline your current query times and know when to scale up the
instance.
D. A backup and restore operation for the database.
Correct Answer: ABC

Section: [none]
Explanation
QUESTION 177
What are good recommendations for securing files in Blob storage? (Choose three.)
A. Always use SSL.

B. Keep your primary and secondary keys hidden and don't give them out.
C. In your application, store them someplace that isn't embedded in client-side code that users can
see.
D. Make the container publicly available.
Correct Answer: ABC

Section: [none]
Explanation
QUESTION 178
Which of the following statement are true about queuing messages?
A. Storage queue messages have no size restrictions. The reason for using smaller messages
sizes is to increase throughput to the queue.
B. Storage queue messages are limited to 64 KB.
C. Storage queue messages are durable.
D. The client application should save the message identifier returned after adding a message to a
queue for later use.
Correct Answer: B
Section: [none]
Explanation
QUESTION 179
and resource group.
What should you do?
A. Remove the development team role from the resource group daily.
B. Create an Azure Automation runbook that cycles the VMs daily.
C. Update the development environment to use Azure Table storage.
D. Create an Azure PowerShell script that updates the VM size to Standard_A0 daily.
Correct Answer: C
Section: [none]
Explanation
QUESTION 180
You are developing a Windows console application that uses a third-party C++ library. The console
application is designed to be run as an Azure WebJob that has authentication and authorization
enabled.
You need to ensure that the console application can determine the current user identity.
What should you do?
A. Perform an HTTP request to the /.auth/me endpoint.

B. Call the System.Security.Principal.WindowsIdentity.GetCurrent() method.
C. Read the X-MS-CLIENT-PRINCIPAL-NAME header.
D. Read the identity from the UserName environment variable.
Correct Answer: C
Section: [none]
Explanation
QUESTION 181
You are developing an Azure Logic App that summarizes and translates Microsoft Word documents.
Clients upload Word documents to an Azure File share, and all documents are processed once per
day.
Each document takes more than 10 minutes to process, and each client processes thousands of
documents per day.
You need to ensure that customers can process documents on demand while minimizing costs.
Which two types of Logic App triggers can you use? Each correct answer presents a complete
solution.
A. HTTP
B. Request
C. HTTPWebhook
D. ApiConnection
E. ApiConnectionWebhook
Correct Answer: BE
Section: [none]
Explanation
QUESTION 182
DRAG DROP
You develop a Web App that uploads files from a browser and then compresses the files. You
observe that compression is not working according to specification.
You need to debug the compression code to resolve the problem.
Select and Place:
Correct Answer:
Section: [none]
Explanation
QUESTION 183
correct solution.
You are developing an application that will run as an Azure API App. The application tracks flights
between airports, including duration of flight, if the flight was on time, the capacity of the airplane,
and the number of seats sold. Queries can be performed to show multiple routes, multi-leg journeys,
and filtering based on the attributes of the flight.
Flight information will be used by customers to perform data mining, drive interactive display,
perform airspace tracking, and other applications.
Customers require that the response time of the API be as low as possible, both for retrieving
information for a single flight, and for queries across flights. To achieve the required level of
performance, each API invocation must be satisfied by a single operation against the data store
containing flight information.
You need to implement the data store for this application.
Solution: You use Azure Search.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 184
correct solution.
Solution: You use Azure Blob Storage.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 185
correct solution.
Solution: You use Cosmos DB.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
QUESTION 186
correct solution.
You are a system administrator at your company. Your company recently acquired two of its
competitors, as well as their IT infrastructure. The acquired companies have applications that are
written in Java, .NET, Ruby, php, Node.js, and other languages. The applications run on Linux and
Windows Server in Amazon Web Services, Azure, and SAP Cloud Platform.
The applications require access to the Azure Service Broker, and must be managed by the PCF Ops
Manager.
You need to consolidate the applications onto a single cloud provider in Azure.
Solution: Deploy the open-source Cloud Foundry packages by setting up a BOSH director.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Use the Azure Marketplace Pivotal Cloud Foundry offer.
References: https://azuremarketplace.microsoft.com/en-us/marketplace/apps/pivotal.pivotal-cloud-
foundry
QUESTION 187
correct solution.
Manager.
Solution: Create a customized environment by deploying Pivotal Cloud Foundry manually.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
QUESTION 188
correct solution.
Manager.
Solution: Use the Azure Cloud Shell to install the Cloud Foundry CLI and connect to the Cloud
Controller.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Use Azure Marketplace Pivotal Cloud Foundry.
foundry
QUESTION 189
correct solution.
You are a developer for Consolidated Messenger, a software company that provides applications for
manager courier services. You are preparing to release a new version of the flagship application.
The application is comprised of a set of Windows and Linux virtual machines (VMs), and a set of
Linux-based Docker containers. The management portion of the application uses Kubernetes for
management of containers.
You need to determine a mechanism to deploy the application so that customers can provision the
application from the Azure Marketplace.
Solution: Build a custom Azure Resource Manager QuickStart template.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 190
correct solution.
Solution: Provide access to a CloudFoundry Azure Resource Manager QuickStart template.

