we provide Free Microsoft AZ-304 test question which are the best for clearing AZ-304 test, and to get certified by Microsoft Microsoft Azure Architect Design (beta). The AZ-304 Questions & Answers covers all the knowledge points of the real AZ-304 exam. Crack your Microsoft AZ-304 Exam with latest dumps, guaranteed!

Free AZ-304 Demo Online For Microsoft Certifitcation:

NEW QUESTION 1

You have an on-premises Hyper-V cluster. The cluster contains Hyper-V hosts that run Windows Server 2016 Datacenter. The hosts are licensed under a Microsoft Enterprise Agreement that has Software Assurance.
The Hyper-V cluster hosts 3 virtual machines that run Windows Server 2012 R2. Each virtual machine runs a different workload. The workloads have predictable consumption patterns.
You plan to replace the virtual machines with Azure virtual machines that run Windows Server 2016. The virtual machines will be sized according to the consumption pattern of each workload.
You need to recommend a solution to minimize the compute costs of the Azure virtual machines.
Which two recommendations should you include in the solution? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Purchase Azure Reserved Virtual Machine Instances for the Azure virtual machines
  • B. Create a virtual machine scale set that uses autoscaling
  • C. Configure a spending limit in the Azure account center
  • D. Create a lab in Azure DevTest Labs and place the Azure virtual machines in the lab
  • E. Activate Azure Hybrid Benefit for the Azure virtual machines

Answer: AE

Explanation:
Reference:
https://azure.microsoft.com/en-us/pricing/reserved-vm-instances/ https://docs.microsoft.com/en-us/azure/virtual-machines/windows/hybrid-use-benefit-licensing

NEW QUESTION 2

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it As a result, these questions will not appear In the review screen.
You have an on-premises Hyper-V cluster that hosts 20 virtual machines. Some virtual machines run Windows Server 2016 and some run Linux.
You plan to migrate the virtual machines to an Azure subscription.
You need to recommend a solution to replicate the disks of the virtual machines to Azure. The solution must ensure that the virtual machines remain available during the migration of the disks.
Solution: You recommend implementing an Azure Storage account and then running AzCopy. Does this meet the goal?

  • A. Yes
  • B. NO

Answer: B

Explanation:
AzCopy only copy files, not the disks. Instead use Azure Site Recovery. References:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-overview

NEW QUESTION 3

You need to recommend a strategy for the web tier of WebApp1. The solution must minimize What should you recommend?

  • A. Create a runbook that resizes virtual machines automatically to a smaller size outside of business hours.
  • B. Configure the Scale Up settings for a web app.
  • C. Deploy a virtual machine scale set that scales out on a 75 percent CPU threshold.
  • D. Configure the Scale Out settings for a web app.

Answer: D

NEW QUESTION 4

Note: This question Is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question In this section, you will NOT be able to return to It As a result, these questions will not appear In the review screen.
You have an on-premises Hyper-V cluster that hosts 20 virtual machines. Some virtual machines run Windows Server 2016 and some run Linux.
You plan to migrate the virtual machines to an Azure subscription.
You need to recommend a solution to replicate the disks of the virtual machines to Azure. The solution must ensure that the virtual machines remain available during the migration of the disks.
Solution: You recommend implementing an Azure Storage account that has a file service and a blob service, and then using the Data Migration Assistant
Does this meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Data Migration Assistant is used to migrate SQL databases. Instead use Azure Site Recovery.
References:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-overview

NEW QUESTION 5

You have an Azure subscription that contains 100 virtual machines.
You plan to design a data protection strategy to encrypt the virtual disks.
You need to recommend a solution to encrypt the disks by using Azure Disk Encryption. The solution must provide the ability to encrypt operating system disks and data disks.
What should you include in the recommendation?

