The latest Microsoft AZ-900 Azure Fundamentals certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Microsoft AZ-900 Azure Fundamentals exam and earn Microsoft AZ-900 Azure Fundamentals certification.
Question 441
You have two instances of a VM deployed in the same availability zone across different regions. What availability level does the Azure Service Level Agreement (SLA) promise in this scenario?
A. 95%
B. 99.99%
C. 99.5%
*D. 99.95%
Explanation
When Virtual machines that have multiple instances are deployed in the same Availability Set or in the same dedicated host group, the Microsoft Azure SLA promises connectivity to at least one instance at least 99.95% of the time. Availability sets run VMs on replicated copies of separate hardware within the same availability zone.
However, if you have virtual machines that have multiple instances deployed across multiple availability zones in the same Azure region, the Microsoft Azure SLA promises connectivity to at least one instance at least 99.99% of the time. In this scenario, the availability zone crosses different regions.
When you have a virtual machine instance using Premium SSD or Ultra Disk for both Operating System disks and data disks, the Microsoft Azure SLA promises a virtual machine connectivity of at least 99.9%.
When you have a virtual machine instance using Standard SSD Managed Disks for both Operating System disks and data disks, the Microsoft Azure SLA promises a virtual machine connectivity of at least 99.5%.
When you have a virtual machine instance using Standard HDD Managed Disks for Operating System Disks and Data Disks, the Microsoft Azure SLA promises a virtual machine connectivity of at least 95%.
Question 442
Your company needs to automatically or dynamically increase or decrease resources as needed. Resources need to be added or removed automatically to meet future needs, and from the most advantageous geographic location in the cloud. Which cloud feature is needed in this scenario?
A. High availability
B. Disaster recovery
C. Economy of scale
D. Scalability
*E. Elasticity
F. Fault tolerance
G. Agility
Explanation
You would choose elasticity. This feature increases or decreases resources as needed, but unlike scalability, elasticity is done automatically. Elastic resources are based on the current needs and resources are added or removed dynamically to meet those needs, from the most advantageous geographic location. A distinction between scalability and elasticity is that elasticity is done automatically.
You would not choose high availability. This feature allows services to run for extended periods, with very little downtime, depending on the service.
You would not choose scalability. This feature can increase (scale-up) or decrease (scale-down) resources that are assigned to a workload. As demand increases, you can add additional resources or capabilities to manage the increase in demand (known as scaling up). Scalability does not have to be done automatically.
You would not choose agility. Agility is the ability to react quickly. Cloud services can allocate and deallocate resources quickly. These are on-demand services that are provisioned in minutes. There is no manual intervention in provisioning or deprovisioning services.
You would not choose fault tolerance. Fault tolerance is the ability to remain up and running in the event of a component or service that is no longer functioning. Typically, redundancy is built into cloud services architecture so that if one component fails, a backup component takes its place. This type of service is said to be tolerant of faults.
You would not choose disaster recovery. This feature allows you to recover from a cloud service outage caused by an event. Cloud services disaster recovery can happen very quickly with automation, with resources being readily available for use.
You would not choose economy of scale. The concept of economy of scale is the ability to do business cheaper and more efficiently when operating on a larger scale, in comparison to operating on a smaller scale.
Question 443
Match the cloud type with the correct definition.
Definition:
- Outsources the delivery of data that is gathered via progressive analytics applications
- Applications that are centrally located and are licensed on a subscription basis
- Outsources the routers, subnets, and other transport connectivity
- It is a rented computing infrastructure that is provisioned and managed over the internet.
- Allows the customer to develop applications without maintaining the infrastructure needed to launch the application.
Type:
- SaaS
- IaaS
- PaaS
- NaaS
- DSaaS
Answer:
- SaaS: Applications that are centrally located and are licensed on a subscription basis
- IaaS: It is a rented computing infrastructure that is provisioned and managed over the internet.
- PaaS: Allows the customer to develop applications without maintaining the infrastructure needed to launch the application.
- NaaS: Outsources the routers, subnets, and other transport connectivity
- DSaaS: Outsources the delivery of data that is gathered via progressive analytics applications
Explanation
IaaS is a cloud category that provides customers with network infrastructure, physical computing resources, data partitioning, scaling, security, and backup.