A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 191
correct solution.
Solution: Provide access to an OpenShift Azure Resource Manager QuickStart template.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
QUESTION 192
Solution: Create a resource group by using the Azure portal. Create four VMs and assign all VMs to
the new resource group.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
QUESTION 193
You need to implement authentication.
A. Active Directory Federation Services (AD FS)

B. Azure Active Directory (Azure AD) business to-consumer (B2C) stand-alone
C. Enterprise State Roaming
D. Azure Active Directory (Azure AD) self-service signup
Correct Answer: A
Section: [none]
Explanation
QUESTION 194
You need to create an Azure Function to run the Daily Sponsor Report.
Which function template should you use?
A. TimerTrigger
B. HTTPTrigger
C. ServiceBusQueueTrigger
D. EventHubTrigger
Correct Answer: A
Section: [none]
Explanation
QUESTION 195
You need to ensure that transcripts and notes are processed.
Which trigger or binding should you use?
A. Storage tables
B. Schedule
C. No-SQL DB
D. Blob storage
Correct Answer: A
Section: [none]
Explanation
QUESTION 196
DRAG DROP
You are developing an ASP.NET MVC application that will be hosted in Azure. The application will
manage employee information.
The application will use the Azure Table storage service. You create a storage account. You store
the connection string information in the web.config file in a key named
EmployeeStorageConnectionString.
You have the following code:
You declare variables named employee1 and employee2 as EmployeeEntity objects.
You need to insert the new entities in the same single batch operation.
Develop the solution by selecting and arranging the required five code blocks in the correct older.
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
Step 1: CloudStorageAccount storageAccount = CloudStorageAccount.Parse(..
Here's an example that shows how to retrieve a connection string from a configuration file:
Parse the connection string and return a reference to the storage account.
CloudStorageAccount storageAccount = CloudStorageAccount.Parse(
CloudConfigurationManager.GetSetting("StorageConnectionString"));
Step 2: CloudTableClient tableClient = storageAccount.CreateCloudTableClient();

Create the Table service client
The CloudTableClient class enables you to retrieve tables and entities stored in Table storage.
Here's one way to create the Table service client:
Create the table client.

CloudTableClient tableClient = storageAccount.CreateCloudTableClient();
Now you are ready to write code that reads data from and writes data to Table storage.
Step 3:
Retrieve a reference to the table.
CloudTable table = tableClient.GetTableReference("people");
Create the table if it doesn't exist.
table.CreateIfNotExists();
Create the batch operation.

TableBatchOperation batchOperation = new TableBatchOperation();
Step 4: batchOperation.Insert(employee1);
batchOperation.Insert(employee2);
Add both customer entities to the batch insert operation.
Step 5: table.ExecuteBatch(batchOperation);
Execute the batch operation.
References: https://docs.microsoft.com/en-us/azure/cosmos-db/table-storage-how-to-use-dotnet
QUESTION 197
DRAG DROP
You are administrating the Microsoft SharePoint and Azure environments for your company. A
partner company manages quality assurance (QA) efforts.
You must ensure that 25 testers on the QA team can access a SharePoint app called TestersApp.
You need to configure access to TestersApp for all testers.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 198
A. Use the Azure portal to restart each VM.

