Guaranteed AZ-203 Exam Questions and Answers 2021

NEW QUESTION 1
DRAG DROP
You are deploying an Azure Kubernetes Services (AKS) cluster that will use multiple containers
You need to create the cluster and verify that the services for the containers are configured correctly and available.
Which four commands should you use to develop the solution? To answer, move the appropriate command segments from the list of command segments to the answer area and arrange them in the correct order.

Answer:

Explanation:

NEW QUESTION 2
You develop a website. You plan to host the website in Azure. You expect the website to experience high traffic volumes after it is published. You must ensure that the website remains available and responsive while minimizing cost. You need to deploy the website. What should you do?

• A. Deploy the website to an App Service that uses the Shared service tie
• B. Configure the App Service plan to automatically scale when the CPU load is high.
• C. Deploy the website to a virtual machin
• D. Configure the virtual machine to automatically scale when the CPU load is high.
• E. Deploy the website to an App Service that uses the Standard service tie
• F. Configure the App Service plan to automatically scale when the CPU load is high.
• G. Deploy the website to a virtual machin
• H. Configure a Scale Set to increase the virtual machine instance count when the CPU load

Answer: C

NEW QUESTION 3
DRAG DROP
You need to deploy a new version of the LabelMaker application.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: Each correct selection is worth one point.

Answer:

Explanation: Step 1: Build a new application image by using dockerfile
Step 2: Create an alias if the image with the fully qualified path to the registry
Before you can push the image to a private registry, you’ve to ensure a proper image name. This can be achieved using the docker tag command. For demonstration purpose, we’ll use Docker’s hello world image, rename it and push it
to ACR.
# pulls hello-world from the public docker hub
$ docker pull hello-world
# tag the image in order to be able to push it to a private registry
$ docker tag hello-word <REGISTRY_NAME>/hello-world
# push the image
$ docker push <REGISTRY_NAME>/hello-world Step 3: Log in to the registry and push image
In order to push images to the newly created ACR instance, you need to login to ACR form the Docker CLI. Once logged in, you can push any existing docker image to your ACR instance.
Scenario:
Coho Winery plans to move the application to Azure and continue to support label creation.
LabelMaker app
Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to Kubernetes environments and hosted on Azure Kubernetes Service (AKS).
You must use Azure Container Registry to publish images that support the AKS deployment.
References:
https://thorsten-hans.com/how-to-use-a-private-azure-container-registry-with- kubernetes-9b86e67b93b6
https://docs.microsoft.com/en-us/azure/container-registry/container-registry-tutorial- quick-task

NEW QUESTION 4
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution.
Determine whether the solution meets the stated goals. You need to meet the vendor notification requirement.
Solution: Create and apply a custom outbound Azure API Management policy. Does the solution meet the goal?

• A. Yes
• B. No

Answer: A

Explanation: Scenario:
If a vendor is nearing the number of calls or bandwidth limit, the API must trigger email notifications to the vendor.
(API usage must not exceed 5,000 calls and 50,000 kilobytes of bandwidth per hour per vendor.)
In Azure API Management (APIM), policies are a powerful capability of the system that allow the publisher to change the behavior of the API through configuration. Policies are a collection of Statements that are executed sequentially on the request or response of an API. Popular Statements include format conversion from XML to JSON and call rate limiting to restrict the amount of incoming calls from a developer. Many more policies are available out of the box.
References:
https://docs.microsoft.com/en-us/azure/api-management/api-management-howto- policies

NEW QUESTION 5
HOTSPOT
You are developing an app that manages users for a video game. You plan to store the region, email address, and phone number for the player. Some players may not have a phone number. The player's region will be used to load-balance data.
Data foe the app must be stored in Azure Table Storage.
You need to develop code to retrieve data for an individual player.
How should you complete the code? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

NEW QUESTION 6
HOTSPOT
You need to ensure that you can deploy the LabelMaker application.
How should you complete the CLI commands? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation: Box 1: group
Create a resource group with the az group create command. An Azure resource group is a logical group in which Azure resources are deployed and managed.
The following example creates a resource group named myResourceGroup in the westeurope location.
az group create --name myResourceGroup --location westeurope Box 2: CohoWinterLabelMaker
Use the resource group named, which is used in the second command. Box 3: aks
The command az aks create, is used to create a new managed Kubernetes cluster. Box 4: monitoring
Scenario: LabelMaker app
Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to Kubernetes environments and hosted on Azure Kubernetes Service (AKS).
You must use Azure Container Registry to publish images that support the AKS deployment.

