Microsoft Azure Architect Technologies

Here you have the best Microsoft AZ-300 practice exam questions

  • You have 241 total questions to study from
  • Each page has 5 questions, making a total of 49 pages
  • You can navigate through the pages using the buttons at the bottom
  • This questions were last updated on November 25, 2024
Question 1 of 241

HOTSPOT -

You have an Azure subscription named Subscription1. Subscription1 contains the resources in the following table:

VNet1 is in RG1. VNet2 is in RG2. There is no connectivity between VNet1 and VNet2. An administrator named Admin1 creates an Azure virtual machine VM1 in

RG1. VM1 uses a disk named Disk1 and connects to VNet1. Admin1 then installs a custom application in VM1.

You need to move the custom application to VNet2. The solution must minimize administrative effort.

Which two actions should you perform? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

    Correct Answer:

    To move the custom application to VNet2 with minimal administrative effort, you need to delete VM1 and then create a new VM in VNet2 using the disk from VM1. This approach ensures the custom application data on Disk1 is preserved and attached to the new VM in VNet2. Therefore, the correct actions are to delete VM1 and then create a new virtual machine in VNet2. This methodology avoids complex networking configurations and guarantees the application remains intact by reusing the existing disk.

Question 2 of 241

You have an Azure subscription named Subscription1 that is used by several departments at your company. Subscription1 contains the resources in the following table.

Another administrator deploys a virtual machine named VM1 and an Azure Storage account named Storage2 by using a single Azure Resource Manager template.

You need to view the template used for the deployment.

From which blade can you view the template that was used for the deployment?

    Correct Answer: D

    To view the template used for the deployment of resources like a virtual machine (VM1) and a storage account (Storage2) via an Azure Resource Manager template, you should navigate to the 'Deployments' blade of the resource group (RG1). Within this blade, you can see the deployment history, including the templates and parameters used. The resource group is the logical container that holds related resources for an Azure solution, allowing you to manage them together.

Question 3 of 241

You have two subscriptions named Subscription1 and Subscription2. Each subscription is associated to a different Azure AD tenant.

Subscription1 contains a virtual network named VNet1. VNet1 contains an Azure virtual machine named VM1 and has an IP address space of 10.0.0.0/16.

Subscription2 contains a virtual network named VNet2. Vnet2 contains an Azure virtual machine named VM2 and has an IP address space of 10.10.0.0/24.

You need to connect VNet1 to VNet2.

What should you do first?

    Correct Answer: C

    To connect two virtual networks (VNets) in different Azure subscriptions and associated with different Azure Active Directory (AAD) tenants, you should use virtual network gateways. A virtual network gateway will allow you to establish a secure tunnel between the two VNets, enabling communication across subscriptions and tenants. This method supports scenarios where the VNets are in different subscriptions and different AAD tenants, making it the appropriate first step in this case.

Question 4 of 241

You have an Azure Active Directory (Azure AD) tenant.

You have an existing Azure AD conditional access policy named Policy1. Policy1 enforces the use of Azure AD-joined devices when members of the Global

Administrators group authenticate to Azure AD from untrusted locations.

You need to ensure that members of the Global Administrators group will also be forced to use multi-factor authentication when authenticating from untrusted locations.

What should you do?

    Correct Answer: D

    To ensure that members of the Global Administrators group are forced to use multi-factor authentication when authenticating from untrusted locations, you need to modify the grant control of the existing conditional access policy. Grant controls within a conditional access policy define what must be completed to meet the policy requirements. By modifying the grant control of Policy1, you can specify that multi-factor authentication is required for authentication from untrusted locations.

Question 5 of 241

HOTSPOT -

You plan to deploy five virtual machines to a virtual network subnet.

Each virtual machine will have a public IP address and a private IP address.

Each virtual machine requires the same inbound and outbound security rules.

What is the minimum number of network interfaces and network security groups that you require? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

    Correct Answer:

    To deploy five virtual machines, each requiring a public and private IP address and the same inbound and outbound security rules, you need a minimum of 5 network interfaces (NICs) and 1 network security group (NSG). This is because each NIC can have both a public and a private IP address, and a single NSG can be applied to all NICs to manage the security rules uniformly.