This page was exported from IT Certification Exam Braindumps [ http://blog.braindumpsit.com ] Export date:Sun Oct 6 16:18:04 2024 / +0000 GMT ___________________________________________________ Title: [Q98-Q118] AZ-400 100% Guarantee Download AZ-400 Exam PDF Q&A [Mar 02, 2023] --------------------------------------------------- AZ-400 100% Guarantee Download AZ-400 Exam PDF Q&A [Mar 02, 2023] Get AZ-400 Actual Free Exam Q&As to Prepare for Your Microsoft Certification Key Exam Details Before you take Microsoft AZ-400, the very first thing that you need to know is that the duration of this exam is 150 minutes. Each candidate will have to answer 40 to 60 questions within this period, so it is important to make sure that you keep track of time. The minimum passing score for this test is 700 out of 1000. The exam voucher costs $165 and the registration process should be done via the Pearson VUE platform. You can take this certification test in the Korean, Simplified Chinese, Japanese, or English languages.   Q98. You need to deploy Azure Kubernetes Service (AKS) to host an application. The solution must meet the following requirements:* Containers must only be published internally.* AKS clusters must be able to create and manage containers in Azure.What should you use for each requirement? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. ExplanationBox 1: Azure Container RegistryAzure services like Azure Container Registry (ACR) and Azure Container Instances (ACI) can be used and connected from independent container orchestrators like kubernetes (k8s). You can set up a custom ACR and connect it to an existing k8s cluster to ensure images will be pulled from the private container registry instead of the public docker hub.Box 2: An Azure service principalWhen you’re using Azure Container Registry (ACR) with Azure Kubernetes Service (AKS), an authentication mechanism needs to be established. You can set up AKS and ACR integration during the initial creation of your AKS cluster. To allow an AKS cluster to interact with ACR, an Azure Active Directory service principal is used.References:https://thorsten-hans.com/how-to-use-private-azure-container-registry-with-kuberneteshttps://docs.microsoft.com/en-us/azure/aks/cluster-container-registry-integrationQ99. You configure an Azure Application Insights availability test.You need to notify the customer services department at your company by email when availability is degraded.You create an Azure logic app that will handle the email and follow up actions.Which type of trigger should you use to invoke the logic app?  an ApiConnection trigger  a Request trigger  an HTTPWebhook trigger  an HTTP trigger You can use webhooks to route an Azure alert notification to other systems for post-processing or custom actions. You can use a webhook on an alert to route it to services that send SMS messages, to log bugs, to notify a team via chat or messaging services, or for various other actions.Reference:https://docs.microsoft.com/en-us/azure/azure-monitor/platform/alerts-webhooksQ100. You have an Azure subscription that contains a resources group named RG1. RG1 contains the following resources:* Four Azure virtual machines that run Windows Server and have Internet Information Services (IIS) installed* SQL Server on an Azure virtual machine* An Azure Load BalancerYou need to deploy an application to the virtual machines in RG1 by using Azure Pipelines.Which four actions should you perform in sequence? To answer, move the appropriate actions from the List of actions to the answer area and arrange them in the correct order. 1 – Create an agent pool2 – Create a deployment group.3 – Execute the pipeline4 – Add and configure a deployment group job for the pipeline.Explanation:Step 1: Create an agent poolAzure Pipelines provides a pre-defined agent pool named Azure Pipelines with Microsoft-hosted agents.Step 2: Create a deployment groupDeployment groups make it easy to define logical groups of target machines for deployment, and install the required agent on each machine.Step 3: Execute the Azure Pipelines Agent extension to the virtual machinesInstall the Azure Pipelines Agent Azure VM extensionStep 4: Add and configure a deployment group job for the pipelineTasks that you define in a deployment group job run on some or all of the target servers, depending on the arguments you specify for the tasks and the job itself.Reference:https://docs.microsoft.com/en-us/azure/devops/pipelines/release/deployment-groups/howto-provision-deployment-group-agentsQ101. Your company is creating a suite of three mobile applications.You need to control access to the application builds. The solution must be managed at the organization level What should you use? To answer, select the appropriate options m the answer area.NOTE: Each correct selection is worth one point. Q102. You are planning projects for three customers. Each customer’s preferred process for work items is shown in the following table.The customers all plan to use Azure DevOps for work item management.Which work item process should you use for each customer? To answer, drag the appropriate work item process to the correct customers. Each work item process may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/devops/boards/work-items/guidance/choose-process?view=azure-devopsQ103. You mc configuring Azure DevOps build pipelines.You plan to use hosted build agents.Which build agent pool should you use to compile each application type? To answer, drag the appropriate built agent pools to the correct application types. Each butt agent pool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. ExplanationBox 1: Hosted macOSHosted macOS pool (Azure Pipelines only): Enables you to build and release on macOS without having to configure a self-hosted macOS agent. This option affects where your data is stored.Box 2: HostedHosted pool (Azure Pipelines only): The Hosted pool is the built-in pool that is a collection of Microsoft-hosted agents.Q104. Your company has a project in Azure DevOps named Project1.All the developers at the company have Windows 10 devices.You need to create a Git repository for Project1. The solution must meet the following requirements:* Support large binary files.