NEW QUESTION 1

You plan to use Terraform to deploy an Azure resource group.
You need to install the required frameworks to support the planned deployment. Which two frameworks should you install? Each correct answer presents part of the
solution.
NOTE: Each correct selection is worth one point.

• A. Vault
• B. Terratest
• C. Node.js
• D. Yeoman
• E. Tiller

Answer: BD

Explanation:
You can use the combination of Terraform and Yeoman. Terraform is a tool for creating
infrastructure on Azure. Yeoman makes it easy to create Terraform modules.
Terratest provides a collection of helper functions and patterns for common infrastructure testing tasks, like making HTTP requests and using SSH to access a specific virtual machine. The following list describes some of the major advantages of using Terratest:
✑ Convenient helpers to check infrastructure - This feature is useful when you want
to verify your real infrastructure in the real environment.
✑ Organized folder structure - Your test cases are organized clearly and follow the standard Terraform module folder structure.
✑ Test cases are written in Go - Many developers who use Terraform are Go developers. If you're a Go developer, you don't have to learn another programming language to use Terratest.
✑ Extensible infrastructure - You can extend additional functions on top of Terratest, including Azure-specific features.
Reference:
https://docs.microsoft.com/en-us/azure/developer/terraform/create-base-template-using- yeoman
https://docs.microsoft.com/en-us/azure/developer/terraform/test-modules-using-terratest

NEW QUESTION 2
DRAG DROP
You have an Azure subscription that uses Azure Monitor and contains a Log Analytics workspace.
You have an encryption key.
You need to configure Azure Monitor to use the key to encrypt log data

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 3

You have an existing build pipeline in Azure Pipelines.
You need to use incremental builds without purging the environment between pipeline executions.
What should you use?

• A. a File Transform task
• B. a self-hosted agent
• C. Microsoft-hosted parallel jobs

Answer: B

Explanation:
When you run a pipeline on a self-hosted agent, by default, none of the subdirectories are cleaned in between two consecutive runs. As a result, you can do incremental builds and deployments, provided that tasks are implemented to make use of that. You can override this behavior using the workspace setting on the job.
Reference:
https://docs.microsoft.com/en-us/azure/devops/pipelines/process/phases

NEW QUESTION 4
DRAG DROP
You are configuring Azure Pipelines for three projects in Azure DevOps as shown in the following table.

Which version control system should you recommend for each project? To answer, drag the appropriate version control systems to the correct projects. Each version control system may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 5

You are monitoring the health and performance of an Azure web app by using Azure Application Insights. You need to ensure that an alert is sent when the web app has a sudden rise in performance issues and failures. What should you use?

• A. Application Insights Profiler
• B. Continuous export
• C. Smart Detection
• D. custom events
• E. usage analysis

Answer: C

Explanation:
Smart Detection automatically warns you of potential performance problems and failure anomalies in your web application. It performs proactive analysis of the telemetry that your app sends to Application Insights. If there is a sudden rise in failure rates, or abnormal patterns in client or server performance, you get an alert.
Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/app/proactive-diagnostics

NEW QUESTION 6

You have multiple teams that work on multiple projects in Azure DevOps.
You need to plan and manage the consumers and producers for each project. The solution must provide an overview of all the projects.
What should you do?

• A. Install the Dependency Tracker extension and create dependencies for each project.
• B. Add a Parent or Child link to the feature or user story for the items of each project.
• C. Add a Predecessor or Successor link to the feature or user story for the items of each project.
• D. Create a custom query to show the consumers and producers and add a widget to a dashboard.

Answer: A

NEW QUESTION 7

You have an Azure DevOps organization named Contoso.
You need to recommend an authentication mechanism that meets the following requirements:
• Supports authentication from Get
• Minimizes the need to provide credentials during authentication What should you recommend?

• A. managed identities in Azure Active Directory (Azure AD)
• B. personal access tokens (PATs) in Azure DevOps
• C. user accounts in Azure Active Directory (Azure AD)
• D. Alternate credentials in Azure DevOps

Answer: B

Explanation:
Personal access tokens (PATs) give you access to Azure DevOps and Team Foundation Server (TFS), without using your username and password directly. These tokens have an expiration date from when they're created. You can restrict the scope of the data they can access. Use PATs to authenticate if you don't already have SSH keys set up on your system or if you need to restrict the permissions that are granted by the credential.
Reference:
https://docs.microsoft.com/en-us/azure/devops/repos/git/auth-overview

NEW QUESTION 8

Your company uses GitHub for source control. The company has a team that performs code reviews.
You need to automate the assignment of the code reviews. The solution must meet the following requirements:
Prioritize the assignment of code reviews to team members who have the fewest outstanding assignments.
Ensure that each team member performs an equal number of code reviews in any 30-day period.
Prevent the assignment of code reviews to the team leader.
Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

• A. Clear Never assign certain team members.
• B. Select If assigning team members, don’t notify the entire team.
• C. Select Never assign certain team members.
• D. Set Routing algorithm to Round robin.
• E. Set Routing algorithm to Load balance.

Answer: AE

Explanation:
A: To always skip certain members of the team, select Never assign certain team members. Then, select one or more team members you'd like to always skip. In this case select the team leader.
E: The load balance algorithm chooses reviewers based on each member's total number of recent review requests and considers the number of outstanding reviews for each member. The load balance algorithm tries to ensure that each team member reviews an equal number of pull requests in any 30day period.
Reference:
https://docs.github.com/en/organizations/organizing-members-into-teams/managing-code-review-assignment-for-your-team

NEW QUESTION 9

Your company has a project in Azure DevOps for a new web application. The company identifies security as one of the highest priorities.
You need to recommend a solution to minimize the likelihood that infrastructure credentials will be leaked.
What should you recommend?

