Braindump2go New Updated 70 533 PDF
Braindump2go New Updated 70 533 PDF
Braindump2go New Updated 70 533 PDF
Vendor: Microsoft
QUESTION 11
You publish an application named MyApp to Azure Active Directory (Azure AD).
You grant access to the web APIs through OAuth 2.0.
MyApp is generating numerous user consent prompts.
You need to reduce the amount of user consent prompts.
What should you do?
Answer: A
Explanation:
When using the Authorization Code Grant Flow, you can configure the client to call multiple
resources. Typically, this would require a call to the authorization endpoint for each target service.
To avoid multiple calls and multiple user consent prompts, and reduce the number of refresh
tokens the client needs to cache, Azure Active Directory (Azure AD) has implemented multi -
resource refresh tokens. This feature allows you to use a single refresh token to request access
tokens for multiple resources.
QUESTION 12
Your company network includes users in multiple directories.
You plan to publish a software-as-a-service application named SaasApp1 to Azure Active
Directory.
You need to ensure that all users can access SaasApp1.
What should you do?
Answer: C
Explanation:
* When you get deeper into using Windows Azure Active Directory, you'll run into new
terminology. For instance, is called "directory" is also referred to as a Windows Azure AD Tenant
or simply as "tenant." This stems from the fact that WAAD ()Windows Azure Active Directory is a
shared service for many clients. In this service, every client gets its own separate space for which
the client is the tenant. In the case of WAAD this space is a directory. This might be a little
confusing, because you can create multiple directories, in WAAD terminology multiple tenants,
even though you are a single client.
* Multitenant Applications in Azure
A multitenant application is a shared resource that allows separate users, or "tenants," to view the
application as though it was their own. A typical scenario that lends itself to a multitenant
application is one in which all users of the application may wish to customize the user experience
but otherwise have the same basic business requirements. Examples of large multitenant
applications are Office 365, Outlook.com, and visualstudio.com.
http://msdn.microsoft.com/en-us/library/azure/dn151789.aspx
QUESTION 13
Drag and Drop Question
You administer an Azure SQL database named contosodb that is running in Standard/Si tier.
Answer:
QUESTION 14
You are migrating a local virtual machine (VM) to an Azure VM.
You upload the virtual hard disk (VHD) file to Azure Blob storage as a Block Blob.
You need to change the Block 8lob to a page blob.
What should you do?
A. Delete the Block Blob and re-upload the VHD as a page blob.
B. Update the type of the blob programmatically by using the Azure Storage .NET SDK.
C. Update the metadata of the current blob and set the Blob-Type key to Page.
D. Create a new empty page blob and use the Azure Blob Copy Power Shell cmdlet to copy the current
data to the new blob.
Answer: A
Explanation:
* To copy the data files to Windows Azure Storage by using one of the following methods:
AzCopy Tool, Put Blob (REST API) and Put Page (REST API), or Windows Azure Storage Client
Library for .NET or a third-party storage explorer tool.
Important: When using this new enhancement, always make sure that you create a page blob not
a block blob.
* Azure has two main files storage format:
Page blob: mainly used for vhd's (CloudPageBlob)
Block Blob: for other files (CloudBlockBlob)
http://msdn.microsoft.com/en-us/library/dn466429.aspx
QUESTION 15
You administer a Microsoft Azure SQL Database data base in the US Central region named
Answer: BD
Explanation:
B: The Active Geo-Replication feature implements a mechanism to provide database redundancy
within the same Microsoft Azure region or in different regions (geo- redundancy).
One of the primary benefits of Active Geo-Replication is that it provides a database-level disaster
recovery solution. Using Active Geo-Replication, you can configure a user database in the
Premium service tier to replicate transactions to databases on different Microsoft Azure SQL
Database servers within the same or different regions. Cross -region redundancy enables
applications to recover from a permanent loss of a datacenter caused by natural disasters,
catastrophic human errors, or malicious acts.
D: Active Geo-Replication is available for databases in the Premium service tier only.
http://msdn.microsoft.com/en-us/library/azure/dn741339.aspx
QUESTION 16
Drag and Drop Question
You manage an application deployed to a cloud service that utilizes an Azure Storage account.
The cloud service currently uses the primary access key.
Security policy requires that all shared access keys are changed without causing application
downtime.
Which three steps should you perform in sequence? To answer, move the appropriate actions
from the list of actions to the answer area and arrange them in the correct order.
