Q1. DRAG DROP - (Topic 6)
You have a website that displays text, pictures, video files, and audio files. The website processes requests from countries and regions all over the world. You plan to migrate the website to the Azure platform.
The website has the following requirements:
✑ Encode, store, and stream audio and video at scale.
✑ Load-balance communications with the website instance that is closest to the user's location.
✑ Deliver content with high-bandwidth and low latency.
You need to recommend the technologies to implement the solution.
Which technologies should you recommend? To answer, drag the appropriate technology to the correct requirement. Each technology may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
* MediaServices
Azure Media Services is being used to power consumer and enterprise streaming solutions worldwide. Combining powerful and highly scalable cloud-based encoding, encryption and steaming components, Azure Media Services is helping customers with valuable and premium video content to easily reach larger audiences on today’s most popular digital devices, such as tablets and mobile phones.
Q2. - (Topic 5)
You need to recommend a technology for processing customer pickup requests. Which technology should you recommend?
A. Notification hub
B. Queue messaging
C. Mobile Service with push notifications
D. Service Bus messaging
Answer: D
Explanation: Service Bus queues are part of a broader Azure messaging infrastructure that supports queuing as well as publish/subscribe, Web service remoting, and integration patterns.
Service Bus Queue support Push-style API (while Azure Queue messaging does not).
Incorrect:
Not A: Notification Hub is only used to push notification, not for processing requests. Not B As a solution architect/developer, you should consider using Azure Queues when:
* Your application must store over 80 GB of messages in a queue, where the messages have a lifetime shorter than 7 days.
* Your application wants to track progress for processing a message inside of the queue. This is useful if the worker processing a message crashes. A subsequent worker can then use that information to continue from where the prior worker left off.
You require server side logs of all of the transactions executed against your queues. Not C: To process the messages we do not need push notification.
Reference: Azure Queues and Service Bus Queues - Compared and Contrasted
https://msdn.microsoft.com/en-us/library/azure/hh767287.aspx
Q3. ic 1, VanArsdel, Ltd
Overview
VanArsdel, Ltd. builds skyscrapers, subways, and bridges. VanArsdel is a leader in using technology to do construction better.
Overview
VanArsdel employees are able to use their own mobile devices for work activities because the company recognizes that this usage enables employee productivity. Employees also access Software as a Service (SaaS) applications, including DocuSign, Dropbox, and Citrix. The company continues to evaluate and adopt more SaaS applications for its business. VanArsdel uses Azure Active Directory (AD) to authenticate its employees, as well as Multi-Factor Authentication (MFA). Management enjoys the ease with which MFA can be enabled and disabled for employees who use cloud-based services. VanArsdel's on-premises directory contains a single forest.
Helpdesk:
VanArsdel creates a helpdesk group to assist its employees. The company sends email messages to all its employees about the helpdesk group and how to contact it. Configuring employee access for SaaS applications is often a time-consuming task. It is not always obvious to the helpdesk group which users should be given access to which SaaS applications. The helpdesk group must respond to many phone calls and email messages to solve this problem, which takes up valuable time. The helpdesk group is unable to meet the needs of VanArsdel's employees.
However, many employees do not work with the helpdesk group to solve their access problems. Instead, these employees contact their co-workers or managers to find someone who can help them. Also, new employees are not always told to contact the helpdesk group for access problems. Some employees report that they cannot see all the applications in the Access Panel that they have access to. Some employees report that they must re-enter their passwords when they access cloud applications, even though they have already authenticated.
Bring your own device (BYOD):
VanArsdel wants to continue to support users and their mobile and personal devices, but the company is concerned about how to protect corporate assets that are stored on these devices. The company does not have a strategy to ensure that its data is removed from the devices when employees leave the company.
Customer Support
VanArsdel wants a mobile app for customer profile registration and feedback. The company would like to keep track of all its previous, current, and future customers worldwide. A profile system using third-party authentication is required as well as feedback and support sections for the mobile app.
Migration:
VanArsdel plans to migrate several virtual machine (VM) workloads into Azure. They also plan to extend their on-premises Active Directory into Azure for mobile app authentication.
Business Requirements Hybrid Solution:
✑ A single account and credentials for both on-premises and cloud applications
✑ Certain applications that are hosted both in Azure and on-site must be accessible to both VanArsdel employees and partners
✑ The service level agreement (SLA) for the solution requires an uptime of 99.9%
✑ The partners all use Hotmail.com email addresses
Mobile App:
VanArsdel requires a mobile app for project managers on construction job sites. The mobile app has the following requirements:
✑ The app must display partner information.
✑ The app must alert project managers when changes to the partner information occur.
✑ The app must display project information including an image gallery to view pictures of construction projects.
