Exambible 70-533 exam is probably the center needs connected with Implementing Microsoft Azure Infrastructure Solutions qualifications. Growing Implementing Microsoft Azure Infrastructure Solutions exam is not difficult. Exambible intended this specific exam preparing guidebook to the extent that you dont have to seek out different guides in addition to aiding fabric with regards to 70-533. This particular test guidebook has all you need to complete an individuals Implementing Microsoft Azure Infrastructure Solutions exam. Exambible will give you a thorough qualifications test means to fix make you Microsoft certified professional. This particular qualifications preparing guidebook comes with cost-free analysis guidebook, test questions and answers, pdf file exam, braindumps in addition to replies clinical that offer the hitting the ground with genuine Implementing Microsoft Azure Infrastructure Solutions qualifications exam. This particular preparing package also includes analysis records, 70-533 pdf file, 70-533 get, 70-533, 70-533 apply test and 70-533 evaluate.
2021 Sep 70-533 training kit:
Q21. DRAG DROP
You administer an Azure Virtual Machine (VM) named CON-CL1. CON-CL1 is in a cloud service named ContosoService1.
You discover unauthorized traffic to CON-CL1. You need to:
. Create a rule to limit access to CON-CL1.
. Ensure that the new rule has the highest precedence.
Which Azure Power Shell cmdlets and values should you use? To answer, drag the appropriate cmdlet or value to the correct location in the Power Shell command. Each cmdlet or value may be used once, more than once, or not at all. You may need to drag the split bat between panes or scroll to view content.
Q22. Your company has two cloud services named CS01 and CS02. You create a virtual machine (VM) in CS02 named Accounts.
You need to ensure that users in CS01 can access the Accounts VM by using port 8080.
What should you do?
A. Create a firewall rule.
B. Configure load balancing.
C. Configure port redirection.
D. Configure port forwarding.
E. Create an end point.
Explanation: All virtual machines that you create in Azure can automatically communicate using a private network channel with other virtual machines in the same cloud service or virtual network. However, other resources on the Internet or other virtual networks require endpoints to handle the inbound network traffic to the virtual machine.
Reference: How to Set Up Endpoints to a Virtual Machine
Q23. You manage an Azure Active Directory (AD) tenant
You plan to allow users to log in to a third-party application by using their Azure AD credentials.
To access the application, users will be prompted for their existing third-party user names and passwords.
You need to add the application to Azure AD.
Which type of application should you add?
A. Existing Single Sign-On with identity provisioning
B. Password Single Sign-On with identity provisioning
C. Existing Single Sign-On without identity provisioning
D. Password Single Sign-On without identity provisioning
Explanation: * Azure AD supports two different modes for single sign-on: / Federation using standard protocols Configuring Federation-based single sign-on enables the users in your organization to be automatically signed in to a third-party SaaS application by Azure AD using the user account information from Azure AD. / Password-based single sign-on * Support for user provisioning
User provisioning enables automated user provisioning and deprovisioning of accounts in third-party SaaS applications from within the Azure Management Portal, using your Windows Server Active Directory or Azure AD identity information. When a user is given permissions in Azure AD for one of these applications, an account can be automatically created (provisioned) in the target SaaS application.
Reference: Application access enhancements for Azure AD
Q24. You administer an Azure Storage account with a blob container. You enable Storage account logging for read, write and delete requests.
You need to reduce the costs associated with storing the logs.
What should you do?
A. Execute Delete Blob requests over https.
B. Create an export job for your container.
C. Set up a retention policy.
D. Execute Delete Blob requests over http.
Explanation: To ease the management of your logs, we have provided the functionality of retention policy which will automatically cleanup ‘old’ logs without you being charged for the cleanup. It is recommended that you set a retention policy for logs such that your analytics data will be within the 20TB limit allowed for analytics data (logs and metrics combined).
Reference: Windows Azure Storage Logging: Using Logs to Track Storage Requests, How do I cleanup my logs?
You manage a public-facing web application which allows authenticated users to upload and download large files. On the initial public page there is a promotional video.
You plan to give users access to the site content and promotional video.
In the table below, identify the access method that should be used for the anonymous and authenticated parts of the application. Make only one selection in each column.
