- (Exam Topic 5)
You have an Azure Active Directory (Azure AD) tenant that syncs with an on-premises Active Directory domain.
Your company has a line-of-business (LOB) application that was developed internally.
You need to implement. SAML single sign-on (SSO) and enforce multi-factor authentication (MFA) when users attempt to access the application from an unknown location.
Which two features should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

1. A. Azure AD enterprise applications
2. B. Azure AD Identity Protection
3. C. Azure Application Gateway
4. D. Conditional Access policies
5. E. Azure AD Privileged Identity Management (PIM)

Correct Answer: AD

- (Exam Topic 5)
You have an Azure subscription. The subscription contains Azure virtual machines that run Windows Server 2016 and Linux.
You need to use Azure Log Analytics design an alerting strategy for security-related events.
Which Log Analytics tables should you query? To answer, drag the appropriate tables to the correct log types. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Solution:
Graphical user interface, table Description automatically generated with medium confidence
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/log-analytics-agent
Windows Event logs --> Information sent to the Windows event logging system. Syslog --> Information sent to the Linux event logging system.

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 5)
You are designing a storage solution that will ingest, store, and analyze petabytes (PBs) of structured,
semi-structured and unstructured text data. The analyzed data will be offloaded to Azure Data Lake Storage Gen2 for long-term retention.
You need to recommend a storage and analytics solution that meets the following requirements:
• Stores the processed data
• Provides interactive analytics
• Supports manual scaling, built-in autoscaling. and custom autoscaling
What should you include in the recommendation? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 3)
You need to recommend an App Service architecture that meets the requirements for Appl. The solution must minimize costs.
What should few recommend?

1. A. one App Service Environment (ASE) per availability zone
2. B. one App Service plan per availability zone
3. C. one App Service plan per region
4. D. one App Service Environment (ASE) per region

Correct Answer: D

- (Exam Topic 5)
You have an Azure subscription.
You need to recommend a solution to provide developers with the ability to provision Azure virtual machines. The solution must meet the following requirements:
• Only allow the creation of the virtual machines in specific regions.
• Only allow the creation of specific sizes of virtual machines. What should you include in the recommendation?

1. A. Conditional Access policies
2. B. role-based access control (RBAC)
3. C. Azure Resource Manager (ARM) templates
4. D. Azure Policy

Correct Answer: B
https://docs.microsoft.com/en-us/azure/governance/policy/tutorials/create-and-manage https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/manage/azure-server-management/common