- (Topic 5)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a virtual network named VNet1 that is hosted in the West US Azure region.
VNet1 hosts two virtual machines named VM1 and VM2 that run Windows Server.
You need to inspect all the network traffic from VM1 to VM2 for a period of three hours. Solution: From Azure Network Watcher, you create a connection monitor.
Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A
https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-packet-capture-overview

- (Topic 5)
You have a Recovery Services vault named RSV1. RSV1 has a backup policy that retains instant snapshots for five days and daily backup for 14 days.
RSV1 performs daily backups of VM1. VM1 hosts a static website that was updated eight days ago.
You need to recover VM1 to a point eight days ago. The solution must minimize downtime. What should you do first?

1. A. Deallocate VM1.
2. B. Restore VM1 by using the Replace existing restore configuration option.
3. C. Delete VM1.
4. D. Restore VM1 by using the Create new restore configuration option.

Correct Answer: D
https://learn.microsoft.com/en-us/azure/backup/backup-azure-arm-restore-vms#restore-options
To recover VM1 to a point eight days ago, you need to use the Azure Backup service to restore the VM from a recovery point. A recovery point is a snapshot of the VM data at a specific point in time. Azure Backup creates recovery points according to the backup policy that you configure for the Recovery Services vault1.
In this case, the Recovery Services vault named RSV1 has a backup policy that retains instant snapshots for five days and daily backup for 14 days. This means that you can restore the VM from any point in the last 14 days, as long as there is a recovery point available. Since you need to recover VM1 to a point eight days ago, you can use the daily backup recovery point that was created on that day2.
To restore the VM from a recovery point, you have two options: Replace existing or Create new. The Replace existing option overwrites the existing VM with the restored data, while the Create new option creates a new VM with the restored data. The Replace existing option requires you to deallocate or delete the existing VM before restoring it, which can cause downtime and data loss. The Create new option allows you to restore the VMwithout affecting the existing VM, which minimizes downtime and data loss3.
Therefore, the best option is to restore VM1 by using the Create new restore configuration option. This will create a new VM with the same name as VM1 and append a suffix to it, such as -Restored. You can then verify that the new VM has the correct data and configuration, and switch over to it when you are ready. You can also delete the original VM if you don’t need it anymore3.

- (Topic 4)
You need to add VM1 and VM2 to the backend poo! of LB1. What should you do first?

1. A. Create a new NSG and associate the NSG to VNET1/Subnet1.
2. B. Connect VM2 to VNET1/Subnet1.
3. C. Redeploy VM1 and VM2 to the same availability zone.
4. D. Redeploy VM1 and VM2 to the same availability set.

Correct Answer: B

- (Topic 5)
You have two Azure subscriptions named Sub1 and Sub2.
Sub! contains a virtual machine named VM1 and a storage account named storage1.
VM1 is associated to the resources shown in the following table. You need to move VM1 to Sub2.
Which resources should you move to Sub2?

1. A. VM1, Disk1. and Netlnt1 only
2. B. VM1. Disk1. and VNet1 only
3. C. VM1. Disk1. and storage1 only
4. D. VM1. Disk1. Netlnt1, and VNet1

Correct Answer: D
When you move a virtual machine to a different subscription, you need to move all the resources that are associated with the virtual machine, such as the disks, the network interface, and the virtual network. You cannot move a virtual machine without moving its dependent resources. You also need to ensure that the target subscription supports the same region, resource type, and API version as the source subscription. Then, References: [Move a Windows VM to another Azure subscription or resource group]

- (Topic 5)
You have an Azure subscription That contains a Recovery Services vault named Vault1. You need to enable multi-user authorization (MAU) for Vaultl.
Which resource should you create first?

1. A. a managed identity
2. B. a resource guard
3. C. an administrative unit
4. D. a custom Azure role

Correct Answer: B
https://learn.microsoft.com/en-us/azure/backup/multi-user-authorization?tabs=azure-portal&pivots=vaults-recovery-services-vault#before-you-start
Before you start
Ensure the Resource Guard and the Recovery Services vault are in the same Azure region.
Ensure the Backup admin does not have Contributor permissions on the Resource Guard. You can choose to have the Resource Guard in another subscription of the same directory or in another directory to ensure maximum isolation.
Ensure that your subscriptions containing the Recovery Services vault as well as the Resource Guard (in different subscriptions or tenants) are registered to use the providers - Microsoft.RecoveryServices and Microsoft.DataProtection . For more information, see Azure