HomeMicrosoftMicrosoft Azure certificationNewly Updated AZ-204 Dumps (2023) To Ensure Your Success: DumpsBase’s AZ-204 Dumps V19.02

February 7, 2023

Newly Updated AZ-204 Dumps (2023) To Ensure Your Success: DumpsBase’s AZ-204 Dumps V19.02

Passing AZ-204 Developing Solutions for Microsoft Azure exam can be easier if you choose DumpsBase’s AZ-204 dumps V19.02. We have newly updated AZ-204 dumps to V19.02 with 348 exam questions and answers for making good preparation. You can download the AZ-204 dumps pdf directly to start learning. Also, you can get free AZ-204 exam software to enable you to do self-assessments and overcome weaknesses in the AZ-204 test preparation. Memorizing these Microsoft AZ-204 dumps questions is helpful to get ready for the Developing Solutions for Microsoft Azure Exam AZ-204 test in a short time.

If you are still having confusions about the updated AZ-204 dumps, check the free demo questions below:

1. Topic 1, Windows Server 2016 virtual machine

Case study

This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.

At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.

Current environment

Windows Server 2016 virtual machine

This virtual machine (VM) runs BizTalk Server 2016. The VM runs the following workflows:

- Ocean Transport C This workflow gathers and validates container information including container contents and arrival notices at various shipping ports.

- Inland Transport C This workflow gathers and validates trucking information including fuel usage, number of stops, and routes.

The VM supports the following REST API calls:

- Container API C This API provides container information including weight, contents, and other attributes.

- Location API C This API provides location information regarding shipping ports of call and trucking stops.

- Shipping REST API C This API provides shipping information for use and display on the shipping website.

Shipping Data

The application uses MongoDB JSON document storage database for all container and transport information.

Shipping Web Site

The site displays shipping container tracking information and container contents. The site is located at http://shipping.wideworldimporters.com/

Proposed solution

The on-premises shipping application must be moved to Azure. The VM has been migrated to a new Standard_D16s_v3 Azure VM by using Azure Site Recovery and must remain running in Azure to complete the BizTalk component migrations. You create a Standard_D16s_v3 Azure VM to host BizTalk Server.

The Azure architecture diagram for the proposed solution is shown below:

Requirements

Shipping Logic app

The Shipping Logic app must meet the following requirements:

- Support the ocean transport and inland transport workflows by using a Logic App.

- Support industry-standard protocol X12 message format for various messages including vessel content details and arrival notices.

- Secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model.

- Maintain on-premises connectivity to support legacy applications and final BizTalk migrations.

Shipping Function app

Implement secure function endpoints by using app-level security and include Azure Active Directory (Azure AD).

REST APIs

The REST API’s that support the solution must meet the following requirements:

- Secure resources to the corporate VNet.

- Allow deployment to a testing location within Azure while not incurring additional costs.

- Automatically scale to double capacity during peak shipping times while not causing application downtime.

- Minimize costs when selecting an Azure payment model.

Shipping data

Data migration from on-premises to Azure must minimize costs and downtime.

Shipping website

Use Azure Content Delivery Network (CDN) and ensure maximum performance for dynamic content while minimizing latency and costs.

Issues

Windows Server 2016 VM

The VM shows high network latency, jitter, and high CPU utilization. The VM is critical and has not been backed up in the past. The VM must enable a quick restore from a 7-day snapshot to include in-place restore of disks in case of failure.

Shipping website and REST APIs

The following error message displays while you are testing the website:

Failed to load http://test-shippingapi.wideworldimporters.com/: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://test.wideworldimporters.com/' is therefore not allowed access.

DRAG DROP

You need to support the message processing for the ocean transport workflow.

Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

2. You need to support the requirements for the Shipping Logic App.

What should you use?

Azure Active Directory Application Proxy

Point-to-Site (P2S) VPN connection

Site-to-Site (S2S) VPN connection

On-premises Data Gateway

3. HOTSPOT

You need to configure Azure App Service to support the REST API requirements.

Which values should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

4. You need to secure the Shipping Logic App.

What should you use?

Azure App Service Environment (ASE)

Azure AD B2B integration

Integration Service Environment (ISE)

VNet service endpoint

5. HOTSPOT

You need to secure the Shipping Function app.

How should you configure the app? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

6. HOTSPOT

You need to update the APIs to resolve the testing error.

How should you complete the Azure CLI command? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

7. HOTSPOT

You need to configure Azure CDN for the Shipping web site.

Which configuration options should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

8. HOTSPOT

You need to correct the VM issues.

Which tools should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

9. HOTSPOT

You need to resolve the Shipping web site error.

How should you configure the Azure Table Storage service? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

10. You need to migrate on-premises shipping data to Azure.

What should you use?

Azure Migrate

Azure Cosmos DB Data Migration tool (dt.exe)

AzCopy

Azure Database Migration service

11. Topic 2, Contoso, Ltd

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

Background

Overview

You are a developer for Contoso, Ltd. The company has a social networking website that is developed as a Single Page Application (SPA). The main web application for the social networking website loads user uploaded content from blob storage.

You are developing a solution to monitor uploaded data for inappropriate content.