B. Download and install the Microsoft Installer file to enable the VM Agent on each VM.
C. Create an application that updates the configuration of each VM.
D. Use Azure PowerShell cmdlets to change the name of the availability set to the same name for
all of the VMs.
Correct Answer: D
Section: [none]
Explanation
Explanation:
Several PowerShell commands exist for running individual extensions.
In the following example, the VM Access extension is used to reset the administrative password of a
Windows VM to a temporary password. For more information on the VM Access extension, see
Reset Remote Desktop service in a Windows VM. Once you have run this, you should reset the
password at first login:
$cred=Get-Credential
Set-AzureRmVMAccessExtension -ResourceGroupName "myResourceGroup" -VMName "myVM" -

Name "myVMAccess" `
-Location WestUS -UserName $cred.GetNetworkCredential().Username `
-Password $cred.GetNetworkCredential().Password -typeHandlerVersion "2.0"
Incorrect Answers:
A: VM extensions can be applied to an existing VM through the Azure portal. Select the VM in the
portal, choose Extensions, then select Add. Choose the extension you want from the list of available
extensions and follow the instructions in the wizard.
Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/features-windows
QUESTION 199
correct solution.
Solution: Provide access to an Azure Resource Manager template.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
References: https://alexandrebrisebois.wordpress.com/2016/06/30/deploying-azure-marketplace-
vms-via-arm-templates/
QUESTION 200
An application sends Azure push notifications to a client application that runs on Windows Phone,
iOS, and Android devices.
Users cannot use the application on some devices. The authentication mechanisms that the
application uses are the source of the problem.
You need to monitor the number of notifications that failed because of authentication errors.
Which three metrics should you monitor? Each correct answer presents part of the solution.
A. Firebase Cloud Messaging (FCM) authentication errors

B. Windows Push Notification Service (MPNS) authentication errors
C. External notification system errors
D. Apple Push Notification Service (APNS) authentication errors
E. Channel errors
Correct Answer: ABD

Section: [none]
Explanation
Explanation:
A: You can use Azure Notification Hubs and Firebase Cloud Messaging to push notifications to an
Android application.
B: The Windows Push Notification Services (WNS) enables third-party developers to send toast, tile,
badge, and raw updates from their own cloud service. This provides a mechanism to deliver new
updates to your users in a power-efficient and dependable way.
D: Because the device token assigned by the Apple Push Notification Service (APNS) can chance at
any time, you should register for notifications frequently to avoid notification failures.
References:
https://docs.microsoft.com/en-us/windows/uwp/design/shell/tiles-and-notifications/windows-push-
notification-services--wns--overview
https://docs.microsoft.com/en-us/azure/notification-hubs/notification-hubs-android-push-notification-
google-fcm-get-started
QUESTION 201
DRAG DROP
You are building a set of deployment scripts for an Azure application that will be used by developers.
The application is deployed using Azure Resource Manager and requires a set of parameters stored
in Azure Key Vault during deployment. Developers do not have permissions to view the contents of
the Key Vault.
You need to ensure that developers can deploy the application.
What should you do? To answer, drag the appropriate JSON fragment to the correct location. Each
JSON fragment may be used once, more than once, or not at all. You may need to drag the split bar

Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Example:
..
"resources": [
{
"type": "Microsoft.KeyVault/vaults/secrets",
"apiVersion": "2015-06-01",
"name": "[concat(parameters('keyVaultName'), '/', parameters('secretName'))]",
"properties": {
"value": "[parameters('secretValue')]"
}
}
],
References: https://github.com/Huachao/azure-content/blob/master/articles/resource-manager-
template-keyvault-secret.md
QUESTION 202
You are developing a messaging solution to integrate two applications named WeatherSummary
and WeatherDetails. The WeatherSummary application displays a summary of weather
information for major cities. The WeatherDetails application displays weather details for a specific
city.
You need to ensure that the WeatherDetails application only receives weather details for the city
that the user selects in the WeatherSummary application.
What should you do?
A. Create an Azure Service Bus Relay object. In the WeatherDetails application, create a filter.
B. Create an Azure Service Bus Queue communication. In the WeatherDetails application,
implement the PeekLock method.
C. Create an Azure Service Bus Topics object. In the WeatherDetails application, create a filter.
D. Create an Azure Service Bus Queue communication. In the WeatherDetails application,
implement the ReceiveAndDelete method.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Within a namespace, you can use one or more instances of three different communication
mechanisms, each of which connects applications in a different way. The choices are:
Queues, which allow one-directional communication. Each queue acts as an intermediary

