[Free] Download New Latest (November) Microsoft 70-534 Actual Tests 21-30

Ensurepass

QUESTION 21

You are designing a distributed application for Azure.

 

The application must securely integrate with on-premises servers.

 

You need to recommend a method of enabling Internet Protocol security (IPsec)-protected connections between on-premises servers and the distributed application.

 

What should you recommend?

 

A.

Azure Access Control

B.

Azure Content Delivery Network (CDN)

C.

Azure Service Bus

D.

Azure Site-to-Site VPN

 

Answer: D

Explanation:

IPsec can be used on Azure Site-to-Site VPN connections. Distributed applications can used the IPSec VPN connections to communicate.

 

Reference:

About Virtual Network Secure Cross-Premises Connectivity

https://msdn.microsoft.com/en-us/library/azure/dn133798.aspx

 

 

QUESTION 22

You are designing an Azure development environment. Team members learn Azure development techniques by training in the development environment.

 

The development environment must auto scale and load balance additional virtual machine (VM) instances.

 

You need to recommend the most cost-effective compute-instance size that allows team members to work with Azure in the development environment.

 

What should you recommend?

 

A.

Azure A1 standard VM Instance

B.

Azure A2 basic VM Instance

C.

Azure A3 basic VM Instance

D.

Azure A9 standard VM Instance

 

Answer: A

Explanation:

Azure A1 standard VM Instance would be cheapest with 1 CPU core, 0.75 GB RAM, and 40 GB HD. It would be good enough for training purposes.

 

Reference:

Virtual Machines Pricing, Launch Windows Server and Linux in minutes

http://azure.microsoft.com/en-us/pricing/details/virtual-machines/

 

 

 

 

 

QUESTION 23

A company has multiple Azure subscriptions. It plans to deploy a large number of virtual machines (VMs) into Azure.

 

You install the Azure PowerShell module, but you are unable connect to all of the company’s Azure subscriptions.

 

You need to automate the management of the Azure subscriptions.

 

Which two Azure PowerShell cmdlets should you run?

 

A.

Get-AzurePublishSettingsFile

B.

Import-AzurePublishSettingsFile

C.

Add-AzureSubscription

D.

Import-AzureC
ertificate

E.

Get-AzureCertificate

 

Answer: AB

Explanation:

Before you start using the Windows Azure cmdlets to automate deployments, you must configure connectivity between the provisioning computer and Windows Azure. You can do this automatically by downloading the PublishSettings file from Windows Azure and importing it.

 

To download and import publish settings and subscription information

1. At the Windows PowerShell command prompt, type the following command, and then press Enter.

Get-AzurePublishSettingsFile

2. Sign in to the Windows Azure Management Portal, and then follow the instructions to download your Windows Azure publishing settings. Save the file as a .publishsettings type file to your computer.

3. In the Windows Azure PowerShell window, at the command prompt, type the following command, and then press Enter.

Import-AzurePublishSettingsFile <mysettings>.publishsettings

 

Reference:

How to: Download and Import Publish Settings and Subscription Information

https://msdn.microsoft.com/en-us/library/dn385850%28v=nav.70%29.aspx

 

 

QUESTION 24

HOTSPOT

A company uses Azure for several virtual machine (VM) and website workloads. The company plans to assign administrative roles to a specific group of users. You have a resource group named GROUP1 and a virtual machine named VM2.

 

The users have the following responsibilities:

 

clip_image002

 

You need to assign the appropriate level of privileges to each of the administrators by using the principle of least privilege.

 

What should you do?

 

To answer, select the appropriate target objects and permission levels in the answer area.

 

clip_image003

 

Answer:

clip_image004

 

 

 

 

QUESTION 25

You are designing a solution that will interact with non-Windows applications over unreliable network connections. You have a security token for each non-Windows application.

 

You need to ensure that non-Windows applications retrieve messages from the solution.

 

Where should you retrieve messages?

 

A.