  • A. a passphrase
  • B. a certificate
  • C. a key
  • D. a secret

Answer: C

Explanation:
For enhanced virtual machine (VM) security and compliance, virtual disks in Azure can be encrypted. Disks are encrypted by using cryptographic keys that are secured in an Azure Key Vault. You control these cryptographic keys and can audit their use.
Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/encrypt-disks

NEW QUESTION 6

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution. while others might not have a correct solution.
After you answer a question In this section, you will NOT be able to return to it As a result these questions will not appear In the review screen.
You have an on-premises Hyper-V cluster that hosts 20 virtual machines Some virtual machines run Windows Server 2016 and some run Linux
You plan to morale the virtual machine? to an Azure subscription
You need to recommend 9 solution 10 replicate the disks of the virtual machines to Azure. The solution must ensure that the virtual machines remain available during the migration of the disks.
Solution: You recommend implementing a Recovery Services vault and then using Azure Site Recovery. Dees this meet the goal?

  • A. Yes
  • B. No

Answer: A

Explanation:
Site Recovery can replicate on-premises VMware VMs, Hyper-V VMs, physical servers (Windows and Linux), Azure Stack VMs to Azure.
Note: Site Recovery helps ensure business continuity by keeping business apps and workloads running during outages. Site Recovery replicates workloads running on physical and virtual machines (VMs) from a primary site to a secondary location. When an outage occurs at your primary site, you fail over to secondary location, and access apps from there. After the primary location is running again, you can fail back to it.
References:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-overview

NEW QUESTION 7

You need to design a solution for securing access to the historical transaction data.
What should you include in the solution? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
AZ-304 dumps exhibit

NEW QUESTION 8

What should you include in the identity management strategy to support the planned changes?

  • A. Move all the domain controllers from corp.fabrikam.com to virtual networks in Azure.
  • B. Deploy domain controllers for corp.fabrikam.com to virtual networks in Azure.
  • C. Deploy a new Azure AD tenant for the authentication of new R&D projects.
  • D. Deploy domain controllers for the rd.fabrikam.com forest to virtual networks in Azure.

Answer: B

Explanation:
Directory synchronization between Azure Active Directory (Azure AD) and corp.fabrikam.com must not be affected by a link failure between Azure and the on-premises network. (This requires domain controllers in Azure)
Users on the on-premises network must be able to authenticate to corp.fabrikam.com if an Internet link fails. (This requires domain controllers on-premises)

NEW QUESTION 9

You need to recommend a solution to meet the database retention requirement. What should you recommend?

  • A. Configure a long-term retention policy for the database.
  • B. Configure Azure Site Recovery.
  • C. Configure geo replication of the database.
  • D. Use automatic Azure SQL Database backups.

Answer: A

NEW QUESTION 10

You have 100 servers that run Windows Server 2012 R2 and host Microsoft SQL Server 2012 R2 instances. The instances host databases that have the following characteristics:
AZ-304 dumps exhibit The largest database is currently 3 TB. None of the databases will ever exceed 4 TB.
AZ-304 dumps exhibit Stored procedures are implemented by using CLR.
You plan to move all the data from SQL Server to Azure.
You need to recommend an Azure service to host the databases. The solution must meet the following requirements:
AZ-304 dumps exhibit Whenever possible, minimize management overhead for the migrated databases.
AZ-304 dumps exhibit Minimize the number of database changes required to facilitate the migration.
AZ-304 dumps exhibit Ensure that users can authenticate by using their Active Directory credentials.
What should you include in the recommendation?

  • A. Azure SQL Database single databases
  • B. Azure SQL Database Managed Instance
  • C. Azure SQL Database elastic pools
  • D. SQL Server 2016 on Azure virtual machines

Answer: B

Explanation:
References:
https://docs.microsoft.com/en-us/azure/sql-database/sql-database-managed-instance

NEW QUESTION 11

You need to deploy resources to host a stateless web app in an Azure subscription. The solution must meet the following requirements:
• Provide access to the full .NET framework.
• Provide redundancy if an Azure region fails.
• Grant administrators access to the operating system to install custom application dependencies. Solution: You deploy a web app in an Isolated App Service plan.
Does this meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Instead, you should deploy an Azure virtual machine to two Azure regions, and you create a Traffic Manager profile.

