Download Microsoft.AZ-305.Dump4Pass.2023-12-22.186q.vcex

Download Exam

File Info

Exam Designing Microsoft Azure Infrastructure Solutions
Number AZ-305
File Name Microsoft.AZ-305.Dump4Pass.2023-12-22.186q.vcex
Size 7 MB
Posted Dec 22, 2023
Download Microsoft.AZ-305.Dump4Pass.2023-12-22.186q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Purchase

Coupon: MASTEREXAM
With discount: 20%






Demo Questions

Question 1

After you migrate App1 to Azure, you need to enforce the data modification requirements to meet the security and compliance requirements.  
What should you do?


  1. Create an access policy for the blob service.
  2. Implement Azure resource locks.
  3. Create Azure RBAC assignments.
  4. Modify the access level of the blob service.
Correct answer: A
Explanation:
Scenario: Once App1 is migrated to Azure, you must ensure that new data can be written to the app, and the modification of new and existing data is prevented for a period of three years.    As an administrator, you can lock a subscription, resource group, or resource to prevent other users in your organization from accidentally deleting or modifying critical resources. The lock overrides any permissions the user might have.    Reference: https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/lock-resources
Scenario: Once App1 is migrated to Azure, you must ensure that new data can be written to the app, and the modification of new and existing data is prevented for a period of three years.    
As an administrator, you can lock a subscription, resource group, or resource to prevent other users in your organization from accidentally deleting or modifying critical resources. The lock overrides any permissions the user might have.  
  
Reference: 
https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/lock-resources



Question 2

You plan to migrate DB1 and DB2 to Azure.    
You need to ensure that the Azure database and the service tier meet the resiliency and business requirements. What should you configure? To answer, select the appropriate options in the answer area.  
Note: Each correct selection is worth one point. 


Correct answer: To work with this question, an Exam Simulator is required.
Explanation:
  
  



Question 3

You need to ensure that users managing the production environment are registered for Azure MFA and must authenticate by using Azure MFA when they sign in to the Azure portal. The solution must meet the authentication and authorization requirements.    
What should you do? To answer, select the appropriate options in the answer area.    
NOTE: Each correct selection is worth one point. 


Correct answer: To work with this question, an Exam Simulator is required.



Question 4

You need to configure an Azure policy to ensure that the Azure SQL databases have TDE enabled. The solution must meet the security and compliance requirements.    
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.  


Correct answer: To work with this question, an Exam Simulator is required.



Question 5

You need to recommend a solution to meet the database retention requirements.  
What should you recommend?


  1. Configure a long-term retention policy for the database.
  2. Configure Azure Site Recovery.
  3. Use automatic Azure SQL Database backups.
  4. Configure geo-replication of the database.
Correct answer: A



Question 6

What should you implement to meet the identity requirements? To answer, select the appropriate options in the answer area.  
NOTE: Each correct selection is worth one point. 


Correct answer: To work with this question, an Exam Simulator is required.
Explanation:
Requirements: Identity Requirements Contoso identifies the following requirements for managing Fabrikam access to resources: Every month, an account manager at Fabrikam must review which Fabrikam users have access permissions to App1. Accounts that no longer need permissions must be removed as guests.  The solution must minimize development effort.    Box 1: The Azure AD Privileged Identity Management (PIM) When should you use access reviews?  Too many users in privileged roles: It's a good idea to check how many users have administrative access, how many of them are Global Administrators, and if there are any invited guests or partners that have not been removed after being assigned to do an administrative task. You can recertify the role assignment users in Azure AD roles such as Global Administrators, or Azure resources roles such as User Access Administrator in the Azure AD Privileged Identity Management (PIM) experience.    Box 2: Access reviews Azure Active Directory (Azure AD) access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and role assignments. User's access can be reviewed on a regular basis to make sure only the right people have continued access.    Reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview
Requirements: Identity Requirements 
Contoso identifies the following requirements for managing Fabrikam access to resources: 
  • Every month, an account manager at Fabrikam must review which Fabrikam users have access permissions to App1. Accounts that no longer need permissions must be removed as guests.  
  • The solution must minimize development effort.  
  
Box 1: The Azure AD Privileged Identity Management (PIM) 
When should you use access reviews?  
Too many users in privileged roles: It's a good idea to check how many users have administrative access, how many of them are Global Administrators, and if there are any invited guests or partners that have not been removed after being assigned to do an administrative task. You can recertify the role assignment users in Azure AD roles such as Global Administrators, or Azure resources roles such as User Access Administrator in the Azure AD Privileged Identity Management (PIM) experience.  
  
Box 2: Access reviews 
Azure Active Directory (Azure AD) access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and role assignments. User's access can be reviewed on a regular basis to make sure only the right people have continued access.  
  
Reference: 
https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview



Question 7

You need to recommend a solution for the App1 maintenance task. The solution must minimize costs.    
What should you include in the recommendation?


  1. an Azure function app
  2. an App Service WebJob
  3. an Azure logic app
  4. an Azure virtual machine
Correct answer: A



Question 8

You need to recommend a solution that meets the application development requirements.    
What should you include in the recommendation?


  1. Continuous Integration/Continuous Deployment (CI/CD) sources
  2. deployment slots
  3. the Azure App Configuration service
  4. an Azure Container Registry instance
Correct answer: B



Question 9

What should you recommend to meet the monitoring requirements for App2? 


  1. Container insights
  2. Microsoft Sentinel
  3. Azure Application Insights 
  4. VM insights
Correct answer: C



Question 10

You have an Azure subscription that contains a custom application named Application1. Application1 was developed by an external company named Fabrikam, Ltd. Developers at Fabrikam were assigned role-based access control (RBAC) permissions to the Application1 components. All users are licensed for the Microsoft 365 E5 plan.    
You need to recommend a solution to verify whether the Fabrikam developers still require permissions to Application1. The solution must meet the following requirements:   
  • To the manager of the developers, send a monthly email message that lists the access permissions to Application1.  
  • If the manager does not verify an access permission, automatically revoke that permission.  
  • Minimize development effort.    
What should you recommend?


  1. In Azure Active Directory (Azure AD), create an access review of Application1.
  2. Create an Azure Automation runbook that runs the Get-AzRoleAssignment cmdlet.
  3. In Azure Active Directory (Azure AD) Privileged Identity Management, create a custom role assignment for the Application1 resources.
  4. Create an Azure Automation runbook that runs the 
    Get-AzureADUserAppRoleAssignment cmdlet.
Correct answer: A
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/manage-user-access-with-access-reviews
Reference: 
https://docs.microsoft.com/en-us/azure/active-directory/governance/manage-user-access-with-access-reviews









CONNECT US

Facebook

Twitter

PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount!



HOW TO OPEN VCEX FILES

Use ProfExam Simulator to open VCEX files