The Secret Of Microsoft AZ-304 Study Guide

Our pass rate is high to 98.9% and the similarity percentage between our AZ-304 study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the Microsoft AZ-304 exam in just one try? I am currently studying for the Microsoft AZ-304 exam. Latest Microsoft AZ-304 Test exam practice questions and answers, Try Microsoft AZ-304 Brain Dumps First.

Microsoft AZ-304 Free Dumps Questions Online, Read and Test Now.

NEW QUESTION 1

You are designing a storage solution that will use Azure Blob storage. The data will be stored in a cool access tier or an archive access tier based on the access patterns of the data.
You identify the following types of infrequently accessed data: Telemetry data: Deleted after two years D18912E1457D5D1DDCBD40AB3BF70D5D
AZ-304 dumps exhibit Promotional material: Deleted after 14 days
AZ-304 dumps exhibit Virtual machine audit data: Deleted after 200 days
AZ-304 dumps exhibit A colleague recommends using the archive access tier to store the data. Which statement accurately describes the recommendation?

  • A. Storage costs will be based on a minimum of 30 days.
  • B. Access to the data is guaranteed within five minutes.
  • C. Access to the data is guaranteed within 30 minutes.
  • D. Storage costs will be based on a minimum of 180 days.

Answer: D

Explanation:
The following table shows a comparison of premium performance block blob storage, and the hot, cool, and archive access tiers.
AZ-304 dumps exhibit
Reference:
https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers

NEW QUESTION 2

You architect a solution that calculates 3D geometry from height-map data. You have the following requirements:
Perform calculations in Azure.
Each node must communicate data to every other node.
Maximize the number of nodes to calculate multiple scenes as fast as possible. Require the least amount of effort to implement.
You need to recommend a solution.
Which two actions should you recommend? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

  • A. Create a render farm that uses Azure Batch.
  • B. Enable parallel file systems on Azure.
  • C. Enable parallel task execution on compute nodes.
  • D. Create a render farm that uses virtual machine (VM) scale sets.
  • E. Create a render farm that uses virtual machines (VMs).

Answer: AC

NEW QUESTION 3

A company has a hybrid ASP.NET Web API application that is based on a software as a service (SaaS) offering.
Users report general issues with the data. You advise the company to implement live monitoring and use ad hoc queries on stored JSON data. You also advise the company to set up smart alerting to detect anomalies in the data.
You need to recommend a solution to set up smart alerting. What should you recommend?

  • A. Azure Application Insights and Azure Monitor Logs
  • B. Azure Site Recovery and Azure Monitor Logs
  • C. Azure Data Lake Analytics and Azure Monitor Logs
  • D. Azure Security Center and Azure Data Lake Store

Answer: C

Explanation:
Application Insights, a feature of Azure Monitor, is an extensible Application Performance Management (APM) service for developers and DevOps professionals. Use it to monitor your live applications. It will automatically detect performance anomalies, and includes powerful analytics tools to help you diagnose issues and to understand what users actually do with your app.
Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/app/app-insights-overview

NEW QUESTION 4

You have an Azure Active Directory (Azure AD) tenant.
You plan to provide users with access to shared files by using Azure Storage. The users will be provided with different levels of access to various Azure file shares based on their user account or their group membership.
You need to recommend which additional Azure services must be used to support the planned deployment. What should you include in the recommendation?

  • A. an Azure AD enterprise application
  • B. Azure Information Protection
  • C. an Azure AD Domain Services (Azure AD DS) instance
  • D. an Azure Front Door instance

Answer: C

Explanation:
Azure Filessupports identity-based authentication over Server Message Block (SMB) throughtwo types of Domain Services: on-premises Active Directory Domain Services (AD DS) and Azure Active Directory Domain Services (Azure AD DS).
Reference:
https://docs.microsoft.com/en-us/azure/storage/files/storage-files-identity-auth-active-directory-domain-service

