Massive Halloween Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpm65

AZ-304 Questions and Answers

Question # 4

You migrate App1 to Azure.

You need to ensure that the data storage for App1 meets the security and compliance requirement

What should you do?

A.

Create an access policy for the blob

B.

Modify the access level of the blob service.

C.

Implement Azure resource locks.

D.

Create Azure RBAC assignments.

Full Access
Question # 5

You plan to migrate App1 to Azure. The solution must meet the authentication and authorization requirements.

Which type of endpoint should App1 use to obtain an access token?

A.

Azure Instance Metadata Service (IMDS)

B.

Azure AD

C.

Azure Service Management

D.

Microsoft identity platform

Full Access
Question # 6

You need to configure an Azure policy to ensure that the Azure SQL databases have TDE enabled. The solution must meet the security and compliance requirements.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Full Access
Question # 7

You plan to migrate App1 to Azure.

You need to recommend a storage solution for App1 that meets the security and compliance requirements.

Which type of storage should you recommend, and how should you recommend configuring the storage? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 8

You plan to migrate App1 to Azure.

You need to recommend a high-availability solution for App1. The solution must meet the resiliency requirements.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 9

You are evaluating the components of the migration to Azure that require you to provision an Azure Storage account.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access
Question # 10

What should you include in the identity management strategy to support the planned changes?

A.

Move all the domain controllers from corp.fabrikam.com to virtual networks in Azure.

B.

Deploy domain controllers for corp.fabrikam.com to virtual networks in Azure.

C.

Deploy a new Azure AD tenant for the authentication of new R&D projects.

D.

Deploy domain controllers for the rd.fabrikam.com forest to virtual networks in Azure.

Full Access
Question # 11

You have an on-premises network and an Azure subscription. The on-premises network has several branch offices.

A branch office in Toronto contains a virtual machine named VM1 that is configured as a file server. Users access the shared files on VM1 from all the offices.

You need to recommend a solution to ensure that the users can access the shares files as quickly as possible if the Toronto branch office is inaccessible.

What should you include in the recommendation?

A.

a Recovery Services vault and Azure Backup

B.

an Azure file share and Azure File Sync

C.

Azure blob containers and Azure File Sync

D.

a Recovery Services vault and Windows Server Backup

Full Access
Question # 12

You use Azure virtual machines to run a custom application that uses an Azure SQL database on the back end.

The IT apartment at your company recently enabled forced tunneling,

Since the configuration change, developers have noticed degraded performance when they access the database

You need to recommend a solution to minimize latency when accessing the database. The solution must minimize costs

What should you include in the recommendation?

A.

Azure SQL Database Managed instance

B.

Azure virtual machines that run Microsoft SQL Server servers

C.

Always On availability groups

D.

virtual network (VNET) service endpoint

Full Access
Question # 13

Your company has 20 web APIs that were developed in-house.

The company is developing 10 web apps that will use the web APIs. The web apps and the APIs are registered in the company’s Azure Active Directory (Azure AD) tenant. The web APIs are published by using Azure API Management.

You need to recommend a solution to block unauthorized requests originating from the web apps from reaching the web APIs. The solution must meet the following requirements:

  • Use Azure AD-generated claims.
  • Minimize configuration and management effort.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 14

Your company has the divisions shown in the following table.

Sub1 contains an Azure web app that runs an ASP.NET application named App1 uses the Microsoft identity platform (v2.0) to handler user authentication. users from east.contoso.com can authenticate to App1.

You need to recommend a solution to allow users from west.contoso.com to authenticate to App1.

What should you recommend for the west.contoso.com Azure AD tenant?

A.

guest accounts

B.

an app registration

C.

pass-through authentication

D.

a conditional access policy

Full Access
Question # 15

You are designing an Azure web app.

You plan to deploy the web app to the North Europe Azure region and the West Europe Azure region.

You need to recommend a solution for the web app. The solution must meet the following requirements:

  • Users must always access the web app from the North Europe region, unless the region fails.
  • The web app must be available to users if an Azure region is unavailable.
  • Deployment costs must be minimized.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 16

You have multiple Anne deployments.

You plan to implement Azure Blueprints.

Which artifact types can be added to a blueprint?