The following process occurs when users upload content by using the SPA:

• Messages are sent to ContentUploadService.

• Content is processed by ContentAnalysisService.

• After processing is complete, the content is posted to the social network or a rejection message is posted in its place.

The ContentAnalysisService is deployed with Azure Container Instances from a private Azure Container Registry named contosoimages.

The solution will use eight CPU cores.

Azure Active Directory

Contoso, Ltd. uses Azure Active Directory (Azure AD) for both internal and guest accounts.

Requirements

ContentAnalysisService

The company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso, Ltd.

You must create an Azure Function named CheckUserContent to perform the content checks.

Costs

You must minimize costs for all Azure services.

Manual review

To review content, the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication. In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes.

High availability

All services must run in multiple regions. The failure of any service in a region must not impact overall application availability.

Monitoring

An alert must be raised if the ContentUploadService uses more than 80 percent of available CPU cores.

Security

You have the following security requirements:

- Any web service accessible over the Internet must be protected from cross site scripting attacks.

- All websites and services must use SSL from a valid root certificate authority.

- Azure Storage access keys must only be stored in memory and must be available only to the service.

- All Internal services must only be accessible from internal Virtual Networks (VNets).

- All parts of the system must support inbound and outbound traffic restrictions.

- All service calls must be authenticated by using Azure AD.

User agreements

When a user submits content, they must agree to a user agreement. The agreement allows employees of Contoso, Ltd. to review content, store cookies on user devices, and track user’s IP addresses.

Information regarding agreements is used by multiple divisions within Contoso, Ltd.

User responses must not be lost and must be available to all parties regardless of individual service uptime. The volume of agreements is expected to be in the millions per hour.

Validation testing

When a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.

Issues

Users of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages.

Code

ContentUploadService

HOTSPOT

You need to add code at line AM10 of the application manifest to ensure that the requirement for manually reviewing content can be met.

How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

12. HOTSPOT

You need to ensure that validation testing is triggered per the requirements.

How should you complete the code segment? To answer, select the appropriate values in the answer area. NOTE: Each correct selection is worth one point.

13. You need to monitor ContentUploadService accourding to the requirements.

Which command should you use?

az monitor metrics alert create Cn alert Cg … - -scopes … - -condition "avg Percentage CPU > 8"

az monitor metrics alert create Cn alert Cg … - -scopes … - -condition "avg Percentage CPU > 800"

az monitor metrics alert create Cn alert Cg … - -scopes … - -condition "CPU Usage > 800"

az monitor metrics alert create Cn alert Cg … - -scopes … - -condition "CPU Usage > 8"

14. You need to configure the ContentUploadService deployment.

Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Add the following markup to line CS23: types: Private

Add the following markup to line CS24: osType: Windows

Add the following markup to line CS24: osType: Linux

Add the following markup to line CS23: types: Public

15. You need to deploy the CheckUserContent Azure function. The solution must meet the security and cost requirements.

Which hosting model should you use?

Consumption plan

Premium plan

App Service plan

16. You need to store the user agreements.

Where should you store the agreement after it is completed?

Azure Storage queue

Azure Event Hub

Azure Service Bus topic

Azure Event Grid topic

17. You need to investigate the http server log output to resolve the issue with the ContentUploadService.

Which command should you use first?

az webapp log

az ams live-output

az monitor activity-log

az container attach

18. DRAG DROP

You need to add markup at line AM04 to implement the ContentReview role.

How should you complete the markup? To answer, drag the appropriate json segments to the correct locations. Each json segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

19. HOTSPOT

You need to add code at line AM09 to ensure that users can review content using ContentAnalysisService.

How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

20. HOTSPOT

You need to implement the bindings for the CheckUserContent function.

How should you complete the code segment? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

21. HOTSPOT

You need to ensure that network security policies are met.

How should you configure network security? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

22. DRAG DROP

You need to add YAML markup at line CS17 to ensure that the ContentUploadService can access Azure Storage access keys.

How should you complete the YAML markup? To answer, drag the appropriate YAML segments to the correct locations. Each YAML segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

23. Topic 3, City Power & Light

To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.

At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

Background

City Power & Light company provides electrical infrastructure monitoring solutions for homes and businesses. The company is migrating solutions to Azure.

Current environment

Architecture overview

The company has a public website located at http://www.cpandl.com/. The site is a single-page web application that runs in Azure App Service on Linux. The website uses files stored in Azure Storage and cached in Azure Content Delivery Network (CDN) to serve static content.

API Management and Azure Function App functions are used to process and store data in Azure Database for PostgreSQL. API Management is used to broker communications to the Azure Function app functions for Logic app integration. Logic apps are used to orchestrate the data processing while Service Bus and Event Grid handle messaging and events.

The solution uses Application Insights, Azure Monitor, and Azure Key Vault.

Architecture diagram

The company has several applications and services that support their business. The company plans to implement serverless computing where possible.

The overall architecture is shown below.

User authentication

The following steps detail the user authentication process:

✑ The user selects Sign in in the website.

✑ The browser redirects the user to the Azure Active Directory (Azure AD) sign in page.