(sometimes called a broker) that stores sent messages until they are received. Each message is
received by a single recipient.
Topics, which provide one-directional communication using subscriptions. A single topic can
have multiple subscriptions. Like a queue, a topic acts as a broker, but each subscription can
optionally use a filter to receive only messages that match specific criteria.
Relays, which provide bi-directional communication. Unlike queues and topics, a relay doesn't
store in-flight messages; it's not a broker. Instead, it just passes them on to the destination
application.
References: https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-
fundamentals-hybrid-solutions
QUESTION 203
You develop an ASP.NET Web API that is hosted as an Azure Web App. The API uses a WebJob to
process information. The WebJob has a very long start up time.
You configure the WebJob to run continuously. You observe that the WebJob is not running and
processing information as expected.
You need to ensure the WebJob runs continuously.
What should you do?
A. Schedule the WebJob by using the Azure Scheduler.

B. Update the API to self-host by using the Open Web Interface for .NET (OWIN). Migrate the API
to Azure Service Fabric.
C. Enable the Always On configuration setting for the Web App.
D. Include a settings.job JSON file at the root of the WebJob zip file and include a valid CRON
expression.
Correct Answer: C
Section: [none]
Explanation
Explanation:
Always On. By default, web apps are unloaded if they are idle for some period of time. This lets the
system conserve resources. In Basic or Standard mode, you can enable Always On to keep the app
loaded all the time. If your app runs continuous WebJobs or runs WebJobs triggered using a CRON
expression, you should enable Always On, or the web jobs may not run reliably.
References: https://docs.microsoft.com/en-us/azure/app-service/web-sites-configure
QUESTION 204
You are developing a web service that runs on an Azure cloud service.
You plan to use Application Insights to monitor the service.
You need to monitor telemetry for specific features in the service.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point
A. Install the Application Insights for Worker Roles NuGet package.

B. Configure the data that you would like to send.
C. Install the Application Insights for Web NuGet package.
D. Enable Azure Diagnostics data.
Correct Answer: AD
Section: [none]
Explanation
Explanation:
You can implement an Azure worker role that emits telemetry data using the .NET EventSource
class. Azure Diagnostics is then used to collect the telemetry data and store it in an Azure storage
account.
References: https://docs.microsoft.com/en-us/azure/cloud-services/cloud-services-dotnet-
diagnostics
QUESTION 205
and resource group.
What should you do?
A. Update the development environment to use Azure Table storage.

B. Configure an auto-shutdown schedule for each VM by using the Azure Portal.
C. Create an Azure PowerShell script that updates the VM size to Standard_A0 daily.
D. Remove the development team role from the resource group daily.
Correct Answer: A
Section: [none]
Explanation
Explanation:
Table storage provides a NoSQL Key-Value store for massive scale structured data, which is ideal
for web applications, address books, and other user data.
Note: Prices for LRS Queues start from $0.07 per million transactions.
Incorrect Answers:
D: Daily role removal would not minimize administrative effort.
References: https://azure.microsoft.com/en-us/pricing/details/storage/tables/
QUESTION 206
DRAG DROP
You are a system administrator at your company. You are planning to deploy virtual machine (VM)
scale sets to support autoscaling of VMs in and out. The environment will include 150 customized
VMs managed within the scale set.
You need to configure the scale set for autoscaling of the VMs.
What should you do? To answer, drag the appropriate configuration value to the correct targets.
Each configuration value may be used once, more than once, or not at all. You may need to drag the
split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Box 1: Multiple
By default, you can have a maximum of 100 VMs running for each VMSS. If you would like to scale
out to more than 100 VMs (up to a maximum of 1000), you need to configure your placement group
limit setting. If this setting is False, the scale set will span across multiple placement groups and has
a range of 0–1000 VMs. The default setting is True, which limits the maximum VMs to 100.
Box 2: Managed
If you would like to span across multiple placement groups to support more than 100 VMs, you need
to use the managed disk type.
References: https://4sysops.com/archives/azure-virtual-machine-scale-sets/
QUESTION 207
DRAG DROP
You are developing a commercial REST API by using Azure API Management. Access to the API is
managed by subscription, which can represent applications over a wide geographic area.
You receive several issue reports.
The API becomes unavailable when certain subscribers perform a large number of requests on
the API.
URLs returned from the API that refer to REST entities do not have the correct hostname.
Customers and support staff report insufficient information when debugging failed calls.
You need to configure policies to address these issues.
How should you complete the XML markup? To answer, drag the appropriate XML segments to the
correct locations. Each XML segment may be used once, more than once, or not at all. You may
Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Box 1: rate-limit-by-key
Box 2: counter-key
Box 3: @(context.Subscription.ID)
Limit call rate by key
The rate-limit-by-key policy prevents API usage spikes on a per key basis by limiting the call rate to
a specified number per a specified time period. The key can have an arbitrary string value and is
typically provided using a policy expression. Optional increment condition can be added to specify
which requests should be counted towards the limit. When this policy is triggered the caller receives
a 429 Too Many Requests response status code.
Syntax: <rate-limit-by-key calls="number"

