What is the best way for Tailwind traders to limit all outbound?

Tailwind Traders is planning on making some significant changes to their governance solution. They have asked for your assistance with recommendations and questions. Here are the specific requirements.

• Cost and accounting. Tailwind Traders has two main business units that handle Apparel and Sporting Goods. Each of the business units consist of three departments: Product Development, Marketing, and Sales. Each business unit and subunit will be responsible for tracking their Azure spend. At the same time, the Enterprise IT team will be responsible for providing company-wide Azure cost reporting.

• New development project. The company has a new development project for customer feedback. The CFO wants to ensure all costs associated with the project are captured. For the testing phase, workloads should be hosted on lower cost virtual machines. The virtual machines should be named to indicate they are part of the project. Any instances of non-compliance with resource consistency rules should be automatically identified.

Tasks

1. Cost and accounting

   • What are different ways Tailwind Traders could organize their subscriptions and management groups. Which would be the best to meet their requirements?

   • Design two alternative hierarchies and explain your decision-making process.

2. New development project

   • What are the different ways Tailwind Traders could track costs for the new development project?

   • How are you ensuring compliance with the requirements for virtual machine sizing and naming?

   • Propose at least two ways of meeting the requirements. Explain your final decision.

How are you incorporating the Well Architected Framework pillars to produce a high quality, stable, and efficient cloud architecture?

Full practice exam from JOSE GARCIA ANTICONA

Here is the Practice question with the answer for the AZ-900 certification exam. I hope these practice questions will help you to clear the certification exam.

• 1. True or false: You need to purchase an Azure account before you can use any Azure resources.
  • True
  • False

• 2. What is meant by cloud computing?
  • Delivery of computing services over the internet.
  • Setting up your own datacenter.
  • Using the internet

• 3. What is not a reason to move to the cloud?
  • Faster innovation
  • A limited pool of services
  • Speech recognition and other cognitive services

• 3. Which of the following choices isn’t a cloud computing category?
  • Networking-as-a-Service (NaaS)
  • Platform-as-a-Service (PaaS)
  • Infrastructure-as-a-Service (IaaS)
  • Software-as-a-Service (SaaS)

• 4. Which of the following statements is true?
  • With Operating Expenses (OpEx), you are responsible for purchasing and maintaining your computing resources.
  • With Operating Expenses (OpEx), you are only responsible for the computing resources that you use.
  • With Capital Expenses (CapEx), you are only responsible for the computing resources that you use.

• 5. Which of the following options isn’t a type of cloud computing?
  • Distributed cloud
  • Hybrid cloud
  • Private cloud
  • Public cloud

• 6. Which of the following choices isn’t a benefit of using cloud services?
  • Scalability
  • Disaster recovery
  • High availability
  • Geographic isolation

• 7. Which of the following can be used to manage governance across multiple Azure subscriptions?
  • Azure initiatives
  • Management groups
  • Resource groups

• 8. Which of the following is a logical unit of Azure services that links to an Azure account?
  • Azure subscription
  • Management group
  • Resource group
  • Public cloud

• 9. Which of the following features doesn’t apply to resource groups?
  • Resources can be in only one resource group.
  • Role-based access control can be applied to the resource group.
  • Resource groups can be nested.

• 10. Which of the following statements is a valid statement about an Azure subscription?
  • Using Azure doesn’t require a subscription.
  • An Azure subscription is a logical unit of Azure services.
  • You can’t have more than one subscription.

• 11. Tailwind Traders wants to create a secure communication tunnel between its branch offices. Which of the following technologies can’t be used?
  • Point-to-site virtual private network
  • Implicit FTP over SSL
  • Azure ExpressRoute
  • Site-to-site virtual private network

• 12. Tailwind Traders wants to use Azure ExpressRoute to connect its on-premises network to the Microsoft cloud. Which of the following choices isn’t an ExpressRoute model that Tailwind Traders can use?
  • Any-to-any connection
  • Site-to-site virtual private network
  • Point-to-point Ethernet connection
  • CloudExchange colocation

• 13 .Which of the following options can you use to link virtual networks?
  • Network address translation
  • Multi-chassis link aggregation
  • Dynamic Host Configuration Protocol
  • Virtual network peering

• 14. Which of the following options isn’t a benefit of ExpressRoute?
  • Redundant connectivity
  • Consistent network throughput
  • Encrypted network communication
  • Access to Microsoft cloud services

• 15. What is the first step that you would take in order to share an image file as a blob in Azure Storage?
  • Create an Azure Storage container to store the image.
  • Create an Azure Storage account.
  • Upload the image file and create a container.
  • Use a Shared Access Signature (SAS) token to restrict access to the image.

