Refer to the exhibit. The application follows a containerized microservices architecture that has one container per microservice. The microservices communicate with each other by using REST APIs. The double-headed arrows in the diagram display chains of synchronous HTTP calls needed for a single user request.

Which action ensures the resilience of the application in the scope of a single user request?

Implement retries with exponential backoff during HTTP API calls.
Set up multiple instances of each microservice in active/active mode by using the Orchestrator.
Redesign the application to be separated into these three layers: Presentation, API, and Data.
Create two virtual machines that each host an instance of the application and set up a cluster.

Answer(s): A

Show Answer Next Question

QUESTION: 62

DRAG DROP (Drag and Drop is not supported)
Drag and drop the steps on the left into the order on the right for an end-user to access an OAuth2 protectedresource using the 'Authorization Code Grant' flow.

Select and Place:

See Explanation section for answer.

Answer(s): A

Explanation:

Show Answer Next Question

QUESTION: 63

In the three-legged OAuth2 authorization workflow, which entity grants access to a protected resource?

resource owner
client
resource server
authorization server

Answer(s): A

Reference:

https://developer.orange.com/tech_guide/3-legged-oauth/

Show Answer Next Question

QUESTION: 64

What are two steps in the OAuth2 protocol flow? (Choose two.)

The user is authenticated by the authorization server and granted an access token.
The user’s original credentials are validated by the resource server and authorization is granted.
The user indirectly requests authorization through the authorization server.
The user requests an access token by authentication and authorization grant presentation.
The user requests the protected resource from the resource server using the original credentials.

Answer(s): C,E

Reference:

https://www.digitalocean.com/community/tutorials/an-introduction-to-oauth-2

Show Answer Next Question

Download PDF Next Page

Viewing page 14 of 78
Viewing questions 66 - 70 out of 507 questions

Post your Comments and Discuss Cisco 350-901 exam prep with other Community members:

Comments:

Name:

350-901 Exam Discussions & Posts (Share your experience with others)

Alex on: March 02, 2025
Great material
UNITED KINGDOM

AI Explanation - verified by User6638 on: June 01, 2026
Question 56:
Question 56: The correct answer is B.
Why B is correct:

The root issue is unclear requirements. In Agile, the Product Owner is responsible for the backlog contents and ensuring items are well-defined and ready to build.

backlog refinement (grooming) improves clarity by detailing user stories, acceptance criteria, estimates, and dependencies. This helps the team understand what to build in upcoming iterations and reduces rework.

With clearer backlog items, the team can plan and complete an iteration more reliably.

Why the other options are less effective:

A (adjusting iteration length) doesn’t address the fundamental lack of clarity in requirements.

C (limiting WIP) helps flow but won’t fix unclear requirements.

D (reviewing individual performances) addresses people, not process or requirements.

Practical steps for backlog refinement:

Schedule regular refinement sessions with stakeholders.

Ensure backlog items follow INVEST (Independent, Negotiable, Valuable, Estimable, Small, Testable).

Define clear acceptance criteria and definition of ready for each item.

Riga, Latvia

AI Explanation - verified by User5419 on: June 01, 2026
Question 52:
Question 52 explanation:

Correct answer: B — Containers

Why this makes sense:

- Containers are a lightweight form of virtualization that lets you run multiple workload components isolated from each other on fewer physical servers. This can reduce hardware footprint and recurring costs compared to running full OS instances on separate servers.

How it aligns with the scenario:

- Customer has mixed OSs and wants consolidation with cost/privacy considerations. Containerization can improve density and reuse resources, helping with cost reduction while keeping workloads separated at the application level.

Important caveats:

- OS compatibility: containers share a host OS kernel, so true cross-OS consolidation (Windows, Linux, Unix) on a single container host isn’t straightforward. You’d typically host different OS workloads on separate container hosts or use virtualization for those OS types. - Security/privacy: containers provide isolation but not the same strong isolation as VMs. Proper hardening and security controls are essential.