renewal-period="seconds"
increment-condition="condition"
counter-key="key value" />
Example
In the following example, the rate limit is keyed by the caller IP address.
<policies>
<inbound>
<base />
<rate-limit-by-key calls="10"
renewal-period="60"
increment-condition="@(context.Response.StatusCode == 200)"
counter-key="@(context.Request.IpAddress)"/>
</inbound>
<outbound>
<base />
</outbound>
</policies>
Box 4: cors
The cors policy adds cross-origin resource sharing (CORS) support to an operation or an API to
allow cross-domain calls from browser-based clients.
CORS allows a browser and a server to interact and determine whether or not to allow specific
cross-origin requests (i.e. XMLHttpRequests calls made from JavaScript on a web page to other
domains). This allows for more flexibility than only allowing same-origin requests, but is more secure
than allowing all cross-origin requests.
Box 5: @(context.Subscription.ID)
Forward context information to the backend service
This example shows how to apply policy at the API level to supply context information to the
backend service.

<set-header name="x-request-context-data" exists-action="override">
<value>@(context.User.Id)</value>
<value>@(context.Deployment.Region)</value>
</set-header>
Incorrect Answers:
Not return-response:
Syntax:
<return-response response-variable-name="existing context variable">
<set-header/>
<set-body/>
<set-status/>
</return-response>
References: https://docs.microsoft.com/en-us/azure/api-management/api-management-access-
restriction-policies
https://docs.microsoft.com/en-us/azure/api-management/api-management-cross-domain-policies
QUESTION 208
DRAG DROP
You maintain an application that runs in Azure. You instrument the application using Application
Insights.
Some users report that the response time for page loads is high, but only during busy times. The
reports started in the last week. Initial investigation reveal no significant difference in average
response times throughout the day.
You need to determine time periods when response time may be high.
How should you complete the query? To answer, drag the appropriate query segments to the correct
locations. Each query segment may be used once, more than once or not at all. You may need to
Select and Place:

Correct Answer:
Section: [none]
Explanation
Explanation:
Box 1: > ago(7d)
The reports started in the last week.
ago(7d) means 'seven days ago'.
Box 2: avg(duration)
Box 3: bin(timestamp, 30min)
Summarize collects the data points in the stream into groups for which the by clause evaluates
equally. Each value in the by expression results in a row in the result table.
We could group results by time of day:
References: https://github.com/MicrosoftDocs/azure-docs/blob/master/articles/application-insights/
app-insights-analytics-tour.md
QUESTION 209
A. In the Azure portal, create a new disk for each VM from a virtual hard disk (VHD).
B. When you configure the new VMs, use the Azure portal to install the VM Agent.
C. Use Azure PowerShell cmdlets to change the name of the availability set to the same name for
all of the VMs.
D. For each VM, run Azure PowerShell cmdlets to enable the VM Agent and the VMAccess VM
extensions.
Correct Answer: D
Section: [none]
Explanation
Explanation:
The following methods can be used to run an extension against an existing VM.
PowerShell
Several PowerShell commands exist for running individual extensions. To see a list, use Get-
Command and filter on Extension
Get-Command Set-AzureRM*Extension* -Module AzureRM.Compute

