Microsoft AZ-104 Exam Practice Test Instant Access

Question 1

You have an Azure App Service app named Appl that contains two running instances.

You havean autoscale rule configured as shown in the following exhibit

For the instance limits stale condition setting, you set Maximum to 5.

During a 30-minute period. Appl uses 60 percent of the available memory.

What is the maximum number of instances tor Appl during the 30-minute pefiod:

Answer : C

The exhibit shows that you have an autoscale rule configured for your App Service app named App1. The rule is based on the memory percentage metric, which measures the average amount of memory used by all the instances of your app. The rule has the following settings:

Scale out action: Add 1 instance when the memory percentage is greater than or equal to 80% for a duration of 10 minutes.

Scale in action: Remove 1 instance when the memory percentage is less than or equal to 60% for a duration of 10 minutes.

Instance limits: The minimum number of instances is 2, and the maximum number of instances is 5.

According to the question, during a 30-minute period, App1 uses 60% of the available memory. This means that the scale in action is triggered, but not the scale out action. Therefore, one instance is removed from App1 every 10 minutes, until the minimum number of instances is reached.

Since App1 initially has two running instances, after the first 10 minutes, one instance is removed and App1 has one instance left. However, since the minimum number of instances is set to 2, another instance is added back to App1 to meet the minimum requirement. Therefore, after the first 10 minutes, App1 still has two instances.

After the second 10 minutes, the same process repeats. One instance is removed due to the scale in action, and another instance is added back due to the minimum requirement. Therefore, after the second 10 minutes, App1 still has two instances.

After the third 10 minutes, there is no change in the number of instances, because App1 already has the minimum number of instances. Therefore, after the third 10 minutes, App1 still has two instances.

Therefore, during the 30-minute period, App1 never has more than two instances running at any given time. However, since one instance is removed and added back every 10 minutes, there are four different instances that are used by App1 during the period. Hence, the maximum number of instances for App1 during the period is four.

Question 2

You plan to deploy three Azure virtual machines named VM1, VM2, and VM3. The virtual machines will host a web app named App1.

You need to ensure that at least two virtual machines are available if a single Azure datacenter becomes unavailable.

What should you deploy?

Aall three virtual machines in a single Availability Zone

Ball virtual machines in a single Availability Set

Ceach virtual machine in a separate Availability Zone

Deach virtual machine in a separate Availability Set

Answer : C

An Availability Zone in an Azure region is a combination of a fault domain and an update domain. For example, if you create three or more VMs across three zones in an Azure region, your VMs are effectively distributed across three fault domains and three update domains. The Azure platform recognizes this distribution across update domains to make sure that VMs in different zones are not updated at the same time.

Reference link

https://learn.microsoft.com/en-us/training/modules/configure-virtual-machine-availability/5-review-availability-zones

Question 3

You have an Azure virtual network named VNetl that contains the following settings:

* IPv4 address space: 172.16.10.0/24

* Subnet name: Subnetl

* Subnet address range: 172.16.10.0/25

What is the maximum number of virtual machines that can connect to Subnetl?

A24

B25

C123

D128

E251

Answer : C

Question 4

You have an Azure virtual network named VNet1 that contains a subnet named Subnet1. Subnet1 contains three Azure virtual machines. Each virtual machine has a public IP address.

The virtual machines host several applications that are accessible over port 443 to user on the Internet.

Your on-premises network has a site-to-site VPN connection to VNet1.

You discover that the virtual machines can be accessed by using the Remote Desktop Protocol (RDP) from the Internet and from the on-premises network.

You need to prevent RDP access to the virtual machines from the Internet, unless the RDP connection is established from the on-premises network. The solution must ensure that all the applications can still be accesses by the Internet users.

What should you do?

AModify the address space of the local network gateway.

BRemove the public IP addresses from the virtual machines.

CModify the address space of Subnet1.

DCreate a deny rule in a network security group (NSG) that is linked to Subnet1

Answer : D

You can use a site-to-site VPN to connect your on-premises network to an Azure virtual network. Users on your on-premises network connect by using the RDP or

SSH protocol over the site-to-site VPN connection. You have to deny direct RDP or SSH access over the internet through an NSG.

https://docs.microsoft.com/en-us/azure/security/fundamentals/network-best-practices

Question 5

You have an Azure virtual machine named VM1. VM1 was deployed by using a custom Azure Resource Manager template named ARMIjson.

You receive a notification that VM1 will be affected by maintenance.

You need to move VM1 to a different host immediately.

Solution: From the VM1 Redeploy + reapply blade, you select Redeploy.

Does this meet the goal?

AYes

BNo

Answer : A

Question 6

You need to meet the technical requirement for VM4.

What should you create and configure?

Aan Azure Notification Hub

Ban Azure Event Hub

Can Azure Logic App

Dan Azure services Bus

Answer : B

Scenario: Create a workflow to send an email message when the settings of VM4 are modified.

You can start an automated logic app workflow when specific events happen in Azure resources or third-party resources. These resources can publish those events to an Azure event grid. In turn, the event grid pushes those events to subscribers that have queues, webhooks, or event hubs as endpoints. As a subscriber, your logic app can wait for those events from the event grid before running automated workflows to perform tasks - without you writing any code.

https://docs.microsoft.com/en-us/azure/event-grid/monitor-virtual-machine-changes-event-grid-logic-app

Question 7

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev.

You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group.

Solution: On Dev, you assign the Logic App Operator role to the Developers group.

Does this meet the goal?

AYes

BNo

Answer : B

The Logic App Operator role only grants the ability to read, enable, disable, and run logic apps. It does not grant the ability to create logic apps. To create logic apps, you need to assign the Logic App Contributor role or a higher-level role such as Owner or Contributor. Then, Reference: [Built-in roles for Azure resources] [Azure Logic Apps permissions and access control]

Microsoft AZ-104 Microsoft Azure Administrator Exam Practice Test