[2024年01月]に更新されたMicrosoft Azure AZ-400試験練習テスト問題集豪華セット! [Q175-Q194]

Share

[2024年01月]に更新されたMicrosoft Azure AZ-400試験練習テスト問題集豪華セット!

2024年最新のに更新されたAZ-400のPDFはAZ-400本日更新のテスト無料最新!


Microsoft AZ-400試験は、DevOpsに興味のあるIT専門家にとって重要な認定試験です。この試験は、Microsoft Azureテクノロジーを使用してDevOpsソリューションを設計および実装する能力を個人の能力を検証します。試験に合格した候補者は、IT業界で高く評価されているMicrosoft Certified: DevOps Engineer Expert認定を取得することができます。試験の準備をするためには、DevOpsの概念に強い理解を持ち、Microsoft Azureテクノロジーを使用した経験があり、試験の準備を支援するための多くのリソースを活用する必要があります。

 

質問 # 175
You have an Azure subscription that contains the resources shown in the following table.

You plan to create a linked service in DF1. The linked service will connect to SQL1 by using Microsoft SQL Server authentication. The password for the SQL Server login will be stored in KV1.
You need to configure DF1 to retrieve the password when the data factory connects to SQL1. The solution must use the principle of least privilege.
How should you configure DF1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Box 1: Secret
Store credential in Azure Key Vault by reference secret stored in key vault.
To reference a credential stored in Azure Key Vault, you need to:
* Retrieve data factory managed identity
* Grant the managed identity access to your Azure Key Vault. In your key vault -> Access policies -> Add Access Policy, search this managed identity to grant Get permission in Secret permissions dropdown. It allows this designated factory to access secret in key vault.
* Create a linked service pointing to your Azure Key Vault.
* Create data store linked service, inside which reference the corresponding secret stored in key vault.
Box 2: Access policy
Reference:
https://docs.microsoft.com/en-us/azure/data-factory/store-credentials-in-key-vault


質問 # 176
You need to implement the code flow strategy for Project2 in Azure DevOps.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange in the correct order.

正解:

解説:

Explanation:
Step 1: Create a repository
A Git repository, or repo, is a folder that you've told Git to help you track file changes in. You can have any number of repos on your computer, each stored in their own folder.
Step 2: Create a branch
Branch policies help teams protect their important branches of development. Policies enforce your team's code quality and change management standards.
Step 3: Add a build validation policy
When a build validation policy is enabled, a new build is queued when a new pull request is created or when changes are pushed to an existing pull request targeting this branch. The build policy then evaluates the results of the build to determine whether the pull request can be completed.
Scenario:
Implement a code flow strategy for Project2 that will:
Enable Team2 to submit pull requests for Project2.
Enable Team2 to work independently on changes to a copy of Project2.
Ensure that any intermediary changes performed by Team2 on a copy of Project2 will be subject to the same restrictions as the ones defined in the build policy of Project2.

References: https://docs.microsoft.com/en-us/azure/devops/repos/git/manage-your-branches


質問 # 177
You have a project in Azure DevOps that has three teams as shown in the Teams exhibit. (Click the Teams tab.)

You create a new dashboard named Dash1.
You configure the dashboard permissions for the Contoso project as shown in the Permissions exhibit (Click the Permissions tab.)

All other permissions have the default values set.

正解:

解説:

Explanation


質問 # 178
You have several apps that use an Azure SQL Database named db1.
You need to ensure that queries to db1 are tuned by Azure over time. The solution must only apply to db1.
To complete this task, sign in to the Microsoft Azure portal.

  • A. See solution below

正解:A

解説:

2. Select the automatic tuning options you want to enable and select Apply.
Note: Individual automatic tuning settings can be separately configured for each database. You can manually configure an individual automatic tuning option, or specify that an option inherits its settings from the server.
Reference:
https://docs.microsoft.com/en-us/azure/azure-sql/database/automatic-tuning-enable


質問 # 179
Your company has an Azure subscription named Subscription1. Subscription1 is associated to an Azure Active Directory tenant named contoso.com.
You need to provision an Azure Kubernetes Services (AKS) cluster in Subscription1 and set the permissions for the cluster by using RBAC roles that reference the identities in contoso.com.
Which three objects should you create in sequence? To answer, move the appropriate objects from the list of objects to the answer area and arrange them in the correct order.

