Practice Free AZ-305 Exam Online Questions
DRAG DROP
Your on-premises network contains a server named Server1 that runs an ASP.NET application named App1.
You have a hybrid deployment of Azure Active Directory (Azure AD).
You need to recommend a solution to ensure that users sign in by using their Azure AD account and Azure Multi-Factor Authentication (MFA) when they connect to App1 from the internet.
Which three Azure services should you recommend be deployed and configured in sequence? To answer, move the appropriate services from the list of services to the answer area and arrange them in the correct order.
Explanation:
AD Application Proxy
AD Enterprise Application
AD Conditional access policy
https://thesleepyadmins.com/2019/02/
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company deploys several virtual machines on-premises and to Azure. ExpressRoute is being deployed and configured for on-premises to Azure connectivity.
Several virtual machines exhibit network connectivity issues.
You need to analyze the network traffic to identify whether packets are being allowed or denied to the virtual machines.
Solution: Use Azure Traffic Analytics in Azure Network Watcher to analyze the network traffic.
Does this meet the goal?
- A . Yes
- B . No
B
Explanation:
Instead use Azure Network Watcher IP Flow Verify, which allows you to detect traffic filtering issues at a VM level.
Note: IP flow verify checks if a packet is allowed or denied to or from a virtual machine. The information consists of direction, protocol, local IP, remote IP, local port, and remote port. If the packet is denied by a security group, the name of the rule that denied the packet is returned. While any source or destination IP can be chosen, IP flow verify helps administrators quickly diagnose connectivity issues from or to the internet and from or to the on-premises environment.
Reference:
https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview
https://docs.microsoft.com/en-us/azure/network-watcher/traffic-analytics
You plan to deploy an Azure Databricks Data Science & Engineering workspace and ingest data into the workspace.
Where should you persist the ingested data?
- A . Azure Files
- B . Azure Data Lake
- C . Azure SQL Database
- D . Azure Cosmos DB
B
Explanation:
The Azure Databricks Data Science & Engineering data lands in a data lake for long term persisted storage, in Azure Blob Storage or Azure Data Lake Storage.
Reference: https://docs.microsoft.com/en-us/azure/databricks/scenarios/what-is-azure-databricks-ws
You have an on-premises application named App1 that uses an Oracle database.
You plan to use Azure Databricks to transform and load data from App1 to an Azure Synapse Analytics instance.
You need to ensure that the App1 data is available to Databricks.
Which two Azure services should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
- A . Azure Data Box Edge
- B . Azure Data Lake Storage
- C . Azure Data Factory
- D . Azure Data Box Gateway
- E . Azure Import/Export service
You have an Azure subscription that contains an Azure App Service app named App1 in a Standard App Service plan. App1 is accessed directly from the internet by using the following URL: https://app 1. contoso.com. The Azure region that hosts App1 supports availability zones for App Service apps.
You need to recommend a redundancy solution for App 1.
The solution must meet the following requirements:
• Ensure that App1 is available if two availability zones fail.
• Minimize administrative effort.
• Minimize costs.
What should you recommend?
- A . Create an App Service Environment v3. Redeploy App 1.
- B . Scale out the existing App1 App Service instance to three instances.
- C . Create a new Premium v3 App Service plan. Redeploy App 1.
- D . Scale up the existing App Service plan for App1 to the Premium v3 tier.
You have an on-premises Microsoft SQL server named SQLI that hosts 50 databases.
You plan to migrate SQL 1 to Azure SQL Managed Instance.
You need to perform an offline migration of SQL 1. The solution must minimize administrative effort.
What should you include in the solution?
- A . SQL Server Migration Assistant (SSMA)
- B . Azure Migrate
- C . Data Migration Assistant (DMA)
- D . Azure Database Migration Service
D
Explanation:
This Azure service supports migration in the offline mode for applications that can afford downtime during the migration process. Unlike the continuous migration in online mode, offline mode migration runs a one-time restore of a full database backup from the source to the target
https://learn.microsoft.com/en-us/azure/azure-sql/migration-guides/managed-instance/sql-server-to-managed-instance-overview?view=azuresql#compare-migration-options
You have an on-premises network and an Azure subscription. The on-premises network has several branch offices.
A branch office in Toronto contains a virtual machine named VM1 that is configured as a file server.
Users access the shared files on VM1 from all the offices.
You need to recommend a solution to ensure that the users can access the shares files as quickly as possible if the Toronto branch office is inaccessible.
What should you include in the recommendation?
- A . a Recovery Services vault and Azure Backup
- B . an Azure file share and Azure File Sync
- C . Azure blob containers and Azure File Sync
- D . a Recovery Services vault and Windows Server Backup
B
Explanation:
Use Azure File Sync to centralize your organization’s file shares in Azure Files, while keeping the flexibility, performance, and compatibility of an on-premises file server. Azure File Sync transforms Windows Server into a quick cache of your Azure file share.
You need an Azure file share in the same region that you want to deploy Azure File Sync.
Incorrect Answers:
A: Backups would be a slower solution.
Reference: https://docs.microsoft.com/en-us/azure/storage/files/storage-sync-files-deployment-guide
You plan to migrate App1 to Azure.
You need to recommend a network connectivity solution for the Azure Storage account that will host the App1 data. The solution must meet the security and compliance requirements.
What should you include in the recommendation?
- A . a private endpoint
- B . a service endpoint that has a service endpoint policy
- C . Azure public peering for an ExpressRoute circuit
- D . Microsoft peering for an ExpressRoute circuit
A
Explanation:
Private Endpoint securely connect to storage accounts from on-premises networks that connect to the VNet using VPN or ExpressRoutes with private-peering.
Private Endpoint also secure your storage account by configuring the storage firewall to block all connections on the public endpoint for the storage service.
https://docs.microsoft.com/en-us/azure/expressroute/expressroute-faqs#microsoft-peering
Your company plans to publish APIs for its services by using Azure API Management.
You discover that service responses include the AspNet-Version header.
You need to recommend a solution to remove AspNet-Version from the response of the published APIs.
What should you include in the recommendation?
- A . a new product
- B . a modification to the URL scheme
- C . a new policy
- D . a new revision
C
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/api-management/transform-api
HOTSPOT
You have an Azure subscription.
You plan to deploy five storage accounts that will store block blobs and five storage accounts that will host file shares. The file shares will be accessed by using the SMB protocol.
You need to recommend an access authorization solution for the storage accounts.
The solution must meet the following requirements:
• Maximize security.
• Prevent the use of shared keys.
• Whenever possible, support time-limited access.
What should you include in the solution? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