Why not the other options:

- IaaS: off-prem/cloud raises data privacy concerns and ongoing costs. - Type 2 hypervisor: adds a host OS but is less efficient for consolidation than a bare-metal hypervisor. - VDI: centers on desktops, not server workload consolidation.
São Domingos De Rana, Portugal

AI Explanation - verified by User6921 on: June 01, 2026
Question 1:
Answer: Record Type (option C)
Why: If users see different picklist options based on the “kind” of Opportunity, that behavior is controlled by the record type settings. Each Opportunity record type can have its own subset of values for a given picklist, so selecting a different record type changes which options are available.
What the other choices mean:

Fields and relationships: not used to vary picklist values by record type.

Related lookup filters: limit lookup results, not picklist options.

Picklist value sets: define a shared list of values, but per-record-type visibility is still controlled by the record type settings.

How to configure:

Go to Setup > Object Manager > Opportunity > Record Types.

Choose the relevant record type and edit the picklist field’s values for that record type (add/remove values as needed).

Repeat for other record types if needed.

This is the standard way to present different picklist options for different kinds of opportunities.
Mechanicsburg, United States

AI Explanation - verified by jessicaztto on: June 01, 2026
yes
Great. Here’s a concise walk-through to enable and verify the Find Duplicates button for Leads.
1) Enable Duplicate Management for Lead

Go to Setup > Duplicate Rules > Lead.

If not present, create a new Lead Duplicate Rule and activate it.

2) Create and activate a Matching Rule for Lead

Setup > Matching Rules > Lead > New Rule.

Define matching fields (e.g., Email, Name, Company) and set criteria.

Activate the Matching Rule.

3) Create a corresponding Duplicate Rule (optional, but common)

Setup > Duplicate Rules > Lead > New Rule.

Associate the Lead Matching Rule.

Set behavior (Allow or Block) and any alert actions.

Activate the rule.

4) Check user permissions

Ensure the user has at least Read on Lead. No extra permission is required to see Find Duplicates.

5) Verify on a Lead record

Open a Lead record and look for the Find Duplicates button (Lightning/Classic). Click it to see potential duplicates based on the active Matching Rule.

6) Troubleshooting if the button doesn’t appear

Confirm there is at least one active Lead Matching Rule.

Ensure the user is viewing Lead records and the UI shows Find Duplicates (some pages/layouts may need updating).

If still missing, review page layouts to ensure the related action is visible.

São Paulo, Brazil

AI Explanation - verified by jessicaztto on: June 01, 2026
Question 127:
Here’s a focused explanation of Question 127.

What the scenario requires:

- A manager must approve before the lead is assigned to an external partner. - The external partner must be notified when the lead is assigned to them. - You need automation that enforces approval and then routes/alerts.

Why an approval process is central:

- An Approval Process enforces manager approval. - Final actions in the approval process can re-assign ownership and trigger notifications (email alerts).

Option analysis:

- A) Assignment rule, workflow rule — misses the required approval step. - B) Assignment rule, workflow rule, approval process — covers routing, notification, and approval. - C) Assignment rule, auto-response rule — auto-response is not about routing/approval. - D) Assignment rule, approval process — lacks an explicit workflow/alert path for notification (though notification can be done via final actions in the approval). - E) Assignment rule, workflow rule — misses approval requirement.

Bottom line:

- The bank’s stated answer (A) is likely incorrect because it omits the essential Approval Process. The best choice among these is B, which includes approval, plus routing and notification mechanisms.
If you’d like, I can walk through how to set up an Approval Process with final actions to assign the lead and notify the partner.
São Paulo, Brazil

AI Explanation - verified by jessicaztto on: June 01, 2026
Question 126:
Here’s a focused breakdown of Question 126.

What happens when you merge Accounts:

- You need to modify the master account (so you need Edit on Account). - You delete the non-master (so you need Delete on Account for the records being merged. - Related Opportunities are re-parented to the master account, which requires you to be able to update Opportunity records (so you need Edit on Opportunity). You don’t typically need to delete Opportunities.

Assessing the answer choices:

- A) Edit on Account and Delete on Opportunity — incorrect: you need Delete on Account as well, and you don’t need Delete on Opportunity. - B) Edit and Delete on Account and Read on Opportunity — incorrect: you do need Edit (and Delete) on Account, but the Opportunity side should be Edit (not just Read). - C) Edit and Delete on Account and Edit and Delete on Opportunity — closest to correct: it includes required Edit/Delete on Account, and includes Edit on Opportunity (though Delete on Opportunity isn’t strictly required).

Official key vs. practical reality:

- The provided answer shows B, but based on Salesforce behavior, the critical parts are: you must be able to Edit and Delete on Account, and you must be able to Edit on Opportunity to reassign to the master account. Delete on Opportunity isn’t typically needed.
If you want, I can walk through why the Opportunity permissions are (usually) Edit only, and how the merge operation updates related records.
São Paulo, Brazil

AI Explanation - verified by jessicaztto on: June 01, 2026
Question 125:
Question 125 asks how to handle approvals when the opportunity crosses $500k and the approvers are Chatter users.
Correct: C and D

Enable approval by Email: Allows approvers to approve (or reject) via email, helpful for users who may not log in to Salesforce.

Approval Process by a chatter: Enables approvals to be handled from within Chatter, so Chatter users can participate in the approval without leaving Chatter.

Why not A or B:

Big Deal Alert would notify the manager, but it doesn’t provide an approval mechanism.

Enable Chatter Post Notification just posts a notification in Chatter and doesn’t enable the actual approval action.

In practice, you’d set up an Opportunity Approval Process with entry criteria (Amount = 500,000) and assign the manager as the approver, then enable both email approvals and Chatter-based approvals so the Chatter users can approve conveniently.
São Paulo, Brazil

Filipe Castanheira on: June 01, 2026
This is amazing. Really helps
São Domingos De Rana, Portugal

AI Explanation - verified by jessicaztto on: June 01, 2026
Question 115:
Question 115 asks: Which permissions do you need to manage Milestones and Entitlements?

Correct permissions:

- Manage Entitlements — lets you administer entitlements (including entitlements records and related settings). - Customize Entitlements (often shown as “Customize Entitlements” or “Customize Entitlement”) — lets you customize entitlement processes and milestones.

Why the others are not correct:

- Customize Application and Manage Application are general admin permissions for applications, not specific to entitlements/milestones.
Notes:

The options in the question appear as “Manage Entitlement / Customize Entitlement / Customize Application / Manage Application.” The two entitlement-related permissions are the ones you need. If a provided answer key shows A and C, that mapping is likely incorrect or mislabeled in that source. The safe rule is to pick the two related to entitlements.

São Paulo, Brazil

AI Explanation - verified by User9126 on: June 01, 2026
Question 11:
Question 11 centers on security privileges in Dynamics 365.

The underlined segment (likely “Append access level”) is not accurate for creating new templates.

To add new entitlement templates, the user needs the Create privilege on the Entitlement Template entity, not the Append privilege.

The Append/Append To privileges control linking records, not creating new ones. A user with Append alone could link an existing template to something, but could not create a new template.

The required access level (User, Business Unit, Parent: Child, Organization) should be chosen based on how broadly you want the user to create templates. For organization-wide creation, you’d typically grant at least Organization level for Create.

Key concepts:

Replace the underlined segment with Create privilege on the Entitlement Template entity.

Understand the difference: Create vs Append (linking vs creating).

Karachi, Pakistan

AI Explanation - verified by User9181 on: June 01, 2026
Question 6:
Question 6 asks which two parameters are required when creating a bulk B2B invite in Azure AD.

Correct answers: A and B

- email address: You must specify the recipient’s email so the guest can be invited. - redirection URL: You must provide a redirect URL that controls where the guest lands after accepting the invitation.
Why the others aren’t required:

username: Not set in the bulk invite payload for B2B; guests use their own identity from their home tenant.

shared key/password: There is no password or shared key distributed in the bulk invite flow; guests set or use their own credentials via their home identity.

In short, bulk invites require the recipient’s email and a redirect URL; the remaining fields aren’t part of the required bulk-invite schema.
Navsari, India

AI Explanation - verified by User9181 on: June 01, 2026
Question 4:

Correct answer: C (the Licenses blade in the Azure Active Directory admin center)

Explanation:

You want to remove the E3 licenses from a large set of users with minimal effort. The Licenses blade supports bulk unassignment of a product license from multiple users.

Steps (high level): open the Licenses blade, select the Office 365 Enterprise E3 license, go to its assignments, and remove it for the 2,500 users. The change propagates to those users.

Alternative (also valid in some exam versions):

You can use PowerShell, e.g. the Set-MsolUserLicense cmdlet, to remove the E3 license from users in a scripted/bulk fashion.

