Q1. Your company has a subscription to Azure.
You configure your contoso.com domain to use a private Certificate Authority. You deploy a web site named MyApp by using the Shared (Preview) web hosting plan.
You need to ensure that clients are able to access the MyApp website by using https.
What should you do?
A. Back up the Site and import into a new website.
B. Use the internal Certificate Authority and ensure that clients download the certificate chain.
C. Add custom domain SSL support to your current web hosting plan.
D. Change the web hosting plan to Standard.
Answer: D
Explanation: Enabling HTTPS for a custom domain is only available for the Standard web hosting plan mode of Azure websites.
Reference: Enable HTTPS for an Azure website
http://azure.microsoft.com/en-us/pricing/details/websites/
Q2. Your company plans to migrate from On-Premises Exchange to Exchange Online in Office
365.
You plan to integrate your existing Active Directory Domain Services (AD DS) infrastructure with Azure AD.
You need to ensure that users can log in by using their existing AD DS accounts and passwords. You need to achieve this goal by using minimal additional systems.
Which two actions should you perform? Each answer presents part of the solution.
A. Configure Password Sync.
B. Set up a DirSync Server.
C. Set up an Active Directory Federation Services Server.
D. Set up an Active Directory Federation Services Proxy Server.
Answer: A,B
Explanation: Directory Sync with Password Sync Scenario' Applies To: Azure, Office 365, Windows Intune
Password sync is an extension to the Directory Sync Scenario. With directory sync, you can manage the entire lifecycle of your cloud user and group accounts using your on-premise Active Directory management tools.
When password sync is enabled on your directory sync computer, your users will be able to sign into Microsoft cloud services, such as Office 365, Dynamics CRM, and Windows InTune, using the same password as they use when logging into your on-premises network. When your users change their passwords in your corporate network, those changes are synchronized to the cloud.
Reference: Directory Sync with Password Sync Scenario'
URL: http://technet.microsoft.com/en-us/library/dn441214.aspx
Q3. DRAG DROP
You manage an Azure Web Site named salessite1. You notice some performance issues with salessite1. You create a new database for salessite1.
You need to update salessite1 with the following changes, in the order shown:
1. Display the list of current connection strings.
2. Create a new connection string named conn1 with a value of: Server=tcp:samplel.database.windows.net,1433;Database=NewDB;User
ID=User@samplel;Password=Passwordl;Trusted_Connection=False;Encrypt=True;Connec tion Timeout=30;.
3. Download the application logs for analysis.
Which three xplat-cli commands should you perform in sequence? To answer, move the appropriate commands from the list of commands to the answer area and arrange them in the correct order.
Answer:
Q4. Your company has two physical locations configured in a geo-clustered environment that includes:
System Center Virtual Machine Manager 2012 R2
System Center Data Protection Manager 2012 R2
SQL Server 2012
Windows Server 2012 R2 Hyper-V
Over 100 virtual machines (VMs) in each physical location
Your company has recently signed up for Azure.
You plan to leverage your current network environment to provide a backup solution for your VMs.
You need to recommend a solution that ensures all VMs are redundant and deployable between locations. You also want the solution to minimize downtime in the event of an outage at either physical location.
Which solution should you recommend?
A. Configure a backup vault in Azure and use Data Protection Manager to back up The Windows Servers.
B. Use Data Protection Manager and back up the VMs in each location.
C. Use Azure site recovery in an on-premises to Azure protection configuration.
D. Use Azure site recovery in an on-premises to on-premises protection configuration.
Answer: D
Explanation: On-Premises to On-Premises (Hyper-V replication)
* Cloud metadata is sent to Azure Site Recovery.
Replicated data is stored in location specified on target Hyper-V server.
* Azure account with Azure Site Recovery enabled.
* Virtual machines replicate from source on-premises Hyper-V server to another. You can set up reverse replication to replicate back to the source location.
* Requires source and target VMM servers with at least one cloud on each, or a single VMM server with two clouds. Clouds must contain at least one Hyper-V host server or cluster.
Reference: Microsoft Azure, Site Recovery
Q5. You migrate a Windows Server .NET web application to Azure Cloud Services.
You need enable trace logging for the application.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Update the service definition file.
B. Update the Azure diagnostics configuration.
C. Update the service configuration file.
D. Enable verbose monitoring.
E. Update the application web.config file.
Answer: A,B
Explanation: You can use Azure logging right out of the box—it’s part of Azure SDK.