PaaS is a cloud category that a customer uses to create their own applications and manage those applications without having to maintain the infrastructure to develop the applications.
With SaaS, the customer uses software for a fee from a cloud provider. Typically, with SaaS, the software is stored in a central location and customers access the software on a subscription basis.
Data Science as a Service (DSaaS) outsources the delivery of data that is gathered via progressive analytics applications. The data gathered via DSaaS is used to provide analysis against existing data. The analysis can be used for data science purposes, such as what type of customer would buy your product, how your product rates against your rivals, and other analytical issues.
Network as a Service (NaaS) outsources services for network transport connectivity, such as routers and subnets.
Question 444
The Nutex Corporation wants to build and use chunks of code to integrate the apps they have deployed on Azure. They expect the integrations to be made within a short turnaround time.
Match the attribute or setting of the Azure Functions feature with its purpose.
Purpose:
- Check system performance counters like connections, threads, processes, memory, and CPU
- Define a single API surface for multiple function apps
- Triggers the function to using a CRON expression with six fields
- Fetch data from external services
- Write stateful functions in a serverless compute environment
Attribute/Setting:
- Durable Functions
- dynamicThrottlesEnabled
- matchCondition
- Schedule
- Binding
Answer:
- Durable Functions: Write stateful functions in a serverless compute environment
- dynamicThrottlesEnabled: Check system performance counters like connections, threads, processes, memory, and CPU
- matchCondition: Define a single API surface for multiple function apps
- Schedule: Triggers the function to using a CRON expression with six fields
- Binding: Fetch data from external services
Explanation
You would map the attribute or setting of Azure Functions with its purpose as follows:
A Durable Function is an extension of Azure Functions that can be used to write stateful functions in a serverless compute environment. Customers can define custom stateful workflows by writing orchestrator functions and define stateful entities by creating entity functions using the Azure Functions programming model. Behind the scenes, these functions manage state, checkpoints, and restarts.
The hosts file in the function app can be modified for HTTP concurrency and, as a result, scale the function app.
dynamicThrottlesEnabled is an option available in the hosts file. When the dynamicThrottlesEnabled option is enabled to scale the functions, the request processing pipeline periodically checks system performance counters such as connections, threads, processes, memory, and CPU. If any of those counters are over a high threshold (80%), requests are rejected with a 429 “Too Busy” response until the counter(s) return to normal levels.
Azure Functions Proxies can be used to break a large API into multiple function apps (as in a microservice architecture), while still presenting a single API surface for clients. The proxies are stored in a proxies.json file, located in the root of a function app directory. This file can be edited. matchCondition is one of the options that can be edited and is an object that defines the requests that trigger the execution of this proxy.
Schedule is a setting that runs the functions at specified time intervals. The input to schedule is a six field CRON expression that denotes a schedule using an NCronTab library.
Azure Functions use input and output bindings to make data from external services available to the code.
Question 445
Your company hosts a website. Due to web traffic spikes that were caused by ads which typically ran for three days, the company has over-purchased capacity in advance of running ads for the next month.
Which benefit of Azure Cloud Services supports cost management for this type of usage pattern?
A. load balancing
B. high availability
C. high latency
*D. elasticity
Explanation
Elasticity in Azure could allow the website to scale rapidly, commensurate with demand, due to traffic spikes caused by ads. Microsoft Azure could allocate resources when the spike occurs and deallocate the resources when the traffic spike passes. The elasticity feature makes the capabilities of the cloud appear unlimited and can be allocated in any quantity for any time length.
High latency would not be a feature that would be used in this scenario. Network latency is the time it takes for a packet to traverse the network from the sender to the receiver. The issue in the scenario is a spike in traffic, not a delay in traffic traversing the network.
Load balancing would not be a feature that would be used in this scenario. Load balancing distributes incoming network traffic across a group of servers known as a server pool. Load balancing can increase performance by decreasing the burden that is placed on a server. Load balancing is designed to increase reliability over time, but it would not be as effective in this scenario as elasticity, which allocates resources on demand.
High availability would not be a feature that would be used in this scenario. The high-availability feature allows groups of computers to support applications with little or no downtime. High availability may not protect against spikes, but elasticity can.