Why the others aren’t the best fit:

The Identity Governance blade is for governance/entitlement workflows, not bulk license removal.

The Set-WindowsProductKey cmdlet is unrelated to Microsoft 365 licenses.

The Groups blade is what you used to assign the E5 licenses via groups; removing E3 licenses from users is a separate operation best done via Licenses blade (or Set-MsolUserLicense).

Surat, India

AI Explanation - verified by User9181 on: June 01, 2026
Question 3:
I can’t view the exhibit images, but here’s how to think about One-Time Passcode (OTP) in this scenario.

What OTP is: For Azure AD B2B external collaboration, OTP lets a guest sign in by entering a code sent to their email, instead of needing a home tenant identity.

What determines who gets a passcode: The Collaboration restrictions/External collaboration settings. If a guest domain is allowed, the guest can receive the OTP; if a domain is blocked or not allowed, no passcode is sent.

How to decide for User1, User2, User3: Compare each invited user’s email domain with the list of allowed/blocked domains in the collaboration settings. Only those from allowed domains will be emailed a passcode.

Additional nuance: If a user has already been invited and accepted previously, their access may follow that existing path, but OTP is typically used for new guest sign-ins or when an identity isn’t present in the home tenant.

The provided answer key says User1 only (B). That would mean only User1’s domain is allowed under the given settings.
If you share the specific domains for User1/User2/User3 and the exact Collaboration restrictions, I’ll walk through exactly which users receive the passcode.
Surat, India

AI Explanation - verified by User9181 on: June 01, 2026
Question 2:

Correct answer: A

Explanation:

Directory self-service sign-up is controlled at the tenant level. To stop users from creating new accounts in the contoso.com tenant via self-service sign-up, you disable this tenant-wide setting.

The cmdlet to adjust this is Set-MsolCompanySettings (MSOL module). The other options deal with domain federation or domain properties and won’t disable self-service sign-up.

High-level steps:

- Connect-MsolService - Run something like: Set-MsolCompanySettings -UsersCanSignInToAppsWithTheirAccountsEnabled $false (to disable self-service sign-up) - Verify with Get-MsolCompanySettings

Surat, India

Majeed Khan on: June 01, 2026
Studying for NCS-Core 6.8 and found the site most useful
Riyadh, Saudi Arabia

AI Explanation - verified by dovedoganesyan on: June 01, 2026
Question 51:
Question 51 asks: Which technology extracts detailed information from packets and stores that information in different tables?

Packet Filtering: Inspects only header information; does not extract detailed payload data or use multiple tables.

Stateful Inspection: Maintains per-connection state in a state table (and NAT tables), but this is about connection state rather than extracting deep packet details into multiple tables.

Application Layer Firewall: Can inspect at the application layer, but the phrase “stores that information in different tables” is more characteristic of logging/metadata management than the basic ALF concept.

Next-Generation Firewall: Performs deep packet inspection (DPI) to extract application, user, and content details, and stores various metadata in different data structures/tables for enforcement, reporting, and policy decisions.

The provided answer key marks D (Stateful Inspection), but the description best matches C (Next-Generation Firewall) because DPI and multi-table data extraction are core NGFW capabilities. If you’re studying, note this as a potential discrepancy in the question bank.
If you want, I can walk through why each option fits or doesn’t fit, or apply this reasoning to similar questions.
Moscow, Russia

AI Explanation - verified by User3285 on: June 01, 2026
Question 2:
Answer: C — Dataverse
Explanation:

Power Apps apps hosted in Teams often use Dataverse as their data store. The Dataverse connector in Power BI lets you connect directly to the app’s tables/entities for reporting.

The other options aren’t the right fit here: Teams Personal Analytics is about Teams usage data, not app data; SQL Server would require the app data to live in SQL Server; and Dataflows is for ETL within Power BI, not for connecting to the live Power Apps data source.

Johannesburg, South Africa

Oluwaseyi on: June 01, 2026
material is very helpful
London, United Kingdom

AI Explanation - verified by User8960 on: June 01, 2026
Question 12:

Answer: B. AWS Service Catalog

Why this is correct:

- AWS Service Catalog is designed to manage and govern deployed IT services as standardized products. Teams can provision these approved products (often backed by IaC templates like CloudFormation) in a controlled, compliant way. - It provides governance features such as access control, approvals, and portfolio management, preventing uncontrolled deployments.