Answer:
QUESTION 17
You administer a Microsoft Azure SQL Database database in the US Central region named
contosodb. Contosodb runs on a Standard tier within the SI performance level.
You have multiple business-critical applications that use contosodb.
You need to ensure that you can bring contosodb back online in the event of a natural disaster in
the US Central region.
You want to achieve this goal with the least amount of downtime.
Which two actions should you perform? Each correct answer presents part of the solution.
Answer: BD
Explanation:
B: The Active Geo-Replication feature implements a mechanism to provide database redundancy
within the same Microsoft Azure region or in different regions (geo- redundancy).
One of the primary benefits of Active Geo-Replication is that it provides a database-level disaster
recovery solution. Using Active Geo-Replication, you can configure a user database in the
Premium service tier to replicate transactions to databases on different Microsoft Azure SQL
Database servers within the same or different regions. Cross -region redundancy enables
applications to recover from a permanent loss of a datacenter caused by natural disasters,
catastrophic human errors, or malicious acts.
D: Active Geo-Replication is available for databases in the Premium service tier only.
http://msdn.microsoft.com/en-us/library/azure/dn741339.aspx
QUESTION 18
You manage two datacenters in different geographic regions and one branch office.
You plan to implement a geo-redundant backup solution.
You need to ensure that each datacenter is a cold site for the other.
You create a recovery vault. What should you do next?
Answer: C
Explanation:
Within the Azure Portal screen, scroll down to Recovery Services (on the left menu), and click on
"Create a New Vault" (this is where your VMs will be replicated to) which will bring up a Data
Services / Recovery Services / Site Recovery Vault option, select Quick Create
For the name of the Vault, give it something you'd remember, in my case, I'll call it RandsVault,
and I'll choose the Region West US since I'm in the Western United States, then click Create
Vault
Once the Vault has been created, click on the Right Arrow next to the name of your vault. Under
Setup Recovery, choose "Between an on-premise site and Microsoft Azure" so that you are
telling the configuration settings that you are going to be replicating between your on-premise
datacenter and Azure in the cloud.
You will now see a list of things you need to do which the first thing is to create a key exchange of
certificates between Microsoft Azure and your VMM server.
QUESTION 19
You manage a collection of large video files that is stored in an Azure Storage account.
A user wants access to one of your video files within the next seven days.
You need to allow the user access only to the video file, and then revoke access once the user no
longer needs it.
What should you do?
A. Give the user the secondary key for the storage account.
Once the user is done with the file, regenerate the secondary key.
B. Create an Ad-Hoc Shared Access Signature for the Blob resource.
Set the Shared Access Signature to expire in seven days.
C. Create an access policy on the container.
Give the external user a Shared Access Signature for the blob by using the policy.
Once the user is done with the file, delete the policy.
D. Create an access policy on the blob.
Give the external user access by using the policy.
Once the user is done with the file, delete the policy.
Answer: C
Explanation:
See 3) below.
By default, only the owner of the storage account may access blobs, tables, and queues within
that account. If your service or application needs to make these resources available to other
clients without sharing your access key, you have the following options for permitti ng access:
1.You can set a container's permissions to permit anonymous read access to the container and
its blobs. This is not allowed for tables or queues.
2. You can expose a resource via a shared access signature, which enables you to delegate
restricted access to a container, blob, table or queue resource by specifying the interval for which
the resources are available and the permissions that a client will have to it.
3. You can use a stored access policy to manage shared access signatures for a contai ner or its
blobs, for a queue, or for a table. The stored access policy gives you an additional measure of
control over your shared access signatures and also provides a straightforward means to revoke
them.
QUESTION 20
You administer an Azure Storage account named contoso storage.
The account has queue containers with logging enabled.
You need to view all log files generated during the month of July 2014.
Which URL should you use to access the list?
A. http://contosostorage.queue.core.windows.net/Slogs?
restype=container&comp=list&prefix=queue/ 2014/07
B. http://contosostorage.queue.core.windows.net/Sfiles?
restype=container&comp=list&prefix=queue/ 2014/07
C. http://contosostorage.blob.core.windows.net/Sfiles?
restype=container&comp=list&prefix=blob/2014/07
D. http://contosostorage.blob.core.windows.net/Slogs?
restype=container&comp=list&prefix=blob/2014/07
Answer: A
Explanation:
http://msdn.microsoft.com/library/azure/hh343262.aspx