正解:

解説:

Explanation

Step 1: Create an AKS cluster
Step 2: a system-assigned managed identity
To create an RBAC binding, you first need to get the Azure AD Object ID.
* Sign in to the Azure portal.
* In the search field at the top of the page, enter Azure Active Directory.
* Click Enter.
* In the Manage menu, select Users.
* In the name field, search for your account.
* In the Name column, select the link to your account.
* In the Identity section, copy the Object ID.

Step 3: a RBAC binding
Reference:
https://docs.microsoft.com/en-us/azure/developer/ansible/aks-configure-rbac


質問 # 180
You have a project in Azure DevOps that contains a Continuous Integration/Continuous Deployment (CI/CD) pipeline.
You need to enable detailed logging by defining a pipeline variable.
Mow should you configure the variable? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 181
You need to deploy Azure Kubernetes Service (AKS) to host an application. The solution must meet the following requirements:
* Containers must only be published internally.
* AKS clusters must be able to create and manage containers in Azure.
What should you use for each requirement? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Box 1: Azure Container Registry
Azure services like Azure Container Registry (ACR) and Azure Container Instances (ACI) can be used and connected from independent container orchestrators like kubernetes (k8s). You can set up a custom ACR and connect it to an existing k8s cluster to ensure images will be pulled from the private container registry instead of the public docker hub.
Box 2: An Azure service principal
When you're using Azure Container Registry (ACR) with Azure Kubernetes Service (AKS), an authentication mechanism needs to be established. You can set up AKS and ACR integration during the initial creation of your AKS cluster. To allow an AKS cluster to interact with ACR, an Azure Active Directory service principal is used.
References:
https://thorsten-hans.com/how-to-use-private-azure-container-registry-with-kubernetes
https://docs.microsoft.com/en-us/azure/aks/cluster-container-registry-integration


質問 # 182
You are configuring an Azure DevOps deployment pipeline. The deployed application will authenticate to a web service by using a secret stored in an Azure key vault.
You need to use the secret in the deployment pipeline.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

正解:

解説:

Explanation
Creating a service principal
Creating a key vault
Check the Azure Pipeline


質問 # 183
You plan to deploy a runbook that will create Azure AD user accounts.
You need to ensure that runbooks can run the Azure PowerShell cmdlets for Azure Active Directory.
To complete this task, sign in to the Microsoft Azure portal.

正解:

解説:
Azure Automation now ships with the Azure PowerShell module of version 0.8.6, which introduced the ability to non-interactively authenticate to Azure using OrgId (Azure Active Directory user) credential-based authentication. Using the steps below, you can set up Azure Automation to talk to Azure using this authentication type.
Step 1: Find the Azure Active Directory associated with the Azure subscription to manage:
1. Log in to the Azure portal as the service administrator for the Azure subscription you want to manage using Azure Automation. You can find this user by logging in to the Azure portal as any user with access to this Azure subscription, then clicking Settings, then Administrators.

2. Note the name of the directory associated with the Azure subscription you want to manage. You can find this directory by clicking Settings, then Subscriptions.

Step 2: Create an Azure Active Directory user in the directory associated with the Azure subscription to manage:
You can skip this step if you already have an Azure Active Directory user in this directory. and plan to use this OrgId to manage Azure.
1. In the Azure portal click on Active Directory service.

2. Click the directory name that is associated with this Azure subscription.
3. Click on the Users tab and then click the Add User button.
4. For type of user, select "New user in your organization." Enter a username for the user to create.
5. Fill out the user's profile. For role, pick "User." Don't enable multi-factor authentication. Multi-factor accounts cannot be used with Azure Automation.
6. Click Create.
7. Jot down the full username (including part after @ symbol) and temporary password.
Step 3: Allow this Azure Active Directory user to manage this Azure subscription.
1. Click on Settings (bottom Azure tab under StorSimple)

2. Click Administrators
3. Click the Add button. Type the full user name (including part after @ symbol) of the Azure Active Directory user you want to set up to manage Azure. For subscriptions, choose the Azure subscriptions you want this user to be able to manage. Click the check mark.
Step 4: Configure Azure Automation to use this Azure Active Directory user to manage this Azure subscription Create an Azure Automation credential asset containing the username and password of the Azure Active Directory user that you have just created. You can create a credential asset in Azure Automation by clicking into an Automation Account and then clicking the Assets tab, then the Add Setting button.

Note: Once you have set up the Azure Active Directory credential in Azure and Azure Automation, you can now manage Azure from Azure Automation runbooks using this credential.
Reference:
https://azure.microsoft.com/sv-se/blog/azure-automation-authenticating-to-azure-using-azure-active-directory/


質問 # 184
Your company has a project in Azure DevOps.
You need to ensure that when there are multiple builds pending deployment only the most recent build is deployed.
What should you use?

