This page was exported from Exams Labs Braindumps [ http://blog.examslabs.com ] Export date:Sat Nov 23 11:47:10 2024 / +0000 GMT ___________________________________________________ Title: [Q101-Q123] Pass Your AZ-204 Exam Easily With 100% Exam Passing Guarantee [2022] --------------------------------------------------- Pass Your AZ-204 Exam Easily With 100% Exam Passing Guarantee [2022] AZ-204 Dumps are Available for Instant Access from ExamsLabs QUESTION 101ASP.NET Core API app by using C#. The API app will allow users to authenticate by using Twitter and Azure Active Directory (Azure AD).Users must be authenticated before calling API methods. You must log the user’s name for each method call.You need to configure the API method calls.Which values should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Explanation+ Explanation:Box 1: AuthorizeBox 2: X-MS-CLIENT-PRINCIPAL-NAMEApp Service passes user claims to your application by using special headers. External requests aren’t allowed to set these headers, so they are present only if set by App Service. Some example headers include:X-MS-CLIENT-PRINCIPAL-NAMEX-MS-CLIENT-PRINCIPAL-IDHere’s the set of headers you get from Easy Auth for a Twitter authenticated user:{“cookie”: “AppServiceAuthSession=Lx43…xHDTA==”,“x-ms-client-principal-name”: “evilSnobu”,“x-ms-client-principal-id”: “35….”,“x-ms-client-principal-idp”: “twitter”,“x-ms-token-twitter-access-token”: “35…Dj”,“x-ms-token-twitter-access-token-secret”: “OK3…Jx”,}References:https://docs.microsoft.com/en-us/azure/app-service/app-service-authentication-how-toQUESTION 102You need to implement the Log policy.How should you complete the Azure Event Grid subscription? To answer, drag the appropriate JSON segments to the correct locations. Each JSON segment may be used once, more than once, or not at all. You may need to drag the split bar between panes to view content.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/event-grid/subscription-creation-schemaQUESTION 103You are developing an application to securely transfer data between on-premises file systems and Azure Blob storage. The application stores keys, secrets, and certificates in Azure Key Vault. The application uses the Azure Key Vault APIs.The application must allow recovery of an accidental deletion of the key vault or key vault objects. Key vault objects must be retained for 90 days after deletion.You need to protect the key vault and key vault objects.Which Azure Key Vault feature should you use? To answer, drag the appropriate features to the correct actions. Each feature may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/key-vault/general/soft-delete-overviewQUESTION 104You need to add code at line EG15 in EventGridController.cs to ensure that the Log policy applies to all services.How should you complete the code? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/role-based-access-control/resource-provider-operationsQUESTION 105You need to add code at line AM09 to ensure that users can review content using ContentAnalysisService.How should you complete the code? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifestQUESTION 106A company backs up all manufacturing data to Azure Blob Storage. Admins move blobs from hot storage to archive tier storage every month.You must automatically move blocks to Archive tier after they have not been accessed for 180 days. The path for any item that is not archived must be placed in an existing queue. This operation must be performed automatically once a month. You set the value of TierAgeInDays to 180.How should you configure the Logic App? To answer, drag the appropriate triggers or action blocks to the correct trigger or action slots. Each trigger or action block may be used once, more than once, or not at all.You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. ExplanationBox 1: RecurrenceBox 2: Insert EntityBox 3 (if true): Tier BlobBox 4: (if false):Leave blank.References:https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-perform-data-operationsQUESTION 107You need to implement the bindings for the CheckUserContent function.How should you complete the code segment? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/azure-functions/functions-bindings-storage-blob-outputTopic 1, Contoso, LtdAzure Active DirectoryContoso, Ltd. uses Azure Active Directory (Azure AD) for both internal and guest accounts.RequirementsContentAnalysisServiceThe company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso, Ltd.You must create an Azure Function named CheckUserContent to perform the content checks.CostsYou must minimize costs for all Azure services.Manual reviewTo review content, the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication. In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes.High availabilityAll services must run in multiple regions. The failure of any service in a region must not impact overall application availability.MonitoringAn alert must be raised if the ContentUploadService uses more than 80 percent of available CPU cores.SecurityYou have the following security requirements:Any web service accessible over the Internet must be protected from cross site scripting attacks.All websites and services must use SSL from a valid root certificate authority.Azure Storage access keys must only be stored in memory and must be available only to the service.All Internal services must only be accessible from internal Virtual Networks (VNets).All parts of the system must support inbound and outbound traffic restrictions.All service calls must be authenticated by using Azure AD.User agreementsWhen a user submits content, they must agree to a user agreement. The agreement allows employees of Contoso, Ltd. to review content, store cookies on user devices, and track user’s IP