AZ-305 Azure Storage and Data Architecture 3

Question 1

You need to ensure that data stored in an Azure Storage account is encrypted with your own keys and you can revoke access at any time. Which option should you configure?

Accepted Answer

Customer-managed keys (CMK) in Azure Key Vault

Answer

Customer-managed keys stored in Azure Key Vault give you full control over the encryption key lifecycle including the ability to disable or revoke keys to make data inaccessible.

Question 2

You need to grant a third-party application temporary read access to specific blobs in a private storage container without exposing the account key. Which mechanism should you use?

Accepted Answer

Shared Access Signature (SAS) token with limited permissions and expiry

Answer

A SAS token can be scoped to specific containers or blobs, limited to read permissions, and set to expire at a specific time, providing secure temporary access.

Question 3

An application writes large files to Azure Blob Storage and needs to ensure files are only visible to readers after the entire upload is complete. Which upload method ensures this?

Accepted Answer

Block Blob upload with Commit Block List as the final step

Answer

Block Blob staging uploads data in blocks using Put Block, and only the final Commit Block List operation makes the complete blob visible to readers.

Question 4

You need a database solution for storing session state for millions of concurrent users with sub-millisecond read latency and automatic expiry of old sessions. Which service is best?

Accepted Answer

Azure Cache for Redis with key expiration

Answer

Azure Cache for Redis supports sub-millisecond latency, automatic key expiration (TTL), and millions of concurrent operations, making it ideal for session state storage.

Question 5

Your analytics pipeline requires transactional consistency for writes but also needs to run OLAP queries over the same data without impacting OLTP performance. Which Azure Cosmos DB feature enables this?

Accepted Answer

Cosmos DB Analytical Store (HTAP with Azure Synapse Link)

Answer

Azure Synapse Link with the Cosmos DB Analytical Store provides a fully isolated columnar store updated in near real-time from the transactional store for HTAP scenarios.

AZ-305 - Designing Microsoft Azure Infrastructure Solutions Practice Test

AZ-305 - Designing Microsoft Azure Infrastructure Solutions Practice Test

AZ-305 Azure Storage and Data Architecture 3