Microsoft Architecting Microsoft Azure Solutions - 070-535무료 덤프문제 풀어보기
You need to plan the business continuity strategy.
For each requirement, what should you recommend? To answer, select the appropriate option from each list in the answer area.
For each requirement, what should you recommend? To answer, select the appropriate option from each list in the answer area.
정답:
Explanation
You are designing an Azure development environment. Team members learn Azure development techniques by training in the development environment.
The development environment must automatically scale and load balance additional virtual machine (VM) instances.
You need to recommend the most cost-effective compute-instance size that allows team members to work with Azure in the development environment.
What should you recommend?
The development environment must automatically scale and load balance additional virtual machine (VM) instances.
You need to recommend the most cost-effective compute-instance size that allows team members to work with Azure in the development environment.
What should you recommend?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
Your organization has developed several Azure App Service Web and API applications. The applications use Azure Key Vault to store several authentication, storage account, and data encryption keys. Several departments have the following requests to support the applications:
You need to recommend the appropriate Azure service for each department request.
What should you recommend? To answer, configure the appropriate option in the dialing box in the answer area.
NOTE: Each correct selection is worth one point.
You need to recommend the appropriate Azure service for each department request.
What should you recommend? To answer, configure the appropriate option in the dialing box in the answer area.
NOTE: Each correct selection is worth one point.
정답:
Explanation
Azure AD identity Protection
Azure AD Managed Service Identity
Azure AD Privileged Identity Management
You are reviewing an Azure Resource Manager (ARM) template that is used to deploy a Web App to multiple regions. The template contains the following JSON code:
How should you implement the deployment configuration? To answer, select the appropriate option in the answer area.
How should you implement the deployment configuration? To answer, select the appropriate option in the answer area.
정답:
Explanation
A company requires secure communication between virtual machines (VMs) without exposing credentials.
The security officer wants to perform proof-of-concept testing using managed service identities.
You need to recommend a solution for performing proof-of-concept testing.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
The security officer wants to perform proof-of-concept testing using managed service identities.
You need to recommend a solution for performing proof-of-concept testing.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
정답:
Explanation
Here's an example of how System Assigned Identities work with Azure Virtual Machines:
References: https://docs.microsoft.com/en-us/azure/active-directory/managed-service-identity/overview
You plan to implement a predictive analytics solution in Azure Machine Learning Studio (ML Studio). You intend to train the solution by using existing data that resides on-premises. The on-premises data is a collection of delimited text files that total 5 GB in size.
You need to identify the process of adding the existing data to the solution.
What should you identify? To answer, select the appropriate options in the answer area.
You need to identify the process of adding the existing data to the solution.
What should you identify? To answer, select the appropriate options in the answer area.
정답:
Explanation
You are training a new developer.
You need to describe the process flow for sending a notification.
Which three actions must be performed in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
You need to describe the process flow for sending a notification.
Which three actions must be performed in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
정답:
Explanation
You are designing a live streaming event by using Azure Media Services. The delivery of the video will use HTTP Live Streaming (HLS) to an azure Content Delivery Network (CDN) streaming endpoint.
Viewers of the content may not be a trusted party and you require the highest level of security.
You must secure the media delivery by using dynamic encryption.
Solution: Use Azure Storage Service Encryption to encrypt all assets with an encryption key and authorization policy. Configure the asset's delivery policy to deliver by using common encryption.
Does the solution meet the goal?
Viewers of the content may not be a trusted party and you require the highest level of security.
You must secure the media delivery by using dynamic encryption.
Solution: Use Azure Storage Service Encryption to encrypt all assets with an encryption key and authorization policy. Configure the asset's delivery policy to deliver by using common encryption.
Does the solution meet the goal?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
You need to configure the deployment of the storage analysis application.
What should you do?
What should you do?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
You need to recommend a directory service and identity provider for the Tailspin Toys HR app.
What should you do recommend? To answer, drag the appropriate recommendations to the correct requirements. Each recommendation may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
What should you do recommend? To answer, drag the appropriate recommendations to the correct requirements. Each recommendation may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
정답:
Explanation
You manage a cloud service on two instances. The service name is Service1 and the role name is ServiceRole1. Service1 has performance issues during heavy traffic periods.
You need to increase the existing deployment of Service1 to three instances. Which Power Shell cmdlet should you use?
You need to increase the existing deployment of Service1 to three instances. Which Power Shell cmdlet should you use?
정답: D
설명: (Fast2test 회원만 볼 수 있음)
You are developing the application security review document.
You need to ensure that application data security requirements are met.
What should you verify?
You need to ensure that application data security requirements are met.
What should you verify?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
You manage a hybrid Azure solution for a company.
You need to recommend Advanced Threat Detection solutions to guard against hacker attacks in different scenarios.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You need to recommend Advanced Threat Detection solutions to guard against hacker attacks in different scenarios.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
정답:
Explanation
Box 1 (Alerting about access to a privileged role): Azure Privileged Identity Management (PIM) Azure Privileged Identity Management (PIM) generates alerts when there is suspicious or unsafe activity in your environment. When an alert is triggered, it shows up on the PIM dashboard.
Box 2 (Analyzing attack patterns and trends): Azure Security Center
Every second counts when you are under attack. Azure Security Center (ASC) uses advanced analytics and global threat intelligence to detect malicious threats, and the new capabilities empower you to respond quickly.
Box 3 (Using conditional access policies to secure identities): Azure AD Identity Protection Security is a top concern for organizations using the cloud. A key aspect of cloud security is identity and access when it comes to managing your cloud resources. In a mobile-first, cloud-first world, users can access your organization's resources using a variety of devices and apps from anywhere. As a result of this, just focusing on who can access a resource is not sufficient anymore. In order to master the balance between security and productivity, IT professionals also need to factor how a resource is being accessed into an access control decision. With Azure AD conditional access, you can address this requirement. Conditional access is a capability of Azure Active Directory that enables you to enforce controls on the access to apps in your environment based on specific conditions from a central location.
Box 4 (Visualizing real-time security alerts): Operations Management Suite Security and Audit The OMS Security and Audit solution provides a comprehensive view into your organization's IT security posture with built-in search queries for notable issues that require your attention. The Security and Audit dashboard is the home screen for everything related to security in OMS. It provides high-level insight into the security state of your computers. It also includes the ability to view all events from the past 24 hours, 7 days, or any other custom time frame.
References:
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-privileged-identity-management-how-to
https://azure.microsoft.com/en-us/blog/how-azure-security-center-helps-analyze-attacks-using-investigation-and-
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-azure-portal
https://docs.microsoft.com/en-us/azure/security-center/security-center-managing-and-responding-alerts
A company has 100 Web servers running Windows Server on virtual machines (VMs) in Azure. All servers have IIS enabled. Each server runs a unique combination of web apps.
Servers must not run unnecessary services. The servers must be checked every 30 minutes to remove any additional Windows features and correct exceptions.
You need to design the solution with the least amount of effort and without downtime.
Solution: Design a solution that uses an Azure command -line interface (Azure CLI) script to provision VMs with default settings. Register the script using Azure Automation DSC and schedule the script run every 30 minutes.
Does the solution meet the goal?
Servers must not run unnecessary services. The servers must be checked every 30 minutes to remove any additional Windows features and correct exceptions.
You need to design the solution with the least amount of effort and without downtime.
Solution: Design a solution that uses an Azure command -line interface (Azure CLI) script to provision VMs with default settings. Register the script using Azure Automation DSC and schedule the script run every 30 minutes.
Does the solution meet the goal?
정답: A