• A. Add a Run Inline Azure PowerShell task to the pipeline.
• B. Add a PowerShell task to the pipeline and run Set-AzureKeyVaultSecret.
• C. Add a Azurre Key Vault task to the pipeline.
• D. Add Azure Key Vault references to Azure Resource Manger templates.

Answer: B

Explanation:
Azure Key Vault provides a way to securely store credentials and other keys and secrets. The Set-AzureKeyVaultSecret cmdlet creates or updates a secret in a key vault in Azure Key Vault.
References:
https://docs.microsoft.com/en-us/powershell/module/azurerm.keyvault/set- azurekeyvaultsecret

NEW QUESTION 10

You plan to use Azure DevOps to build and deploy an app that will be hosted in a Kubernetes cluster.
You need to scan the app image for vulnerabilities before the image is deployed to the
cluster.
What should you include in the solution?

• A. Microsoft Defender for DevOps
• B. Microsoft Defender for Storage
• C. Microsoft Defender for Containers
• D. Microsoft Defender for App Service

Answer: C

NEW QUESTION 11

Your company creates a web application.
You need to recommend a solution that automatically sends to Microsoft Teams a dairy summary of the exceptions that occur m the application.
Which two Azure services should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

• A. Microsoft Visual Studio App Center
• B. Azure DevOps Project
• C. Azure Logic Apps
• D. Azure Pipelines
• E. Azure Application Insights

Answer: CE

Explanation:
References:
https://docs.microsoft.com/en-us/azure/azure-monitor/app/asp-net-exceptions https://docs.microsoft.com/en-us/azure/azure-monitor/app/automate-custom-reports

NEW QUESTION 12

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You need to recommend an integration strategy for the build process of a Java application. The solution must meet the following requirements:
✑ The build must access an on-premises dependency management system.
✑ The build outputs must be stored as Server artifacts in Azure DevOps.
✑ The source code must be stored in a Git repository in Azure DevOps.
Solution: Configure the build pipeline to use a Microsoft-hosted agent pool running the Windows Server 2019 with Visual Studio 2019 image. Include the Java Tool Installer task in the build pipeline.
Does this meet the goal?

• A. Yes
• B. No

Answer: A

Explanation:
To build and deploy Windows, Azure, and other Visual Studio solutions you'll need at least one Windows agent. Windows agents can also build Java and Android apps.
The Azure Pipelines agent pool offers several virtual machine images to choose from, each including a broad range of tools and software. One such image is Windows Server 2019 with Visual Studio 2019.
Reference:
https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/v2-windows?view=azure- devops
https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/hosted?view=azure- devops&tabs=yaml

NEW QUESTION 13

You use Azure Pipelines to build and test code projects. You notice an increase in cycle times.
You need to identify whether agent pool exhaustion is causing the issue.
What are two possible ways to achieve this goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

• A. View the Pipeline duration report.
• B. Query the PipelineRun/PipelineRuns endpoint.
• C. View the pool consumption report at the organization level.
• D. Query the TaskAgentPoolSizeSnapshots endpoint

Answer: CD

NEW QUESTION 14
DRAG DROP
You are defining release strategies for two applications as shown in the following table.

Which release strategy should you use for each application? To answer, drag the
appropriate release strategies to the correct applications. Each release strategy may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 15

You have an Azure Resource Manager template that deploys a multi-tier application.
You need to prevent the user who performs the deployment from viewing the account credentials and connection strings used by the application.
What should you use?

• A. an Azure Resource Manager parameter file
• B. an Azure Storage table
• C. an Appsettings.json files
• D. Azure Key Vault
• E. a Web.config file

Answer: D

Explanation:
When you need to pass a secure value (like a password) as a parameter during deployment, you can retrieve the value from an Azure Key Vault. You retrieve the value by referencing the key vault and secret in your parameter file. The value is never exposed because you only reference its key vault ID. The key vault can exist in a different subscription than the resource group you are deploying to.
References: https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-keyvault-parameter

NEW QUESTION 16

You have a pipeline named Pipeline1 in Azure Pipelines.
You need to create a service connection to enable Pipeline1 to download a public container image.
Which type of service connection should you create?

• A. a Docker host
• B. Azure Service Fabric
• C. Azure Kubernetes Service (AKS)
• D. a Docker registry

Answer: D

NEW QUESTION 17

You need to configure Azure Pipelines to control App2 builds. Which authentication method should you use?

• A. Windows NTLM
• B. certificate
• C. SAML
• D. personal access token (PAT)

Answer: D

Explanation:
Scenario: Deploy App2 to an Azure virtual machine named VM1.
A personal access token (PAT) is used as an alternate password to authenticate into Azure DevOps.
Reference:
https://docs.microsoft.com/en-us/azure/devops/organizations/accounts/use-personal-access-tokens-to-authenticate

NEW QUESTION 18

You configure an Azure Application Insights availability test.
You need to notify the customer services department at your company by email when availability is degraded.
You create an Azure logic app that will handle the email and follow up actions. Which type of trigger should you use to invoke the logic app?

• A. an ApiConnection trigger
• B. a Request trigger
• C. an HTTPWebhook trigger
• D. an HTTP trigger

Answer: C

Explanation:
You can use webhooks to route an Azure alert notification to other systems for post- processing or custom actions. You can use a webhook on an alert to route it to services that send SMS messages, to log bugs, to notify a team via chat or messaging services, or for various other actions.
Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/alerts-webhooks

NEW QUESTION 19
......