NEW QUESTION 5

You are designing an Azure resource deployment that will use Azure Resource Manager templates. The deployment will use Azure Key Vault to store secrets.
You need to recommend a solution to meet the following requirements:
Prevent the IT staff that will perform the deployment from retrieving the secrets directly from Key Vault. Use the principle of least privilege.
Which two actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Create a Key Vault access policy that allows all get key permissions, get secret permissions, and get certificate permissions.
  • B. From Access policies in Key Vault, enable access to the Azure Resource Manager for template deployment.
  • C. Create a Key Vault access policy that allows all list key permissions, list secret permissions, and list certificate permissions.
  • D. Assign the IT staff a custom role that includes the Microsoft.KeyVault/Vaults/Deploy/Action permission.
  • E. Assign the Key Vault Contributor role to the IT staff.

Answer: BD

Explanation:
B: To access a key vault during template deployment, set enabledForTemplateDeployment on the key vault to true.
D: The user who deploys the template must have the Microsoft.KeyVault/vaults/deploy/action permission for the scope of the resource group and key vault.
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault-parameter https://docs.microsoft.com/en-us/azure/key-vault/general/overview-security

NEW QUESTION 6

You need to recommend a solution for data of the historical transaction query system.
What should you include in the recommendation? To answer, Select the appropriate or options in the answer area.
NOTE: Each correct selection is worth one point
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
AZ-304 dumps exhibit

NEW QUESTION 7

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure Storage v2 account named Storage1. You plan to archive data to Storage1.
You need to ensure that the archived data cannot be deleted for five years. The solution must prevent administrators from deleting the data.
Solution: You create a file share and snapshots. Does this meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Instead you could create an Azure Blob storage container, and you configure a legal hold access policy. References:
https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-immutable-storage

NEW QUESTION 8

You have an on-premises network to which you deploy a virtual appliance.
You plan to deploy several Azure virtual machines and connect the on-premises network to Azure by using a Site-to-Site connection.
All network traffic that will be directed from the Azure virtual machines to a specific subnet must flow through the virtual appliance.
You need to recommend solutions to manage network traffic.
Which two options should you recommend? Each correct answer presents a complete solution.

  • A. Configure Azure Traffic Manager.
  • B. Implement an Azure virtual network.
  • C. Implement Azure ExpressRoute.
  • D. Configure a routing table.

Answer: CD

Explanation:
Connectivity can be from an any-to-any (IP VPN) network, a point-to-point Ethernet network, or a virtual cross-connection through a connectivity provider at a co-location facility. ExpressRoute connections do not go over the public Internet. This allows ExpressRoute connections to offer more reliability, faster speeds, lower latencies, and higher security than typical connections over the Internet.
Reference:
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-forced-tunneling-rm https://docs.microsoft.com/en-us/azure/expressroute/expressroute-introduction

NEW QUESTION 9

The developers at your company are building a containerized Python Django app.
You need to recommend platform to host the app. The solution must meet the following requirements:
AZ-304 dumps exhibit Support autoscaling.
AZ-304 dumps exhibit Support continuous deployment from an Azure Container Registry.
AZ-304 dumps exhibit Provide built-in functionality to authenticate app users by using Azure Active Directory (Azure AD). Which platform should you include in the recommendation?

  • A. Azure Container instances
  • B. an Azure App Service instance that uses containers
  • C. Azure Kubernetes Service (AKS)

Answer: C

Explanation:
To keep up with application demands in Azure Kubernetes Service (AKS), you may need to adjust the number of nodes that run your workloads. The cluster autoscaler component can watch for pods in your cluster that can't be scheduled because of resource constraints. When issues are detected, the number of nodes in a node pool is increased to meet the application demand.
Azure Container Registry is a private registry for hosting container images. It integrates well with orchestrators like Azure Container Service, including Docker Swarm, DC/OS, and the new Azure Kubernetes service.
Moreover, ACR provides capabilities such as Azure Active Directory-based authentication, webhook support, and delete operations.
Reference:
https://docs.microsoft.com/en-us/azure/aks/cluster-autoscaler
https://medium.com/velotio-perspectives/continuous-deployment-with-azure-kubernetes-service-azurecontainer- registry-jenkins-ca337940151b

NEW QUESTION 10

What should you include in the identity management strategy to support the planned changes?