NEW QUESTION 12

You are building an application that will run in a virtual machine (VM). The application will use Azure Managed Identity.
The application uses Azure Key Vault, Azure SQL Database, and Azure Cosmos DB. You need to ensure the application can use secure credentials to access these services.
Which authentication method should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Note: Managed identities for Azure resources is the new name for the service formerly known as Managed
Service Identity (MSI). Reference:
https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview

NEW QUESTION 13

You need to recommend a strategy for migrating the database content of WebApp1 to Azure. What should you include in the recommendation?

  • A. Use Azure Site Recovery to replicate the SQL servers to Azure.
  • B. Use SQL Server transactional replication.
  • C. Copy the BACPAC file that contains the Azure SQL database file to Azure Blob storage.
  • D. Copy the VHD that contains the Azure SQL database files to Azure Blob storage

Answer: D

Explanation:
Before you upload a Windows virtual machine (VM) from on-premises to Azure, you must prepare the virtual hard disk (VHD or VHDX).
Scenario: WebApp1 has a web tier that uses Microsoft Internet Information Services (IIS) and a database tier that runs Microsoft SQL Server 2016. The web tier and the database tier are deployed to virtual machines that run on Hyper-V. Reference:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/prepare-for-upload-vhd-image

NEW QUESTION 14

You need to design a resource governance solution for an Azure subscription. The solution must meet the following requirements:
AZ-304 dumps exhibit Ensure that all ExpressRoute resources are created in a resource group named RG1.
AZ-304 dumps exhibit Delegate the creation of the ExpressRoute resources to an Azure Active Directory (Azure AD) group named Networking.
AZ-304 dumps exhibit Use the principle of least privilege.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Box 1: An Azure policy assignment at the subscription level that has an exclusion Box 2: A custom RBAC role assignment at the level of RG1
Azure role-based access control (Azure RBAC) is the authorization system you use to manage access to Azure resources. To grant access, you assign roles to users, groups, service principals, or managed identities at a particular scope.
Reference:
https://docs.microsoft.com/en-us/azure/governance/policy/tutorials/create-and-manage

NEW QUESTION 15

You are designing an Azure resource deployment that will use Azure Resource Manager templates. The deployment will use Azure Key Vault to store secrets.
You need to recommend a solution to meet the following requirements:
Prevent the IT staff that will perform the deployment from retrieving the secrets directly from Key Vault. Use the principle of least privilege.
Which two actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Create a Key Vault access policy that allows all get key permissions, get secret permissions, and get certificate permissions.
  • B. From Access policies in Key Vault, enable access to the Azure Resource Manager for template deployment.
  • C. Create a Key Vault access policy that allows all list key permissions, list secret permissions, and list certificate permissions.
  • D. Assign the IT staff a custom role that includes the Microsoft.KeyVault/Vaults/Deploy/Action permission.
  • E. Assign the Key Vault Contributor role to the IT staff.

Answer: BD

Explanation:
B: To access a key vault during template deployment, set enabledForTemplateDeployment on the key vault to true.
D: The user who deploys the template must have the Microsoft.KeyVault/vaults/deploy/action permission for the scope of the resource group and key vault.
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault-parameter https://docs.microsoft.com/en-us/azure/key-vault/general/overview-security

NEW QUESTION 16

You have an Azure Active Directory (Azure AD) tenant.
You plan to provide users with access to shared files by using Azure Storage. The users will be provided with different levels of access to various Azure file shares based on their user account or their group membership.
You need to recommend which additional Azure services must be used to support the planned deployment. What should you include in the recommendation?