This provides output similar to the following:
CommandType Name Version Source

----------- ---- ------- ------
Cmdlet Set-AzureRmVMAccessExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMADDomainExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMAEMExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMBackupExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMBginfoExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMChefExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMCustomScriptExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMDiagnosticsExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMDiskEncryptionExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMDscExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVMSqlServerExtension 4.5.0 AzureRM.Compute
Cmdlet Set-AzureRmVmssDiskEncryptionExtension 4.5.0 AzureRM.Compute
References: https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/features-windows
QUESTION 210
You are a system administrator at a company. You are configuring Azure DevTest Labs for a
Development environment. You sign in to Azure portal and view the Cost Management blade.
You observe that costs are trending upward for the environment and will soon reach the allocated
budget.
You need to set policies and schedules that will impose limits on virtual machines (VMs) in the
environment to control costs.
Which three settings should you configure? Each correct answer presents part of the solution.
A. Set auto-start to the beginning of the business day.

B. Set allowed VM sizes to the minimum necessary for the Development environment.
C. Set auto-shutdown to the end of the business day.
D. Set VMs per user.
E. Disable Azure Key Vault.
Correct Answer: BCD

Section: [none]
Explanation
Explanation:
Azure DevTest Labs lets you control cost and minimize waste in your labs by managing policies
(settings) for each lab.
B: The policy for setting the allowed VM sizes helps to minimize lab waste by enabling you to specify
which VM sizes are allowed in the lab. If this policy is activated, only VM sizes from this list can be
used to create VMs.
C: The auto-shutdown policy helps minimize lab waste by letting you specify the time that this lab's
VMs shut down.
D: The policy for Virtual machines per user lets you specify the maximum number of VMs that can
be created by an individual user. If a user attempts to create or claim a VM when the user limit has
been met, an error message indicates that the VM cannot be created/claimed.
Answers:
Not A: The auto-start policy lets you specify when the VMs in the current lab should be started. This
would not reduce cost, however.
Reference: https://docs.microsoft.com/en-us/azure/lab-services/devtest-lab-set-lab-policy
QUESTION 211
and resource group.
What should you do?
A. Remove the development team role from the resource group daily.
B. Create an Azure Automation runbook that compresses unused virtual hard disk (VHD) files daily.
C. Create an Azure PowerShell script that backs up and deprovisions all Azure SQL databases
daily.
D. Create an Azure Automation runbook that cycles the VMs daily.
Correct Answer: D
Section: [none]
Explanation
Explanation:
Schedule startup and shutdown of your virtual machines using Azure Automation. The processes
you want to automate can be done through runbooks
Reference:
https://azure.microsoft.com/en-us/blog/azure-automation-runbook-management/
https://ppolyzos.com/2017/08/15/schedule-startup-and-shutdown-of-your-virtual-machines-using-
azure-automation/
QUESTION 212
correct solution.
Manager.
Solution: Use the Azure Marketplace Pivotal Cloud Foundry offer to create a standard environment
that includes PCF Ops Manager and the Azure Service Broker.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Use a customized, not a standard, of the Azure Marketplace Pivotal Cloud Foundry.
foundry
QUESTION 213
correct solution.
You have a virtual machine scale set (VMSS) with three virtual machines (VMs). You define rules
based on performance metrics and application response. You must define the performance metrics
based on the data collected.
You need to configure the autoscale rules.
Solution: Use Azure PowerShell to create rules to automatically scale out the VMSS.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
To create autoscale rules that use more detailed performance metrics, you can install and configure
the Azure diagnostics extension on VM instances, or configure your application use App Insights.
Autoscale rules that use host-based metrics can be created with one of the following tools:
Azure portal
Azure PowerShell
Azure CLI 2.0
Azure template
Note: You can create autoscale rules that built-in host metrics available from your VM instances.
Host metrics give you visibility into the performance of the VM instances in a scale set without the
need to install or configure additional agents and data collections. Autoscale rules that use these
metrics can scale out or in the number of VM instances in response to CPU usage, memory
demand, or disk access.
References: https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-
scale-sets-autoscale-overview
QUESTION 214
correct solution.
Solution: Use the Visual Studio Cloud Explorer to autoscale VMSS.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
Explanation:
Autoscale rules that use host-based metrics can be created with one of the following tools:
Azure portal
Azure PowerShell
Azure CLI 2.0
Azure template
QUESTION 215
correct solution.
Solution: Use Azure Command-Line Interface (Azure CLI) to create rules to automatically scale out
the VMSS.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
Explanation:
Azure portal
Azure PowerShell
Azure CLI 2.0
Azure template
QUESTION 216
DRAG DROP
You are testing an application. You observe errors being reported in the browser. The error logs
indicate the issue is related to JavaScript code that runs in the application.
You need to configure Azure Application Insights on the client side to monitor the issues.
Which key and value should you use? To answer, drag the appropriate key and value to the correct
locations. Each key or value may be used once, more than once, or not at all. You may need to drag
the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
Section: [none]
Explanation
Explanation:
Enable client side monitoring in Azure with Application Insights
If you have enabled Application Insights in Azure, you can add page view and user telemetry.
1. Select Settings -> Application Settings
2. Under App Settings, add a new key value pair:
Key: APPINSIGHTS_JAVASCRIPT_ENABLED
Value: true
References: https://azure.microsoft.com/en-us/blog/enable-client-side-monitoring-in-azure-with-
application-insights/
QUESTION 217
correct solution.
You are developing an ASP.NET Core Web API service that stores product listings in Cosmos DB in
SQL mode. Properties such as average monthly profit are as materialized properties on the listing.
All materialized properties are computed using properties on the listing.
The service inserts product listings without materialized property values.
You need to ensure that materialized property values are always calculated and saved.
Solution: Use a stored procedure to insert listings and populate materialized property values in the
stored procedure.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 218
correct solution.

