[2024年12月07日] AZ-304 PDFで最近更新された問題です集試験点数を伸ばそう [Q49-Q71]

Share

[2024年12月07日] AZ-304 PDFで最近更新された問題です集試験点数を伸ばそう

AZ-304完全版問題集には無料PDF問題で合格させる

質問 # 49
You have an Azure subscription that contains two applications named App1 and App2. App1 is a sales processing application. When a transaction in App1 requires shipping, a message is added to an Azure Storage account queue, and then App2 listens to the queue for relevant transactions.
In the future, additional applications will be added that will process some of the shipping requests based on the specific details of the transactions.
You need to recommend a replacement for the storage account queue to ensure that each additional application will be able to read the relevant transactions.
What should you recommend?

  • A. one Azure Service Bus queue
  • B. multiple storage account queues
  • C. one Azure Data Factory pipeline
  • D. one Azure Service Bus topic

正解:D

解説:
Explanation
A queue allows processing of a message by a single consumer. In contrast to queues, topics and subscriptions provide a one-to-many form of communication in a publish and subscribe pattern. It's useful for scaling to large numbers of recipients. Each published message is made available to each subscription registered with the topic. Publisher sends a message to a topic and one or more subscribers receive a copy of the message, depending on filter rules set on these subscriptions.
Reference:
https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-queues-topics-subscriptions


質問 # 50
You plan to deploy the backup policy shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation


質問 # 51
You need to recommend a solution for configuring the Azure Multi-Factor Authentication (MFA) settings.
What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

References:
https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-sign-in-risk-policy
https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-mfa-policy


質問 # 52
You plan provision an HPC cluster in Azure that will use a third-party scheduler. You need to recommend a solution to provision and manage the HPC cluster node. What should you include in the recommendation?

  • A. Azure Lighthouse
  • B. Azure Purview
  • C. Azure CycleCloud
  • D. Azure Automation

正解:C


質問 # 53
Your company has the divisions shown in the following table.

You plan to deploy a custom application to each subscription. The application will contain the following:
* A resource group
* An Azure web app
* Custom role assignments
* An Azure Cosmos DB account
You need to use Azure Blueprints to deploy the application to each subscription.
What is the minimum number of objects required to deploy the application? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Box 1: 2
One management group for East, and one for West.
When creating a blueprint definition, you'll define where the blueprint is saved. Blueprints can be saved to a management group or subscription that you have Contributor access to. If the location is a management group, the blueprint is available to assign to any child subscription of that management group.
Box 2: 1
One definition as the you plan to deploy a custom application to each subscription.
With Azure Blueprints, the relationship between the blueprint definition (what should be deployed) and the blueprint assignment (what was deployed) is preserved.
Box 3: 4
One assignment for each subscription.
Reference:
https://docs.microsoft.com/en-us/azure/governance/blueprints/overview


質問 # 54
You are designing an Azure web app that will use Azure Active Directory (Azure AD) for authentication.
You need to recommend a solution to provide users from multiple Azure AD tenants with access to App1. The solution must ensure that the users use Azure Multi-Factor Authentication (MFA) when they connect to App1.
Which two types of objects should you include in the recommendation? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Azure AD guest accounts
  • B. an identity Experience Framework policy
  • C. Azure AD managed identities
  • D. a Microsoft intune app protection policy
  • E. Azure AD conditional access policies
  • F. an Azure application security group

正解:C、E

解説:
Explanation
https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-conditional-access-dev-guide
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-azur


質問 # 55
Your company develops a web service that is deployed to at, Azure virtual machine named VM1 the web service allows an API to access real- time data from VM1. The current virtual machine deployment is shown in the Deployment exhibit. (Click the Deployment tab).

The chief technology officer (CTO) sends you the following email message: "Our developers have deployed the web service to a virtual machine named WL Testing has shown that the API is accessible from VM1 and VM? Our partners must be able to connect to the API over the Internet Partners will me this data in applications that they develop:
You deploy an Azure API Management service. The relevant API Management configuration is shown in the API ambit. (Click the API tab).