Why the other options aren’t a fit:

- AWS Resource Explorer: for discovering resources across accounts, not governing IaC templates. - AWS Organizations: focuses on governance at the account level (SCPs, billing), not IaC template governance. - AWS Systems Manager: handles operational tasks, patching, and automation, not centralized governance of IaC templates.

Tip: In practice, a Service Catalog product often uses a CloudFormation template to deploy the standardized infrastructure, enabling consistent and compliant deployments across teams.

Chennai, India

Riddhi on: June 01, 2026
Questions helps in preparations.
Mumbai Suburban, India

AI Explanation - verified by ivars.soms on: June 01, 2026
Question 43:
I can explain the concept and how to decide, but I can’t see the device table image in Q43. If you paste the table or describe each device’s attributes, I’ll map it to the answer. Here’s how to evaluate Subscription Activation (SA) eligibility.

What SA does: SA lets Windows 11 Enterprise be activated via an Enterprise license (Windows 11 Enterprise E5) without a product key, upgrading from Windows 11 Pro.

Key prerequisites:

- The device must be enrolled in Microsoft Entra (Azure AD joined or Hybrid Azure AD joined). Typically SA requires Azure AD join. - The device or user must have an Enterprise license assigned (Windows 11 Enterprise E5) in the tenant. - The device should be currently running Windows 11 Pro (SA upgrades Pro to Enterprise; already Enterprise doesn’t need SA). - The device must have network access to the activation service and be in the same tenant.

How to apply to the table:

- For each device, check: - Is it Azure AD joined (or Hybrid) to the Entra tenant? - Is an Enterprise E5 license assigned to the user or device? - Is the current edition Windows 11 Pro (not already Enterprise)? - The devices meeting all three are eligible for SA.
If you share the specifics for Device1–Device4 (join type, current edition, and license status), I’ll identify exactly which ones qualify and confirm if A (Device1 only) is correct.
Tallinn, Estonia

AI Explanation - verified by User1067 on: May 31, 2026
Question 32:
Question 32 asks how to notify an external web service whenever an Opportunity is Won. The two valid approaches are:

A. Use a workflow rule and an outbound message.

When the Opportunity’s stage becomes Won, the workflow rule fires and sends an outbound SOAP message to the external service. This is a classic, straightforward pattern for external notifications.

D. Use Process Builder and Apex code.

Process Builder can detect Won opportunities and invoke an Apex class that performs a callout to the external service (e.g., via REST or SOAP). This is flexible and can handle more complex payloads, retries, and error handling.
Why not B or C:

B (Process Builder with an outbound message) isn’t a standard pattern because outbound messages are a Workflow action, not a native Process Builder action in many setups.

C (Flow with an outbound message) isn’t supported in the typical Flow actions.

In short, A is the classic approach, and D leverages modern automation with a code-based callout.
Hong Kong, Hong Kong

AI Explanation - verified by User1591 on: May 31, 2026
Question 12:
The correct choice is A: Review the scope and project objectives.
Why:

When schedule and cost overruns occur along with client dissatisfaction about scope progress, the first step is to verify what the project is actually supposed to deliver. This helps determine whether the issue comes from scope changes/ambiguity (scope creep) or from execution.

By reassessing the scope, objectives, and baselines (scope statement, WBS, etc.), the PM can identify root causes, confirm what remains in scope, and decide whether a change is needed.

This set-up is essential before taking any corrective actions (penalties, cost cuts, or scope completion negotiations). Acting without this understanding can misaddress the real problem and create further issues.

This approach aligns with PMI principles in Monitoring and Controlling: verify scope, assess variances, and prepare a proper change/control plan before implementing remedies or negotiating with stakeholders.

After reviewing scope and objectives, the PM can then determine appropriate subsequent actions with the client (re-baseline, change control, or corrective actions).
Jeddah, Saudi Arabia

AI Explanation - verified by User7475 on: May 31, 2026
Question 1:

Correct answer: B (Partial Dependence Plots, PDPs)

Why PDPs fit transparency and explainability:

- They show how a feature (or pair of features) influences the model’s predictions. - They provide an intuitive visual way for stakeholders to see the relationship between inputs and outputs. - They summarize the model’s behavior across the data distribution, aiding understanding of which features matter and how.

Why not the other options:

- Code for model training: technical and does not explain predictions. - Sample data for training: relates to data, not model explainability. - Model convergence tables: show training progress, not how features influence outcomes.

Quick usage note:

- Use PDPs for key forecasting features (e.g., seasonality, lagged demand) to illustrate their effect. - Be aware of limitations if features are correlated; consider alternatives like ALE plots for correlated features.
Indore, India

AI Explanation - verified by User4655 on: May 31, 2026
Question 4:
Question 4 asks which metric best measures how many images the plant-disease classifier got correct.

Correct answer: B) Accuracy

Why:

Accuracy = (number of correctly classified images) / (total number of images). This directly assesses classification performance.

Why the others are not appropriate here:

R-squared score: a regression metric, not for class labels.

Root mean squared error (RMSE): also a regression error metric.

Learning rate: a training hyperparameter, not a performance metric.

Note: If classes are highly imbalanced, you might supplement with per-class metrics (e.g., macro-averaged F1) or a confusion matrix for a more nuanced view.
Johannesburg, South Africa

AI Explanation - verified by User9231 on: May 31, 2026
Question 4:
Question 4 asks how to restrict a related list for users who share a profile but have different permission sets. The correct choice is:

Component Visibility

Why: If both teams use the same profile, you can’t differentiate access with profile-based rules or page layouts. Use Lightning App Builder to configure the Lightning record page, select the Custom Object Retention related list, and set its visibility so it only shows for users who have the specific permission set assigned to the client services team. This makes the related list appear only for those users.
Why the other options aren’t suitable:

Sharing settings: Controls data access at the record level, not UI per-user visibility.

Page Layout Assignment: Page layouts are assigned by profile/record type, not by permission sets, so this wouldn’t distinguish users with the same profile.

Record Type Assignment: Not related to visibility of a related list on the record page.

Bengaluru, India

AI Explanation - verified by User9231 on: May 31, 2026
Question 1:

Correct answer: C) Record Type

Why: If users see different picklist options “based on the kind of opportunity,” that means the options are scoped per opportunity type. In Salesforce, you control which picklist values appear for a given object by using Record Types. You edit the available picklist values for each record type so differentOpportunity kinds show different options.

Why not the others:

- Fields and Relationships: defines the field itself, but doesn’t segment values by record type. - Related Lookup Filters: filter lookups, not picklist options. - Picklist Value Sets: share a common set across fields/objects; doesn’t provide per-record-type differentiation.

Quick steps (high level):

- Setup ? Object Manager ? Opportunity ? Record Types ? choose a record type ? edit the picklist values available for that type. This assigns specific values per record type.
Bengaluru, India

AI Explanation - verified by User1861 on: May 30, 2026
Question 13:
Answer: C — Maintain a central repository of artifacts with a version control system.
Why:

A distributed team needs a single source of truth. A central repository ensures everyone accesses the same latest versions of documents and schedules.

Version control tracks changes: who updated what, when, and why. This creates an audit trail and helps manage scope/requirements changes.

This approach improves traceability and coordination, reducing confusion from multiple emailed reports and separate copies.

Other options are weaker:

Training on version control is useful but doesn’t by itself solve the tracking and synchronization problem.

Region-based separate document control fragments information and creates further discrepancies.

Developing new document management software is unnecessary overhead for this issue.

Practical tip: implement a CM system or shared repository with clear conventions (naming, versioning, baselines) and require change/approval processes to be reflected in the repository.
Kuala Lumpur, Malaysia

AI Explanation - verified by User8375 on: May 30, 2026
Question 23:
Question 23 asks which pillar of the AWS Well-Architected Framework matches the goal of protecting information, systems, and assets while performing risk assessment and mitigation tasks.

Correct answer: B — Security.

Why: The Security pillar focuses on protecting data, systems, and assets through governance, risk management, access control, data protection, and incident response. Performing risk assessment and mitigation is a core security activity to maintain a strong security posture.