An Azure Queue

B.

The Azure Service Bus Queue

C.

An Azure blob storage container that has a private access policy

D.

Azure Table storage

 

Answer: B

Explanation:

Any Microsoft or non-Microsoft applications can use a Service Bus REST API to manage and access messaging entities over HTTPS. By using REST applications based on non-Microsoft technologies (e.g. Java, Ruby, etc.) are allowed not only to send and receive messages from the Service Bus, but also to create or delete queues, topics and subscription in a given namespace.

 

Reference:

Service Bus Explorer

https://code.msdn.microsoft.com/windowsazure/service-bus-explorer-f2abca5a

 

 

QUESTION 26

A company has a very large dataset that includes sensitive information. The dataset is over 30 TB in size.

 

You have a standard business-class ISP internet connection that is rated at 100 megabits/second.

 

You have 10 4-TB hard drives that are approved to work with the Azure Import/Export Service.

 

You need to migrate the dataset to Azure. The solution must meet the following requirements:

 

clip_image006The dataset must be transmitted securely to Azure.

clip_image006[1]Network bandwidth must not increase.

clip_image006[2]Hardware costs must be minimized.

 

What should you do?

 

A.

Prepare the drives with the Azure Import/Export tool and then create the import job. Ship the drives to Microsoft via a supported carrier service.

B.

Create an export job and then encrypt the data on the drives by using the Advanced Encryption Standard (AES). Create a destination Blob to store the export data.

C.

Create an import job and then encrypt the data on the drives by using the Advanced Encryption Standard (AES). Create a destination Blob to store the import data.

D.

Prepare the drives by using Sysprep.exe and then create the import job. Ship the drives to Microsoft via a supported carrier service.

 

Answer: A

Explanation:

You can use the Microsoft Azure Import/Export service to transfer large amounts of file data to Azure Blob storage in situations where uploading over the network is prohibitively expensive or not feasible.

 

Reference:

Use the Microsoft Azure Import/Export Service to Transfer Data to Blob Storage

http://azure.microsoft.com/en-gb/documentation/articles/storage-import-export-service/

 

 

QUESTION 27

You have several virtual machines (VMs) that run in Azure. You also have a single System Center 2012 R2 Configuration Manager (SCCM) primary site on-premises.

 

You have the following requirements:

 

clip_image006[3]All VMs must run on the same virtual network.

clip_image006[4]Network traffic must be minimized between the on-premises datacenter and Azure.

clip_image006[5]The solution minimize complexity.

 

You need to use SCCM to collect inventory and deploy software to Azure VMs.

 

What should you do first?

 

A.

Configure client push for the Azure virtual network.

B.

Enable and configure Operations Insights in Azure.

C.

Install a cloud distribution point on an Azure VM.

D.

Install a secondary site underneath the primary site onto an Azure VM.

 

Answer: C

Explanation:

Cloud-based distribution Point, a Configuration Manager Site System Role in the Cloud

 

Much of the Configuration Manager topology is made up of distribution points, they are very helpful in many situations where bandwidth and geographical separation are the facts of life, but also hard to manage if you have hundreds or even thousands of them.

 

This feature started with the vision that it makes perfect sense to have big distribution points in the Windows Azure cloud where one should not worry about things like (but not limited to) size, performance, reliability, security, access from all around the world, hardware/software update issues etc.

 

Note:

Content management in System Center 2012 Configuration Manager provides the tools for you to manage content files for applications, packages, software updates, and operating system deployment. Configuration Manager uses distribution points to store files that are required for software to run on client computers. These distribution points function as distribution centers for the content files and let users download and run the software.

 

Clients must have access to at least one distribution point from which they can download the files.

 

Reference:

New Distribution Points in Configuration Manager SP1

http://blogs.technet.com/b/configmgrteam/archive/2013/01/31/new-distribution-points-in-configuration-manager-sp1.aspx

 

 

QUESTION 28

You are designing an Azure application that processes graphical image files. The graphical Images are processed in batches by remote applications that run on multiple servers.

