Download Developing Solutions for Microsoft Azure.AZ-203.Prep4Sure.2020-03-11.69q.vcex

Vendor: Microsoft
Exam Code: AZ-203
Exam Name: Developing Solutions for Microsoft Azure
Date: Mar 11, 2020
File Size: 7 MB
Download Exam

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase
Coupon: EXAMFILESCOM

Discount: 20%

ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator

Demo Questions

Question 1
You need to resolve a notification latency issue. 
Which two actions should you perform? Each correct answer presents part of the solution. 
NOTE: Each correct selection is worth one point.
  1. Set Always On to false.
  2. Set Always On to true.
  3. Ensure that the Azure Function is set to use a consumption plan.
  4. Ensure that the Azure Function is using an App Service plan.
Correct answer: BD
Explanation:
Azure Functions can run on either a Consumption Plan or a dedicated App Service Plan. If you run in a dedicated mode, you need to turn on the Always On setting for your Function App to run properly. The Function runtime will go idle after a few minutes of inactivity, so only HTTP triggers will actually "wake up" your functions. This is similar to how WebJobs must have Always On enabled. Scenario: Notification latency: Users report that anomaly detection emails can sometimes arrive several minutes after an anomaly is detected.Anomaly detection service: You have an anomaly detection service that analyzes log information for anomalies. It is implemented as an Azure Machine Learning model. The model is deployed as a web service.If an anomaly is detected, an Azure Function that emails administrators is called by using an HTTP WebHook. References:https://github.com/Azure/Azure-Functions/wiki/Enable-Always-On-when-running-on-dedicated-App-Service-Plan
Azure Functions can run on either a Consumption Plan or a dedicated App Service Plan. If you run in a dedicated mode, you need to turn on the Always On setting for your Function App to run properly. The Function runtime will go idle after a few minutes of inactivity, so only HTTP triggers will actually "wake up" your functions. This is similar to how WebJobs must have Always On enabled. 
Scenario: Notification latency: Users report that anomaly detection emails can sometimes arrive several minutes after an anomaly is detected.
Anomaly detection service: You have an anomaly detection service that analyzes log information for anomalies. It is implemented as an Azure Machine Learning model. The model is deployed as a web service.
If an anomaly is detected, an Azure Function that emails administrators is called by using an HTTP WebHook. 
References:
https://github.com/Azure/Azure-Functions/wiki/Enable-Always-On-when-running-on-dedicated-App-Service-Plan
Question 2
You need to support the requirements for the Shipping Logic App.
What should you use?
  1. Azure Active Directory Application Proxy
  2. Point-to-Site (P2S) VPN connection
  3. Site-to-Site (S2S) VPN connection
  4. On-premises Data Gateway
Correct answer: D
Explanation:
Before you can connect to on-premises data sources from Azure Logic Apps, download and install the on-premises data gateway on a local computer. The gateway works as a bridge that provides quick data transfer and encryption between data sources on premises (not in the cloud) and your logic apps. The gateway supports BizTalk Server 2016. Note: Microsoft have now fully incorporated the Azure BizTalk Services capabilities into Logic Apps and Azure App Service Hybrid Connections.Logic Apps Enterprise Integration pack bring some of the enterprise B2B capabilities like AS2 and X12, EDI standards support Scenario: The Shipping Logic app must meet the following requirements:Support the ocean transport and inland transport workflows by using a Logic App. Support industry standard protocol X12 message format for various messages including vessel content details and arrival notices. Secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model. Maintain on-premises connectivity to support legacy applications and final BizTalk migrations. References:https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-gateway-install
Before you can connect to on-premises data sources from Azure Logic Apps, download and install the on-premises data gateway on a local computer. The gateway works as a bridge that provides quick data transfer and encryption between data sources on premises (not in the cloud) and your logic apps. 
The gateway supports BizTalk Server 2016. 
Note: Microsoft have now fully incorporated the Azure BizTalk Services capabilities into Logic Apps and Azure App Service Hybrid Connections.
Logic Apps Enterprise Integration pack bring some of the enterprise B2B capabilities like AS2 and X12, EDI standards support 
Scenario: The Shipping Logic app must meet the following requirements:
  • Support the ocean transport and inland transport workflows by using a Logic App. 
  • Support industry standard protocol X12 message format for various messages including vessel content details and arrival notices. 
  • Secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model. 
  • Maintain on-premises connectivity to support legacy applications and final BizTalk migrations. 
References:
https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-gateway-install
Question 3
You are writing code to create and run an Azure Batch job. 
You have created a pool of compute nodes. 
You need to choose the right class and its method to submit a batch job to the Batch service. 
Which method should you use?
  1. JobOperations.EnableJobAsync(String, IEnumerable<BatchClientBehavior>,CancellationToken)
  2. JobOperations.CreateJob()
  3. CloudJob.Enable(IEnumerable<BatchClientBehavior>)
  4. JobOperations.EnableJob(String,IEnumerable<BatchClientBehavior>)
  5. CloudJob.CommitAsync(IEnumerable<BatchClientBehavior>, CancellationToken)
Correct answer: E
Explanation:
A Batch job is a logical grouping of one or more tasks. A job includes settings common to the tasks, such as priority and the pool to run tasks on. The app uses the BatchClient.JobOperations.CreateJob method to create a job on your pool. The Commit method submits the job to the Batch service. Initially the job has no tasks. {     CloudJob job = batchClient.JobOperations.CreateJob();     job.Id = JobId;     job.PoolInformation = new PoolInformation { PoolId = PoolId };     job.Commit(); } ... References:https://docs.microsoft.com/en-us/azure/batch/quick-run-dotnet
A Batch job is a logical grouping of one or more tasks. A job includes settings common to the tasks, such as priority and the pool to run tasks on. The app uses the BatchClient.JobOperations.CreateJob method to create a job on your pool. 
The Commit method submits the job to the Batch service. Initially the job has no tasks. 
    CloudJob job = batchClient.JobOperations.CreateJob(); 
    job.Id = JobId; 
    job.PoolInformation = new PoolInformation { PoolId = PoolId }; 
    job.Commit(); 
... 
References:
https://docs.microsoft.com/en-us/azure/batch/quick-run-dotnet
Question 4
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. 
You are developing a solution that will be deployed to an Azure Kubernetes Service (AKS) cluster. The solution will include a custom VNet, Azure Container Registry images, and an Azure Storage account. 
The solution must allow dynamic creation and management of all Azure resources within the AKS cluster. 
You need to configure an AKS cluster for use with the Azure APIs. 
Solution: Enable the Azure Policy Add-on for Kubernetes to connect the Azure Policy service to the GateKeeper admission controller for the AKS cluster. Apply a built-in policy to the cluster.
Does the solution meet the goal?
  1. Yes
  2. No
Correct answer: B
Explanation:
Instead create an AKS cluster that supports network policy. Create and apply a network to allow traffic only from within a defined namespace. References:https://docs.microsoft.com/en-us/azure/aks/use-network-policies
Instead create an AKS cluster that supports network policy. Create and apply a network to allow traffic only from within a defined namespace. 
References:
https://docs.microsoft.com/en-us/azure/aks/use-network-policies
Question 5
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. 
You are developing a solution that will be deployed to an Azure Kubernetes Service (AKS) cluster. The solution will include a custom VNet, Azure Container Registry images, and an Azure Storage account. 
The solution must allow dynamic creation and management of all Azure resources within the AKS cluster. 
You need to configure an AKS cluster for use with the Azure APIs. 
Solution: Create an AKS cluster that supports network policy. Create and apply a network to allow traffic only from within a defined namespace.
Does the solution meet the goal?
  1. Yes
  2. No
Correct answer: A
Explanation:
When you run modern, microservices-based applications in Kubernetes, you often want to control which components can communicate with each other. The principle of least privilege should be applied to how traffic can flow between pods in an Azure Kubernetes Service (AKS) cluster. Let's say you likely want to block traffic directly to back-end applications. The Network Policy feature in Kubernetes lets you define rules for ingress and egress traffic between pods in a cluster. References:https://docs.microsoft.com/en-us/azure/aks/use-network-policies
When you run modern, microservices-based applications in Kubernetes, you often want to control which components can communicate with each other. The principle of least privilege should be applied to how traffic can flow between pods in an Azure Kubernetes Service (AKS) cluster. Let's say you likely want to block traffic directly to back-end applications. The Network Policy feature in Kubernetes lets you define rules for ingress and egress traffic between pods in a cluster. 
References:
https://docs.microsoft.com/en-us/azure/aks/use-network-policies
Question 6
You need to implement the e-commerce checkout API. 
Which three actions should you perform? Each correct answer presents part of the solution. 
NOTE: Each correct selection is worth one point.
  1. Set the function template’s Mode property to Webhook and the Webhook type property to Generic JSON.
  2. Create an Azure Function using the HTTP POST function template.
  3. In the Azure Function App, enable Cross-Origin Resource Sharing (CORS) with all origins permitted.
  4. In the Azure Function App, enable Managed Service Identity (MSI).
  5. Set the function template’s Mode property to Webhook and the Webhook type property to GitHub.
  6. Create an Azure Function using the Generic webhook function template.
Correct answer: ABD
Explanation:
Scenario: E-commerce application sign-ins must be secured by using Azure App Service authentication and Azure Active Directory (AAD).D: A managed identity from Azure Active Directory allows your app to easily access other AAD-protected resources such as Azure Key Vault. Incorrect Answers:C: CORS is an HTTP feature that enables a web application running under one domain to access resources in another domain.References:https://docs.microsoft.com/en-us/azure/app-service/overview-managed-identity
Scenario: E-commerce application sign-ins must be secured by using Azure App Service authentication and Azure Active Directory (AAD).
D: A managed identity from Azure Active Directory allows your app to easily access other AAD-protected resources such as Azure Key Vault. 
Incorrect Answers:
C: CORS is an HTTP feature that enables a web application running under one domain to access resources in another domain.
References:
https://docs.microsoft.com/en-us/azure/app-service/overview-managed-identity
Question 7
You need to provision and deploy the order workflow.
Which three components should you include? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
  1. Connections
  2. On-premises Data Gateway
  3. Workflow definition
  4. Resources
  5. Functions
Correct answer: BCE
Explanation:
Scenario: The order workflow fails to run upon initial deployment to Azure.   
Scenario: The order workflow fails to run upon initial deployment to Azure.
  
Question 8
You are implementing an Azure API app that uses built-in authentication and authorization functionality. 
All app actions must be associated with information about the current user. 
You need to retrieve the information about the current user. 
What are two ways to achieve the goal? Each correct answer presents a complete solution. 
NOTE: Each correct selection is worth one point.
  1. HTTP headers
  2. environment variables
  3. /.auth/me HTTP endpoint
  4. /.auth/login endpoint
Correct answer: AC
Explanation:
A: After App Service Authentication has been configured, users trying to access your API are prompted to sign in with their organizational account that belongs to the same Azure AD as the Azure AD application used to secure the API. After signing in, you are able to access the information about the current user through the HttpContext.Current.User property.C: While the server code has access to request headers, client code can access GET /.auth/me to get the same access tokens (References: https://docs.microsoft.com/en-us/azure/app-service/app-service-web-tutorial-auth-aadhttps://docs.microsoft.com/en-us/sharepoint/dev/spfx/web-parts/guidance/connect-to-api-secured-with-aad
A: After App Service Authentication has been configured, users trying to access your API are prompted to sign in with their organizational account that belongs to the same Azure AD as the Azure AD application used to secure the API. After signing in, you are able to access the information about the current user through the HttpContext.Current.User property.
C: While the server code has access to request headers, client code can access GET /.auth/me to get the same access tokens (
References: 
https://docs.microsoft.com/en-us/azure/app-service/app-service-web-tutorial-auth-aad
https://docs.microsoft.com/en-us/sharepoint/dev/spfx/web-parts/guidance/connect-to-api-secured-with-aad
Question 9
A company is developing a solution that allows smart refrigerators to send temperature information to a central location. You have an existing Service Bus. 
The solution must receive and store messages until they can be processed. You create an Azure Service Bus instance by providing a name, pricing tier, subscription, resource group, and location. 
You need to complete the configuration. 
Which Azure CLI or PowerShell command should you run?
  1.   
  2.   
  3.   
  4.   
Correct answer: D
Explanation:
A service bus instance has already been created (Step 2 below). Next is step 3, Create a Service Bus queue. Note: Steps:Step 1: # Create a resource groupresourceGroupName="myResourceGroup" az group create --name $resourceGroupName --location eastus Step 2: # Create a Service Bus messaging namespace with a unique namenamespaceName=myNameSpace$RANDOM az servicebus namespace create --resource-group $resourceGroupName --name $namespaceName --location eastus Step 3: # Create a Service Bus queueaz servicebus queue create --resource-group $resourceGroupName --namespace-name $namespaceName --name BasicQueue Step 4: # Get the connection string for the namespaceconnectionString=$(az servicebus namespace authorization-rule keys list --resource-group $resourceGroupName --namespace-name $namespaceName --name RootManageSharedAccessKey --query primaryConnectionString --output tsv) References:https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-quickstart-cli
A service bus instance has already been created (Step 2 below). Next is step 3, Create a Service Bus queue. 
Note: 
Steps:
Step 1: # Create a resource group
resourceGroupName="myResourceGroup" 
az group create --name $resourceGroupName --location eastus 
Step 2: # Create a Service Bus messaging namespace with a unique name
namespaceName=myNameSpace$RANDOM 
az servicebus namespace create --resource-group $resourceGroupName --name $namespaceName --location eastus 
Step 3: # Create a Service Bus queue
az servicebus queue create --resource-group $resourceGroupName --namespace-name $namespaceName --name BasicQueue 
Step 4: # Get the connection string for the namespace
connectionString=$(az servicebus namespace authorization-rule keys list --resource-group $resourceGroupName --namespace-name $namespaceName --name RootManageSharedAccessKey --query primaryConnectionString --output tsv) 
References:
https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-quickstart-cli
Question 10
You are a developer for a SaaS company that offers many web services. 
All web services for the company must meet the following requirements:
  • Use API Management to access the services 
  • Use OpenID Connect for authentication. 
  • Prevent anonymous usage 
A recent security audit found that several web services can be called without any authentication. 
Which API Management policy should you implement?
  1. validate-jwt
  2. jsonp
  3. authentication-certificate
  4. check-header
Correct answer: A
Explanation:
Add the validate-jwt policy to validate the OAuth token for every incoming request. Incorrect Answers:B: The jsonp policy adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. JSONP is a method used in JavaScript programs to request data from a server in a different domain. JSONP bypasses the limitation enforced by most web browsers where access to web pages must be in the same domain.JSONP - Adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. References:https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad
Add the validate-jwt policy to validate the OAuth token for every incoming request. 
Incorrect Answers:
B: The jsonp policy adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. JSONP is a method used in JavaScript programs to request data from a server in a different domain. JSONP bypasses the limitation enforced by most web browsers where access to web pages must be in the same domain.
JSONP - Adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. 
References:https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad
CONNECT US
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!