How it differs from other pillars:

- Reliability: focuses on availability and fault tolerance. - Operational Excellence: focuses on running and evolving workloads effectively. - Performance Efficiency: focuses on using resources efficiently. - Cost Optimization: focuses on limiting costs while delivering value.
Practical security controls you’d associate with this pillar include identity and access management (IAM), data encryption (at rest and in transit), key management (KMS), network protections (security groups, NACLs), monitoring and logging (CloudTrail, GuardDuty, Security Hub), and an incident response plan. If you want, I can walk through how to map specific risk tasks to security controls.
Montreal, Canada

AI Explanation - verified by User6131 on: May 30, 2026
Question 1:
The correct answer is A.

Why: Role prompting means explicitly stating your role or persona in the prompt (e.g., “As a senior software engineer,” “As a technical writer”). This guides Copilot to tailor its suggestions to that role’s expertise and perspective, making the output more relevant.

What the other options describe:

- “Tell Copilot in what tone of voice it should respond” -> tone prompting, not role prompting. - “Prompt Copilot to explain what was the role of a suggestion” -> not a standard prompting technique. - “Giving Copilot multiple examples of the form of the data you want to use” -> exemplar or few-shot prompting, not role prompting.

Quick example: “As a senior software engineer, refactor this function for readability and performance.” This sets the role and guides Copilot to align its output with senior-level expectations.

Kolkata, India

AI Explanation - verified by User1181 on: May 30, 2026
Question 32:

The stated answer for question 32 is B: Refer to the requirements traceability matrix and analyze the requirement.

Why B is the best first step:

When a requirement isn’t met, you should first determine exactly which requirement is affected and how it’s traced to the project scope, design, and tests. The requirements traceability matrix (RTM) helps you verify that the requirement exists in the baseline and shows its status, acceptance criteria, and where it’s implemented.

This step helps you understand the gap and impact before proposing a solution or changing scope.

Why not the other options as the first step:

A (Discuss and agree with the customer to implement the missing requirement) is a negotiation after you’ve analyzed the gap and impact; jumping straight to agreement can sidestep proper change control and traceability.

C (Consult the scope management plan with the customer to understand the gap) is less directly useful for diagnosing which requirement is missing; RTM is the primary tool for tracing requirements.

D (Analyze the benefits management plan) focuses on business value, not the immediate technical/scope gap causing the dissatisfaction.

In short: Use RTM to identify and analyze the missing requirement and its impact, then decide on the appropriate change through the formal change-control process.
Riga, Latvia

AI Explanation - verified by User5515 on: May 30, 2026
Question 8:
The correct answer is C: Call for an internal meeting to discuss the changes and their value.
Why:

In Scrum, the Product Owner owns the backlog and decides priorities. Changes should be evaluated for value before re-prioritization.

A meeting with the Product Owner and the team helps clarify the value of the requested features and their impact on sprint goals, reducing repeated mid-sprint changes that frustrate the team.

A) and B) misstate backlog ownership or omit proper value discussion; backlog prioritization is the PO’s role (with team input during refinement), not solely the team’s.

D) Incorporating changes in the last sprint would disrupt commitments and likely fail to meet the sprint goal or release criteria.

Takeaway:

Use value-focused discussion first (often through backlog refinement or a dedicated discussion with the PO and team) before adjusting priorities or scope. This preserves sprint stability while ensuring value-driven choices.

Kuala Lumpur, Malaysia

AI Explanation - verified by User5515 on: May 30, 2026
Question 5:
The best answer is C: A hybrid approach will allow for management of the requirement uncertainties as well as the date restriction.
Why:

A hybrid approach blends predictive and agile methods, suiting situations where some requirements are uncertain while there is a fixed deadline.

It enables starting work now (for the portion that’s better defined or deliverable) and iteratively refining unclear requirements, so you can still meet the regulatory date.

Why not the others:

A: It mentions starting immediately and planning definitions, but it doesn’t explicitly address balancing uncertainty with a fixed date.

B: Focuses on revising product specifications alone, not on managing schedule constraints.

D: Implies you can eliminate uncertainties, which isn’t realistic; hybrids manage uncertainty, not eliminate it.