Updated mcp 70-533:
Q26. You manage a cloud service that utilizes data encryption.
You need to ensure that the certificate used to encrypt data can be accessed by the cloud service application.
What should you do?
A. Upload the certificate referenced in the application package.
B. Deploy the certificate as part of the application package.
C. Upload the certificate's public key referenced in the application package.
D. Use RDP to install the certificate.
Explanation: The developer must deploy the public key with their application so that, when Windows Azure spins up role instances, it will match up the thumbprint in the service definition with the uploaded service certificate and deploy the private key to the role instance. The private key is intentionally non-exportable to the .pfx format, so you won’t be able to grab the private key through an RDC connection into a role instance.
Reference: Field Note: Using Certificate-Based Encryption in Windows Azure Applications
Q27. DRAG DROP
You administer an Azure Web Site named contosoweb that uses a production database. You deploy changes to contosoweb from a deployment slot named contosoweb-staging.
You discover issues in contosoweb that are affecting customer data.
You need to resolve the issues in contosoweb while ensuring minimum downtime for users. You swap contosoweb to contosoweb-staging.
Which four steps should you perform next in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Q28. You manage an Azure virtual network that hosts 15 virtual machines (VMs) on a single subnet which is used for testing a line of business (LOB) application. The application is deployed to a VM named TestWebServiceVM.
You need to ensure that TestWebServiceVM always starts by using the same IP address. You need to achieve this goal by using the least amount of administrative effort.
What should you do?
A. Use the Management Portal to configure TestWebServiceVM.
B. Use RDP to configure TestWebServiceVM.
C. Run the Set-AzureStaticVNetIP PowerShell cmdlet.
D. Run the Get-AzureReservedIP PowerShell cmdlet.
Explanation: Specify a static internal IP for a previously created VM
If you want to set a static IP address for a VM that you previously created, you can do so by using the following cmdlets. If you already set an IP address for the VM and you want to change it to a different IP address, you’ll need to remove the existing static IP address before running these cmdlets. See the instructions below to remove a static IP. For this procedure, you’ll use the Update-AzureVM cmdlet. The Update-AzureVM cmdlet restarts the VM as part of the update process. The DIP that you specify will be assigned after the VM restarts. In this example, we set the IP address for VM2, which is located in cloud service StaticDemo.
Get-AzureVM -ServiceName StaticDemo -Name VM2 | Set-AzureStaticVNetIP -IPAddress
192.168.4.7 | Update-AzureVM
Reference: Configure a Static Internal IP Address (DIP) for a VM URL: http://msdn.microsoft.com/en-us/library/azure/dn630228.aspx
Q29. Your company has a subscription to Azure.
You configure your contoso.com domain to use a private Certificate Authority. You deploy a web site named MyApp by using the Shared (Preview) web hosting plan.
You need to ensure that clients are able to access the MyApp website by using https.
What should you do?
A. Back up the Site and import into a new website.
B. Use the internal Certificate Authority and ensure that clients download the certificate chain.
C. Add custom domain SSL support to your current web hosting plan.
D. Change the web hosting plan to Standard.
Explanation: Enabling HTTPS for a custom domain is only available for the Standard web hosting plan mode of Azure websites.
Reference: Enable HTTPS for an Azure website
Q30. You administer a virtual machine (VM) that is deployed to Azure. You configure a rule to generate an alert when the average availability of a web service on your VM drops below 95 percent for 15 minutes.
The development team schedules a one-hour maintenance period.
You have the following requirements:
. No alerts are created during the maintenance period.
. Alerts can be restored when the maintenance is complete. You want to achieve this goal by using the least amount of administrative effort.
What should you do from the Management Portal?
A. Select and disable the rule from the Dashboard page of the virtual machine.
B. Select and delete the rule from the Configure page of the virtual machine.
C. Select and disable the rule from the Monitor page of the virtual machine.
D. Select and disable the rule on the Configure page of the virtual machine.
Explanation: * Example:
* Virtual Machines
You can configure virtual machine alert rules on: / Monitoring metrics from the virtual machine host operating system / Web endpoint status metrics
Reference: Understanding Monitoring Alerts and Notifications in Azure
see more 70-533 dumps