Leads4pass > Microsoft > Role-based > AZ-104 > AZ-104 Online Practice Questions and Answers

AZ-104 Online Practice Questions and Answers

Questions 4

HOTSPOT

You have an Azure subscription named Subscription1.

Subscription1 contains the virtual machines in the following table:

Subscription1 contains a virtual network named VNet1 that has the subnets in the following table:

VM3 has multiple network adapters, including a network adapter named NIC3. IP forwarding is enabled on NIC3. Routing is enabled on VM3. You create a route table named RT1 that contains the routes in the following table:

You apply RT1 to Subnet1 and Subnet2.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Hot Area:

Buy Now
Questions 5

HOTSPOT

You have an Azure subscription named Sub1 that contains the Azure resources shown in the following table.

You assign an Azure policy that has the following settings:

1.

Scope: Sub1

2.

Exclusions: Sub1/RG1/VNET1

3.

Policy definition: Append a tag and its value to resources

4.

Policy enforcement: Enabled

5.

Tag name: Tag4

6.

Tag value: value4

You assign tags to the resources as shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Hot Area:

Buy Now
Questions 6

You have an Azure virtual machine named VMV

The network interface for VM1 is configured as shown in the exhibit(Click the Exhibit tab.)

You deploy a web server on VM1. and then create a secure website that is accessible by using the HTTPS protocol. VM1 is used as a web server only.

You need to ensure that users can connect to the website from the internet.

What should you do?

A. For Rule4. change the protocol from UDP to Any

B. Modify the protocol of Rule4.

C. Modify the action of Rule1.

D. Change the priority of Rute3 to 450

Buy Now
Questions 7

You have an Azure Active Directory (Azure AD) tenant.

All administrators must enter a verification code to access the Azure portal.

You need to ensure that the administrators can access the Azure portal only from your on- premises network.

What should you configure?

A. an Azure AD Identity Protection user risk policy.

B. the multi-factor authentication service settings.

C. the default for all the roles in Azure AD Privileged Identity Management

D. an Azure AD Identity Protection sign-in risk policy

Buy Now
Questions 8

You have an Azure App Service plan named AdatumASP1 that uses the P2v2 pricing tier. AdatumASP1 hosts Ml Azure web app named adatumwebapp1. You need to delegate the management of adatumwebapp1 to a group named Devs. Devs must be able to perform the following tasks:

1.

Add deployment slots.

2.

View the configuration of AdatumASP1.

3.

Modify the role assignment for adatumwebapp1.

Which role should you assign to the Devs group?

A. Owner

B. Contributor

C. Web Plan Contributor

D. Website Contributor

Buy Now
Questions 9

From the MFA Server blade, you open the Block/unblock users blade as shown in the exhibit.

What caused AlexW to be blocked?

A. The user account password expired.

B. The user entered an incorrect PIN four times within 10 minutes.

C. An administrator manually blocked the user.

D. The user reported a fraud alert when prompted for additional authentication.

Buy Now
Questions 10

You have a virtual network named VNet1 as shown in the exhibit. (Click the Exhibit tab.)

No devices are connected to VNet1.

You plan to peer VNet1 to another virtual network named VNet2 in the same region. VNet2 has an address space of 10.2.0.0/16.

You need to create the peering.

What should you do first?

A. Configure a service endpoint on VNet2.

B. Modify the address space of VNet1.

C. Add a gateway subnet to VNet1.

D. Create a subnet on VNet1 and VNet2.

Buy Now
Questions 11

You have a Recovery Service vault that you use to test backups. The test backups contain two protected virtual machines.

You need to delete the Recovery Services vault.

What should you do first?

A. From the Recovery Service vault, stop the backup of each backup item.

B. From the Recovery Service vault, delete the backup data.

C. Modify the disaster recovery properties of each virtual machine.

D. Modify the locks of each virtual machine.

Buy Now
Questions 12

You have an Azure AD tenant named contoso.com.

You have an Azure subscription that contains an Azure App Service web app named App1 and an Azure key vault named KV1. KV1 contains a wildcard certificate for contoso.com.

You have a user named [email protected] that is assigned the Owner role for App1 and KV1.

You need to configure App1 to use the wildcard certificate of KV1.

What should you do first?

A. Create an access policy for KV1 and assign the Microsoft Azure App Service principal to the policy.

B. Assign a managed user identity to App1.

C. Configure KV1 to use the role-based access control (RBAC) authorization system.

D. Create an access policy for KV1 and assign the policy to User1.

Buy Now
Questions 13

You have an Azure virtual machine named VM1 and an Azure key vault named Vault1.

On VM1, you plan to configure Azure Disk Encryption to use a key encryption key (KEK).

You need to prepare Vault1 for Azure Disk Encryption.

Which two actions should you perform on Vault1? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A. Select Azure Virtual machines for deployment.

B. Create a new key.

C. Create a new secret.

D. Configure a key rotation policy.

E. Select Azure Disk Encryption for volume encryption.

Buy Now
Exam Code: AZ-104
Exam Name: Microsoft Azure Administrator
Last Update: Oct 20, 2024
Questions: 832
10%OFF Coupon Code: SAVE10

PDF (Q&A)

$49.99

VCE

$55.99

PDF + VCE

$65.99