• 16. Which Azure Storage option is better for storing data for backup and restore, disaster recovery, and archiving?
  • Azure Files Storage
  • Azure Disk Storage
  • Azure Blob Storage

• 17. Your development team is interested in writing Graph-based applications that take advantage of the Gremlin API. Which option would be ideal for that scenario?
  • Azure Cosmos DB
  • Azure SQL Database
  • Azure Databricks
  • Azure Database for PostgreSQL

• 18. Tailwind Traders uses the LAMP stack for several of its websites. Which option would be ideal for migration?
  • Azure Cosmos DB
  • Azure Database for MySQL
  • Azure Database for PostgreSQL

• 19. Tailwind Traders has millions of log entries that it wants to analyze. Which option would be ideal for analysis?
  • Azure Cosmos DB
  • Azure SQL Database
  • Azure Database for PostgreSQL
  • Azure Synapse Analytics

• 20. You can set up multiple invoices within the same billing account.
  • True
  • False

• 21. All subscriptions within a single management group should not trust the same Azure AD tenant.
  • True
  • False

• 22. Computing capacity can be increased by adding RAM or CPUs to a virtual machine is
  • Vertical Scalability
  • Horizontal Scalability

• 23. IaaS lets you bypass the cost and complexity of buying and managing physical servers and data centre infrastructure
  • True
  • False

• 24. PaaS is designed to make it easier for developers to quickly create web or mobile apps, without worrying about setting up or managing the underlying infrastructure of servers, storage, network, and databases needed for development.
  • True
  • False

• 25. Azure SQL Database is a
  • PaaS
  • IaaS
  • SaaS

• 26. Azure Storage Account is a
  • PaaS
  • IaaS
  • SaaS

• 27. Which is true about Azure portal ?
  • It is an alternative to command-line tools
  • It is designed for resiliency and continuous availability.
  • Its updates continuously and requires downtime for maintenance activities.
  • It does not help in managing azure subscription.

• 28. To create and use Azure services, you need an Azure subscription.
  • True
  • False

• 29. Which are not true about public cloud ?
  • No capital expenditures to scale up.
  • Provides the most flexibility.
  • Organizations pay only for what they use.
  • Organizations control security, compliance, or legal requirements.

• 30. Which is true about Operational Expenditure (OpEx)
  • OpEx is up-front spending
  • OpEx has a value that reduces over time.
  • OpEx is pay for a service or product as you use it.

• 31. Which statements is/are true about Subscription ?
  • Organizations can use subscriptions to manage costs and the resources
  • Subscription is a logical unit of Azure.
  • A subscription groups together user accounts and the resources.
  • For each subscription, there are no limits or quotas on the number of resources that you can create and use.
  • All of above

• 32. All subscriptions in a management group automatically inherit the conditions applied to the management group.
  • True
  • False

• 33. Azure Active Directory, Azure Traffic Manager, and Azure DNS require you to select a particular region,
  • True
  • False

• 34. All services and VM feature available in all region?
  • True
  • False

• 35. Which statement is not true about azure region
  • Global regions provide better scalability and redundancy.
  • They also preserve data residency for your services.
  • Regions are what you use to identify the location for your resources.
  • All services and VM feature available in all region

• 36. Which is false about Azure Availability Zone ?
  • made up of one or more datacenters
  • is set up to be an isolation boundary.
  • Every region has support for availability zones.
  • There’s a minimum of three zones within a single region.

• 37. What is/are false about Azure Marketplace
  • It helps connect users with Microsoft partners.
  • Few solutions and services are certified to run on Azure.
  • Customers can find, try, purchase, and provision applications and services.
  • Azure Marketplace is designed only for IT pros.

• 38. Some services or VM features are only available in certain regions.
  • True
  • False

• 39. In China Microsoft maintain the datacenter directly
  • True
  • False

• 40. Every region has support for availability zones
  • True
  • False

• 41. Availability zones are physically separate datacenters outside an Azure region.
  • True
  • False

• 42. Each Azure region is always paired with another region within the same geography at least 100 miles away.
  • True
  • False

• 43. Each Azure region is always paired with another region within the same geography.
  • True
  • False

• 44. All the resources in your resource group should share the same lifecycle.
  • True
  • False

• 45. Each resource can exist in more than one resource group
  • True
  • False

• 46. A resource can connect to resources in other resource groups.
  • True
  • False

• 47. The resources in a resource group can be in different regions than the resource group.
  • True
  • False

• 48. A resource group can not be used to scope access control for administrative actions.
  • True
  • False

• 49. Some resources can exist outside of a resource group.
  • True
  • False

• 50. Azure management groups provide a level of scope above subscriptions.
  • True
  • False

• 51. Each management group and subscription can support more than one parent.
  • True
  • False

---

• 52. VMs are an ideal choice when you need:
  • Total control over the operating system (OS).
  • The ability to run custom software.
  • To use custom hosting configurations.
  • All of above.