NEW QUESTION 7
You need to meet the security requirements for the E-Commerce Web App. Which two steps should you take? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

• A. Create an Azure AD service principal.
• B. Enable Managed Service Identity (MSI) on the E-Commerce Web App.
• C. Add a policy to the Azure Key Vault to grant access to the E-Commerce Wet) App.
• D. Update the E-Commerce Web App with the service principal’s client secret.

Answer: D

NEW QUESTION 8
You develop a serverless application using several Azure Functions. These functions connect to data from within the code.
You want to configure tracing for an Azure Function App project. You need to change configuration settings in the hostjson file. Which tool should you use?

• A. Azure portal
• B. Azure PowerShell
• C. Azure Functions Core Tools (Azure CLI)
• D. Visual Studio

Answer: C

NEW QUESTION 9
You need to construct the link to the summary report for the email that is sent to users.
What should you do?

• A. Create a SharedAccessBlobPolicy and add it to the containers SharedAccessPolicie
• B. Call GetSharedAccessSignature on the blob and use the resulting link.
• C. Create a SharedAccessBlobPolicy and set the expiry time to two weeks from toda
• D. Call GetSharedAccessSignature on the blob and use the resulting link.
• E. Create a SharedAccessAccountPolicy and call GetsharedAccessSignature on storage account and use the resulting link.
• F. Create a SharedAccessBlobPolicy and set the expiry time to two weeks from toda
• G. Call GetSharedAccessSignature on the container and use the resulting link.

Answer: B

NEW QUESTION 10
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution. Determine whether the
solution meets the stated goals.
You need to meet the LabelMaker application security requirement.
Solution: Create a Microsoft Azure Active Directory service principal and assign it to the Azure Kubernetes Service (AKS) cluster.
Does the solution meet the goal?

• A. Yes
• B. No

Answer: A

NEW QUESTION 11
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You need to ensure that the SecurityPin security requirements are met.
Solution: Using the Azure Portal, add Data Masking to the SecurityPin column, and exclude the dbo user. Add a SQL security policy with a filter predicate based on the user identity.
Does the solution meet the goal?

• A. Yes
• B. No

Answer: B

NEW QUESTION 12
HOTSPOT
A company develops a series of mobile games. All games use a single leaderboard service. You have the following requirements:
• Code should be scalable and allow for growth.
• Each record must consist of a playerld, gameld. score, and time played.
• When users reach a new high score, the system will save the new score using the SaveScore function below.
• Each game is assigned an Id based on the series title.
You have the following code. (Line numbers are included for reference only.)

You store customer information in an Azure Cosmos database. The following data already exists in the database:


For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point

Answer:

Explanation:

NEW QUESTION 13
You develop a gateway solution for a public facing news API. The news API back end is implemented as a RESTfuI service and uses an OpenAPI specification. You need to ensure that you can access the news API by using an Azure API Management service instance.
Which Azure PowerShell command should you run?
A)

B)

C)

D)

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: D

NEW QUESTION 14
You need to resolve the Policy Loss issue.
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

• A. Add an Azure Event Hu
• B. Send the policy to the event hu
• C. Configure the Policy service to read actions from the event hub.
• D. Add an Azure Service Bus queu
• E. Send the policy to the queu
• F. Configure the Policy service to read actions from the queue.
• G. Add an Azure Queue storage queu
• H. Send the policy to the queu
• I. Configure the Policy service to read actions from the queue.
• J. Add an Azure Service Bus topi
• K. Send the policy to the topi
• L. Configure the Policy service to read actions from the topic.