✑ Project managers must be able to access the information remotely and securely.
Security:
✑ VanArsdel must control access to its resources to ensure sensitive services and information are accessible only by authorized users and/or managed devices.
✑ Employees must be able to securely share data, based on corporate policies, with other VanArsdel employees and with partners who are located on construction job sites.
✑ VanArsdel management does NOT want to create and manage user accounts for partners.
Technical Requirements Architecture:
✑ VanArsdel requires a non-centralized stateless architecture fonts data and services where application, data, and computing power are at the logical extremes of the network.
✑ VanArsdel requires separation of CPU storage and SQL services
Data Storage:
VanArsdel needs a solution to reduce the number of operations on the contractor information table. Currently, data transfer rates are excessive, and queue length for read/write operations affects performance.
✑ A mobile service that is used to access contractor information must have automatically scalable, structured storage
✑ Images must be stored in an automatically scalable, unstructured form.
Mobile Apps:
✑ VanArsdel mobile app must authenticate employees to the company's Active Directory.
✑ Event-triggered alerts must be pushed to mobile apps by using a custom Node.js script.
✑ The customer support app should use an identity provider that is configured by using the Access Control Service for current profile registration and authentication.
✑ The customer support team will adopt future identity providers that are configured through Access Control Service.
Security:
✑ Active Directory Federated Server (AD FS) will be used to extend AD into Azure.
✑ Helpdesk administrators must have access to only the groups of Azure resources they are responsible for. Azure administration will be performed by a separate group.
✑ IT administrative overhead must be minimized.
✑ Permissions must be assigned by using Role Based Access Control (RBAC).
✑ Line of business applications must be accessed securely.
Answer:
Q4. HOTSPOT - (Topic 4)
The company has two corporate offices. Customers will access the websites from datacenters around the world.
You need to architect the global website strategy to meet the business requirements. Use the drop-down menus to select the answer choice that answers each question.
Answer:
Explanation:
* Scenario: The customer-facing website must have access to all ad copy and media.
Q5. - (Topic 6)
A company has 10 on-premises SQL databases. The company plans to move the databases to SQL Server 2012 that runs in Azure Infrastructure-as-a-Service (IaaS). After migration, the databases will support a limited number of Azure websites in the same Azure Virtual Network.
You have the following requirements:
✑ You must restore copies of existing on-premises SQL databases to the SQL servers that run in Azure IaaS.
✑ You must be able to manage the SQL databases remotely.
✑ You must not open a direct connection from all of the machines on the on- premises network to Azure.
✑ Connections to the databases must originate from only five Windows computers.
You need to configure remote connectivity to the databases. Which technology solution should you implement?
A. Azure Virtual Network site-to-site VPN
B. Azure Virtual Network multi-point VPN
C. Azure Virtual Network point-to-site VPN
D. Azure ExpressRoute
Answer: C
Explanation: A point-to-site VPN would meet the requirements.
Reference: Configure a Point-to-Site VPN connection to an Azure Virtual Network https://azure.microsoft.com/en-us/documentation/articles/vpn-gateway-point-to-site-create/
Q6. - (Topic 8)
You need to support the disaster recovery requirements of the web application and API. Which two actions should you perform? Each correct answer presents part of the solution.
A. Create an Azure Redis Cache for the web application and API.
B. Configure automated backups of the API and web application.
C. Create a new Azure SQL Data Warehouse and connect it to the web application and API.
D. Enable Application Insights for the web application and API.
E. Deploy the API and web application to multiple locations.
Answer: B,C
Q7. DRAG DROP - (Topic 3)
You need to deploy the virtual machines to Azure.
Which four Azure PowerShell scripts should you run in sequence? To answer, move the appropriate scripts from the list of scripts to the answer area and arrange them in the correct order.
Answer:
Explanation:
Box 1:
Box 2:
Box 3:
Box 4:
Note:
* In order to upload a VHD file to Azure, we need :
✑ Azure PowerShell SDK
✑ A publish setting file
✑ An affinity group
✑ A Storage account
✑ A container
Topic 4, Lucerne Publishing
Background
Overview
Lucerne Publishing creates, stores, and delivers online media for advertising companies. This media is streamed to computers by using the web, and to mobile devices around the world by using native applications. The company currently supports the iOS, Android, and Windows Phone 8.1 platform.
Lucerne Publishing uses proprietary software to manage its media workflow. This software has reached the end of its lifecycle. The company plans to move its media workflows to the cloud. Lucerne Publishing provides access to its customers, who are third-party companies, so that they can download, upload, search, and index media that is stored on Lucerne Publishing servers.
