NEW QUESTION 1
You need to ensure that you can deploy the LabelMaker application.
How should you complete the CLI commands? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Answer:

Explanation: Box 1: group
Create a resource group with the az group create command. An Azure resource group is a logical group in which Azure resources are deployed and managed.
The following example creates a resource group named myResourceGroup in the westeurope location. az group create --name myResourceGroup --location westeurope
Box 2: CohoWinterLabelMaker
Use the resource group named, which is used in the second command. Box 3: aks
The command az aks create, is used to create a new managed Kubernetes cluster. Box 4: monitoring
Scenario: LabelMaker app
Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to Kubernetes environments and hosted on Azure Kubernetes Service (AKS).
You must use Azure Container Registry to publish images that support the AKS deployment.

NEW QUESTION 2
You are developing an IoT solution. The solution requires bidirectional communication between a .NET application and Azure IoT Hub.
You need to obtain connection information for a single test device.
Which three commands should you use to develop the solution? To answer, move the appropriate commands from the list of commands to the answer area and arrange them in the correct order.
NOTE: Each correct selection is worth one point.

Answer:

Explanation: Run the following command in the command-line environment where you are using the Azure CLI to install the IoT extension:
Step 1: az extension add
--name <iot-extension-name>
Run the following command in the command-line environment where you are using the Azure CLI to install the IoT extension:
az extension add --name azure-cli-iot-ext Step 2: az iot hub device-identity create
--hub-name <iot-hub-name>
--device-id <device-id>
Create a new device in the IoT Hub “DemoHub”
Command: az iot hub device-identity create --hub-name DemoHub --device-id testDevice Step 3: az iot hub device-identity show-connection-string
--hub-name { iot-hub-name }
--device-id <device-id> References:
https://github.com/MicrosoftDocs/azure-docs/blob/master/includes/iot-hub-get-started-create-device-identity.md

NEW QUESTION 3
You are developing an Azure Durable Function instance. You need to add a delay by using a durable timer. What type of function should you use?

• A. Webhook
• B. Orchestrator
• C. Client
• D. Activity

Answer: B

Explanation: Durable Functions provides durable timers for use in orchestrator functions to implement delays or to set up timeouts on async actions.
References:
https://docs.microsoft.com/en-us/azure/azure-functions/durable/durable-functions-overview

NEW QUESTION 4
You need to access user claims in the e-commerce web app* What should you do first?

• A. Update the e-commerce web app to read the HTTP request header values.
• B. Assign the Contributor RBAC role to the e-commerce web app by using the Resource Manager create role assignment API.
• C. Write custom code to make a Microsoft Graph API call from the e-commerce web app.
• D. Using the Azure CU enable Cross-origin resource sharing (CORS) from the e-commerce checkout API to the e-commerce web app

Answer: C

NEW QUESTION 5
You are creating a collaborative image hosting platform as an ASP.NET MVC web application. Users add, update, and modify images on the platform. Images are stored in Azure Blob storage.
More than one user at a time must be able to modify the same image. You need to implement optimistic concurrency for uploading images.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: Each correct solution is worth one point.

Answer:

Explanation: Optimistic concurrency means allowing concurrency conflicts to happen, and then reacting appropriately if they do.
For the PUT method, If-Match can be used to prevent the lost update problem. It can check if the modification of a resource that the user wants to upload will not override another change that has been done since the original resource was fetched. If the request cannot be fulfilled, the 412 (Precondition Failed) response is returned.
References:
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/If-Match

NEW QUESTION 6
You need to deploy a new version of the LabelMaker application.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of
actions to the answer area and arrange them in the correct order. NOTE: Each correct selection is worth one point.

Answer:

Explanation: Step 1: Build a new application image by using dockerfile
Step 2: Create an alias if the image with the fully qualified path to the registry
Before you can push the image to a private registry, you’ve to ensure a proper image name. This can be achieved using the docker tag command. For demonstration purpose, we’ll use Docker’s hello world image, rename it and push it to ACR.
# pulls hello-world from the public docker hub
$ docker pull hello-world
# tag the image in order to be able to push it to a private registry
$ docker tag hello-word <REGISTRY_NAME>/hello-world
# push the image
$ docker push <REGISTRY_NAME>/hello-world Step 3: Log in to the registry and push image
In order to push images to the newly created ACR instance, you need to login to ACR form the Docker CLI. Once logged in, you can push any existing docker image to your ACR instance.
Scenario:
Coho Winery plans to move the application to Azure and continue to support label creation. LabelMaker app
Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to Kubernetes environments and hosted on Azure Kubernetes Service (AKS).
You must use Azure Container Registry to publish images that support the AKS deployment.
References:
https://thorsten-hans.com/how-to-use-a-private-azure-container-registry-with-kubernetes-9b86e67b93b6 https://docs.microsoft.com/en-us/azure/container-registry/container-registry-tutorial-quick-task