Question 446
You are part of the IT team at the Nutex Corporation. Your management has triggered an initiative to reduce the costs to manage apps and services on Azure. To work for this initiative, you must know the best practices to reduce Azure costs.
Which of the following statements about analyzing Azure costs on the Azure portal are TRUE? (Choose three.)
*A. Azure costs can be filtered by the tags assigned to resources and services.
B. The two types of Cost Management alerts are Budget alerts and Credit alerts.
C. Cost Management reports that contain multiple currency types such as Euros, US dollars, and Canadian dollars.
D. Budget alerts are available only for customers with an Enterprise Agreement.
*E. Invoice Manager is a role available for Cost Management for customers with a Microsoft Customer Agreement.
*F. The AWS Cost and Usage report can be integrated with Azure Cost Management to analyze AWS costs on the Azure portal.
Explanation
The following statements are true:
- Azure costs can be filtered by the tags assigned to resources and services.
- Invoice Manager is a role available for Cost Management for customers with a Microsoft Customer Agreement.
- AWS Cost and Usage report can be integrated with Azure Cost Management to analyze AWS costs on the Azure portal.
Customers can filter and view Azure costs by the following: service, resource, tag assigned to resources and services, location, type of charge, invoice, and per day or per month.
The five roles available for Cost Management for customers with a Microsoft Customer Agreement are:
- Owner – manage billing settings and access, view all costs, and manage cost configuration.
- Contributor – manage billing settings except for access, view all costs, and manage cost configuration.
- Reader – view billing settings, cost data, and cost configuration.
- Invoice Manager – view and pay invoices, and view cost data and configuration
- Azure subscription creator – create Azure subscriptions, view costs, and manage cost configuration
Integration with the AWS Cost and Usage report can analyze AWS costs for the following scopes: AWS linked accounts under a management group, AWS linked account costs, and AWS consolidated account costs.
Azure portal automatically generates three, not two, types of Cost Management alerts: Budget, Credit, and Department spending quota alerts. Budget alerts notify customers when spending, based on usage or cost, reaches or exceeds the amount defined in the alert condition of the budget. Credit alerts notify customers when Azure credit monetary commitments are consumed. Department spending quota alerts notify customers when department spending reaches a fixed threshold of the quota.
Budget alerts are available for customers with an Enterprise Agreement or a Microsoft Customer Agreement, and customers who use Web Direct or pay-as-you-go plans. Credit alerts and Department spending quota alerts are available only for customers with an Enterprise Agreement.
| Alert type | Enterprise Agreement | Microsoft Customer Agreement | Web direct/pay-as-you-go |
|---|---|---|---|
| Budget | Yes | Yes | Yes |
| Credit | Yes | No | No |
| Department spending quota | Yes | No | No |
The limitations with integrating the AWS Cost and Usage report with Azure are:
- Cost Management does not support cost reports that contain multiple currency types. An error message is shown if you select a scope that has numerous currencies.
- Cloud connectors don’t support AWS GovCloud (US), AWS Gov, or AWS China.
Cost Management shows AWS usage costs only. Tax, support, refunds, RI, credits, or any other charge types are not supported yet.
Question 447
The web team of the Nutex Corporation is developing a new enterprise solution. They are using the newest technologies, and the functionality is divided into many independent parts that can be maintained, scaled, or updated independently. Locally they have installed Docker on Windows 10 machines.
They need a development environment for testing in Azure.
What will you recommend as the fastest and simplest way to deploy the development environment in Azure?
A. Azure Functions
B. Azure Virtual Machine (VM)
C. Azure Kubernetes Service (AKS)
*D. Azure Container Instances (ACI)
Explanation
You should choose Azure Container Instances (ACI). ACI offers the fastest and simplest way to create, start up, and run a container which can be used as a development environment. ACI takes less than 30 seconds to start a container in the best scenarios, faster than using App Services to create a development environment.
You should not choose Azure Kubernetes Service (AKS). It is an orchestration service that requires a YAML file for configuration. It is more complex and for more enterprise solutions.
You should not create an Azure VM to host containers. You have to install Docker on it and then work with it. Also, the installation process requires to ensure if Hyper-V features are enabled.
You should not choose Azure Functions, because they are used for serverless processing, and not for hosting containers.