For each of the following statements, select. Yes, if the statement is true. Otherwise. select No.
NOTE: Each correct selection is worth one point.

正解:

解説:
Explanation


質問 # 56
You need to recommend an Azure Storage Account configuration for two applications named Application1 and Applications. The configuration must meet the following requirements:
* Storage for Application1 must provide the highest possible transaction rates and the lowest possible latency.
* Storage for Application2 must provide the lowest possible storage costs per GB.
* Storage for both applications must be optimized for uploads and downloads.
* Storage for both applications must be available in an event of datacenter failure.
What should you recommend ? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point

正解:

解説:

Explanation

Box 1: BloblBlobStorage with Premium performance and Zone-redundant storage (ZRS) replication.
BlockBlobStorage accounts: Storage accounts with premium performance characteristics for block blobs and append blobs. Recommended for scenarios with high transactions rates, or scenarios that use smaller objects or require consistently low storage latency.
Premium: optimized for high transaction rates and single-digit consistent storage latency.
Box 2: General purpose v2 with Standard performance..
General-purpose v2 accounts: Basic storage account type for blobs, files, queues, and tables. Recommended for most scenarios using Azure Storage.
Reference:
https://docs.microsoft.com/en-us/azure/storage/common/storage-account-overview
https://docs.microsoft.com/en-us/azure/storage/common/storage-redundancy


質問 # 57
You have an Azure subscription.
Your on-premises network contains a file server named Server1. Server 1 stores 5 TB of company files that are accessed rarely.
You plan to copy the files to Azure Storage.
You need to implement a storage solution for the files that meets the following requirements:
* The files must be available within 24 hours of being requested.
* Storage costs must be minimized.
Which two possible storage solutions achieve this goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

  • A. Create a general-purpose v1 storage account. Create a blob container and copy the files to the blob container.
  • B. Create a general-purpose v2 storage account that is configured for the Cool default access tier. Create a file share in the storage account and copy the files to the file share.
  • C. Create a general-purpose v2 storage account that is configured for the Hot default access tier Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
  • D. Create an Azure Blob storage account that is configured for the Cool default access tier. Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
  • E. Create a general-purpose v1 storage account Create a file share in the storage account and copy the files to the file share.

正解:A、B


質問 # 58
Your company plans to use a separate Azure subscription for each of its business units. You identify the following governance requirements:
* Each business unit will analyze costs for different workloads such as production, development, and testing.
* The company will analyze costs by business unit and workload.
What should you use to meet the governance requirements?

  • A. Microsoft Intune and compliance policies
  • B. Azure Advisor alerts and Azure Logic Apps
  • C. tags and Azure Policy
  • D. Azure management groups and RBAC

正解:C


質問 # 59
You need to design a solution for securing access to the historical transaction data.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 60
Your company provides customer support for multiple Azure subscriptions and third-party hosting providers.
You are designing a centralized monitoring solution. The solution must provide the following services:
* Collect log and diagnostic data from all the third-party hosting providers into a centralized repository.
* Collect log and diagnostic data from all the subscriptions into a centralized repository.
* Automatically analyze log data and detect threats.
* Provide automatic responses to known events.
Which Azure service should you include in the solution?

  • A. Azure Application Insights
  • B. Azure Sentinel
  • C. Azure Monitor
  • D. Azure Log Analytics

正解:C

解説:
The following diagram gives a high-level view of Azure Monitor. At the center of the diagram are the data stores for metrics and logs, which are the two fundamental types of data used by Azure Monitor. On the left are the sources of monitoring data that populate these data stores. On the right are the different functions that Azure Monitor performs with this collected data. This includes such actions as analysis, alerting, and streaming to external systems.

Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/overview


質問 # 61
You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager resource deployments in your subscription What should you include in the recommendation?

  • A. Application insights
  • B. Azure Advisor
  • C. Azure Log Analytics
  • D. Azure Monitor metrics

正解:D


質問 # 62
To meet the authentication requirements of Fabrikam, what should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 63
You have an Azure subscription that contains the resources shown in the following table.

You need to archive the diagnostic data for VNET1 for 365 days. The solution must minimize costs.
Where should you archive the data?

