AZ-204 Exam Dumps Microsoft

Views:
 
Category: Education
     
 

Presentation Description

In this world of ever developing Technology, an IT-Based Certification is a basic demand of the organizations and you’ll need a certification such as Microsoft Certified: Azure Developer Associate to land your dream job with a promising future. Apply for Microsoft Exam and leave the preparation for Developing Solutions for Microsoft Azure to Dumpspedia. We have the best AZ-204 Test Questions to draw satisfactory grades in just one attempt. Our AZ-204 Practice Questions leave no room for failure. Even the Professionals claimed that after testing Practice Exam Questions themselves. Get your set of PDF Questions from our website now! https://www.dumpspedia.com/AZ-204-dumps-questions.html

Comments

Presentation Transcript

slide 1:

Developing Solutions for Microsoft Azure Version: Demo Total Questions: 10 Web: www.dumpspedia.com Email: supportdumpspedia.com Microsoft AZ-204

slide 2:

IMPORTANT NOTICE Feedback We have developed quality product and state-of-art service to ensure our customers interest. If you have any suggestions please feel free to contact us at feedbackdumpspedia.com Support If you have any questions about our product please provide the following items: exam code screenshot of the question login id/email please contact us at and our technical experts will provide support within 24 hours. supportdumpspedia.com Copyright The product of each order has its own encryption code so you should use it independently. Any unauthorized changes will inflict legal punishment. We reserve the right of final explanation for this statement.

slide 3:

Microsoft - AZ-204 Braindumps Questions 1 of 29 100 Success with DumpsPedia.com Exam Topic Breakdown Exam Topic Number of Questions Topic 3 : City Power Light 3 Topic 5 : Misc. Questions 3 Topic 2 : Contoso Ltd 3 Topic 1 : Windows Server 2016 virtual machine 1 TOTAL 10

slide 4:

Microsoft - AZ-204 Braindumps Questions 2 of 29 100 Success with DumpsPedia.com Topic 3 City Power Light Case study This is a case study. Case studies are not timed separately. You can use as much exam time as you would However there may be additional case studies and sections on this exam. You like to complete each case. must manage your time to ensure that you are able to complete all questions included on this exam in the time provided. To answer the questions included in a case study you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study. At the end of this case study a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section you cannot return to this section. To start the case study To display the first question in this case study click the button. Use the buttons in the left pane to Next explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements existing environment and problem statements. When you are ready to answer a question click the button to return to the question. Question Background City Power Light company provides electrical infrastructure monitoring solutions for homes and businesses. The company is migrating solutions to Azure. Current environment Architecture overview The company has a public website located at http://www.cpandl.com/. The site is a single-page web application that runs in Azure App Service on Linux. The website uses files stored in Azure Storage and cached in Azure Content Delivery Network CDN to serve static content. API Management and Azure Function App functions are used to process and store data in Azure Database for PostgreSQL. API Management is used to broker communications to the Azure Function app functions for Logic app integration. Logic apps are used to orchestrate the data processing while Service Bus and Event Grid handle messaging and events. The solution uses Application Insights Azure Monitor and Azure Key Vault. Architecture diagram

slide 5:

Microsoft - AZ-204 Braindumps Questions 3 of 29 100 Success with DumpsPedia.com The company has several applications and services that support their business. The company plans to implement serverless computing where possible. The overall architecture is shown below. User authentication The following steps detail the user authentication process: The user selects in the website. Sign in The browser redirects the user to the Azure Active Directory Azure AD sign in page. The user signs in. Azure AD redirects the user’s session back to the web application. The URL includes an access token. The web application calls an API and includes the access token in the authentication header. The application ID is sent as the audience ‘aud’ claim in the access token. The back-end API validates the access token. Requirements Corporate website Communications and content must be secured by using SSL.

slide 6:

Microsoft - AZ-204 Braindumps Questions 4 of 29 100 Success with DumpsPedia.com Communications must use HTTPS. Data must be replicated to a secondary region and three availability zones. Data storage costs must be minimized. Azure Database for PostgreSQL The database connection string is stored in Azure Key Vault with the following attributes: Azure Key Vault name: cpandlkeyvault Secret name: PostgreSQLConn Id: 80df3e46ffcd4f1cb187f79905e9a1e8 The connection information is updated frequently. The application must always use the latest information to connect to the database. Azure Service Bus and Azure Event Grid Azure Event Grid must use Azure Service Bus for queue-based load leveling. Events in Azure Event Grid must be routed directly to Service Bus queues for use in buffering. Events from Azure Service Bus and other Azure services must continue to be routed to Azure Event Grid for processing. Security All SSL certificates and credentials must be stored in Azure Key Vault. File access must restrict access by IP protocol and Azure AD rights. All user accounts and processes must receive only those privileges which are essential to perform their intended function. Compliance Auditing of the file updates and transfers must be enabled to comply with General Data Protection Regulation GDPR. The file updates must be read-only stored in the order in which they occurred include only create update delete and copy operations and be retained for compliance reasons. Issues Corporate website While testing the site the following error message displays: CryptographicException: The system cannot find the file specified.