  • A. Move all the domain controllers from corp.fabrikam.com to virtual networks in Azure.
  • B. Deploy domain controllers for corp.fabrikam.com to virtual networks in Azure.
  • C. Deploy a new Azure AD tenant for the authentication of new R&D projects.
  • D. Deploy domain controllers for the rd.fabrikam.com forest to virtual networks in Azure.

Answer: B

Explanation:
Directory synchronization between Azure Active Directory (Azure AD) and corp.fabrikam.com must not be affected by a link failure between Azure and the on-premises network. (This requires domain controllers in Azure)
Users on the on-premises network must be able to authenticate to corp.fabrikam.com if an Internet link fails. (This requires domain controllers on-premises)

NEW QUESTION 11

You need to recommend a solution for protecting the content of the payment processing system. What should you include in the recommendation?

  • A. Transparent Data Encryption (TDE)
  • B. Azure Storage Service Encryption
  • C. Always Encrypted with randomized encryption
  • D. Always Encrypted with deterministic encryption

Answer: D

NEW QUESTION 12

You have an Azure subscription that contains 100 virtual machines.
You plan to design a data protection strategy to encrypt the virtual disks.
You need to recommend a solution to encrypt the disks by using Azure Disk Encryption. The solution must provide the ability to encrypt operating system disks and data disks.
What should you include in the recommendation?

  • A. a passphrase
  • B. a certificate
  • C. a key
  • D. a secret

Answer: C

Explanation:
For enhanced virtual machine (VM) security and compliance, virtual disks in Azure can be encrypted. Disks are encrypted by using cryptographic keys that are secured in an Azure Key Vault. You control these cryptographic keys and can audit their use.
Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/encrypt-disks

NEW QUESTION 13

You have an Azure subscription that contains resources in three Azure regions. You need to implement Azure Key Vault to meet the following requirements: D18912E1457D5D1DDCBD40AB3BF70D5D
AZ-304 dumps exhibit In the event of a regional outage, all keys must be readable.
AZ-304 dumps exhibit All the resources in the subscription must be able to access Key Vault.
AZ-304 dumps exhibit The number of Key Vault resources to be deployed and managed must be minimized. How many instances of Key Vault should you implement?

  • A. 1
  • B. 2
  • C. 3
  • D. 6

Answer: A

Explanation:
The contents of your key vault are replicated within the region and to a secondary region at least 150 miles away but within the same geography. This maintains high durability of your keys and secrets. See the Azure paired regions document for details on specific region pairs.
Example: Secrets that must be shared by your application in both Europe West and Europe North. Minimize these as much as you can. Put these in a key vault in either of the two regions. Use the same URI from both regions. Microsoft will fail over the Key Vault service internally.
Reference:
https://docs.microsoft.com/en-us/azure/key-vault/general/disaster-recovery-guidance

NEW QUESTION 14

You are developing a web application that provides streaming video to users. You configure the application to use continuous integration and deployment.
The app must be highly available and provide a continuous streaming experience for users.
You need to recommend a solution that allows the application to store data in a geographical location that is closest to the user.
What should you recommend?

  • A. Azure App Service Web Apps
  • B. Azure App Service Isolated
  • C. Azure Redis Cache
  • D. Azure Content Delivery Network (CDN)

Answer: D

Explanation:
Azure Content Delivery Network (CDN) is a global CDN solution for delivering high-bandwidth content. It can be hosted in Azure or any other location. With Azure CDN, you can cache static objects loaded from Azure Blob storage, a web application, or any publicly accessible web server, by using the closest point of presence (POP) server. Azure CDN can also accelerate dynamic content, which cannot be cached, by leveraging various network and routing optimizations.
References:
https://docs.microsoft.com/en-in/azure/cdn/

NEW QUESTION 15

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it As a result, these questions will not appear In the review screen.
You have an on-premises Hyper-V cluster that hosts 20 virtual machines. Some virtual machines run Windows Server 2016 and some run Linux.
You plan to migrate the virtual machines to an Azure subscription.
You need to recommend a solution to replicate the disks of the virtual machines to Azure. The solution must ensure that the virtual machines remain available during the migration of the disks.
Solution: You recommend implementing an Azure Storage account and then running AzCopy. Does this meet the goal?