  • A. storage1
  • B. Workspace1
  • C. storage2

正解:A

解説:
Note: The workspace is the top-level resource for Azure Machine Learning, providing a centralized place to work with all the artifacts you create when you use Azure Machine Learning.
Reference:
https://docs.microsoft.com/en-us/azure/machine-learning/concept-workspace


質問 # 64
You configure the Diagnostics settings for an Azure SQL database as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation


質問 # 65
You need to recommend a solution for the user at Contoso to authenticate to the cloud-based sconces and the Azure AD-integrated application. What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation


質問 # 66
Your organization has developed and deployed several Azure App Service Web and API applications. The applications use Azure Key Vault to store several authentication, storage account, and data encryption keys. Several departments have the following requests to support the applications:

You need to recommend the appropriate Azure service for each department request.
What should you recommend? To answer, configure the appropriate options in the dialog box in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview


質問 # 67
Your company has 20 web APIs that were developed in-house.
The company is developing 10 web apps that will use the web APIs. The web apps and the APIs are registered in the company's Azure Active Directory (Azure AD) tenant. The web APIs are published by using Azure API Management.
You need to recommend a solution to block unauthorized requests originating from the web apps from reaching the web APIs. The solution must meet the following requirements:
* Use Azure AD-generated claims.
* Minimize configuration and management effort.
What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation
1. Azure AD
2. Azure API Management
1. Azure AD
https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad#gran
2. API Management
https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad#conf


質問 # 68
Your company uses Microsoft System Center Service Manager on its on-premises network.
You plan to deploy several services to Azure.
You need to recommend a solution to push Azure service health alerts to Service Manager.
What should you include in the recommendation?

  • A. Application Insights Connector
  • B. IT Service Management Connector (ITSM)
  • C. Azure Event Hubs
  • D. Azure Notification Hubs

正解:B

解説:
Explanation/Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/itsmc-overview


質問 # 69
You plan to migrate App1 to Azure. The solution must meet the authentication and authorization requirements.
Which type of endpoint should App1 use to obtain an access token?

  • A. Azure Instance Metadata Service (IMDS)
  • B. Azure AD
  • C. Azure Service Management
  • D. Microsoft identity platform

正解:D

解説:
Scenario: To access the resources in Azure, App1 must use the managed identity of the virtual machines that will host the app.
Managed identities provide an identity for applications to use when connecting to resources that support Azure Active Directory (Azure AD) authentication. Applications may use the managed identity to obtain Azure AD tokens.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview


質問 # 70
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to deploy multiple instances of an Azure web app across several Azure regions.
You need to design an access solution for the app. The solution must meet the following replication requirements:
Support rate limiting.
Balance requests between all instances.
Ensure that users can access the app in the event of a regional outage.
Solution: You use Azure Traffic Manager to provide access to the app.
Does this meet the goal?

  • A. Yes
  • B. No

正解:B

解説:
Azure Traffic Manager is a DNS-based traffic load balancer. This service allows you to distribute traffic to your public facing applications across the global Azure regions. Traffic Manager also provides your public endpoints with high availability and quick responsiveness. It does not provide rate limiting.
Reference:
https://docs.microsoft.com/en-us/azure/app-service/web-sites-traffic-manager
https://docs.microsoft.com/en-us/azure/traffic-manager/traffic-manager-overview


質問 # 71
......


AZ-304試験では、セキュリティとアイデンティティの設計、データプラットフォームソリューションの設計、ビジネス継続戦略の設計、展開、移行、統合のための設計など、さまざまな分野の候補者のスキルをテストします。この試験は、顧客のビジネス要件を満たすソリューションを設計する候補者の能力を測定するように設計されており、ソリューションが費用対効果が高く、スケーラブルで、安全であることを保証します。試験は困難であり、候補者はAzureサービスを渡すためにazureサービスを完全に理解する必要があります。この認定は、専門家のキャリアの成長に役立ち、潜在的な雇用主にAzureソリューションを設計する際の専門知識を実証することができます。

 

100%更新されたのはMicrosoft AZ-304限定版PDF問題集:https://jp.fast2test.com/AZ-304-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어