A: Azure Service Definition Schema (.csdef File)
The service definition file defines the service model for an application. The file contains the
definitions for the roles that are available to a cloud service, specifies the service
endpoints, and establishes configuration settings for the service.
B: Take Control of Logging and Tracing in Microsoft Azure
The Microsoft.WindowsAzure.Diagnostics namespace, which inherits from and extends
standard System.Diagnostics classes, enables the use of System.Diagnostics as a logging framework in Azure environment.
URLs:
http://msdn.microsoft.com/en-us/library/azure/ee758711.aspx http://msdn.microsoft.com/en-us/magazine/ff714589.aspx
Q6. You manage a cloud service that is running in two small instances. The cloud service hosts a help desk application. The application utilizes a virtual network connection to synchronize data to the company's internal accounting system.
You need to reduce the amount of time required for data synchronization.
What should you do?
A. Configure the servers as large instances and re-deploy.
B. Increase the instance count to three.
C. Deploy the application to Azure Web Sites.
D. Increase the processors allocated to the instances.
Answer: A
Explanation:
Note: When you create your service model, you can specify the size to which to deploy an instance of your role, depending on its resource requirements. The size of the role determines the number of CPU cores, the memory capacity, and the local file system size that is allocated to a running instance.
Reference: Virtual Machine and Cloud Service Sizes for Azure
URL : http://msdn.microsoft.com/en-us/library/azure/dn197896.aspx
Q7. Your company network includes users in multiple directories.
You plan to publish a software-as-a-service application named SaasApp1 to Azure Active
Directory.
You need to ensure that all users can access SaasApp1.
What should you do?
A. Configure the Federation Metadata URL
B. Register the application as a web application.
C. Configure the application as a multi-tenant.
D. Register the application as a native client application.
Answer: C
Explanation: * When you get deeper into using Windows Azure Active Directory, you’ll run into new terminology. For instance, is called "directory" is also referred to as a Windows Azure AD Tenant or simply as "tenant." This stems from the fact that WAAD ()Windows Azure Active Directory.is a shared service for many clients. In this service, every client gets its own separate space for which the client is the tenant. In the case of WAAD this space is a directory. This might be a little confusing, because you can create multiple directories, in WAAD terminology multiple tenants, even though you are a single client.
* Multitenant Applications in Azure A multitenant application is a shared resource that allows separate users, or "tenants," to view the application as though it was their own. A typical scenario that lends itself to a multitenant application is one in which all users of the application may wish to customize the user experience but otherwise have the same basic business requirements. Examples of large multitenant applications are Office 365, Outlook.com, and visualstudio.com.
Reference: Multitenant Applications in Azure
http://msdn.microsoft.com/en-us/library/azure/dn151789.aspx
Q8. DRAG DROP
You have an Azure Virtual Network named fabVNet with three subnets named Subnet-1, Subnet-2 and Subnet-3. You have a virtual machine (VM) named fabVM running in the fabProd service.
You need to modify fabVM to be deployed into Subnet-3. You want to achieve this goal by using the least amount of time and while causing the least amount of disruption to the existing deployment.
What should you do? To answer, drag the appropriate Power Shell cmdlet to the correct location in the Power Shell command. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Q9. You manage an application deployed to virtual machines (VMs) on an Azure virtual network
named corpVnet1.
You plan to hire several remote employees who will need access to the application on corpVnet1.
You need to ensure that new employees can access corpVnet1. You want to achieve this goal by using the most cost effective solution.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Create a VPN subnet.
B. Enable point-to-point connectivity for corpVnet1.
C. Enable point-to-site connectivity for corpVnet1.
D. Create a gateway subnet.
E. Enable site-to-site connectivity for corpVnet1.
F. Convert corpVnet1 to a regional virtual network.
Answer: A,C
Explanation:
A point-to-site VPN also allows you to create a secure connection to your virtual network. In a point-to-site configuration, the connection is configured individually on each client computer that you want to connect to the virtual network. Point-to-site connections do not require a VPN device. They work by using a VPN client that you install on each client computer. The VPN is established by manually starting the connection from the on-premises client computer. You can also configure the VPN client to automatically restart.
Reference: About Secure Cross-Premises Connectivity
Q10. HOTSPOT
You manage an Azure Web Site for a consumer-product company.
The website runs in Standard mode on a single medium instance.
You expect increased traffic to the website due to an upcoming sale during a holiday
weekend.
You need to ensure that the website performs optimally when user activity is at its highest.
Which option should you select? To answer, select the appropriate option in the answer
area.
Answer: