You have an on-premises network and an Azure subscription. The on-premises network has several branch offices.
A branch office in Toronto contains a virtual machine named VM1 that is configured as a file server. Users access the shared files on VM1 from all the offices.
You need to recommend a solution to ensure that the users can access the shares files as quickly as possible if the Toronto branch office is inaccessible.
What should you include in the recommendation?

A.

a Recovery Services vault and Azure Backup

B.

an Azure file share and Azure File Sync

C.

Azure blob containers and Azure File Sync

D.

a Recovery Services vault and Windows Server Backup

You have an Azure subscription that contains a Basic Azure virtual WAN named Virtual/WAN1 and the virtual hubs shown in the following table.

You have an ExpressRoute circuit in the US East region.
You need to create an ExpressRoute association to VirtualWAN1.
What should you do first?

A.

Upgrade VirtualWAN1 to Standard.

B.

Create a gateway on Hub1.

C.

Create a hub virtual network in US East.

D.

Enable the ExpressRoute premium add-on.

You are designing a microservices architecture that will be hosted in an Azure Kubernetes Service (AKS) cluster. Apps that will consume the microservices will be hosted on Azure virtual machines. The virtual machines and the AKS cluster will reside on the same virtual network.
You need to design a solution to expose the microservices to the consumer apps. The solution must meet the following requirements:
• Ingress access to the microservices must be restricted to a single private IP address and protected by using mutual TLS authentication.
• The number of incoming microservice calls must be rate-limited.
• Costs must be minimized.
What should you include in the solution?

A.

Azure API Management Premium tier with virtual network connection

B.

Azure Front Door with Azure Web Application Firewall (WAF)

C.

Azure API Management Standard tier with a service endpoint

D.

Azure App Gateway with Azure Web Application Firewall (WAF)

Your company has an app named App1 that uses data from the on-premises Microsoft SQL Server databases shown in the following table.

App1 and the data are used on the first day of the month only. The data is not expected to grow more than 3% each year.
The company is rewriting App1 as an Azure web app and plans to migrate all the data to Azure.
You need to migrate the data to Azure SQL Database. The solution must minimize costs.
Which service tier should you use?

A.

vCore-based Business Critical

B.

vCore-based General Purpose

C.

DTU-based Standard

D.

DTU-based Basic

You have an Azure subscription that contains 10 web apps. The apps are integrated with Azure AD and are accessed by users on different project teams.
The users frequently move between projects.
You need to recommend an access management solution for the web apps. The solution must meet the following requirements:
• The users must only have access to the app of the project to which they are assigned currently.
• Project managers must verify which users have access to their project s app and remove users that are no longer assigned to their project.
• Once every 30 days, the project managers must be prompted automatically to verify which users are assigned to the projects.
What should you include in the recommendation?

A.

Microsoft Defender for Identity

B.

Azure AD Identity Governance

C.

Microsoft Entra Permissions Management

D.

Azure AD Identity Protection

You have an Azure subscription that contains 300 Azure virtual machines that run Windows Server 2016.
You need to centrally monitor all warning events in the System logs of the virtual machines.
What should you include in the solutions? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Note: This question is part of a series of questions that present the same scenario.
Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company plans to deploy various Azure App Service instances that will use Azure SQL databases. The App Service instances will be deployed at the same time as the Azure SQL databases.
The company has a regulatory requirement to deploy the App Service instances only to specific Azure regions. The resources for the App Service instances must reside in the same region.
You need to recommend a solution to meet the regulatory requirement.
Solution: You recommend using an Azure policy initiative to enforce the location.
Does this meet the goal?

A.

Yes

B.

No

Your company deploys several virtual machines on-premises and to Azure. ExpressRoute is deployed and configured for on-premises to Azure connectivity.

Several virtual machines exhibit network connectivity issues. You need to analyze the network traffic to identify whether packets are being allowed or denied from Azure to the virtual machines. 

Solution: Install and configure the Azure Monitoring agent and the Dependency Agent on all the virtual machines. Use VM insights in Azure Monitor to analyze the network traffic.

Does this meet the goal?

A.

Yes

B.

No

You plan to import data from your on-premises environment to Azure. The data Is shown in the following table.

You are designing an Azure solution.
The network traffic for the solution must be securely distributed by providing the following features:

HTTPS protocol
Round robin routing
SSL offloading

You need to recommend a load balancing option.
What should you recommend?

A.

Azure Load Balancer

B.

Azure Traffic Manager

C.

Azure Internal Load Balancer (ILB)

D.

Azure Application Gateway