Microsoft AZ-720 Troubleshooting Microsoft Azure Connectivity Exam Practice Test

Page: 1 / 14
Total 119 questions
Question 1

A company enables just-in-time (JIT) virtual machine (VM) access in Azure.

An administrator observes a list of VMs on the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal.

You need to determine why some VMs are not supported for JIT VM access.

What should you conclude?



Answer : B

JIT VM access is only supported for VMs that are deployed using the Azure Resource Manager (ARM) deployment model. VMs that are provisioned using the classic deployment model are not compatible with JIT VM access and will be displayed under the Unsupported tab of the JIT VM access page in the Microsoft Defender for Cloud portal.


Question 2

A company has on-premises application server that runs in System Center Virtual Machine Manager (SCVMM). The company configures Azure Site Recovery.

An administrator at the company reports that they receive an error message. The error message indicates that there are replication issues.

You need to troubleshoot the issue.

Which log should you review?



Answer : D

when you use Azure Site Recovery to replicate on-premises VMs that run in SCVMM, you need to check the SCVMM debug log for any errors or warnings related to replication. The SCVMM debug log is located at %SYSTEMDRIVE%\ProgramData\VMMLogs\SCVMM.debugtrace.log on the SCVMM server.


Question 3

A company migrates an on-premises Windows virtual machine (VM) to Azure. An administrator enables backups for the VM by using the Azure portal.

The company reports that the Azure VM backup job is failing.

You need to troubleshoot the issue.

Solution: Install the VM guest agent by using administrative permissions.

Does the solution meet the goal?



Answer : A

Yes, installing the VM guest agent by using administrative permissions could resolve the issue of the Azure VM backup job failing after enabling backups for the VM through the Azure portal. When backing up a virtual machine in Azure, it is necessary to install the VM guest agent to enable proper communication between the VM and the backup service. An administrative user account is required to install the agent.

Therefore, the solution mentioned in the question is correct and the answer is A. Yes.


Back up a virtual machine in Azure (Microsoft documentation)

Question 4

A company plans to use an Azure PaaS service by using Azure Private Link service. The azure Private Link service and an endpoint have been configured.

The company reports that the endpoint is unable to connect to the service.

You need to resolve the connectivity issue.

What should you do?



Answer : C

To resolve the connectivity issue, you should approve the connection state.According to1, Azure Private Link service requires manual approval of connection requests from private endpoints by default. You can approve or reject a connection request by using PowerShell cmdlets or Azure portal.


Question 5

A company configures an Azure site-to-site VPN between an on-premises network and an Azure virtual network.

The company reports that after completing the configuration, the VPN connection cannot be established.

You need to troubleshoot the connection issue.

What should you do first?



Answer : A

To troubleshoot the connection issue, you should do first identify the shared key by running this PowerShell cmdlet: Get-AzVirtualNetworkGatewayConnectionSharedKey.According to1, this cmdlet returns the shared key that is used for authentication between an Azure virtual network gateway and a local network gateway. You can use this cmdlet to verify that the shared key matches on both sides of the VPN connection.

Therefore, you should choose A. Identify the shared key by running this PowerShell cmdlet: Get-AzVirtualNetworkGatewayConnectionSharedKey.


Question 6

A company uses Azure Site Recovery (ASR) for a VMware environment that includes the following virtual machines (VMs):

The company reports that they are unable to configure all of the servers for replication.

You need to evaluate the servers and server roles to determine which servers can be protected.

Which server can you protect by using ASR?



Answer : A

Azure Site Recovery supports replicating VMware VMs that meet certain requirements for operating system version, disk type and size, network adapter type and configuration, and so on. Based on the table of VMs and their properties, only VM1 meets all the requirements for replication


Question 7

A company has virtual machines (VMs) in the following Azure regions:

West Central US

Australia East

The company uses ExpressRoute private peering to provide connectivity to VMs hosted on each region and on-premises services.

The company implements global VNet peering between a VNet in each region. After configuring VNet peering, VM traffic attempts to use ExpressRoute private peering.

You need to ensure that traffic uses global VNet peering instead of ExpressRoute private peering. The solution must preserve existing on-premises connectivity to Azure VNets.

What should you do?



Answer : A

To ensure that traffic uses global VNet peering instead of ExpressRoute private peering, you should add a user-defined route to the subnets route table.According to2, global VNet peering allows virtual networks across regions to communicate using private IP addresses as if they were in the same region. However, if there is an existing ExpressRoute private peering between two regions that also have global VNet peering enabled, traffic will prefer ExpressRoute over global VNet peering by default. To override this behavior and force traffic to use global VNet peering instead of ExpressRoute private peering for a specific subnet or virtual network gateway connection, you need to add a user-defined route with a next hop type of Virtual Network Peering.


Page:    1 / 14   
Total 119 questions