NEW QUESTION 7
You are creating an app that uses Event Grid to connect with other services. Your app's event data will be sent to a servefless function that checks compliance. This function is maintained by your company.
You write a new event subscription at the scope of your resource. The event must be invalidated after 3 specific period of time. You need to configure Event Grid to ensure security.
What should you implement? To answer, select the appropriate options in [he answer area. NOTE: Each correct selection is worth one point

Answer:

Explanation: Box 1: SAS tokens
Custom topics use either Shared Access Signature (SAS) or key authentication. Microsoft recommends SAS, but key authentication provides simple programming, and is compatible with many existing webhook publishers.
In this case we need the expiration time provided by SAS tokens. Box 2: ValidationCode handshake
Event Grid supports two ways of validating the subscription: ValidationCode handshake (programmatic) and ValidationURL handshake (manual).
If you control the source code for your endpoint, this method is recommended.

NEW QUESTION 8
You are implementing an order processing system. A point of sale application publishes orders to topics in an Azure Service Bus queue. The label property for the topic includes the following data:

The system has the following requirements for subscriptions:

You need to implement filtering and maximize throughput while evaluating filters.
Which filter types should you implement? To answer, drag the appropriate filter types to the correct subscriptions. Each filter type may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Answer:

Explanation: FutureOrders: SQLFilter HighPriortyOrders: CorrelationFilter CorrelationID only InternationalOrders: SQLFilter
Country NOT USA requires an SQL Filter
HighQuantityOrders: SQLFilter
Need to use relational operators so an SQL Filter is needed. AllOrders: No Filter
SQL Filter: SQL Filters - A SqlFilter holds a SQL-like conditional expression that is evaluated in the broker against the arriving messages' user-defined properties and system properties. All system properties must be prefixed with sys. in the conditional expression. The SQL-language subset for filter conditions tests for the existence of properties (EXISTS), as well as for null-values (IS NULL), logical NOT/AND/OR, relational operators, simple numeric arithmetic, and simple text pattern matching with LIKE.
Correlation Filters - A CorrelationFilter holds a set of conditions that are matched against one or more of an arriving message's user and system properties. A common use is to match against the CorrelationId property, but the application can also choose to match against ContentType, Label, MessageId, ReplyTo, ReplyToSessionId, SessionId, To, and any user-defined properties. A match exists when an arriving message's value for a property is equal to the value specified in the correlation filter. For string expressions, the comparison is case-sensitive. When specifying multiple match properties, the filter combines them as a logical AND condition, meaning for the filter to match, all conditions must match.
Boolean filters - The TrueFilter and FalseFilter either cause all arriving messages (true) or none of the arriving messages (false) to be selected for the subscription.
References:
https://docs.microsoft.com/en-us/azure/service-bus-messaging/topic-filters

NEW QUESTION 9
You are developing a .NET Core model-view controller (MVC) application hosted on Azure for a health care system that allows providers access to their information.
You develop the following code:

You define a role named SysAdmin.
You need to ensure that the application meets the following authorization requirements:
Allow the ProviderAdmin and SysAdmin roles access to the Partner controller regardless of whether the user holds an editor claim of partner.
Limit access to the Manage action of the controller to users with an editor claim of partner who are also members of the SysAdmin role.
How should you complete the code? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Answer:

Explanation: Box 1:
Allow the ProviderAdmin and SysAdmin roles access to the Partner controller regardless of whether the user holds an editor claim of partner.
Box 2:
Limit access to the Manage action of the controller to users with an editor claim of partner who are also members of the SysAdmin role.

NEW QUESTION 10
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution. Determine whether the solution meets the stated goals.
You need to ensure that authentication events are triggered and processed according to the policy. Solution: Create a new Azure Event Grid topic and add a subscription for the events.
Does the solution meet the goal?

• A. Yes
• B. No

Answer: B

Explanation: Use a separate Azure Event Grid topics and subscriptions for sign-in and sign-out events.
Scenario: Authentication events are used to monitor users signing in and signing out. All authentication events must be processed by Policy service. Sign outs must be processed as quickly as possible.

NEW QUESTION 11
You are developing a stateful service to deploy to Azure Service Fabric. You plan to implement the RunAsync method.
You need to implement the methods to interface with an instance of the IReliable dictionary interface to increment a count each time the service is called. The first time the service is called, you must initialize the count to 1 if it does not yet exist and then update it by one each time it is called.
Which three methods should you run in sequence. To answer, move the appropriate methods from the list of methods to the answer area and arrange them in the correct order.