Apps and Applications
Lucerne Publishing develops the applications that customers use to deliver media. The
company currently provides the following media delivery applications:
✑ Lucerne Media W - a web application that delivers media by using any browser
✑ Lucerne Media M - a mobile app that delivers media by using Windows Phone 8.1
✑ Lucerne Media A - a mobile app that delivers media by using an iOS device
✑ Lucerne Media N - a mobile app that delivers media by using an Android device
✑ Lucerne Media D - a desktop client application that customer's install on their local computer
Business Requirements
Lucerne Publishing's customers and their consumers have the following requirements:
✑ Access to media must be time-constricted once media is delivered to a consumer.
✑ The time required to download media to mobile devices must be minimized.
✑ Customers must have 24-hour access to media downloads regardless of their location or time zone.
✑ Lucerne Publishing must be able to monitor the performance and usage of its customer-facing app.
Lucerne Publishing wants to make its asset catalog searchable without requiring a database redesign.
✑ Customers must be able to access all data by using a web application. They must
also be able to access data by using a mobile app that is provided by Lucerne Publishing.
✑ Customers must be able to search for media assets by key words and media type.
✑ Lucerne Publishing wants to move the asset catalog database to the cloud without formatting the source data.
Other Requirements Development
Code and current development documents must be backed up at all times. All solutions
must be automatically built and deployed to Azure when code is checked in to source control.
Network Optimization
Lucerne Publishing has a .NET web application that runs on Azure. The web application analyzes storage and the distribution of its media assets. It needs to monitor the utilization of the web application. Ultimately, Lucerne Publishing hopes to cut its costs by reducing data replication without sacrificing its quality of service to its customers. The solution has the following requirements:
✑ Optimize the storage location and amount of duplication of media.
✑ Vary several parameters including the number of data nodes and the distance from node to customers.
✑ Minimize network bandwidth.
✑ Lucerne Publishing wants be notified of exceptions in the web application.
Technical Requirements Data Mining
Lucerne Publishing constantly mines its data to identify customer patterns. The company
plans to replace the existing on-premises cluster with a cloud-based solution. Lucerne Publishing has the following requirements:
Virtual machines:
✑ The data mining solution must support the use of hundreds to thousands of processing cores.
✑ Minimize the number of virtual machines by using more powerful virtual machines.
Each virtual machine must always have eight or more processor cores available.
✑ Allow the number of processor cores dedicated to an analysis to grow and shrink automatically based on the demand of the analysis.
✑ Virtual machines must use remote memory direct access to improve performance.
Task scheduling:
The solution must automatically schedule jobs. The scheduler must distribute the jobs based on the demand and available resources.
Data analysis results:
The solution must provide a web service that allows applications to access the results of analyses.
Other Requirements Feature Support
✑ Ad copy data must be searchable in full text.
✑ Ad copy data must indexed to optimize search speed.
✑ Media metadata must be stored in Azure Table storage.
✑ Media files must be stored in Azure BLOB storage.
✑ The customer-facing website must have access to all ad copy and media.
✑ The customer-facing website must automatically scale and replicate to locations around the world.
✑ Media and data must be replicated around the world to decrease the latency of data transfers.
✑ Media uploads must have fast data transfer rates (low latency) without the need to upload the data offline.
Security
✑ Customer access must be managed by using Active Directory.
✑ Media files must be encrypted by using the PlayReady encryption method.
✑ Customers must be able to upload media quickly and securely over a private connection with no opportunity for internet snooping.
Q8. DRAG DROP - (Topic 8)
Marketing is ready to start their web application validations and is excited to be expanding globally.
You need to support the global web application requirements.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q9. - (Topic 5)
You need to design the authentication solution for the NorthRide app. Which solution should you use?
A. Azure Active Directory Basic with multi-factor authentication for the cloud and on- premises users.
B. Active Directory Domain Services with mutual authentication
C. Azure Active Directory Premium and add multi-factor authentication the for cloud users
D. Active Directory Domain Services with multi-factor authentication
Answer: C
Explanation: * Scenario: The NorthRide app must use an additional level of authentication other than the employee's password.
* Azure Multi-Factor Authentication is the multi-factor authentication service that requires users to also verify sign-ins using a mobile app, phone call or text message. It is available to use with Azure Active Directory, to secure on-premise resources with the Azure Multi- Factor Authentication Server, and with custom applications and directories using the SDK.
Reference: What is Azure Multi-Factor Authentication? https://azure.microsoft.com/en-us/documentation/articles/multi-factor-authentication/
Reference: Azure Active Directory Pricing http://azure.microsoft.com/en-gb/pricing/details/active-directory/
Q10. DRAG DROP - (Topic 5)
You need to recommend the steps required to deploy the Northwind Electric Cars website.
Which two actions should you recommend performing in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer: