You have an Azure subscription that contains 100 virtual machines. You have a set of Pester tests in PowerShell that validate the virtual machine environment. You need to run the tests whenever there is an operating system update on the virtual machines. The solution must minimize implementation time and recurring costs. Which three resources should you use to implement the tests?

SEE ANSWER

Question:- You have an Azure App Service app. You need to implement tracing for the app. The tracing information must include the following:

Answer:- • Usage trends • AJAX call responses • Page load speed by browser server and browser exceptions

Question:- You have an Azure App Service app. What should you do?

Answer:- The Azure Application Insights site extension should be enabled in this scenario. For web pages, Application Insights JavaScript SDK automatically collects AJAX calls as dependencies.

Question:- You have an Azure virtual machine named VM1 and an Azure Active Directory (Azure AD) tenant named adatum.com. VM1 has the following settings:

Answer:- IP address: 10.10.0.10 System-assigned managed identity: On You need to create a script that will run from within VM1 to retrieve the authentication token of VM1. Which address should you use in the script? The answer is 169.254.169.254. The code that is running on the VM can request a token from the Azure Instance Metadata Service identity endpoint, accessible only from within the VM: http://169.254.169.254/metadata/identity/oauth2/token

Question:- You are designing an Azure solution. The solution must meet the following requirements: • Distribute traffic to different pools of dedicated virtual machines (VMs) based on rules • Provide SSL offloading capabilities You need to recommend a solution to distribute network traffic. Which technology should you recommend?

Answer:- If you require SSL offloading, application layer treatment, or wish to delegate certificate management to Azure, Azure’s Layer 7 load balancer application gateway should be used.

Question:- You have an Azure Cosmos DB account named Account1. Account1 includes a database named DB1 that contains a container named Container1. The partition key for Container1 is set to /city. You plan to change the partition key for Container1. What should you do first?

Answer:- The Change Feed Processor and Bulk Executor Library, in Azure Cosmos DB, can be leveraged to achieve a live migration of data from one container to another. This allows the redistribution of data to match the desired new partition key scheme and make the relevant application changes afterward. Thus, achieving the effect of updating your partition key.

Question:- You have an Azure subscription that contains a resource group named RG1. RG1 contains multiple resources. You need to trigger an alert when the resources in RG1 consume US$1,000. What should you do?

Answer:- Budgets should be created to manage costs and alerts should be set to automatically notify if stakeholders are overspending. To set it up, one should go to the Azure Portal, select Cost Management + Billing -> Cost Management -> Go to Cost Management.

Question:- You have an Azure Kubernetes Service (AKS) cluster named Clus1 in a resource group named RG1. An administrator plans to manage Clus1 from an Azure AD-joined device. You need to ensure that the administrator can deploy the YAML application manifest file for a container application. You install the Azure CLI on the device. Which command should you run next?

Answer:- kubectl apply –f appl.yaml applies a configuration change to a resource from a file or stdin.

Question:- You have an Azure web app named App1 that is configured to run between two and five instances. There are currently three instances of App1 running. App1 has the following autoscale rules: Increase the instance count by one when the CPU percentage is greater or equal to 80. Decrease the instance count by one when the CPU percentage is less than or equal to 60. You are evaluating the following CPU percentage of utilization for App1: • 60 percent • 55 percent • 50 percent • 45 percent You need to identify which utilizations will cause App1 to scale in.

Answer:- Azure Monitor autoscaling allows you to scale the number of running instances up or down, based on telemetry data or metrics. Scale-in occurs when the instances are decreased. For this rule, the instances are decreased when the CPU usage is 60 percent or lower. Hence, the answer is 45 percent, 50 percent, and 55 percent.

Question:- You have an on-premises network that contains a Hyper-V host named Host1. Host1 runs Windows Server 2016 and hosts 10 virtual machines that run Windows Server 2016. You plan to replicate the virtual machines to Azure by using Azure Site Recovery. You create a Recovery Services vault named ASR1 and a Hyper-V site named Site1. You need to add Host1 to ASR1. What should you do?

Answer:- Download the installation file for the Azure Site Recovery Provider. Download the vault registration key. Install the Azure Site Recovery Provider on Host1 and register the server.

Question:- You have an Azure subscription named Subscription1 that contains a virtual network named VNet1. VNet1 is in a resource group named RG1. Subscription1 has a user named User1. User1 has the following roles: • Reader • Security admin • Security reader You need to ensure that User1 can assign the reader role for VNet1 to other users. What should you do?

Answer:- User1 should be assigned the owner role for VNet1.

Question:- A company hosts virtual machines (VMs) in an on-premises data center and in Azure. The on-premises and Azure-based VMs communicate using ExpressRoute. The company wants to be able to continue regular operations if the ExpressRoute connection fails. Failover connections must use the internet and must not require multiprotocol label switching (MPLS) support. You need to recommend a solution that provides continued operations. What should you recommend?

Answer:- In this case, a VPN connection should be set up.

Question:- You have a resource group named RG1. RG1 contains an Azure Storage account named storageaccount1 and a virtual machine named VM1 that runs Windows Server 2016. storageaccount1 contains the disk files for VM1. You apply a ReadOnly lock to RG1. What can you do from the Azure portal?

Answer:- View the keys of storageaccount1. ReadOnly allows authorized users to read a resource, but they cannot delete or update the resource. Applying this lock is similar to restricting all authorized users to the permissions granted by the reader role.

Question:- What is DevOps?

Answer:- Of course, this is one of the first Microsoft Azure DevOps interview questions that you will be asked. The full form of DevOps is Development and Operation’s Collaboration. It focuses on the 3Ps—Process, People, and (working) Product that stands for continuous integration and continuous delivery of value to end-users. In simple terms, DevOps, essentially, speeds up the process of delivery of applications and software services. This ability to continuously deliver minimizes the risk factor. This is possible through stakeholder and end-user feedback collection.

Question:- Why use DevOps?

Answer:- This is a common Azure DevOps interview question. Traditional software development always had a slow code deployment time after completion of development. And oftentimes, the Development Team and Operations Team or deployment team would get into arguments regarding its status blaming the server or the code for the issues. This is where DevOps enters with a solution. DevOps facilitates the delivery of smaller features to clients in a quick and efficient manner and allows seamless software delivery.