Answer: BD

NEW QUESTION 15
You need to resolve the delivery API error. What should you do?

• A. Implement simple retry by using the EnableRetryOnFailure feature of Entity Framework.
• B. Implement exponential backoff by using the EnableRetryOnFailure feature of Entity Framework.
• C. Implement the Circuit Breaker pattern by using the EnableRetryOnFailure feature of Entity Framework.
• D. Invoke accustom execution strategy in Entity Framework.

Answer: A

Explanation: Scenario: The Delivery API intermittently throws the following exception:

A useful method to get rid of this error is to use RETRY LOGIC of Entity Framework 1.1.0
services.AddDbContext<DbContext>(options => options.UseSqlServer('yourconnectionstring',
…sqlServerOptionsAction: sqlOptions =>
…{
……sqlOptions.EnableRetryOnFailure(
………maxRetryCount: 5,
………maxRetryDelay: TimeSpan.FromSeconds(30),
………errorNumbersToAdd: new List<int>() { 19 });
…}));
In Retry logic, error 19 is not included. So you have to pass the error code 19 to set retry logic for error code 19.
References:
https://stackoverflow.com/questions/47558062/error-19-physical-connection- error/47559967

NEW QUESTION 16
DRAG DROP
You need to ensure that PolicyLib requirements are met.
How should you complete the code segment? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

NEW QUESTION 17
You need to ensure the security policies are met. What code do you add at line CS07?

• A. -PermissionsToKeys wrapkey, unwrapkey, get
• B. -PermissionsToKeys create, encrypt, decrypt
• C. -PermissionsToCertificates wrapkey, unwrapkey, get
• D. -PermissionsToCertificates create, encrypt, decrypt

Answer: D

Explanation: Case Study: 3
Proseware, Inc
Background
You are a developer for Proseware, Inc. You are developing an application that applies a set of governance policies for Proseware's internal services, external services, and applications. The application will also provide a shared library for common functionality.
Requirements Policy service
You develop and deploy a stateful ASP.NET Core 2.1 web application named Policy service to an Azure App Service Web App. The application reacts to events from Azure Event Grid and performs policy actions based on those events.
The application must include the Event Grid Event ID field in all Application Insights telemetry.
Policy service must use Application Insights to automatically scale with the number of policy actions that it is performing.
Policies Log policy
All Azure App Service Web Apps must write logs to Azure Blob storage. All log files should be saved to a container named logdrop. Logs must remain in the container for 15 days.
Authentication events
Authentication events are used to monitor users signing in and signing out. All authentication events must be processed by Policy service. Sign outs must be processed as quickly as possible.
Policylib
You have a shared library named PolicyLib that contains functionality common to all ASP.NET Core web services and applications. The Policy Lib library must
• Exclude non-user actions from Application Insights telemetry.
• Provide methods that allow a web service to scale itself.
• Ensure that scaling actions do not disrupt application usage.
Other
Anomaly detection service
You have an anomaly detection service that analyzes log information for anomalies. It is implemented as an Azure as a web service.
If an anomaly is detected, an Azure Function that emails administrators is called by using an HTTP WebHook.
Health monitoring
All web applications and services have health monitoring at the /health service endpoint.
Issues Policy loss
When you deploy Policy service, policies may not be applied if they were in the process of being applied during the deployment.
Performance issue
When under heavy load, the anomaly detection service undergoes slowdowns and rejects connections.
Notification latency
Users report that anomaly detection emails can sometimes arrive several minutes after an anomaly is detected.
App code EnventGridController.cs
Relevant portions of the app files are shown below. Line numbers are included for reference only and include a two-character prefix that denotes the specific file to which they belong.


LoginEvents.cs
Relevant portions of the app files are shown below. Line numbers are included for reference only and include a two-character prefix that denotes the specific file to which they belong.