✑ The user signs in.

✑ Azure AD redirects the user’s session back to the web application. The URL includes an access token.

✑ The web application calls an API and includes the access token in the authentication header. The application ID is sent as the audience (‘aud’) claim in the access token.

✑ The back-end API validates the access token.

Requirements

Corporate website

✑ Communications and content must be secured by using SSL.

✑ Communications must use HTTPS.

✑ Data must be replicated to a secondary region and three availability zones.

✑ Data storage costs must be minimized.

Azure Database for PostgreSQL

The database connection string is stored in Azure Key Vault with the following attributes:

✑ Azure Key Vault name: cpandlkeyvault

✑ Secret name: PostgreSQLConn

✑ Id: 80df3e46ffcd4f1cb187f79905e9a1e8

The connection information is updated frequently. The application must always use the latest information to connect to the database.

Azure Service Bus and Azure Event Grid

✑ Azure Event Grid must use Azure Service Bus for queue-based load leveling.

✑ Events in Azure Event Grid must be routed directly to Service Bus queues for use in buffering.

✑ Events from Azure Service Bus and other Azure services must continue to be routed to Azure Event Grid for processing.

Security

✑ All SSL certificates and credentials must be stored in Azure Key Vault.

✑ File access must restrict access by IP, protocol, and Azure AD rights.

✑ All user accounts and processes must receive only those privileges which are essential to perform their intended function.

Compliance

Auditing of the file updates and transfers must be enabled to comply with General Data Protection Regulation (GDPR). The file updates must be read-only, stored in the order in which they occurred, include only create, update, delete, and copy operations, and be retained for compliance reasons.

Issues

Corporate website

While testing the site, the following error message displays:

CryptographicException: The system cannot find the file specified.

Function app

You perform local testing for the RequestUserApproval function. The following error

message displays:

'Timeout value of 00:10:00 exceeded by function: RequestUserApproval'

The same error message displays when you test the function in an Azure development environment when you run the following Kusto query: FunctionAppLogs

| where FunctionName = = "RequestUserApproval"

Logic app

You test the Logic app in a development environment. The following error message displays:

'400 Bad Request'

Troubleshooting of the error shows an HttpTrigger action to call the RequestUserApproval function.

Code

Corporate website

Security.cs:

Function app

RequestUserApproval.cs:

HOTSPOT

You need to configure security and compliance for the corporate website files.

Which Azure Blob storage settings should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

24. HOTSPOT

You need to configure Azure Service Bus to Event Grid integration.

Which Azure Service Bus settings should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

25. You need to ensure that all messages from Azure Event Grid are processed.

What should you use?

Azure Event Grid topic

Azure Service Bus topic

Azure Service Bus queue

Azure Storage queue

Azure Logic App custom connector

26. You need to authenticate the user to the corporate website as indicated by the architectural diagram.

Which two values should you use? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

ID token signature

ID token claims

HTTP response code

Azure AD endpoint URI

Azure AD tenant ID

27. QUESTION 1

You need to correct the RequestUserApproval Function app error.

What should you do?

Update line RA13 to use the async keyword and return an HttpRequest object value.

Configure the Function app to use an App Service hosting plan. Enable the Always On setting of the hosting plan.

Update the function to be stateful by using Durable Functions to process the request payload.

Update the functionTimeout property of the host.json project file to 15 minutes.

28. DRAG DROP

You need to correct the corporate website error.

Which four actions should you recommend be performed in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

29. HOTSPOT

You need to correct the Azure Logic app error message.

Which configuration values should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

30. HOTSPOT

You need to configure the Account Kind, Replication, and Storage tier options for the corporate website’s Azure Storage account.

How should you complete the configuration? To answer, select the appropriate options in the dialog box in the answer area. NOTE: Each correct selection is worth one point.

31. HOTSPOT

You need to configure API Management for authentication.

Which policy values should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

32. You need to investigate the Azure Function app error message in the development

environment.

What should you do?

Connect Live Metrics Stream from Application Insights to the Azure Function app and filter the metrics.

Create a new Azure Log Analytics workspace and instrument the Azure Function app with Application Insights.

Update the Azure Function app with extension methods from Microsoft.Extensions.Logging to log events by using the log instance.

Add a new diagnostic setting to the Azure Function app to send logs to Log Analytics.

33. HOTSPOT

You need to configure the integration for Azure Service Bus and Azure Event Grid.

How should you complete the CLI statement? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

34. HOTSPOT

You need to retrieve the database connection string.

Which values should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

35. Topic 4, Proseware, Inc

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

Background

You are a developer for Proseware, Inc. You are developing an application that applies a set of governance policies for Proseware’s internal services, external services, and applications. The application will also provide a shared library for common functionality.

Requirements

Policy service

You develop and deploy a stateful ASP.NET Core 2.1 web application named Policy service to an Azure App Service Web App. The application reacts to events from Azure Event Grid and performs policy actions based on those events.

The application must include the Event Grid Event ID field in all Application Insights telemetry.

Policy service must use Application Insights to automatically scale with the number of policy actions that it is performing.

Policies

Log policy

All Azure App Service Web Apps must write logs to Azure Blob storage. All log files should be saved to a container named logdrop. Logs must remain in the container for 15 days.

Authentication events

Authentication events are used to monitor users signing in and signing out. All authentication events must be processed by Policy service. Sign outs must be processed as quickly as possible.

PolicyLib

You have a shared library named PolicyLib that contains functionality common to all ASP.NET Core web services and applications.

The PolicyLib library must:

✑ Exclude non-user actions from Application Insights telemetry.

✑ Provide methods that allow a web service to scale itself.

✑ Ensure that scaling actions do not disrupt application usage.

Other

Anomaly detection service

You have an anomaly detection service that analyzes log information for anomalies. It is implemented as an Azure Machine Learning model. The model is deployed as a web service. If an anomaly is detected, an Azure Function that emails administrators is called by using an HTTP WebHook.

Health monitoring

All web applications and services have health monitoring at the /health service endpoint.

Issues

Policy loss

When you deploy Policy service, policies may not be applied if they were in the process of being applied during the deployment.

Performance issue

When under heavy load, the anomaly detection service undergoes slowdowns and rejects connections.

Notification latency

Users report that anomaly detection emails can sometimes arrive several minutes after an anomaly is detected.

App code

EventGridController.cs

Relevant portions of the app files are shown below. Line numbers are included for reference only and include a two-character prefix that denotes the specific file to which they belong.

LoginEvent.cs

Relevant portions of the app files are shown below. Line numbers are included for reference only and include a two-character prefix that denotes the specific file to which they belong.

DRAG DROP

You need to ensure that PolicyLib requirements are met.

How should you complete the code segment? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

36. DRAG DROP

You need to implement telemetry for non-user actions.

How should you complete the Filter class? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

37. DRAG DROP

You need to implement the Log policy.

How should you complete the Azure Event Grid subscription? To answer, drag the appropriate JSON segments to the correct locations. Each JSON segment may be used once, more than once, or not at all. You may need to drag the split bar between panes to view content. NOTE: Each correct selection is worth one point.

38. DRAG DROP

You need to add code at line EG15 in EventGridController.cs to ensure that the Log policy applies to all services.

How should you complete the code? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all.

You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

39. You need to ensure that the solution can meet the scaling requirements for Policy Service.

Which Azure Application Insights data model should you use?

an Application Insights dependency

an Application Insights event

an Application Insights trace

an Application Insights metric

40. HOTSPOT

You need to insert code at line LE03 of LoginEvent.cs to ensure that all authentication events are processed correctly.

How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

41. You need to resolve a notification latency issue.

Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Set Always On to true.

Ensure that the Azure Function is using an App Service plan.

Set Always On to false.

Ensure that the Azure Function is set to use a consumption plan.

42. HOTSPOT

You need to implement the Log policy.

How should you complete the EnsureLogging method in EventGridController.cs? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

43. Topic 5, Litware Inc

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

Background

You are a developer for Litware Inc., a SaaS company that provides a solution for managing employee expenses. The solution consists of an ASP.NET Core Web API project that is deployed as an Azure Web App.

Overall architecture

Employees upload receipts for the system to process. When processing is complete, the employee receives a summary report email that details the processing results. Employees then use a web application to manage their receipts and perform any additional tasks needed for reimbursement.

Receipt processing

Employees may upload receipts in two ways:

✑ Uploading using an Azure Files mounted folder

✑ Uploading using the web application

Data Storage

Receipt and employee information is stored in an Azure SQL database.

Documentation

Employees are provided with a getting started document when they first use the solution. The documentation includes details on supported operating systems for Azure File upload, and instructions on how to configure the mounted folder.

Solution details

Users table

Web Application

You enable MSI for the Web App and configure the Web App to use the security principal name WebAppIdentity.

Processing

Processing is performed by an Azure Function that uses version 2 of the Azure Function runtime. Once processing is completed, results are stored in Azure Blob Storage and an Azure SQL database. Then, an email summary is sent to the user with a link to the processing report. The link to the report must remain valid if the email is forwarded to another user.

Logging

Azure Application Insights is used for telemetry and logging in both the processor and the web application. The processor also has TraceWriter logging enabled. Application Insights must always contain all log messages.

Requirements

Receipt processing

Concurrent processing of a receipt must be prevented.

Disaster recovery

Regional outage must not impact application availability. All DR operations must not be dependent on application running and must ensure that data in the DR region is up to date.

Security

✑ User’s SecurityPin must be stored in such a way that access to the database does not allow the viewing of SecurityPins. The web application is the only system that should have access to SecurityPins.

✑ All certificates and secrets used to secure data must be stored in Azure Key Vault.

✑ You must adhere to the principle of least privilege and provide privileges which are essential to perform the intended function.

✑ All access to Azure Storage and Azure SQL database must use the application’s Managed Service Identity (MSI).

✑ Receipt data must always be encrypted at rest.

✑ All data must be protected in transit.

✑ User’s expense account number must be visible only to logged in users. All other views of the expense account number should include only the last segment, with the remaining parts obscured.

✑ In the case of a security breach, access to all summary reports must be revoked without impacting other parts of the system.