* Store binary files outside of the repository.* Use a standard Git workflow to maintain the metadata of the binary files by using commits to the repository. 1 – Perform a custom installation of Git foe Windows that includes Git Lage File Storage (LFS).2 – Configure SSH key-based authentication.3 – Configure Git Large File Storage (LFS) file tracking.Q105. You need to ensure that the https://contoso.com/statushook webhook is called every time a repository named az40010480345acr1 receives a new version of an image named dotnetapp.To complete this task, sign in to the Microsoft Azure portal. See solution below.Explanation* Sign in to the Azure portal.* Navigate to the container registry az40010480345acr1.* Under Services, select Webhooks.* Select the existing webhook https://contoso.com/statushook, and double-click on it to get its properties.* For Trigger actions select image pushExample web hook:Reference:https://docs.microsoft.com/en-us/azure/container-registry/container-registry-webhookQ106. How should you complete the code to initialize App Center in the mobile application? To answer, select the appropriate options in the answer area.NOTE: Each correct selection a worth one point. References: https://docs.microsoft.com/en-us/appcenter/sdk/getting-started/iosQ107. You are creating a NuGet package.You plan to distribute the package to your development team privately.You need to share the package and test that the package can be consumed.Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. 1 – Configure a self-hosted agent.2 – Create a new Azure Artifacts feed3 – Publish the package.4 – Connect to an Azure Artifacts feed.Reference:https://medium.com/@dan.cokely/creating-nuget-packages-in-azure-devops-with-azure-pipelines-and-yaml-d6fa30f0f15eQ108. You have a brand policy in a project in Azure DevOps. The policy requires that code always builds successfully.You need to ensure that a specific user can always merge change to the master branch, even if the code fails to compile. The solution must use the principle of least privilege.What should you do?  From the Security setting of the repository, modify the access control tor the user.  From the Security settings of the branch, modify the access control for the user.  Add the user to the Build Administrators group,  Add the user to the Project Administrators group ExplanationIn some cases, you need to bypass policy requirements so you can push changes to the branch directly or complete a pull request even if branch policies are not satisfied. For these situations, grant the desired permission from the previous list to a user or group. You can scope this permission to an entire project, a repo, or a single branch. Manage this permission along the with other Git permissions.References: https://docs.microsoft.com/en-us/azure/devops/repos/git/branch-policiesQ109. You have a GrtHub organization that contains three users named User 1. User2. and User3. You have a project that contains a repository named repo1. You need to configure permissions for repo1. The solution must meet the following requirements:* Ensure that User 1 can actively push to repo1.* Ensure that Usef2 can manage issues and pull requests for repo1.* Ensure that User3 can manage repo1.* Prevent User3 from accessing sensitive data in repo1.Which role should you assign to each use? Q110. You need to ensure that Microsoft Visual Studio 2017 can remotely attach to an Azure Function named fa-11566895.To complete this task, sign in to the Microsoft Azure portal. Enable Remote DebuggingBefore we start a debugging session to our Azure Function app we need to enable the functionality.Navigate in the Azure portal to your function app fa-11566895Go to the “Application settings”Under “Debugging” set Remote Debugging to On and set Remote Visual Studio version to 2017.Reference:https://www.locktar.nl/uncategorized/azure-remote-debugging-manually-in-visual-studio-2017/Q111. As part of your application build process, you need to deploy a group of resources to Azure by using an Azure Resource Manager template located on GitHub.Which three action should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. ExplanationQ112. Your company uses Team Foundation Server 2013 (TFS 2013).You plan to migrate to Azure DevOps.You need to recommend a migration strategy that meets the following requirements:* Preserves the dates of Team Foundation Version Control changesets* Preserves the changes dates of work items revisions* Minimizes migration effort* Migrates all TFS artifactsWhat should you recommend? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. ExplanationBox 1: Upgrade TFS to the most recent RTM release.One of the major prerequisites for migrating your Team Foundation Server database is to get your database schema version as close as possible to what is currently deployed in Azure Devops Services.Box 2: Use the TFS Database Import ServiceIn Phase 3 of your migration project, you will work on upgrading your Team Foundation Server to one of the supported versions for the Database Import Service in Azure Devops Services.References: Team Foundation Server to Azure Devops Services Migration GuideQ113. You have multi-tier application that he an Azure Web Apps front end and art Azure SQL Datable back end.You need to recommend a solution to capture and store telemetry data. The solution must meet the following requirements:* Support using ad-hoc queries to identify baselines.* Trigger alerts when metrics in the baseline are exceeded.* Store application and database metrics in a central location.What should you include in the recommendation?  