slide 7:

Microsoft - AZ-204 Braindumps Questions 5 of 29 100 Success with DumpsPedia.com Function app You perform local testing for the RequestUserApproval function. The following error message displays: Timeout value of 00:10:00 exceeded by function: RequestUserApproval The same error message displays when you test the function in an Azure development environment when you run the following Kusto query: FunctionAppLogs | where FunctionName "RequestUserApproval" Logic app You test the Logic app in a development environment. The following error message displays: 400 Bad Request Troubleshooting of the error shows an HttpTrigger action to call the RequestUserApproval function. Code Corporate website Security.cs: Function app RequestUserApproval.cs:

slide 8:

Microsoft - AZ-204 Braindumps Questions 6 of 29 100 Success with DumpsPedia.com Question :1 - Exam Topic 3 You need to configure the integration for Azure Service Bus and Azure Event Grid. How should you complete the CLI statement To answer select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Answer:

slide 9:

Microsoft - AZ-204 Braindumps Questions 7 of 29 100 Success with DumpsPedia.com Explanation Box 1: eventgrid To create event subscription use: az eventgrid event-subscription create Box 2: event-subscription Box 3: servicebusqueue Scenario: Azure Service Bus and Azure Event Grid Azure Event Grid must use Azure Service Bus for queue-based load leveling. Events in Azure Event Grid must be routed directly to Service Bus queues for use in buffering. Events from Azure Service Bus and other Azure services must continue to be routed to Azure Event Grid for processing. Reference: https://docs.microsoft.com/en-us/cli/azure/eventgrid/event-subscriptionviewazure-cli-latestaz_eventgrid_event_subscription_create Question :2 - Exam Topic 3

slide 10:

Microsoft - AZ-204 Braindumps Questions 8 of 29 100 Success with DumpsPedia.com You need to configure API Management for authentication. Which policy values should you use To answer select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Answer: Explanation

slide 11:

Microsoft - AZ-204 Braindumps Questions 9 of 29 100 Success with DumpsPedia.com Box 1: Validate JWT The validate-jwt policy enforces existence and validity of a JWT extracted from either a specified HTTP Header or a specified query parameter. Scenario: User authentication see step 5 below The following steps detail the user authentication process: The user selects Sign in in the website. The browser redirects the user to the Azure Active Directory Azure AD sign in page. The user signs in. Azure AD redirects the user’s session back to the web application. The URL includes an access token. The web application calls an API and includes the access token in the authentication header. The application ID is sent as the audience ‘aud’ claim in the access token. The back-end API validates the access token. Box 2: Outbound Reference: https://docs.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies Question :3 - Exam Topic 3 You need to retrieve the database connection string. Which values should you use To answer select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

slide 12:

Microsoft - AZ-204 Braindumps Questions 10 of 29 100 Success with DumpsPedia.com Answer: Explanation

slide 13:

Microsoft - AZ-204 Braindumps Questions 11 of 29 100 Success with DumpsPedia.com Azure database connection string retrieve REST API vault.azure.net/secrets/ Box 1: cpandlkeyvault We specify the key vault cpandlkeyvault. Scenario: The database connection string is stored in Azure Key Vault with the following attributes: Azure Key Vault name: cpandlkeyvault Secret name: PostgreSQLConn Id: 80df3e46ffcd4f1cb187f79905e9a1e8 Box 2: PostgreSQLConn We specify the secret PostgreSQLConn Example sample request: https://myvault.vault.azure.net//secrets/mysecretname/4387e9f3d6e14c459867679a90fd0f79api-version7.1 Box 3: Querystring Reference: https://docs.microsoft.com/en-us/rest/api/keyvault/getsecret/getsecret

slide 14:

Microsoft - AZ-204 Braindumps Questions 12 of 29 100 Success with DumpsPedia.com Topic 5 Misc. Questions Question :4 - Exam Topic 5 You are creating an app that uses Event Grid to connect with other services. Your apps event data will be sent to a serverless function that checks compliance. This function is maintained by your company. You write a new event subscription at the scope of your resource. The event must be invalidated after 3 specific period of time. You need to configure Event Grid to ensure security. What should you implement To answer select the appropriate options in he answer area. NOTE: Each correct selection is worth one point Answer:

slide 15:

Microsoft - AZ-204 Braindumps Questions 13 of 29 100 Success with DumpsPedia.com Explanation Box 1: SAS tokens Custom topics use either Shared Access Signature SAS or key authentication. Microsoft recommends SAS but key authentication provides simple programming and is compatible with many existing webhook publishers.

slide 16:

Microsoft - AZ-204 Braindumps Questions 14 of 29 100 Success with DumpsPedia.com A. B. C. D. E. A. In this case we need the expiration time provided by SAS tokens. Box 2: ValidationCode handshake Event Grid supports two ways of validating the subscription: ValidationCode handshake programmatic and ValidationURL handshake manual. If you control the source code for your endpoint this method is recommended. Question :5 - Exam Topic 5 You develop and deploy a Java RESTful API to Azure App Service. You open a browser and navigate to the URL for the API. You receive the following error message: You need to resolve the error. What should you do Bind an SSL certificate Enable authentication Enable CORS Map a custom domain Add a CDN Answer: C Explanation We need to enable Cross-Origin Resource Sharing CORS. References: https://medium.com/xinganwang/a-practical-guide-to-cors-51e8fd329a1f Question :6 - Exam Topic 5 You develop an Azure web app. You monitor performance of the web app by using Application Insights. You need to ensure the cost for Application Insights does not exceed a preset budget. What should you do

slide 17:

Microsoft - AZ-204 Braindumps Questions 15 of 29 100 Success with DumpsPedia.com A. B. C. D. E. Implement ingestion sampling using the Azure portal. Set a daily cap for the Application Insights instance. Implement adaptive sampling using the Azure portal. Implement adaptive sampling using the Application Insights SDK. Implement ingestion sampling using the Application Insights SDK. Answer: D Explanation Sampling is an effective way to reduce charges and stay within your monthly quota. You can set sampling manually either in the portal on the Usage and estimated costs page or in the ASP.NET SDK in the .config file or in the Java SDK in the ApplicationInsights.xml file to also reduce the network traffic. Adaptive sampling is the default for the ASP.NET SDK. Adaptive sampling automatically adjusts to the volume of telemetry that your app sends. It operates automatically in the SDK in your web app so that telemetry traffic on the network is reduced. References: https://docs.microsoft.com/en-us/azure/azure-monitor/app/sampling

slide 18:

Microsoft - AZ-204 Braindumps Questions 16 of 29 100 Success with DumpsPedia.com Topic 2 Contoso Ltd Case study This is a case study. Case studies are not timed separately. You can use as much exam time as you would However there may be additional case studies and sections on this exam. You like to complete each case. must manage your time to ensure that you are able to complete all questions included on this exam in the time provided. To answer the questions included in a case study you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study. At the end of this case study a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section you cannot return to this section. To start the case study To display the first question in this case study click the button. Use the buttons in the left pane to Next explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements existing environment and problem statements. When you are ready to answer a question click the button to return to the question. Question Background Overview You are a developer for Contoso Ltd. The company has a social networking website that is developed as a Single Page Application SPA. The main web application for the social networking website loads user uploaded content from blob storage. You are developing a solution to monitor uploaded data for inappropriate content. The following process occurs when users upload content by using the SPA: • Messages are sent to ContentUploadService. • Content is processed by ContentAnalysisService. • After processing is complete the content is posted to the social network or a rejection message is posted in its place. The ContentAnalysisService is deployed with Azure Container Instances from a private Azure Container Registry named contosoimages. The solution will use eight CPU cores.

slide 19:

Microsoft - AZ-204 Braindumps Questions 17 of 29 100 Success with DumpsPedia.com Azure Active Directory Contoso Ltd. uses Azure Active Directory Azure AD for both internal and guest accounts. Requirements ContentAnalysisService The company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso Ltd. You must create an Azure Function named CheckUserContent to perform the content checks. Costs You must minimize costs for all Azure services. Manual review To review content the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication. In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes. High availability All services must run in multiple regions. The failure of any service in a region must not impact overall application availability. Monitoring An alert must be raised if the ContentUploadService uses more than 80 percent of available CPU cores. Security You have the following security requirements: Any web service accessible over the Internet must be protected from cross site scripting attacks. All websites and services must use SSL from a valid root certificate authority. Azure Storage access keys must only be stored in memory and must be available only to the service. All Internal services must only be accessible from internal Virtual Networks VNets. All parts of the system must support inbound and outbound traffic restrictions. All service calls must be authenticated by using Azure AD. User agreements

slide 20:

Microsoft - AZ-204 Braindumps Questions 18 of 29 100 Success with DumpsPedia.com When a user submits content they must agree to a user agreement. The agreement allows employees of Contoso Ltd. to review content store cookies on user devices and track user’s IP addresses. Information regarding agreements is used by multiple divisions within Contoso Ltd. User responses must not be lost and must be available to all parties regardless of individual service uptime. The volume of agreements is expected to be in the millions per hour. Validation testing When a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version. Issues Users of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages. Code ContentUploadService

slide 21:

Microsoft - AZ-204 Braindumps Questions 19 of 29 100 Success with DumpsPedia.com

slide 22:

Microsoft - AZ-204 Braindumps Questions 20 of 29 100 Success with DumpsPedia.com Question :7 - Exam Topic 2 You need to ensure that network security policies are met. How should you configure network security To answer select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Answer:

slide 23:

Microsoft - AZ-204 Braindumps Questions 21 of 29 100 Success with DumpsPedia.com Explanation Box 1: Valid root certificate Scenario: All websites and services must use SSL from a valid root certificate authority. Box 2: Azure Application Gateway Scenario: Any web service accessible over the Internet must be protected from cross site scripting attacks. All Internal services must only be accessible from Internal Virtual Networks VNets All parts of the system must support inbound and outbound traffic restrictions.

slide 24:

Microsoft - AZ-204 Braindumps Questions 22 of 29 100 Success with DumpsPedia.com A. B. C. D. Azure Web Application Firewall WAF on Azure Application Gateway provides centralized protection of your web applications from common exploits and vulnerabilities. Web applications are increasingly targeted by malicious attacks that exploit commonly known vulnerabilities. SQL injection and cross-site scripting are among the most common attacks. Application Gateway supports autoscaling SSL offloading and end-to-end SSL a web application firewall WAF cookie-based session affinity URL path-based routing multisite hosting redirection rewrite HTTP headers and other features. Note: Both Nginx and Azure Application Gateway act as a reverse proxy with Layer 7 loadbalancing features plus a WAF to ensure strong protection against common web vulnerabilities and exploits. You can modify Nginx web server configuration/SSL for X-XSS protection. This helps to prevent cross-site scripting exploits by forcing the injection of HTTP headers with X-XSS protection. Reference: https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/ag-overview https://www.upguard.com/articles/10-tips-for-securing-your-nginx-deployment Question :8 - Exam Topic 2 You need to configure the ContentUploadService deployment. Which two actions should you perform Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point. Add the following markup to line CS23: types: Private Add the following markup to line CS24: osType: Windows Add the following markup to line CS24: osType: Linux Add the following markup to line CS23: types: Public Answer: A Explanation Scenario: All Internal services must only be accessible from Internal Virtual Networks VNets

slide 25:

Microsoft - AZ-204 Braindumps Questions 23 of 29 100 Success with DumpsPedia.com There are three Network Location types – Private Public and Domain Reference: https://devblogs.microsoft.com/powershell/setting-network-location-to-private/ Question :9 - Exam Topic 2 You need to add markup at line AM04 to implement the ContentReview role. How should you complete the markup To answer drag the appropriate json segments to the correct locations. Each json segment may be used once more than once or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point. Answer:

slide 26:

Microsoft - AZ-204 Braindumps Questions 24 of 29 100 Success with DumpsPedia.com Explanation Box 1: allowedMemberTypes allowedMemberTypes specifies whether this app role definition can be assigned to users and groups by setting to "User" or to other applications that are accessing this application in daemon service scenarios by setting to "Application" or to both. Note: The following example shows the appRoles that you can assign to users. "appId": "8763f1c4-f988-489c-a51e-158e9ef97d6a"

slide 27:

Microsoft - AZ-204 Braindumps Questions 25 of 29 100 Success with DumpsPedia.com "appRoles": "allowedMemberTypes": "User" "displayName": "Writer" "id": "d1c2ade8-98f8-45fd-aa4a-6d06b947c66f" "isEnabled": true "description": "Writers Have the ability to create tasks." "value": "Writer" "availableToOtherTenants": false Box 2: User Scenario: In order to review content a user must be part of a ContentReviewer role. Box 3: value value specifies the value which will be included in the roles claim in authentication and access tokens. Reference: https://docs.microsoft.com/en-us/graph/api/resources/approle

slide 28:

