- (Exam Topic 5)
You deploy several Azure SQL Database instances.
You plan to configure the Diagnostics settings on the databases as shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Solution:
Graphical user interface, text, application Description automatically generated
In the exhibit, the SQLInsights data is configured to be stored in Azure Log Analytics for 90 days. However, the question is asking for the “maximum” amount of time that the data can be stored which is 730 days.
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
You have SQL Server on an Azure virtual machine. The databases are written to nightly as part of a batch process.
You need to recommend a disaster recovery solution for the data. The solution must meet the following
requirements:
Provide the ability to recover in the event of a regional outage. Support a recovery time objective (RTO) of 15 minutes.
Support a recovery point objective (RPO) of 24 hours. Support automated recovery. Minimize costs.
What should you include in the recommendation?
Correct Answer:
D
Replication with Azure Site Recover: RTO is typically less than 15 minutes. RPO: One hour for application consistency and five minutes for crash consistency. Reference:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-sql
- (Exam Topic 5)
You are planning an Azure Storage solution for sensitive data. The data will be accessed daily. The data set is less than 10 GB.
You need to recommend a storage solution that meets the following requirements:
• All the data written to storage must be retained for five years.
• Once the data is written, the data can only be read. Modifications and deletion must be prevented.
• After five years, the data can be deleted, but never modified.
• Data access charges must be minimized
What should you recommend? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Solution:
Graphical user interface, text, application Description automatically generated
Box 1: General purpose v2 with Archive acce3ss tier for blobs
Archive - Optimized for storing data that is rarely accessed and stored for at least 180 days with flexible latency requirements, on the order of hours.
Cool - Optimized for storing data that is infrequently accessed and stored for at least 30 days. Hot - Optimized for storing data that is accessed frequently.
Box 2: Storage account resource lock
As an administrator, you can lock a subscription, resource group, or resource to prevent other users in your organization from accidentally deleting or modifying critical resources. The lock overrides any permissions the user might have.
Note: You can set the lock level to CanNotDelete or ReadOnly. In the portal, the locks are called Delete and Read-only respectively.
CanNotDelete means authorized users can still read and modify a resource, but they can't delete the resource. ReadOnly means authorized users can read a resource, but they can't delete or update the resource.
Applying this lock is similar to restricting all authorized users to the permissions granted by the Reader role.
Reference:
https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-storage-tiers
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
You have an Azure web app named App1 and an Azure key vault named KV1. App1 stores database connection strings in KV1.
App1 performs the following types of requests to KV1: Get List Wrap Delete Unwrap Backup Decrypt Encrypt
You are evaluating the continuity of service for App1.
You need to identify the following if the Azure region that hosts KV1 becomes unavailable: To where will KV1 fail over? During the failover, which request type will be unavailable?
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Solution:
Table Description automatically generated
Box 1: A server in the same paired region
The contents of your key vault are replicated within the region and to a secondary region at least 150 miles away, but within the same geography to maintain high durability of your keys and secrets.
Box 2: Delete
During failover, your key vault is in read-only mode. Requests that are supported in this mode are: List certificates Get certificates List secrets Get secrets List keys Get (properties of) keys Encrypt Decrypt Wrap Unwrap Verify Sign Backup
Reference:
https://docs.microsoft.com/en-us/azure/key-vault/general/disaster-recovery-guidance
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
You plan to deploy a network-intensive application to several Azure virtual machines. You need to recommend a solution that meets the following requirements: Minimizes the use of the virtual machine processors to transfer data Minimizes network latency
Which virtual machine size and feature should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Solution:
Graphical user interface, text, application Description automatically generated
References:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sizes-hpc#h-series
Does this meet the goal?
Correct Answer:
A