  • A. an Azure AD enterprise application
  • B. Azure Information Protection
  • C. an Azure AD Domain Services (Azure AD DS) instance
  • D. an Azure Front Door instance

Answer: C

Explanation:
Azure Filessupports identity-based authentication over Server Message Block (SMB) throughtwo types of Domain Services: on-premises Active Directory Domain Services (AD DS) and Azure Active Directory Domain Services (Azure AD DS).
Reference:
https://docs.microsoft.com/en-us/azure/storage/files/storage-files-identity-auth-active-directory-domain-service

NEW QUESTION 17

Your company is designing a multi-tenant application that will use elastic pools and Azure SQL databases. The application will be used by 30 customers.
You need to design a storage solution for the application. The solution must meet the following requirements:
AZ-304 dumps exhibit Operational costs must be minimized.
AZ-304 dumps exhibit All customers must have their own database.
AZ-304 dumps exhibit The customer databases will be in one of the following three Azure regions: East US, North Europe, or South Africa North.
What is the minimum number of elastic pools and Azure SQL Database servers required? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Box 1: 3
The server, its pools & databases must be in the same Azure region under the same subscription. Box 2: 3
A server can have up to 5000 databases associated to it.
Reference:
https://vincentlauzon.com/2016/12/18/azure-sql-elastic-pool-overview/

NEW QUESTION 18

You need to deploy resources to host a stateless web app in an Azure subscription. The solution must meet the following requirements:
• Provide access to the full .NET framework.
• Provide redundancy if an Azure region fails.
• Grant administrators access to the operating system to install custom application dependencies.
Solution: You deploy an Azure virtual machine to two Azure regions, and you deploy an Azure Application Gateway.
Does this meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
You need to deploy two Azure virtual machines to two Azure regions, but also create a Traffic Manager profile.

NEW QUESTION 19

A company named Contoso, Ltd- has an Azure Active Directory {Azure AD) tenant that uses the Basic license.
You plan to deploy two applications to Azure. The applications have the requirements shown in the following table.
AZ-304 dumps exhibit
Which authentication strategy should you recommend for each application? To answer, drag the appropriate authentication strategies to the correct applications. Each authentication strategy may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Box 1: Azure AD V2.0 endpoint
Microsoft identity platform is an evolution of the Azure Active Directory (Azure AD) developer platform. It allows developers to build applications that sign in all Microsoft identities and get tokens to call Microsoft APIs, such as Microsoft Graph, or APIs that developers have built. The Microsoft identity platform consists of:
OAuth 2.0 and OpenID Connect standard-compliant authentication service that enables developers to authenticate any Microsoft identity, including:
Work or school accounts (provisioned through Azure AD)
Personal Microsoft accounts (such as Skype, Xbox, and Outlook.com) Social or local accounts (via Azure AD B2C)
Box 2: Azure AD B2C tenant
Azure Active Directory B2C provides business-to-customer identity as a service. Your customers use their preferred social, enterprise, or local account identities to get single sign-on access to your applications and APIs.
Azure Active Directory B2C (Azure AD B2C) integrates directly with Azure Multi-Factor Authentication so that you can add a second layer of security to sign-up and sign-in experiences in your applications.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-mfa https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-overview

NEW QUESTION 20

You plan to deploy a network-intensive application to several Azure virtual machines. You need to recommend a solution that meets the following requirements:
AZ-304 dumps exhibit Minimizes the use of the virtual machine processors to transfer data
AZ-304 dumps exhibit Minimizes network latency
Which virtual machine size and feature should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-304 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
References:
https://docs.microsoft.com/en-us/azure/virtual-machines/windows/sizes-hpc#h-series

NEW QUESTION 21

You need to recommend a notification solution for the IT Support distribution group. What should you include in the recommendation?

  • A. Azure Network Watcher
  • B. an action group
  • C. a SendGrid account with advanced reporting
  • D. Azure AD Connect Health

Answer: D

Explanation:
References:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-health-operations

NEW QUESTION 22

You need to recommend a data storage strategy for WebApp1. What should you include in in the recommendation?

  • A. an Azure SQL Database elastic pool
  • B. a vCore-baswl Azure SQL database
  • C. an Azure virtual machine that runs SQL Server
  • D. a fixed-size DTU AzureSQL database.

Answer: B

NEW QUESTION 23
......

100% Valid and Newest Version AZ-304 Questions & Answers shared by Dumps-hub.com, Get Full Dumps HERE: https://www.dumps-hub.com/AZ-304-dumps.html (New 0 Q&As)