  • A. deployment conditions
  • B. deployment queue settings
  • C. pull request triggers
  • D. release gates

正解:B

解説:
Reference:
https://docs.microsoft.com/en-us/azure/devops/pipelines/process/stages?tabs=classic&view=azure-devops#queuing-policies


質問 # 185
Note: This question part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the staled goals. Some question sets might have more than one correct solution, whale others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to It. As a result, these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps depsoyment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure Repos.
Solution: You add a trigger to the build pipeline.
Does this meet the goal?

  • A. NO
  • B. Yes

正解:A

解説:
You can create a service hook for Azure DevOps Services and TFS with Jenkins.
Reference:
https://docs.microsoft.com/en-us/azure/devops/service-hooks/services/jenkins


質問 # 186
You create an alert rule in Azure Monitor as shown in the following exhibit.

Which action will trigger an alert?

  • A. a failed attempt to scale up the ASP-9bb7 resource
  • B. a successful attempt to delete the ASP-9bt>7 resource
  • C. a failed attempt to delete the ASP-9bb7 resource
  • D. a change to a rote assignment for the ASP-9bb7 resource

正解:C


質問 # 187
You need to deploy Internet Information Services (IIS) to an Azure virtual machine that runs Windows Server
2019.
How should you complete the Desired State Configuration (DSQ configuration script? To answer, drag the appropriate values to the correct locations. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

正解:

解説:

Box 1: Configuration
The following example shows a simple example of a configuration.
configuration IISInstall
{
node "localhost"
{
WindowsFeature IIS
{
Ensure = "Present"
Name = "Web-Server"
}
}
}
Box 2: WindowsFeature
Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/dsc-overview


質問 # 188
You have a GrtHub organization that contains three users named User 1. User2. and User3. You have a project that contains a repository named repo1. You need to configure permissions for repo1. The solution must meet the following requirements:
* Ensure that User 1 can actively push to repo1.
* Ensure that Usef2 can manage issues and pull requests for repo1.
* Ensure that User3 can manage repo1.
* Prevent User3 from accessing sensitive data in repo1.
Which role should you assign to each use?

正解:

解説:


質問 # 189
Your company has a project in Azure DevOps.
You plan to create a release pipeline that will deploy resources by using Azure Resource Manager templates. The templates will reference secrets stored in Azure Key Vault.
You need to recommend a solution for accessing the secrets stored in the key vault during deployments. The solution must use the principle of least privilege.
What should you include in the recommendation? To answer, drag the appropriate configurations to the correct targets. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

正解:

解説:

References:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-tutorial-use-key-vault


質問 # 190
You are developing an open source solution that uses a GitHub repository.
You create a new public project in Azure DevOps.
You plan to use Azure Pipelines for continuous build. The solution will use the GitHub Checks API.
Which authentication type should you use?

  • A. GitHub App
  • B. a personal access token (PAT)
  • C. SAML
  • D. OpenID

正解:A

解説:
You can authenticate as a GitHub App.
Reference:
https://developer.github.com/apps/building-github-apps/authenticating-with-github-apps/


質問 # 191
Note: This question part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the staled goals. Some question sets might have more than one correct solution, whale others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to It. As a result, these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps depsoyment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure Repos.
Solution: You add a trigger to the build pipeline.
Does this meet the goal?

  • A. NO
  • B. Yes

正解:B

解説:
You can create a service hook for Azure DevOps Services and TFS with Jenkins.
Reference:
https://docs.microsoft.com/en-us/azure/devops/service-hooks/services/jenkins


質問 # 192
You are building an ASP.NET Core application.
You plan to create an application utilization baseline by capturing telemetry data.
You need to add code to the application to capture the telemetry data. The solution must minimize the costs of storing the telemetry data.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. From the code of the application, enable adaptive sampling.
  • B. From the code of the application, add Azure Application Insights telemetry.
  • C. From the code of the application, disable adaptive sampling.
  • D. Add the <MaxTelemetryItemsPerSecond>5</MaxTelemetryItemsPerSecond> parameter to the ApplicationInsights.config file.
  • E. Add the <InitialSamplingPercentage>99</InitialSamplingPercentage> parameter to the ApplicationInsights.config file.