Issues

Upload format issue

Employees occasionally report an issue with uploading a receipt using the web application. They report that when they upload a receipt using the Azure File Share, the receipt does not appear in their profile. When this occurs, they delete the file in the file share and use the web application, which returns a 500 Internal Server error page.

Capacity issue

During busy periods, employees report long delays between the time they upload the receipt and when it appears in the web application.

Log capacity issue

Developers report that the number of log messages in the trace output for the processor is too high, resulting in lost log messages.

Application code

Processing.cs

Database.cs

ReceiptUploader.cs

ConfigureSSE.ps1

You need to resolve the capacity issue.

What should you do?

Convert the trigger on the Azure Function to an Azure Blob storage trigger

Ensure that the consumption plan is configured correctly to allow scaling

Move the Azure Function to a dedicated App Service Plan

Update the loop starting on line PC09 to process items in parallel

44. HOTSPOT

You need to add code at line PC26 of Processing.cs to ensure that security policies are met.

How should you complete the code that you will add at line PC26? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

45. You need to ensure receipt processing occurs correctly.

What should you do?

Use blob properties to prevent concurrency problems

Use blob SnapshotTime to prevent concurrency problems

Use blob metadata to prevent concurrency problems

Use blob leases to prevent concurrency problems

46. You need to resolve the log capacity issue.

What should you do?

Create an Application Insights Telemetry Filter

Change the minimum log level in the host.json file for the function

Implement Application Insights Sampling

Set a LogCategoryFilter during startup

47. DRAG DROP

You need to ensure disaster recovery requirements are met.

What code should you add at line PC16?

To answer, drag the appropriate code fragments to the correct locations. Each code fragment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

48. You need to ensure the security policies are met.

What code do you add at line CS07 of ConfigureSSE.ps1?

CPermissionsToKeys create, encrypt, decrypt

CPermissionsToCertificates create, encrypt, decrypt

CPermissionsToCertificates wrapkey, unwrapkey, get

CPermissionsToKeys wrapkey, unwrapkey, get

49. DRAG DROP

You need to add code at line PC32 in Processing.cs to implement the GetCredentials method in the Processing class.

How should you complete the code? To answer, drag the appropriate code segments to the correct locations. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

50. Topic 6, Coho Winery

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

LabelMaker app

Coho Winery produces, bottles, and distributes a variety of wines globally. You are a developer implementing highly scalable and resilient applications to support online order processing by using Azure solutions.

Coho Winery has a LabelMaker application that prints labels for wine bottles. The application sends data to several printers. The application consists of five modules that run independently on virtual machines (VMs). Coho Winery plans to move the application to Azure and continue to support label creation.

External partners send data to the LabelMaker application to include artwork and text for custom label designs.

Requirements. Data

You identify the following requirements for data management and manipulation:

✑ Order data is stored as nonrelational JSON and must be queried using SQL.

✑ Changes to the Order data must reflect immediately across all partitions. All reads to the Order data must fetch the most recent writes.

Requirements. Security

You have the following security requirements:

✑ Users of Coho Winery applications must be able to provide access to documents, resources, and applications to external partners.

✑ External partners must use their own credentials and authenticate with their organization’s identity management solution.

✑ External partner logins must be audited monthly for application use by a user account administrator to maintain company compliance.

✑ Storage of e-commerce application settings must be maintained in Azure Key Vault.

✑ E-commerce application sign-ins must be secured by using Azure App Service authentication and Azure Active Directory (AAD).

✑ Conditional access policies must be applied at the application level to protect company content.

✑ The LabelMaker application must be secured by using an AAD account that has full access to all namespaces of the Azure Kubernetes Service (AKS) cluster.

Requirements. LabelMaker app

Azure Monitor Container Health must be used to monitor the performance of workloads that are deployed to Kubernetes environments and hosted on Azure Kubernetes Service (AKS).

You must use Azure Container Registry to publish images that support the AKS deployment.

Architecture

Issues

Calls to the Printer API App fail periodically due to printer communication timeouts.

Printer communication timeouts occur after 10 seconds. The label printer must only receive up to 5 attempts within one minute.

The order workflow fails to run upon initial deployment to Azure.

Order.json

Relevant portions of the app files are shown below. Line numbers are included for reference only.

This JSON file contains a representation of the data for an order that includes a single item.

Order.json

HOTSPOT

You need to configure Azure Cosmos DB.

Which settings should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

51. HOTSPOT

You need to retrieve all order line items from Order.json and sort the data alphabetically by the city.

How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

52. DRAG DROP

You need to deploy a new version of the LabelMaker application to ACR.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

53. You need to access data from the user claim object in the e-commerce web app.

What should you do first?

Write custom code to make a Microsoft Graph API call from the e-commerce web app.

Assign the Contributor RBAC role to the e-commerce web app by using the Resource Manager create role assignment AP

Update the e-commerce web app to read the HTTP request header values.

Using the Azure CLI, enable Cross-origin resource sharing (CORS) from the e-commerce checkout API to the e-commerce web app.