Microsoft - AZ-204 Braindumps Questions 26 of 29 100 Success with DumpsPedia.com Topic 1 Windows Server 2016 virtual machine Case study This is a case study. Case studies are not timed separately. You can use as much exam time as you would However there may be additional case studies and sections on this exam. You like to complete each case. must manage your time to ensure that you are able to complete all questions included on this exam in the time provided. To answer the questions included in a case study you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study. At the end of this case study a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section you cannot return to this section. To start the case study To display the first question in this case study click the button. Use the buttons in the left pane to Next explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements existing environment and problem statements. If the case study has an tab note that the information displayed is identical to the information displayed on the All Information subsequent tabs. When you are ready to answer a question click the button to return to the question. Question Current environment Windows Server 2016 virtual machine The virtual machine VM runs BizTalk Server 2016. The VM runs the following workflows: Ocean Transport – This workflow gathers and validates container information including container contents and arrival notices at various shipping ports. Inland Transport – This workflow gathers and validates trucking information including fuel usage number of stops and routes. The VM supports the following REST API calls: Container API – This API provides container information including weight contents and other attributes. Location API – This API provides location information regarding shipping ports of call and tracking stops. Shipping REST API – This API provides shipping information for use and display on the shipping website.

slide 29:

Microsoft - AZ-204 Braindumps Questions 27 of 29 100 Success with DumpsPedia.com Shipping Data The application uses MongoDB JSON document storage database for all container and transport information. Shipping Web Site The site displays shipping container tracking information and container contents. The site is located at http://shipping.wideworldimporters.com/ Proposed solution The on-premises shipping application must be moved to Azure. The VM has been migrated to a new Standard_D16s_v3 Azure VM by using Azure Site Recovery and must remain running in Azure to complete the BizTalk component migrations. You create a Standard_D16s_v3 Azure VM to host BizTalk Server. The Azure architecture diagram for the proposed solution is shown below: Requirements Shipping Logic app The Shipping Logic app must meet the following requirements: Support the ocean transport and inland transport workflows by using a Logic App. Support industry-standard protocol X12 message format for various messages including vessel content details and arrival notices. Secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model. Maintain on-premises connectivity to support legacy applications and final BizTalk migrations. Shipping Function app

slide 30:

Microsoft - AZ-204 Braindumps Questions 28 of 29 100 Success with DumpsPedia.com A. Implement secure function endpoints by using app-level security and include Azure Active Directory Azure AD. REST APIs The REST API’s that support the solution must meet the following requirements: Secure resources to the corporate VNet. Allow deployment to a testing location within Azure while not incurring additional costs. Automatically scale to double capacity during peak shipping times while not causing application downtime. Minimize costs when selecting an Azure payment model. Shipping data Data migration from on-premises to Azure must minimize costs and downtime. Shipping website Use Azure Content Delivery Network CDN and ensure maximum performance for dynamic content while minimizing latency and costs. Issues Windows Server 2016 VM The VM shows high network latency jitter and high CPU utilization. The VM is critical and has not been backed up in the past. The VM must enable a quick restore from a 7-day snapshot to include in-place restore of disks in case of failure. Shipping website and REST APIs The following error message displays while you are testing the website: Failed to load http://test-shippingapi.wideworldimporters.com/: No Access-Control-Allow-Origin header is present on the requested resource. Origin is therefore not allowed access. http://test.wideworldimporters.com/ Question :10 - Exam Topic 1 You need to secure the Shipping Logic App. What should you use

slide 31:

Microsoft - AZ-204 Braindumps Questions 29 of 29 100 Success with DumpsPedia.com A. B. C. D. Azure App Service Environment ASE Azure AD B2B integration Integration Service Environment ISE VNet service endpoint Answer: C Explanation Scenario: The Shipping Logic App requires secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model. You can access to Azure Virtual Network resources from Azure Logic Apps by using integration service environments ISEs. Sometimes your logic apps and integration accounts need access to secured resources such as virtual machines VMs and other systems or services that are inside an Azure virtual network. To set up this access you can create an integration service environment ISE where you can run your logic apps and create your integration accounts. References: https://docs.microsoft.com/en-us/azure/logic-apps/connect-virtual-network-vnet-isolated-environment-overview

slide 32:

About dumpspedia.com dumpspedia.com was founded in 2007. We provide latest high quality IT / Business Certification Training Exam Questions Study Guides Practice Tests. We help you pass any IT / Business Certification Exams with 100 Pass Guaranteed or Full Refund. Especially Cisco CompTIA Citrix EMC HP Oracle VMware Juniper Check Point LPI Nortel EXIN and so on. View list of all certification exams: All vendors We prepare state-of-the art practice tests for certification exams. You can reach us at any of the email addresses listed below. Sales: salesdumpspedia.com Feedback: feedbackdumpspedia.com Support: supportdumpspedia.com Any problems about IT certification or our products You can write us back and we will get back to you within 24 hours.

authorStream Live Help