 

You have the following requirements:

 

clip_image006[6]The application must remain operational during batch-processing operations.

clip_image006[7]Users must be able to roll back each image to a previous version.

 

You need to ensure that each remote application has exclusive access to an image while the application processes the image. Which type of storage should you use to store the images?

 

A.

Table service

B.

Queue service

C.

Blob service

D.

A single Azure VHD that
is attached to the web role

 

Answer: C

Explanation:

* Blob Leases allow you to claim ownership to a Blob. Once you have the lease you can then update the Blob or delete the Blob without worrying about another process changing it underneath you. When a Blob is leased, other processes can still read it, but any attempt to update it will fail. You can update Blobs without taking a lease first, but you do run the chance of another process also attempting to modify it at the same time.

 

* You can opt to use either optimistic or pessimistic concurrency models to manage access to blobs and containers in the blob service.

 

Reference:

Azure Blob Storage Part 8: Blob Leases

http://justazure.com/azure-blob-storage-part-8-blob-leases/

 

Reference:

Using Blob Leases to Manage Concurrency with Table Storage

http://www.azurefromthetrenches.com/?p=1371

 

 

QUESTION 29

You design an Azure web application. The web application is accessible by default as a standard cloudapp.net URL.

 

You need to recommend a DNS resource record type that will allow you to configure access to the web application by using a custom domain name.

 

< span lang="EN-US" style="font-family: ; mso-font-kerning: 0pt; mso-no-proof: yes">Which DNS record type should you recommend?

 

A.

SRV

B.

MX

C.

CNAME

D.

A

 

Answer: C

Explanation:

A CNAME record maps a specific domain, such as contoso.com or www.contoso.com, to a canonical domain name. In this case, the canonical domain name is the <myapp>.cloudapp.net domain name of your Azure hosted application. Once created, the CNAME creates an alias for the <myapp>.cloudapp.net. The CNAME entry will resolve to the IP address of your <myapp>.cloudapp.net service automatically, so if the IP address of the cloud service changes, you do not have to take any action.

 

Incorrect:

Not D:

* Since an A record is mapped to a static IP address, it cannot automatically resolve changes to the IP address of your Cloud Service.

* An A record maps a domain, such as contoso.com or www.contoso.com, or a wildcard domain such as *.contoso.com, to an IP address. In the case of an Azure Cloud Service, the virtual IP of the service. So the main benefit of an A record over a CNAME record is that you can have one entry that uses a wildcard, such as *.contoso.com, which would handle requests for multiple sub-domains such as mail.contoso.com, login.contoso.com, or www.contso.com.

 

Reference:

Configuring a custom domain name for an Azure cloud service

http://azure.microsoft.com/en-gb/documentation/articles/cloud-services-custom-domain-name/

 

 

QUESTION 30

You are designing an Azure application that will use a worker role. The worker role will create temporary files.

 

You need to minimize storage transaction charges.

 

Where should you create the files?

 

A.

In Azure local storage

B.

In Azure Storage page blobs

C.

On an Azure Drive

D.

In Azure Storage block blobs

 

Answer: A

Explanation:

Local storage is temporary in Azure. So, if the virtual machine supporting your role dies and cannot recover, your local storage is lost! Therefore, Azure developers will tell you, only volatile data should ever be stored in local storage of Azure.

 

Reference:

Windows Azure Local File Storage How To Guide And Warnings

http://www.intertech.com/Blog/windows-azure-local-file-storage-how-to-guide-and- warnings/

http://blog.codingoutloud.com/2011/06/12/azure-faq-can-i-write-to-the-file-system-on-windows-azure/

 

Free VCE & PDF File for Microsoft 70-534 Actual Tests

Instant Access to Free VCE Files: MCSE|MCSA|MCITP…
Instant Access to Free PDF Files: MCSE|MCSA|MCITP…