A.

Policy assignment Resource group, Role assignment virtual machines, and virtual networks only

B.

Subscriptions. tenants. Resource group, and Key vault only

C.

Subscriptions. tenants. Resource group, and Azure Active Directory only

D.

Azure Resource Manager template (Subscription). Policy assignment Resource group, and Role assignment only

Full Access
Question # 17

You plan to import data from your on-premises environment into Azure. The data is shown in the following table.

What should you recommend using to migrate the data? To answer, drag the appropriate tools to the correct data sources. Each tool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access
Question # 18

Your company has the offices shown in the following table.

The network contains an Active Directory domain named contoso.com that is synced to Azure Active Directory (Azure AD).

All users connect to an application hosted in Microsoft 365.

You need to recommend a solution to ensure that all the users use Azure Multi-Factor Authentication (MFA) to connect to the application from one of the offices.

What should you include in the recommendation?

A.

a named location and two Microsoft Cloud App Security policies

B.

a conditional access policy and two virtual networks

C.

a virtual network and two Microsoft Cloud App Security policies

D.

a conditional access policy and two named locations

Full Access
Question # 19

You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains several administrative user accounts. You need to recommend a solution to identify which administrative user accounts have NOT signed in during the previous 30 days.

Which service should you include in the recommendation?

A.

Azure AD Identity Protection

B.

Azure AD Privileged identity Management (PIM)

C.

Azure Advisor

D.

Azure Activity log

Full Access
Question # 20

You are planning an Azure Storage solution for sensitive data. The data will be accessed daily. The data set is less than 10 GB.

You need to recommend a storage solution that meets the following requirements:

• All the data written to storage must be retained for five years.

• Once the data is written, the data can only be read. Modifications and deletion must be prevented.

• After five years, the data can be deleted, but never modified.

• Data access charges must be minimized

What should you recommend? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 21

You need to recommend a solution for the users at Contoso to authenticate to the cloud-based services and the Azure AD-integrated applications.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 22

You need to recommend a high-availability solution for the middle tier of the payment processing system. What should you include in the recommendation?

A.

availability zones

B.

an availability set

C.

the Premium App Service plan

D.

the Isolated App Server plan

Full Access
Question # 23

You need to recommend a solution for the user at Contoso to authenticate to the cloud-based sconces and the Azure AD-integrated application. What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 24

You need to recommend a solution for implementing the back-end tier of the payment processing system in Azure.

What should you include in the recommendation?

A.

an Azure SQL Database managed instance

B.

a SQL Server database on an Azure virtual machine

C.

an Azure SQL Database single database

D.

an Azure SQL Database elastic pool

Full Access
Question # 25

You need to recommend a solution for the network configuration of the front-end tier of the payment processing.

What should you include in the recommendation?

A.

Azure Application Gateway

B.

Traffic Manager

C.

a Standard Load Balancer

D.

a Basic load Balancer

Full Access
Question # 26

N NO: 3 HOTSPOT

You need to recommend a solution for the data store of the historical transaction query system.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 27

You need to recommend a solution for data of the historical transaction query system.

What should you include in the recommendation? To answer, Select the appropriate or options in the answer area.

NOTE: Each correct selection is worth one point

Full Access
Question # 28

You need to recommend a backup solution for the data store of the payment processing system.

What should you include in the recommendation?

A.

Microsoft System Center Data Protection Manager (DPM)

B.

Azure Backup Server

C.

Azure SQL long-term backup retention

D.

Azure Managed Disks

Full Access
Question # 29

You need to recommend a solution for the collection of security logs the middle tier of the payment processing system.

What should you include in the recommendation?

A.

Azure Notification Hubs

B.

the Azure Diagnostics agent

C.

Azure Event Hubs

D.

the Azure Log Analytics agent

Full Access
Question # 30

You need to recommend a disaster recovery solution for the back-end tier of the payment processing system.

What should you include in the recommendation?

A.

Always On Failover Cluster Instances

B.

active geo-replication

C.

Azure Site Recovery

D.

an auto-failover group

Full Access
dumpsmate guaranteed to pass
24/7 Customer Support

DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.

Site Secure

mcafee secure

TESTED 27 Oct 2021