正解:B、C

解説:
Explanation
"Fixed-rate sampling reduces the volume of telemetry sent from both your ASP.NET or ASP.NET Core or Java server and from your users' browsers. You set the rate. The client and server will synchronize their sampling so that, in Search, you can navigate between related page views and requests."
https://docs.microsoft.com/en-us/azure/azure-monitor/app/sampling
https://docs.microsoft.com/en-us/azure/azure-monitor/app/asp-net-core
https://docs.microsoft.com/en-us/azure/azure-monitor/app/sampling#configuring-adaptive-sampling-for-aspnet-c


質問 # 193
You plan to deploy a runbook that will create Azure AD user accounts.
You need to ensure that runbooks can run the Azure PowerShell cmdlets for Azure Active Directory.
To complete this task, sign in to the Microsoft Azure portal.

正解:

解説:
See solution below.
Explanation
Azure Automation now ships with the Azure PowerShell module of version 0.8.6, which introduced the ability to non-interactively authenticate to Azure using OrgId (Azure Active Directory user) credential-based authentication. Using the steps below, you can set up Azure Automation to talk to Azure using this authentication type.
Step 1: Find the Azure Active Directory associated with the Azure subscription to manage:
1. Log in to the Azure portal as the service administrator for the Azure subscription you want to manage using Azure Automation. You can find this user by logging in to the Azure portal as any user with access to this Azure subscription, then clicking Settings, then Administrators.

2. Note the name of the directory associated with the Azure subscription you want to manage. You can find this directory by clicking Settings, then Subscriptions.

Step 2: Create an Azure Active Directory user in the directory associated with the Azure subscription to manage:
You can skip this step if you already have an Azure Active Directory user in this directory. and plan to use this OrgId to manage Azure.
1. In the Azure portal click on Active Directory service.

2. Click the directory name that is associated with this Azure subscription.
3. Click on the Users tab and then click the Add User button.
4. For type of user, select "New user in your organization." Enter a username for the user to create.
5. Fill out the user's profile. For role, pick "User." Don't enable multi-factor authentication. Multi-factor accounts cannot be used with Azure Automation.
6. Click Create.
7. Jot down the full username (including part after @ symbol) and temporary password.
Step 3: Allow this Azure Active Directory user to manage this Azure subscription.
1. Click on Settings (bottom Azure tab under StorSimple)

2. Click Administrators
3. Click the Add button. Type the full user name (including part after @ symbol) of the Azure Active Directory user you want to set up to manage Azure. For subscriptions, choose the Azure subscriptions you want this user to be able to manage. Click the check mark.
Step 4: Configure Azure Automation to use this Azure Active Directory user to manage this Azure subscription Create an Azure Automation credential asset containing the username and password of the Azure Active Directory user that you have just created. You can create a credential asset in Azure Automation by clicking into an Automation Account and then clicking the Assets tab, then the Add Setting button.

Note: Once you have set up the Azure Active Directory credential in Azure and Azure Automation, you can now manage Azure from Azure Automation runbooks using this credential.
References:
https://azure.microsoft.com/sv-se/blog/azure-automation-authenticating-to-azure-using-azure-active-directory/


質問 # 194
......


Microsoft AZ-400認定試験は、Microsoft DevOpsソリューションの設計と実装のスキルを検証したい専門家向けに設計されています。 DevOpsは、ソフトウェア開発チームとITオペレーション間のコラボレーション、自動化、および通信を強化することを目的とした開発と運用の組み合わせです。 AZ-400試験は、この分野で専門知識を実証したい開発者、DevOpsエンジニア、およびIT専門家にとって必須の認定です。


マイクロソフトのAZ-400認定試験は、Azure DevOpsや関連ツールを使用した経験を持つプロフェッショナルに適しています。この試験は、継続的な統合とデプロイの設計と実装、ソースコントロールの管理、インフラストラクチャのコード化の実装、インフラストラクチャの設定と管理、監視と記録、セキュリティとコンプライアンスの実装など、さまざまなトピックをカバーしています。また、候補者は、Azure Resource Manager、Azure Kubernetes Service、Azure DevOpsなど、さまざまなAzureツールとサービスを使いこなす能力を示す必要があります。

 

全幅的な更新された問題集PDFのテストAZ-400試験問題とアンサー:https://jp.fast2test.com/AZ-400-premium-file.html

100%無料AZ-400試験問題集を試験簡単にパスせよ:https://drive.google.com/open?id=18BDnZd-26XUfMrTFDz2CVqY9hVv8V6b-


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어