Azure Application Insights  Azure SQL Database Intelligent Insights  Azure Event Hubs  Azure Log Analytics ExplanationAzure Platform as a Service (PaaS) resources, like Azure SQL and Web Sites (Web Apps), can emit performance metrics data natively to Log Analytics.The Premium plan will retain up to 12 months of data, giving you an excellent baseline ability.There are two options available in the Azure portal for analyzing data stored in Log analytics and for creating queries for ad hoc analysis.References: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/collect-azurepass-poshQ114. You have an Azure subscription that contains a resources group named RG1. RG1 contains the following resources:* Four Azure virtual machines that run Windows Server and have Internet Information Services (IIS) installed* SQL Server on an Azure virtual machine* An Azure Load BalancerYou need to deploy an application to the virtual machines in RG1 by using Azure Pipelines.Which four actions should you perform in sequence? To answer, move the appropriate actions from the List of actions to the answer area and arrange them in the correct order. ExplanationStep 1: Create an agent poolAzure Pipelines provides a pre-defined agent pool named Azure Pipelines with Microsoft-hosted agents.Step 2: Create a deployment groupDeployment groups make it easy to define logical groups of target machines for deployment, and install the required agent on each machine.Step 3: Execute the Azure Pipelines Agent extension to the virtual machines Install the Azure Pipelines Agent Azure VM extension Step 4: Add and configure a deployment group job for the pipeline Tasks that you define in a deployment group job run on some or all of the target servers, depending on the arguments you specify for the tasks and the job itself.Reference:https://docs.microsoft.com/en-us/azure/devops/pipelines/release/deployment-groups/howto-provision-deploymenQ115. Your company is creating a suite of three mobile applications.You need to control access to the application builds. The solution must be managed at the organization level What should you use? To answer, select the appropriate options m the answer area.NOTE: Each correct selection is worth one point. ExplanationExplanation:Box 1: Microsoft Visual Studio App Center distribution GroupsDistribution Groups are used to control access to releases. A Distribution Group represents a set of users that can be managed jointly and can have common access to releases. Example of Distribution Groups can be teams of users, like the QA Team or External Beta Testers or can represent stages or rings of releases, such as Staging.Box 2: SharedShared distribution groups are private or public distribution groups that are shared across multiple apps in a single organization. Shared distribution groups eliminate the need to replicate distribution groups across multiple apps.Note: With the Deploy with App Center Task in Visual Studio Team Services, you can deploy your apps from Azure DevOps (formerly known as VSTS) to App Center. By deploying to App Center, you will be able to distribute your builds to your users.References: https://docs.microsoft.com/en-us/appcenter/distribution/groupsQ116. Your company is creating a suite of three mobile applications.You need to control access to the application builds. The solution must be managed at the organization level What should you use? To answer, select the appropriate options m the answer area.NOTE: Each correct selection is worth one point. ExplanationBox 1: Microsoft Visual Studio App Center distribution GroupsDistribution Groups are used to control access to releases. A Distribution Group represents a set of users that can be managed jointly and can have common access to releases. Example of Distribution Groups can be teams of users, like the QA Team or External Beta Testers or can represent stages or rings of releases, such as Staging.Box 2: SharedShared distribution groups are private or public distribution groups that are shared across multiple apps in a single organization. Shared distribution groups eliminate the need to replicate distribution groups across multiple apps.Note: With the Deploy with App Center Task in Visual Studio Team Services, you can deploy your apps from Azure DevOps (formerly known as VSTS) to App Center. By deploying to App Center, you will be able to distribute your builds to your users.References: https://docs.microsoft.com/en-us/appcenter/distribution/groupsQ117. Your company deploys applications in Docker containers.You want to detect known exploits in the Docker images used to provision the Docker containers.You need to integrate image scanning into the application lifecycle. The solution must expose the exploits as early as possible during the application lifecycle.What should you configure?  a task executed in the continuous integration pipeline and a scheduled task that analyzes the image registry  manual tasks performed during the planning phase and the deployment phase  a task executed in the continuous deployment pipeline and a scheduled task against a running production container  a task executed in the continuous integration pipeline and a scheduled task that analyzes the production container Explanation/Reference:Explanation:You can use the Docker task to sign into ACR and then use a subsequent script to pull an image and scan the container image for vulnerabilities.Use the docker task in a build or release pipeline. This task can be used with Docker or Azure Container registry.Incorrect Answers:C: We should not wait until deployment. We want to detect the exploits as early as possible.D: We should wait until the image is in the product container. We want to detect the exploits as early as possible.References: https://docs.microsoft.com/en-us/azure/devops/articles/security-validation-cicd-pipeline?view=vstsQ118. You need to configure a cloud service to store the secrets required by the mobile applications to call the share.What should you include in the solution? To answer, select the appropriate options m the answer ater, NOTE:Each correct selection is worth one point. ExplanationEvery request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key.Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.The investment planning applications suite will include one multi-tier web application and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorize-with-shared-key Loading … AZ-400 Questions Truly Valid For Your Microsoft Exam: https://www.braindumpsit.com/AZ-400_real-exam.html --------------------------------------------------- Images: https://blog.braindumpsit.com/wp-content/plugins/watu/loading.gif https://blog.braindumpsit.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2023-03-02 10:15:52 Post date GMT: 2023-03-02 10:15:52 Post modified date: 2023-03-02 10:15:52 Post modified date GMT: 2023-03-02 10:15:52