Microsoft Designing and Implementing Microsoft DevOps Solutions (AZ-400) Free Practice Test
Question 1
You have an Azure functionhosted in an App Service plan named az400-9940427-func1.
You need to configure az400-9940427-func1 to upgrade the functions automatically whenever new code is committed to the master branch of https://github.com/Azure-Samples/functions-quickstart.
To complete this task, sign in to the Microsoft Azure portal.
You need to configure az400-9940427-func1 to upgrade the functions automatically whenever new code is committed to the master branch of https://github.com/Azure-Samples/functions-quickstart.
To complete this task, sign in to the Microsoft Azure portal.
Correct Answer:
See solution below.
Explanation:
1. Open Microsoft Azure Portal
2. Log into your Azure account, select App Services in the Azure portal left navigation, and then select configureaz400-9940427-func1.
3. On the app page, select Deployment Center in the left menu.
4. On the Build provider page, select Azure Pipelines (Preview), and then select Continue.
5. On the Configure page, in the Code section:
For GitHub, drop down and select the Organization, Repository, and Branch you want to deploy continuously.
6. Select Continue.
7. On the Test page, choose whether to enable load tests, and then select Continue.
8. Depending on your App Service plan pricing tier, you may see a Deployto staging page. Choose whether to enable deployment slots, and then select Continue.
9. After you configure the build provider, review the settings on the Summary page, and then select Finish.
References:
https://docs.microsoft.com/en-us/azure/app-service/deploy-continuous-deployment
Explanation:
1. Open Microsoft Azure Portal
2. Log into your Azure account, select App Services in the Azure portal left navigation, and then select configureaz400-9940427-func1.
3. On the app page, select Deployment Center in the left menu.
4. On the Build provider page, select Azure Pipelines (Preview), and then select Continue.
5. On the Configure page, in the Code section:
For GitHub, drop down and select the Organization, Repository, and Branch you want to deploy continuously.
6. Select Continue.
7. On the Test page, choose whether to enable load tests, and then select Continue.
8. Depending on your App Service plan pricing tier, you may see a Deployto staging page. Choose whether to enable deployment slots, and then select Continue.
9. After you configure the build provider, review the settings on the Summary page, and then select Finish.
References:
https://docs.microsoft.com/en-us/azure/app-service/deploy-continuous-deployment
Question 2
You manage a website that uses an Azure SQL Database named db1 in a resource group named RG1lod11566895.
You need tomodify the SQL database to protect against SQL injection.
To complete this task, sign in to the Microsoft Azure portal.
You need tomodify the SQL database to protect against SQL injection.
To complete this task, sign in to the Microsoft Azure portal.
Correct Answer:
See solution below.
Explanation:
Set up Advanced Threat Protection in the Azure portal
1. Sign into the Azure portal.
2.Navigate to the configuration page of the server you want to protect. In the security settings, select Advanced Data Security.
3. On the Advanced Data Security configuration page:
4. Enable Advanced Data Security on the server.
Note: Advanced Threat Protection for Azure SQL Database detects anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases. Advanced Threat Protection can identify Potential SQL injection, Access from unusual location or data center,Access from unfamiliar principal or potentially harmful application, and Brute force SQL credentials Reference:
https://docs.microsoft.com/en-us/azure/storage/common/storage-account-create
https://docs.microsoft.com/en-us/azure/azure-sql/database/threat-detection-configure
Explanation:
Set up Advanced Threat Protection in the Azure portal
1. Sign into the Azure portal.
2.Navigate to the configuration page of the server you want to protect. In the security settings, select Advanced Data Security.
3. On the Advanced Data Security configuration page:
4. Enable Advanced Data Security on the server.
Note: Advanced Threat Protection for Azure SQL Database detects anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases. Advanced Threat Protection can identify Potential SQL injection, Access from unusual location or data center,Access from unfamiliar principal or potentially harmful application, and Brute force SQL credentials Reference:
https://docs.microsoft.com/en-us/azure/storage/common/storage-account-create
https://docs.microsoft.com/en-us/azure/azure-sql/database/threat-detection-configure
Question 3
How should you configure the filters for the Project5 trigger? To answer, select the appropriate option in the answer area.