54. Topic 7, VanArsdel. Ltd

Background

VanArsdel. Ltd. is a global office supply company. The company fs based in Canada and has retail store locations across the world. The company is developing several cloud-based solutions to support their stores, distributors, suppliers, and delivery services.

Current environment

Requirements

The application components must meet the following requirements:

Corporate website

• Secure the website by using SSL

• Minimize costs tor data storage and hosting.

• Implement native GitHub workflows for continuous integration and continuous deployment (Cl/CO).

• Distribute the website content globally for local use.

• Implement monitoring by using Application Insights and availability web tests including SSL certificate validity and custom header value verification.

• The website must have 99.95 percent uptime.

Corporate website

The company provides a public website located at htlp://www. vanaisdelttd.com. The website consists of a React JavaScript user interface, HTML,CSS, image assets, and several APIs hosted in Azure functions.

Retail store locations

• Azure Functions must process data immediately when data is uploaded to Blob storage. Azure Functions must update Azure Cosmos D3 by using native SQL language queries.

• Audit store sale transaction information nightly to validate data, process sates financials, and reconcile inventory.

Delivery services

• Store service telemetry data in Azure Cosmos DB by using an Azure Function. Data must include an item id. the delivery vehicle license plate, vehicle package capacity, and current vehicle location coordinates.

• Store delivery driver profile information in Azure Active Directory Azure AD) by using an Azure Function called from the corporate website.

Inventory services

The company has contracted a third-party to develop an API for inventory processing that requires access to a specific blob within the retail store storage account for three months to include read-only access to the data.

Security

• All Azure Functions must centralize management and distribution of configuration data for different environments and geographies, encrypted by using a company-provided RSA-HSM key.

• Authentication and authorization must use Azure AD and services must use managed identities where possible.

Retail Store Locations

• You must perform a point-in-time restoration of the retail store location data due to an unexpected and accidental deletion of data.

• Azure Cosmos DB queries from the Azure Function exhibit high Request Unit (RU) usage and contain multiple, complex queries that exhibit high point read latency for large items as the function app is scaling.

You need to secure the Azure Functions to meet the security requirements.

Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Store the RSA-HSM key in Azure Cosmos D

Apery the built-in policies for customer-managed keys and allowed locations.

Create a free tier Azure App Configuration instance with a new Azure AD service principal.

Store the RSA-HSM key in Azure Key Vault with soft-delete and purge-protection features enabled.

Store the RSA-HSM key in Azure Blob storage with an Immutability policy applied to the container.

Create a standard tier Azure App Configuration instance with an assigned Azure AD managed identity.

55. HOTSPOT

YOU need to reliably identify the delivery driver profile information.

How should you configure the system? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point.

56. HOTSPOT

You need to implement the corporate website.

How should you configure the solution?

57. HOTSPOT

You need to implement the delivery service telemetry data

How should you configure the solution? NOTE: Each correct selection is worth one point.

58. You need to secure the Azure Functions to meet the security requirements.

Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

Store the RSA-HSM key in Azure Cosmos D

Apery the built-in policies for customer-managed keys and allowed locations.

Create a free tier Azure App Configuration instance with a new Azure AD service principal.

Store the RSA-HSM key in Azure Key Vault with soft-delete and purge-protection features enabled.

Store the RSA-HSM key in Azure Blob storage with an Immutability policy applied to the container.

Create a standard tier Azure App Configuration instance with an assigned Azure AD managed identity.

59. You need to test the availability of the corporate website.

Which two test types can you use?

Custom testing using the TrackAvailability API method

Standard

URL Ping

Multi-step

60. You need to implement a solution to resolve the retail store location data issue.

Which three Azure Blob features should you enable? Each correct answer presents pan ol the solution.

NOTE Each correct selection is worth one point

Immutability

Snapshots

Versioning

Soft delete

Object replication

Change feed

61. HOTSPOT

You need to implement event routing for retail store location data.

Which configuration should you use?

62. You need to secure the Azure Functions to meet the security requirements.

Which two actions should you perform? Each correct answer presents part of the solution NOTE: Each correct selection is worth one point.

Store the RSA-HSM key in Azure Key Vault with soft-delete and purge-protection features enabled

Store the RSA-HSM key in Azure Blob storage with an immutability policy applied to the container.

Store the RSA-HSM key in Azure Cosmos D

Apply the built-in policies for customer-managed Keys and allowed locations

Create a standard tier Azure App Configuration instance with an assigned Azure AD managed identity.

Create a free tier Azure App Configuration instance with a new Azure AD service principal.

63. HOTSPOT

You need to Implement the retail store location Azure Function.

How should you configure the solution? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

64. You need to audit the retail store sales transactions.

What are two possible ways to achieve the goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Update the retail store location data upload process to include blob index tags. Create an Azure Function to process the blob index tags and filter by store location

Enable blob versioning for the storage account. Use an Azure Function to process a list of the blob versions per day.

Process an Azure Storage blob inventory report by using an Azure Function. Create rule filters on the blob inventory report,

Subscribe to blob storage events by using an Azure Function and Azure Event Grid. Filter the events by store location.

Process the change feed logs of the Azure Blob storage account by using an Azure Function. Specify a time range for the change feed data.