Question 448
Your company has datacenters in Atlanta and Nashville. Multiple copies of your Azure storage are placed in each datacenter. Atlanta, GA is the primary location and Nashville, TN is the secondary location.
You have the following requirements:
- You want to be able to read data from the Nashville and Atlanta datacenters at all times.
- You want to be able to read data from the Nashville datacenter when the Atlanta datacenter is not available.
Which of the following redundancy options should you choose?
A. Zone-redundant storage (ZRS)
*B. Read-access-geo-zone-redundant (RA-GRS)
C. Geo-redundant storage (GRS)
D. Locally redundant storage (LRS)
Explanation
With geo-redundant storage, data is available to be read in the secondary location only if a failover from the primary to the secondary region occurs. For read access to the secondary region, you must enable read-access geo-redundant storage (RA-GRS) or read-access geo-zone-redundant storage (RA-GZRS). The RA-GRS can meet the following scenario requirements:
- Multiple nodes contain stored data.
- These nodes are in separate geographic locations.
- Data is read from the secondary location and from the primary location.
The geo-redundant option only allows write access to the secondary location unless a failover from the primary to secondary region occurs.
The zone-redundant option does not provide a secondary location. It creates multiple availability zones in the primary location.
The locally redundant option does not provide a secondary location. It simply creates three copies of the data on the primary site.
The following table compares the different options:
| Replication strategy | Locally redundant storage (LRS) | Zone redundant storage (ZRS) | Geo redundant storage (GRS) | Read-access Geo redundant storage (RA-GRS) |
|---|---|---|---|---|
| Data is replicated across multiple datacenters. | No | Yes | Yes | Yes |
| Data can be read from a secondary location as well as the primary location. | No | No | No | Yes |
| Number of copies of data maintained on separate nodes. | 3 | 3 | 6 | 6 |
Question 449
The Nutex Corporation has recently adopted Azure. You are the Azure Administrator at the Nutex Corporation. You recently learned that not all tasks can be accomplished from the Azure Portal, and that knowledge of Azure CLI and PowerShell is necessary to administer Azure.
Which of the following statements about Azure CLI is TRUE?
A. If you mount a new file share, the new user image created for the $Home directory overwrites the user image used for the previous file share.
B. Azure Cloud Shell offers an integrated graphical text editor based on the Visual Studio Code editor.
C. Azure Cloud Shell uses different Azure file shares for Bash and PowerShell.
*D. Azure Cloud Shell times out after 20 minutes of no interactive activity.
Explanation
Azure Cloud Shell times out after 20 minutes of no interactive activity. Azure Cloud Shell is a browser-accessible shell for managing resources in Azure. You can choose the shell experience that best suits the way you work, either Bash or PowerShell.
Azure Cloud Shell does not use different Azure file shares for Bash and PowerShell. Azure Cloud Shell utilizes Azure File Storage to persist files across sessions. On initial start, Cloud Shell prompts you to associate a new or existing file share to persist files across sessions.
If you are mounting a new file share, a new user image is created for your $Home directory, but it does not overwrite the user image used for the previous file share. Your previous $Home image is kept in your previous file share.
Azure Cloud Shell offers an integrated graphical text editor based on the open-source Monaco editor, not the Visual Studio Code editor.
Question 450
You need to provide access to your Azure virtual network for twenty remote workers. Which Azure VPN connection does not require an on-premises public-facing IP address or a VPN device?
*A. Point-to-site VPN
B. VNet-toVNet VPN
C. Express Route
D. Site-to-site VPN
Explanation
A point-to-site (P2S) VPN gateway connection creates a secure connection to the Azure virtual network from an individual client computer. It does not require an on-premises public-facing IP address or a VPN device. This is ideal when you have a small number of users who require access to the Azure network and will be connecting from possibly insecure locations
A site-to-site VPN is a connection between two sites that can be used by multiple users on either site. An S2S connection requires a VPN device located on-premises that has a public IP address assigned to it.
A VNet-to-VNet VPN connection is one between two Azure virtual networks. It can even connect multiple sites. It requires a public IP address on both ends of the connection.
ExpressRoute is a direct, private connection from your WAN (not over the public Internet) to Microsoft Services, including Azure. It requires a public IP address on one end.