Answer:

Explanation:

NEW QUESTION 12
You have a task that includes a WebJob that should run continuously. The WebJob Log exhibit shows the text that is displayed when the WebJob runs. (Click the WebJob Log tab.)
The WebJob is configured as shown in the WebJob Configuration exhibit. (Click the WebJob Configuration tab.)
The WebJob is not functioning as expected. The WebJob Code exhibit has a comment that shows where code should be added. (Click the WebJob Code tab.)
You need to identify any issues with the WebJob.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Answer:

Explanation:

NEW QUESTION 13
You need to ensure the security policies are met. What code do you add at line CS07?
A)

B)

C)

D)

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: D

NEW QUESTION 14
A company is creating an loT solution for connecting to smart refrigerators. You plan to use the Azure IoT Hub Device Provisioning Service for this process.
You need to provision the devices automatically. Which feature of Device Provisioning Service should you use?

• A. Error policy
• B. Device registration and configuration
• C. Template registration
• D. Remote monitoring

Answer: B

Explanation: Azure IoT auto-provisioning can be broken into three phases:
- Service configuration - a one-time configuration of the Azure IoT Hub and IoT Hub Device Provisioning Service instances, establishing them and creating linkage between them.
- Device enrollment - the process of making the Device Provisioning Service instance aware of the devices that will attempt to register in the future.Note: The Device Provisioning Service is a helper service that enables just-in-time provisioning of devices to an IoT hub, without requiring human intervention. After successful provisioning, devices connect directly with their designated IoT Hub. This process is referred to as auto-provisioning, and provides an out-of-the-box registration and initial configuration experience for devices.
- Device registration and configuration - initiated upon boot up by registration software, which is built using a Device Provisioning Service client SDK appropriate for the device and attestation mechanism. The software establishes a connection to the provisioning service for authentication of the device, and subsequent registration in the IoT Hub. Upon successful registration, the device is provided with its IoT Hub unique device ID and connection information, allowing it to pull its initial configuration and begin the telemetry process. In production environments, this phase can occur weeks or months after the previous two phases.
References:
https://docs.microsoft.com/en-us/azure/iot-dps/concepts-auto-provisioning

NEW QUESTION 15
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution. Determine whether the solution meets the stated goals.
You have the following resource group:

Developers must connect to Dev$erver onry through DevWorkstatioan. To maintain security, DevServer must not accept connections from the internet.
You need to create a private connection between the DevWortcstation and DevServer. Solution: Configure an IP address on each subnet within the same address space. Does the solution meet the goal?

• A. Yes
• B. No

Answer: A

NEW QUESTION 16
You need to tool code at line LE03 of Login Event to ensure that all authentication events are processed correctly. How should you complete the code? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Topic 5, Coho WineryLabelMaker app
Coho Winery produces, bottles, and distributes a variety of wines globally. You are a developer implementing highly scalable and resilient applications to support online order processing by using Azure solutions.
Coho Winery has a LabelMaker application that prints labels for wine bottles. The application sends data to several printers. The application consists of five modules that run independently on virtual machines (VMs). Coho Winery plans to move the application to Azure and continue to support label creation.
External partners send data to the LabelMaker application to include artwork and text for custom label designs.
Requirements Data
You identify the following requirements for data management and manipulation:
• Order data is stored as nonrelational JSON and must be queried using Structured Query Language (SQL).
• Changes to the Order data must reflect immediately across all partitions. All reads to the Order data must fetch the most recent writes.
Security
You have the following security requirements:
• Users of Coho Winery applications must be able to provide access to documents, resources, and applications to external partners.
• External partners must use their own credentials and authenticate with their organization's identity management solution.
• External partner logins must be audited monthly for application use by a user account administrator to maintain company compliance.
• Storage of e-commerce application settings must be maintained in Azure Key Vault.
• E-commerce application sign-ins must be secured by using Azure App Service authentication and Azure Active Directory (AAD).
• Conditional access policies must be applied at the application level to protect company content.
• The LabelMaker application must be secured by using an AAD account that has full access to all namespaces of the Azure Kubernetes Service (AKS) cluster.
LabelMaker app
Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to
Kubernetes environments and hosted on Azure Kubernetes Service (AKS).
You must use Azure Container Registry to publish images that support the AKS deployment.
Architecture

Issues
Calls to the Printer API App fall periodically due to printer communication timeouts.
Printer communication timeouts occur after 10 seconds. The label printer must only receive up to 5 attempts within one minute
The order workflow fails to run upon initial deployment to Azure.
Order.Json
Relevant portions oi the app files are shown below. Line numbers are included for reference only. The JSON file contains a representation of the data for an order that includes a single item.

NEW QUESTION 17
You manage a web application that is hosted in multiple Azure regions. The application uses Azure Append blobs to store audit logs. Each hosted instance of the application maintains its own audit logs.
You have a central Append blob that serves as a master record of all audit logs. The master audit log is updated on a schedule to include all local copies from each region. The local copies are then discarded.
You need to append each of the local audit logs to the master audit log. Which method should you use?

• A. Start-AzureStorageBlobCopy PowerShell command
• B. Append Block operation of the Azure Storage Services REST API
• C. Copy Blob operation of the Azure Storage Services REST API
• D. AzCopy tool with the /BlobType:Append parameter

Answer: B