NOTE: Each correct selection is worth one point.
NOTE: Each correct selection is worth one point.
Correct Answer:
Explanation:
Scenario:
References: https://docs.microsoft.com/en-us/azure/devops/pipelines/build/triggers
Question 4
Your company plans to use an agile approach to software development
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The application must meet the following requirements:
* Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
* Be available on Windows 10, Mac OS, iOS, and Android operating systems.
* Provide the ability to add external contractors and suppliers to projects.
* Integrate directly with Azure DevOps.
What should you recommend?
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The application must meet the following requirements:
* Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
* Be available on Windows 10, Mac OS, iOS, and Android operating systems.
* Provide the ability to add external contractors and suppliers to projects.
* Integrate directly with Azure DevOps.
What should you recommend?
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 5
You are configuring a release pipeline in Azure DevOps as shown in the exhibit.
Use the drop-down menus to select the answer choice that answers each question based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Use the drop-down menus to select the answer choice that answers each question based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Correct Answer:
Explanation:
Box 1: 5
There are five stages: Development, QA, Pre-production, Load Test and Production. They all have triggers.
Box 2: The Internal Review stage
References: https://docs.microsoft.com/en-us/azure/devops/pipelines/release/trig gers
Question 6
You have an Azure DevOps release pipeline as shown in the following exhibit.
You need to complete the pipeline to configure OWASP ZAP for security testing.
Which five Azure CLI tasks should you add in sequence? To answer, move the tasks from the list of tasks to the answer area and arrange them in the correct order.
You need to complete the pipeline to configure OWASP ZAP for security testing.
Which five Azure CLI tasks should you add in sequence? To answer, move the tasks from the list of tasks to the answer area and arrange them in the correct order.
Correct Answer:
Explanation:
Defining the Release Pipeline
Once the application portion of the Release pipeline has been configured, the security scan portion can be defined. In our example, this consists of 8 tasks, primarily using the Azure CLI task to create and use the ACI instance (and supporting structures).
Otherwise specified, all the Azure CLI tasks are Inline tasks, using the default configuration options.
Reference:
https://d evblogs.microsoft.com/premier-develope r/azure-devops-pipelines-leveraging-owasp-zap-in-the-release-pipeline/
Question 7
You create a Git repository named Repo1 in Azure Repos.
You need to configure Repo1 to meet the following requirements:
* Work items must be linked to a pull request.
* Pull requests must have a minimum of two reviewers.
* Pull requests must complete a code review by using a thirty-party tool.
The solution must minimize administrative effort.
Which type of policy should you use for each requirement? To answer, drag the appropriate policy types to the correct requirements. Each policy type may be used once, more than once, or not at all.
You may need to drag the split bar between panes or scroll to view content.
You need to configure Repo1 to meet the following requirements:
* Work items must be linked to a pull request.
* Pull requests must have a minimum of two reviewers.
* Pull requests must complete a code review by using a thirty-party tool.
The solution must minimize administrative effort.
Which type of policy should you use for each requirement? To answer, drag the appropriate policy types to the correct requirements. Each policy type may be used once, more than once, or not at all.
You may need to drag the split bar between panes or scroll to view content.
Correct Answer:
Explanation:
Question 8
You have multi-tier application that has an Azure Web Apps front end and art Azure SQL Datable back end.
You need to recommend a solution to capture and store telemetry data. The solution must meet the following requirements:
* Support using ad-hoc queries to identify baselines.
* Trigger alerts when metrics in the baseline are exceeded.
* Store application and database metrics in a central location.
What should you include in the recommendation?
You need to recommend a solution to capture and store telemetry data. The solution must meet the following requirements:
* Support using ad-hoc queries to identify baselines.