65. you need to reduce read latency for the retail store solution.

What are two possible ways to achieve the goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Create a new composite index for the store location data queries in Azure Cosmos D

Modify the queries to support parameterized SQL and update the Azure function app to call the new Queries.

Configure Azure Cosmos DB consistency to strong consistency Increase the RUs for the container supporting store location data.

Provision an Azure Cosmos OB dedicated gateway, update blob storage to use the new dedicated gateway endpoint.

Configure Azure Cosmos DB consistency to session consistency. Cache session tokens in a new Azure Redis cache instance after every write. Update reads to use the session token stored in Azure Redis.

Provision an Azure Cosmos DB dedicated gateway Update the Azure Function app connection string to use the new dedicated gateway endpoint.

66. Topic 8, Misc. Questions

HOTSPOT

You are implementing a software as a service (SaaS) ASP.NET Core web service that will run as an Azure Web App. The web service will use an on-premises SQL Server database for storage. The web service also includes a WebJob that processes data updates. Four customers will use the web service.

✑ Each instance of the WebJob processes data for a single customer and must run as a singleton instance.

✑ Each deployment must be tested by using deployment slots prior to serving production data.

✑ Azure costs must be minimized.

✑ Azure resources must be located in an isolated network.

You need to configure the App Service plan for the Web App.

How should you configure the App Service plan? To answer, select the appropriate settings in the answer area. NOTE: Each correct selection is worth one point.

67. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution. Determine whether the solution meets the stated goals.

You are developing and deploying several ASP.NET web applications to Azure App Service. You plan to save session state information and HTML output.

You must use a storage mechanism with the following requirements:

✑ Share session state across all ASP.NET web applications.

✑ Support controlled, concurrent access to the same session state data for multiple readers and a single writer.

✑ Save full HTTP responses for concurrent requests.

You need to store the information.

Solution: Enable Application Request Routing (ARR).

Does the solution meet the goal?

Yes

68. DRAG DROP

You are developing an application to securely transfer data between on-premises file systems and Azure Blob storage. The application stores keys, secrets, and certificates in Azure Key Vault. The application uses the Azure Key Vault APIs.

The application must allow recovery of an accidental deletion of the key vault or key vault objects. Key vault objects must be retained for 90 days after deletion.

You need to protect the key vault and key vault objects.

Which Azure Key Vault feature should you use? To answer, drag the appropriate features to the correct actions. Each feature may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

69. HOTSPOT

You are developing an application that uses a premium block blob storage account. You are optimizing costs by automating Azure Blob Storage access tiers.

You apply the following policy rules to the storage account.

You must determine the implications of applying the rules to the data. (Line numbers are included for reference only.)

70. HOTSPOT

You are building a traffic monitoring system that monitors traffic along six highways. The system produces time series analysis-based reports for each highway. Data from traffic sensors are stored in Azure Event Hub.

Traffic data is consumed by four departments. Each department has an Azure Web App that displays the time-series-based reports and contains a WebJob that processes the incoming data from Event Hub. All Web Apps run on App Service Plans with three instances.

Data throughout must be maximized. Latency must be minimized.

You need to implement the Azure Event Hub.

Which settings should you use? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

71. DRAG DROP

You are developing an application to use Azure Blob storage. You have configured Azure Blob storage to include change feeds.

A copy of your storage account must be created in another region. Data must be copied from the current storage account to the new storage account directly between the storage servers.

You need to create a copy of the storage account in another region and copy the data.

In which order should you perform the actions? To answer, move all actions from the list of actions to the answer area and arrange them in the correct order.

72. HOTSPOT

You are developing an Azure Static Web app that contains training materials for a tool company. Each tool's training material is contained In a static web page that Is linked from the tool's publicly available description page.

A user must be authenticated using Azure AD prior to viewing training.

You need to ensure That the user can view training material pages after authentication.

How should you complete the configuration file? To answer, select the appropriate options In the answer area. NOTE: Each correct selection is worth one point.

73. DRAG DROP

You develop and deploy an Azure App Service ---- app. The web app accesses data in an Azure SQL database.

You must update the web app to store frequently used data m a new Azure Cache for Redis Premium instance.

You need to implement the Azure Cache for Redis features.

Which feature should you implement? To answer, drag the appropriate feature to the correct requirements Each feature may be used once, more than once, or not at all You may need to ------------ between panes or scroll to view content. NOTE Each correct selection is worth one point

74. You have an Azure App Services Web App. Azure SQL Database instance. Azure Storage Account and an Azure Redis Cache instance in a resource group.

A developer must be able to publish code to the web app. You must grant the developer the Contribute role to the web app

You need to grant the role.

What two commands can you use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

New-AzureRmRoleAssignment

az role assignment create

az role definition create

New-AzureRmRoleDefinition

75. DRAG DROP

You have a web app named MainApp. You are developing a triggered App Service background task by using the WebJobs SDK. This task automatically invokes a function code whenever any new data is received in a queue.

You need to configure the services.

Which service should you use for each scenario? To answer, drag the appropriate services to the correct scenarios. Each service may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

76. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are developing an Azure solution to collect point-of-sale (POS) device data from 2,000 stores located throughout the world. A single device can produce 2 megabytes (MB) of data every 24 hours. Each store location has one to five devices that send data.