addresses.Information regarding agreements is used by multiple divisions within Contoso, Ltd.User responses must not be lost and must be available to all parties regardless of individual service uptime. The volume of agreements is expected to be in the millions per hour.Validation testingWhen a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.IssuesUsers of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages.CodeContentUploadServiceQUESTION 108You are building a traffic monitoring system that monitors traffic along six highways. The system produces time series analysis-based reports for each highway. Data from traffic sensors are stored in Azure Event Hub.Traffic data is consumed by four departments. Each department has an Azure Web App that displays the time-series-based reports and contains a WebJob that processes the incoming data from Event Hub. All Web Apps run on App Service Plans with three instances.Data throughout must be maximized. Latency must be minimized.You need to implement the Azure Event Hub.Which settings should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. ExplanationBox 1: 6The number of partitions is specified at creation and must be between 2 and 32.There are 6 highways.Box 2: HighwayReferences:https://docs.microsoft.com/en-us/azure/event-hubs/event-hubs-featuresQUESTION 109You are creating an app that uses Event Grid to connect with other services. Your app’s event data will be sent to a serverless function that checks compliance. This function is maintained by your company.You write a new event subscription at the scope of your resource. The event must be invalidated after 3 specific period of time. You need to configure Event Grid to ensure security.What should you implement? To answer, select the appropriate options in [he answer area.NOTE: Each correct selection is worth one point ExplanationBox 1: SAS tokensCustom topics use either Shared Access Signature (SAS) or key authentication. Microsoft recommends SAS, but key authentication provides simple programming, and is compatible with many existing webhook publishers.In this case we need the expiration time provided by SAS tokens.Box 2: ValidationCode handshakeEvent Grid supports two ways of validating the subscription: ValidationCode handshake (programmatic) and ValidationURL handshake (manual).If you control the source code for your endpoint, this method is recommended.QUESTION 110You are developing a web application by using the Azure SDK. The web application accesses data m a zone-redundant BlockBlobStorage storage account The application must determine whether the data has changed since the application last reao the data. Update operations must use the latest data changes when writing data to the storages………………You need to implement the update operations.Which values should you use? To answer, select the appropriate option m the answer area.NOTE Each correct selection is worth one point. See the Explanation below:ExplanationSee the answer in below image.QUESTION 111You are building a website that is used to review restaurants. The website will use an Azure CDN to improve performance and add functionality to requests.You build and deploy a mobile app for Apple iPhones. Whenever a user accesses the website from an iPhone, the user must be redirected to the app store.You need to implement an Azure CDN rule that ensures that iPhone users are redirected to the app store.How should you complete the Azure Resource Manager template? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-conditionshttps://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-grantQUESTION 112A company is developing a gaming platform. Users can join teams to play online and see leaderboards that include player statistics. The solution includes an entity named Team.You plan to implement an Azure Redis Cache instance to improve the efficiency of data operations for entities that rarely change.You need to invalidate the cache when team data is changed.How should you complete the code? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. ExplanationBox 1: IDatabase cache = connection.GetDatabase();Connection refers to a previously configured ConnectionMultiplexer.Box 2: cache.StringSet(“teams”,”)To specify the expiration of an item in the cache, use the TimeSpan parameter of StringSet.cache.StringSet(“key1”, “value1”, TimeSpan.FromMinutes(90));References:https://azure.microsoft.com/sv-se/blog/lap-around-azure-redis-cache-preview/QUESTION 113You are preparing to deploy an Azure virtual machine (VM) based application. The VMs that run the application have the following requirements:* When a VM is provisioned the firewall must be automatically configured before it can access Azure resources.* Supporting services must be installed by using an Azure PowerShell script that is stored in Azure Storage You need to ensure that the requirements are met.Which features should you use? To answer, drag the appropriate features to the correct requirements. ExplanationReference:https://docs.microsoft.com/en-us/azure/automation/automation-hybrid-runbook-workerhttps://docs.microsoft.com/en-us/azure/virtual-machines/windows/run-commandQUESTION 114You have an application that provides weather forecasting data to external partners. You use Azure API Management to publish APIs.You must change the behavior of the API to meet the following requirements:* Support alternative input parameters.* Remove formatting text from responses.* Provide additional context to back-end services.Which types of policies should you implement? To answer, drag the policy types to the correct scenarios. Each policy type may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point. QUESTION 115You are developing a back-end Azure App Service that scales based on the number of messages contained in a Service Bus queue.A rule already exists to scale up the App Service when the average queue length of unprocessed and valid queue messages is greater than 1000.You need to add a new rule that will continuously scale down the App Service as long as the scale up condition is not met.How should you configure the Scale rule? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. QUESTION 116You are preparing to deploy an application to an Azure Kubernetes Service (AKS) cluster.The application must only be available from within the VNet that includes the cluster.You need to deploy the application.How should you complete the deployment YAML? To answer, drag the appropriate YAML segments to the correct locations. Each YAML segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point. ExplanationTo create an internal load balancer, create a service manifest named internal-lb.yaml with the service type LoadBalancer and the azure-load-balancer-internal annotation as shown in the following example:YAML:apiVersion: v1kind: Servicemetadata:name: internal-appannotations:service.beta.kubernetes.io/azure-load-balancer-internal: “true”spec:type: LoadBalancerports:– port: 80selector:app: internal-appReferences:https://docs.microsoft.com/en-us/azure/aks/internal-lbQUESTION 117You are developing an Azure Web App. You configure TLS mutual authentication for the web app.You need to validate the client certificate in the web app. To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/app-service/app-service-web-configure-tls-mutual-authQUESTION 118You are developing an application to store and retrieve data in Azure Blob storage. The application will be hosted in an on-premises virtual machine (VM). The VM is connected to Azure by using a Site-to-Site VPN gateway connection. The application is secured by using Azure Active Directory (Azure AD) credentials.The application must be granted access to the Azure Blob storage account with a start time, expiry time, and read permissions. The Azure Blob storage account access must use the Azure AD credentials of the application to secure data access. Data access must be able to be revoked if the client application security is breached.You need to secure the application access to Azure Blob storage.Which security features should you use? To answer select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/storage/common/storage-sas-overviewQUESTION 119A company is developing a gaming platform. Users can join teams to play online and see leaderboards that include player statistics. The solution includes an entity named Team.You plan to implement an Azure Redis Cache instance to improve the efficiency of data operations for entities that rarely change.You need to invalidate the cache when team data is changed.How should you complete the code? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. References:https://azure.microsoft.com/sv-se/blog/lap-around-azure-redis-cache-preview/QUESTION 120You are developing an Azure messaging solution.You need to ensure that the solution that meets the following requirements:* Provide transactional support* Provide duplicate detection.* Store the messages for an unlimited period of timeWhich two technologies will meet the requirements? Each correct answer presents a complete solution NOTE Each correct selection is worth one point.  Azure Service Bus Queue  Azure Storage Queue  Azure Service Bus Topic D Azure Event HubExplanation:The Azure Service Bus Queue and Topic has duplicate detection.Enabling duplicate detection helps keep track of the application-controlled MessageId of all messages sent into a queue or topic during a specified time window.Reference:https://docs.microsoft.com/en-us/azure/service-bus-messaging/duplicate-detectionQUESTION 121You need to configure Azure Service Bus to Event Grid integration.Which Azure Service Bus settings should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Reference:https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-to-event-grid-integration-conceptQUESTION 122You need to deploy a new version of the LabelMaker application to ACR.Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. 1 – Build a new application image by using dockerfil.2 – Create an alias if the image with the fully qualified path to the registry.3 – Log in to the registry and push image.Reference:https://thorsten-hans.com/how-to-use-a-private-azure-container-registry-with-kubernetes-9b86e67b93b6https://docs.microsoft.com/en-us/azure/container-registry/container-registry-tutorial-quick-taskQUESTION 123You are configuring a development environment for your team. You deploy the latest Visual Studio image from the Azure Marketplace to your Azure subscription.The development environment requires several software development kits (SDKs) and third-party components to support application development across the organization. You install and customize the deployed virtual machine (VM) for your development team. The customized VM must be saved to allow provisioning of a new team member development environment.You need to save the customized VM for future provisioning.Which tools or services should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. References:https://docs.microsoft.com/en-us/azure/virtual-machines/windows/capture-image-resource#create-an-image-of-a-vm-using-powershell Loading … Study resources for the Valid AZ-204 Braindumps: https://www.examslabs.com/Microsoft/Microsoft-Azure/best-AZ-204-exam-dumps.html --------------------------------------------------- Images: https://blog.examslabs.com/wp-content/plugins/watu/loading.gif https://blog.examslabs.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2022-11-06 15:57:09 Post date GMT: 2022-11-06 15:57:09 Post modified date: 2022-11-06 15:57:09 Post modified date GMT: 2022-11-06 15:57:09