FREE Microsoft Azure Administrator AZ-104 MCQ Questions and Answers
You have a virtual machine called VM1 in your Azure subscription. Volume encryption is necessary for VM1's operating system and data drives. You create vault1 as the name of an Azure key vault. You must set up vault1 for volume encryption to enable Azure Disk Encryption. Which setting for vault1 should you change?
To configure vault1 to support Azure Disk Encryption for volume encryption on VM1, you need to modify the access policies for vault1.
After moving the application to Azure, you must make sure to establish the backup solution. For this need, which of the following would you develop first?
To implement a backup solution for an application after it is moved to Azure, the first step would be to create a Recovery Services vault.
You have VM1, a virtual computer in Azure. The identical parameters as VM1 must be used to generate five more virtual machines. The answer must guarantee that VM1 is always accessible. You open the blade for VM1 from the Azure portal. What ought you to do now?
To create five additional virtual machines with the same configurations as VM1 while ensuring VM1 remains available, you should select "Export template" from the Azure portal blade for VM1.
Azure Active Directory (Azure AD) and Microsoft 365 tenants for your business go by contoso.com. The business uses multiple Azure Files shares. Each share of the corporation is allocated to a distinct division. All users have data in the department property in Azure AD. The departmental file sharing must be accessible to the users. Which two categories of groups ought you employ?
Please select 2 correct answers
Several Azure runbooks are included with your Azure subscription. The runbooks provide reports each night while they run. Authentication credentials are kept in the runbooks as variables. You must swap out the current authentication method with a more secure one. What ought you use?
To replace the authentication solution for storing credentials in Azure runbooks with a more secure option, you should use Azure Key Vault.
You have a tenant called contoso.com in Azure Active Directory (Azure AD). It would help if you ensured that User1 has access to the tenant's set of settings. It must be impossible for User1 to alter any settings. Which role ought should you provide User1?
To ensure that User1 can review all the settings of the Azure Active Directory (Azure AD) tenant but is prevented from changing any settings, you should assign the "Global reader" role to User1.
You have a tenant called contoso.com in your production Azure Active Directory (Azure AD). You deploy a development Azure Active Directory (AD) tenant and provide the development tenant with several unique administrative roles. The roles must be copied to the production tenant. What ought you start with?
To copy the custom administrative roles from the development Azure AD tenant to the production Azure AD tenant, you should first export the custom roles to JSON from the development tenant. This will create a JSON representation of the roles and their configurations.