You must store the device data in Azure Blob storage. Device data must be correlated based on a device identifier. Additional stores are expected to open in the future.

You need to implement a solution to receive the device data.

Solution: Provision an Azure Event Grid. Configure event filtering to evaluate the device identifier.

Does the solution meet the goal?

Yes

77. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are developing an Azure Service application that processes queue data when it receives a message from a mobile application. Messages may not be sent to the service consistently.

You have the following requirements:

✑ Queue size must not grow larger than 80 gigabytes (GB).

✑ Use first-in-first-out (FIFO) ordering of messages.

✑ Minimize Azure costs.

You need to implement the messaging solution.

Solution: Use the .Net API to add a message to an Azure Storage Queue from the mobile application. Create an Azure VM that is triggered from Azure Storage Queue events.

Does the solution meet the goal?

Yes

78. You develop and deploy an Azure App Service web app named App1. You create a new Azure Key Vault named Vault 1. You import several API keys, passwords, certificates, and cryptographic keys into Vault1.

You need to grant App1 access to Vault1 and automatically rotate credentials Credentials must not be stored in code.

What should you do?

Enable App Service authentication for Appt. Assign a custom RBAC role to Vault1.

Add a TLS/SSL binding to App1.

Assign a managed identity to App1.

Upload a self-signed client certificate to Vault1. Update App1 to use the client certificate.

79. HOTSPOT

You are implementing a software as a service (SaaS) ASP.NET Core web service that will run as an Azure Web App. The web service will use an on-premises SQL Server database for storage. The web service also includes a WebJob that processes data updates.

Four customers will use the web service.

• Each instance of the WebJob processes data for a single customer and must run as a singleton instance.

• Each deployment must be tested by using deployment slots prior to serving production data.

• Azure costs must be minimized.

• Azure resources must be located in an isolated network.

You need to configure the App Service plan for the Web App.

How should you configure the App Service plan? To answer, select the appropriate settings in the answer area. NOTE: Each correct selection is worth one point.

80. DRAG DROP

You are authoring a set of nested Azure Resource Manager templates to deploy multiple Azure resources.

The templates must be tested before deployment and must follow recommended practices.

You need to validate and test the templates before deployment.

Which tools should you use? To answer, drag the appropriate tools to the correct requirements. Each tool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

Mastering Microsoft DP-500 Exam: The Ultimate DP-500 Dumps to Power BI Skills

Pass the Microsoft Managing Modern Desktops (MD-101) Exam with Confidence: The Latest MD-101 Dumps

Tags:AZ-204, AZ-204 dumps, AZ-204 free demo

New Updated MS-100 Microsoft 365 Identity and Services Exam Dumps

Microsoft Power Platform Solution Architect PL-600 Exam Dumps

Real Microsoft MD-102 Dumps Updated (V12.02 with 282 Q&As) – Practice for Endpoint Administrator Exam Success

About The Author

dumps

From our dumpsbase platform you could search what exams you need then test or practice online by yourself. Download the PDF file if you need directly. Any other questions you can mail [email protected]

Add a Comment

Cancel reply

Your email address will not be published. Required fields are marked *

Comment:*

Name:*

Email Address:*

Latest Free Dumps

Latest Dumps for Dell VxBlock Deploy Certification D-VXB-DY-A-24 Exam – DELL EMC D-VXB-DY-A-24 Exam Dumps (V8.02) April 27, 2024
Splunk SPLK-1004 Dumps with Actual Questions and Answers (2024 V8.02) – Pass Splunk Core Certified Advanced Power User Exam April 27, 2024
Reliable Study Guide for the Microsoft MB-700 Exam Preparation – Choose MB-700 Exam Dumps (V17.03) to Achieve Success April 27, 2024
Effortlessly Complete the HCSA-Presales-IP Network V3.0 Exam with the Most Recent Huawei H19-301_V3.0 Exam Dumps April 26, 2024
Using HPE6-A85 Dumps (V11.03) is Beneficial to Pass Your Aruba Certified Campus Access Associate Exam April 26, 2024
Complete CompTIA Data+ Certification DA0-001 Exam by Using the Most Updated DA0-001 Exam Dumps (V11.02) April 26, 2024
Pegasystems Certified Pega System Architect ‘23 Exam PEGACPSA23V1 Dumps – Great Exam Preparation Materials from DumpsBase April 25, 2024
Get the Most Updated JN0-682 Dumps (V10.02) to Prepare for Your Juniper Data Center, Professional (JNCIP-DC) Exam April 25, 2024
Most Current PCCSE Dumps (V14.02) of DumpsBase – Ideal for Prisma Certified Cloud Security Engineer (PCCSE) Exam Preparation April 25, 2024
Upper-Class HPE7-A03 Dumps [2024 V8.02] – Prepare for Your HPE Aruba Certified Campus Access Architect Exam April 24, 2024

If you are still having confusions about the updated AZ-204 dumps, check the free demo questions below:

Related Posts

About The Author

dumps

Add a Comment