• 53. Azure virtual machine scale sets let you create and manage a group of load balanced VMs.
  • True
  • False

• 54. Virtual machine scale sets let you deploy and manage a set of different virtual machines.
  • True
  • False

• 55. Azur Container instance is a platform as a service (PaaS).
  • True
  • False

• 56. With Functions, you use a GUI to define the actions and how they relate to one another.
  • True
  • False
• 57. Functions can Runs only in the cloud.
  • True
  • False
• 58. Logic App Can run locally or in the cloud
  • True
  • False

• 59. Match the A to B. A1. Functions, A2. Logic App, B1. Code First, B2. Designe First
  • A1-B1 and A2-B2
  • A1-B2 and A2-B1

• 59. Which Azure compute resource can be deployed to manage a set of identical virtual machines?
  • Virtual machine scale sets
  • Virtual machine availability sets
  • Virtual machine availability zones

• 60. Which of the following services should be used when the primary concern is to perform work in response to an event (often via a REST command) that needs a response in a few seconds?
  • Azure Functions
  • Azure App Service
  • Azure Container Instances

• 61. Your company has a team of remote workers that need to use Windows-based software to develop your company’s applications, but your team members are using various operating systems like macOS, Linux, and Windows. Which Azure compute service would help resolve this scenario?
  • Azure App Service
  • Azure Virtual Desktop
  • Azure Container Instances

• 62. Match the following
• A1 – B1, A2 – B2, A3 – B3
• A1 – B1, A2 – B2, A3 – B3
• A1 – B2, A2 – B3, A3 – B1

ABPoint-to-site virtual private networksWhere you need greater bandwidth and even higher levels of securitySite-to-site virtual private networksThe typical approach to a virtual private network (VPN) connection is from a computer outside your organization, back into your corporate network.Azure ExpressRouteVPN links your on-premises VPN device or gateway to the Azure VPN gateway in a virtual network.

• 63. Azure virtual networks enable Azure resources, such as VMs, web apps, and databases, to communicate with each other
  • True
  • False

• 64. Azure virtual networks provide
  • Communicate between Azure resources
  • Communicate with on-premises resources
  • Route network traffic
  • Filter network traffic
  • All of above

• 65. You can link virtual networks together by using virtual network peering
  • True
  • False

• 66. You create custom routes between your on-premises network gateway and an Azure virtual network gateway using
  • Exchanging border gateway protocol (BGP)
  • User-defined routes
  • Both

• 67. You can deploy only one VPN gateway in each virtual network
  • True
  • False

• 68. ExpressRoute does not provide private connectivity, as it isn’t encrypted.
  • True
  • False

• 69. Azure virtual networks enable you to filter traffic between subnets.
  • True
  • False

• 70. ExpressRoute is encrypted.
  • True
  • False

• 71. BGP protocol enables dynamic routing between your on-premises network and services running in the Microsoft cloud.
  • True
  • False

• 72. A site-to-site virtual private network is an ExpressRoute model
  • True
  • False

• 73. A company wants to build a new voting kiosk for sales to governments around the world. Which IoT technologies should the company choose to ensure the highest degree of security?
  • IoT Hub
  • IoT Central
  • Azure Sphere

• 74. A company wants to quickly manage its individual IoT devices by using a web-based user interface. Which IoT technology should it choose?
  • IoT Hub
  • IoT Central
  • Azure Sphere

• 75. You want to send messages from the IoT device to the cloud and vice versa. Which IoT technology can send and receive messages?
  • IoT Hub
  • IoT Central
  • Azure Sphere

TO BE CONTINUE IN…

Like this:

Like Loading...

What's the best way to limit all outbound traffic from VMs to known hosts?

What are the ideal Azure solutions for tailwind traders?

Which is the best way for tailwind traders to safely store its certificates so that they re accessible to cloud?

How can you enforce having only certain applications run on your VMs?