  • A. Yes
  • B. NO

Answer: B

Explanation:
AzCopy only copy files, not the disks. Instead use Azure Site Recovery. References:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-overview

NEW QUESTION 16

You have an on-premises network that uses on IP address space of 172.16.0.0/16 You plan to deploy 25 virtual machines to a new azure subscription.
You identity the following technical requirements.
AZ-304 dumps exhibit All Azure virtual machines must be placed on the same subnet subnet1.
AZ-304 dumps exhibit All the Azure virtual machines must be able to communicate with all on premises severs.
AZ-304 dumps exhibit The servers must be able to communicate between the on-premises network and Azure by using a site to site VPN.
You need to recommend a subnet design that meets the technical requirements.
What should you include in the recommendation? To answer, drag the appropriate network addresses to the correct subnet. Each network address may be used once, more than once or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
AZ-304 dumps exhibit

NEW QUESTION 17

You are designing a message application that will run on an on-premises Ubuntu virtual machine. The application will use Azure Storage queues.
You need to recommend a processing solution for the application to interact with the storage queues. The solution must meet the following requirements:
AZ-304 dumps exhibit Create and delete queues daily.
AZ-304 dumps exhibit Be scheduled by using a CRON job.
AZ-304 dumps exhibit Upload messages every five minutes.
What should developers use to interact with the queues?

  • A. Azure CLI
  • B. AzCopy
  • C. Azure Data Factory
  • D. .NET Core

Answer: D

Explanation:
Reference:
https://docs.microsoft.com/en-us/azure/storage/queues/storage-tutorial-queues

NEW QUESTION 18

You design a solution for the web tier of WebApp1 as shown in the exhibit.
AZ-304 dumps exhibit
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Box 1: Yes
Any new deployments to Azure must be redundant in case an Azure region fails.
Traffic Manager uses DNS to direct client requests to the most appropriate service endpoint based on a
traffic-routing method and the health of the endpoints. An endpoint is any Internet-facing service hosted inside or outside of Azure. Traffic Manager provides a range of traffic-routing methods and endpoint monitoring options to suit different application needs and automatic failover models. Traffic Manager is resilient to failure, including the failure of an entire Azure region.
Box 2: Yes
Recent changes in Azure brought some significant changes in autoscaling options for Azure Web Apps (i.e. Azure App Service to be precise as scaling happens on App Service plan level and has effect on all Web Apps running in that App Service plan).
Box 3: No
Traffic Manager provides a range of traffic-routing methods and endpoint monitoring options to suit different application needs and automatic failover models. Traffic Manager is resilient to failure, including the failure of an entire Azure region.
Reference:
https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview https://blogs.msdn.microsoft.com/hsirtl/2017/07/03/autoscaling-azure-web-apps/

NEW QUESTION 19

You need to recommend a data storage strategy for WebApp1. What should you include in in the recommendation?

  • A. an Azure SQL Database elastic pool
  • B. a vCore-baswl Azure SQL database
  • C. an Azure virtual machine that runs SQL Server
  • D. a fixed-size DTU AzureSQL database.

Answer: B

NEW QUESTION 20

You plan to deploy a network-intensive application to several Azure virtual machines. You need to recommend a solution that meets the following requirements:
AZ-304 dumps exhibit Minimizes the use of the virtual machine processors to transfer data
AZ-304 dumps exhibit Minimizes network latency
Which virtual machine size and feature should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sizes-hpc#h-series

NEW QUESTION 21
......

Thanks for reading the newest AZ-304 exam dumps! We recommend you to try the PREMIUM Downloadfreepdf.net AZ-304 dumps in VCE and PDF here: https://www.downloadfreepdf.net/AZ-304-pdf-download.html (0 Q&As Dumps)