Solution: Write an Azure Function to build the materialized properties and trigger it from Cosmos DB.
A. Yes
B. No
Correct Answer: A
Section: [none]
Explanation
QUESTION 219
correct solution.
Solution: Place the materialized property values in a separate partition.
A. Yes
B. No
Correct Answer: B
Section: [none]
Explanation
QUESTION 220
HOTSPOT
You are developing a Web App that uses Azure Search.
You deploy the Web App to the Standard service tier. You need to add resources to the Azure
Search service.
What should you do? To answer, select the appropriate resource from each list in the answer area.

Hot Area:
Correct Answer:
Section: [none]
Explanation
QUESTION 221
DRAG DROP
You are developing an ASP.NET Core Web API service named finmath. The service uses Redis as
a caching server. The service will be deployed to a Kubernetes cluster running on Azure Container
Service (ACS).
The Redis server must only be accessible by the finmath Web API service.
A portion of the service’s YAML file is as follows:

What should you do? To answer, drag the appropriate C# fragments to the correct locations. Each
C# fragment may be used once, more than once, or not at all. You may need to drag the split bar
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 222
You manage an on-premises server that runs Windows Server 2016. The server has a disk that
contains 40 terabytes (TB) of data and thousands of files. None of the individual files are larger than
10 TB. You plan to create a virtual machine (VM) in Azure to process the workload currently handled
by the on-premises server.
You need to create a storage location for the data.
What should you do?
A. Add two data disks to the VM. In the VM operating system, create a striped disk.
B. Create a standard storage account. Use a G-series VM.
C. Add four data disks to the VM. In the VM operating system, create a striped disk.
D. Create premium storage account. Use a D-series VM.
Correct Answer: B
Section: [none]
Explanation
QUESTION 223
DRAG DROP
You are a system administrator at your company. You are setting up Azure DevTest Labs for your
Development, Test, and UAT environments.
The Development environment must provision VMs in the fastest way possible.
The Test environment must allow for configuration of default settings of the VM sizes and virtual
network settings.
The UAT environment must deploy the latest changes from the release pipeline with the target
base image.
You need to decide whether to use custom images or formulas for each environment.
What should you do? To answer, select the appropriate technology for each environment. Each
technology may be used once, more than once, or not at all. You may need to drag the split bar
Select and Place:

Correct Answer:
Section: [none]
Explanation
References:
https://docs.microsoft.com/en-us/azure/lab-services/devtest-lab-comparing-vm-base-image-types
QUESTION 224
DRAG DROP
You are developing an application that stores information about assignments for students. The data
for assignments in Cosmos DB uses the DocumentDB API.
You are integrating the application with a third-party library to display images based on the duedate
property on assignment documents containing dates. The third-party library requires that all dates be
expressed in UTC format.
You need to ensure that all assignment due dates are stored in UTC format.
Which object should you POST to the Cosmos DB REST API? To answer, drag the appropriate
JavaScript segments to the correct locations. Each JavaScript segments may be used once, more
than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Select and Place:

Correct Answer:
Section: [none]
Explanation
QUESTION 225
You are a system administrator at your company. You operate 20 applications in Microsoft Azure
that utilize Azure Key Vault.
Application developers report that access to the Key Vault is not consistent. Application users report
that sometimes they are presented with a 401 Unauthorized access error message in their browser.
You need to use Key Vault logging to capture:
All authenticated REST API requests

All operations on the key vault
All operations on keys and secrets in the key vault
Any unauthenticated requests that result in a 401 response
You also have a requirement to retain all logs for 365 days.
Which Azure PowerShell command should you run?
A. Set-AzureRmDiagnosticSetting –StorageAccountId $sa.Id

–Enabled $true –RetentionEnabled $true
B. Set-AzureRmDiagnosticSetting –ResourceId $kv.ResourceId
–StorageAccountId $sa.Id ’ –Enabled $true –Categories AuditEvent
–RetentionEnabled $true
C. Set-AzureRmDiagnosticSetting –StorageAccountId $sa.Id
–Enabled $true –Categories AuditEvent ‘ –RetentionEnabled $true
–RetentionInDays 365
D. Set-AzureRmDiagnosticSetting –ResourceId $kv.ResourceId
–StorageAccountId $sa.Id ’ –Enabled $true –Categories AuditEvent
–RetentionEnabled $true –RetentionInDays 365
Correct Answer: D
Section: [none]
Explanation
References:
https://docs.microsoft.com/en-us/powershell/module/azurerm.insights/set-azurermdiagnosticsetting?
view=azurermps-6.3.0

ExamCollection Premium 70-532

Uploaded by

Copyright:

Available Formats

ExamCollection Premium 70-532

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

ExamCollection Premium 70-532

Uploaded by

Copyright:

Available Formats

70-532.examcollection.premium.exam.

Developing Microsoft Azure Solutions

Repository of Existing Works

Select and Place:

What should you do?

Select and Place:

You need to modify the Compute method in the class PlagiarismCalculation.

Which approach should you use?

A. Use SQL Server data synchronization.

Select and Place:

Data Collection and Distribution Service

Data Collection and Distribution Service

Select and Place:

You need to resolve the issue.

What should you do?

A. Enable automatic scaling for the Web App.

What should you do?

Which Windows PowerShell command should you use?

You need to ensure that the website is always responsive.

What should you do?

A. Add the following markup at line WC14:<sessionState timeout-"86400" />

To answer, make the appropriate selections in the answer area.

Which code segment should you insert at line CF13?

Select and Place:

Which code segment should you insert at line CF13?

What should you do?

You need to resolve the issue.

A. Increase the amount of swap memory for the VM instance.

NOTE: Each correct selection is worth one point.

A. In the Azure management portal, configure a monitoring endpoint.

Correct Answer: BDE

What should you do?

A. Use the Blob Service REST API

Select and Place:

In the Azure management portal, what should you do?

Which solution should you choose?

Select and Place:

Select and Place:

Which solution should you use?

Scope and Device Accessibility

High Availability and Business Continuity

Storage and Security

Performance and Scalability

A. Configure a point-to-site virtual network.

Which size should you specify for the VM?

A. Use Small for Off-Peak mode.

Which SQL Database configuration should you use?

A. Use the S1 performance level for On-Peak mode.

Select and Place:

Which tool should you use?

You need to develop the web role.

Select and Place:

Select and Place:

Select and Place:

Customers often enter notes that exceed 7 KB in size.

Payment Submission and Processing

You have the following payment processing requirements:

You have the following storage requirements:

Security and Monitoring

The web role must be secured by using HTTPS.