* Trigger alerts when metrics in the baseline are exceeded.
* Store application and database metrics in a central location.
What should you include in the recommendation?
Correct Answer: C
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 9
Your company uses Team Foundation Server 2013 (TFS 2013).
You plan to migrate to Azure DevOps.
You need to recommend a migration strategy that meets the following requirements:
* Preserves the dates of Team Foundation Version Control changesets
* Preserves the changes dates of work items revisions
* Minimizes migration effort
* Migrates all TFS artifacts
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You plan to migrate to Azure DevOps.
You need to recommend a migration strategy that meets the following requirements:
* Preserves the dates of Team Foundation Version Control changesets
* Preserves the changes dates of work items revisions
* Minimizes migration effort
* Migrates all TFS artifacts
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Correct Answer:
Explanation:
Box 1: Upgrade TFS to the most recent RTM release.
One of the major prerequisites for migrating your Team Foundation Server database is to get your database schema version as close as possible to what is currently deployed in Azure Devops Services.
Box 2: Use the TFS Database Import Service
In Phase 3 of your migration project, you will work on upgrading your Team Foundation Server to one of the supported versions for the Database Import Service in Azure Devops Services.
References: Team Foundation Server to Azure Devops Services Migration Guide
Question 10
Task 11
You need to write a KQL query that will count the number of inbound requests for each source IP address, for any connection made during the last three months of 2021.
Open Azure Data Explorer by using the following link:
https//dataexploter azure.com/clusters/help/databases/Securiitylogs
The requests are contained in a table named InboundBrowsing in the Securitylogs connection.
The query must return two columns named NumberOfRequests and SourcelP.
Export the query result to C:\Samples
You need to write a KQL query that will count the number of inbound requests for each source IP address, for any connection made during the last three months of 2021.
Open Azure Data Explorer by using the following link:
https//dataexploter azure.com/clusters/help/databases/Securiitylogs
The requests are contained in a table named InboundBrowsing in the Securitylogs connection.
The query must return two columns named NumberOfRequests and SourcelP.
Export the query result to C:\Samples
Correct Answer:
See the solution below in explanation.
Explanation:
Step 1: Write the KQL Query
Open Azure Data Explorer:
Navigate to Azure Data Explorer and sign in with your credentials.
Access the Securitylogs Database:
Open the Securitylogs database.
Write the Query:
Use the following KQL query tocount the number of inbound requests for each source IP address:
InboundBrowsing
| where Timestamp between (datetime(2021-10-01) .. datetime(2021-12-31))
| summarize NumberOfRequests = count() by SourceIP
| project SourceIP, NumberOfRequests
Step 2: Export the Query Results
Run the Query:
Execute the query in Azure Data Explorer.
Export the Results:
Once the query results are displayed, click on the Export button.
Choose the export format (e.g., CSV) and specify the export path as C:\Samples.
By following these steps, you will have successfully written a KQL query to count the number of inbound requests for each source IP address during the last three months of 2021 and exported the results to C:\Samples
Explanation:
Step 1: Write the KQL Query
Open Azure Data Explorer:
Navigate to Azure Data Explorer and sign in with your credentials.
Access the Securitylogs Database:
Open the Securitylogs database.
Write the Query:
Use the following KQL query tocount the number of inbound requests for each source IP address:
InboundBrowsing
| where Timestamp between (datetime(2021-10-01) .. datetime(2021-12-31))
| summarize NumberOfRequests = count() by SourceIP
| project SourceIP, NumberOfRequests
Step 2: Export the Query Results
Run the Query:
Execute the query in Azure Data Explorer.
Export the Results:
Once the query results are displayed, click on the Export button.
Choose the export format (e.g., CSV) and specify the export path as C:\Samples.
By following these steps, you will have successfully written a KQL query to count the number of inbound requests for each source IP address during the last three months of 2021 and exported the results to C:\Samples