Key concept: use a hybrid approach to balance requirement uncertainty with a firm delivery date by planning upfront where possible and iterating on unclear areas.
Kuala Lumpur, Malaysia

AI Explanation - verified by User5515 on: May 30, 2026
Question 2:
The best answer is D: Empowered the team to improve their processes, tools, and interactions to be more effective in delivery and removing impediments.
Why:

In agile, leaders should support self-organizing, cross-functional teams and focus on removing impediments. Empowering the team to continuously improve processes, tools, and collaboration helps address root causes of delays and improves quality, not just speed.

The scenario shows a shift to fast-tracking features, which can degrade quality. Empowerment promotes sustainable delivery and better problem-solving within the team.

Why the other options are weaker:

A: Creating an impediment log is useful, but it’s a follow-up step; it doesn’t address the underlying need to improve team performance and remove blockers.

B: Directing teams to possible solutions is still top-down and may stifle team autonomy.

C: Adding impediments to the backlog defers fixes to future sprints and can worsen delay/quality issues.

Key concept: empower the team, support continuous improvement, and remove impediments to enable effective delivery.
Kuala Lumpur, Malaysia

AI Explanation - verified by User4183 on: May 30, 2026
Question 67:

Yes, this meets the goal.

Why:

You have Defender for Endpoint EDR enabled in Block mode, while Defender Antivirus is in passive mode. In this configuration, EDR provides a proactive, second-layer defense that can block and remediate malicious activity at the endpoint even if the primary antivirus is not actively scanning.

This means threats that slip past the third-party antivirus can still be blocked by EDR, addressing the requirement to protect against artifacts undetected by the third-party AV.

If EDR were only in Monitor/audit mode, it would detect but not block, which wouldn’t meet the goal.

Kochi, India

AI Explanation - verified by User8147 on: May 30, 2026
Question 12:
Answer: Box 1 = Install the Windows Assessment and Deployment Kit (Windows ADK); Box 2 = Windows 11 image and task sequence, plus the deployment share and a reference image.
Why this is correct:

MDT needs prerequisites installed on the server. The MDT guide requires the Windows ADK, plus supporting components like PowerShell (v5.1 recommended) and the .NET Framework.

To deploy Windows 11 with MDT, you import a Windows 11 image into MDT and create a Task Sequence that defines how to install the OS and apps.

The MDT deployment share is the repository that holds the OS images, applications, and task sequences. A reference image (the base Windows 11 image) is used as the starting point for deployments.

What to configure on Server1:

Install: Windows ADK (for Windows 10 in this scenario), plus PowerShell 5.1 and the .NET Framework.

MDT setup: Create a deployment share, import the Windows 11 image, and create a Task Sequence to perform the deployment.

Ensure a reference image is added to the deployment share to serve as the base image for Windows 11 deployments.

Kochi, India

AI Explanation - verified by User8147 on: May 30, 2026
Question 5:

Correct answer: A (User4 and User1 only)

Why:

- Autopilot enrollment uses MDM enrollment, which is controlled by the MDM user scope. In this scenario, the MDM user scope is GroupA. - Only users who are members of GroupA can enroll devices via Intune/Autopilot. User4 and User1 are in GroupA, so they can enroll Device6. - User2 is in GroupB (MAM scope) and cannot enroll via Autopilot; User3 isn’t in the MDM scope either.

Quick verification:

- Check Intune admin center: Automatic Enrollment > MDM user scope includes the group containing the enrolling user.

Key concept:

- Distinguish between MDM user scope (for Autopilot enrollments) and MAM user scope (for app-only management). Autopilot enrollment requires membership in the MDM scope.
Kochi, India

AI Explanation - verified by User3103 on: May 30, 2026
Question 47:
Answer: A
Why:

Use a managed instance group (MIG) with an instance template to achieve HA for 10 instances.

Set Automatic Restart to ON so a VM restarts if it crashes.

Set On-host maintenance to Migrate VM so maintenance events don’t terminate the VM.

Add the template to the instance group to create and manage the 10 VMs.

What to do (summary):

Create an instance template with: Automatic Restart = ON, On-host maintenance = Migrate VM.

Create a managed instance group from that template and specify 10 instances (preferably across zones for true HA).

Optionally, enable Autohealing with an HTTP(S) health check to automatically recreate unhealthy instances.

Paltan, Bangladesh

AI Explanation - verified by pantsrishti on: May 30, 2026
Question 62:
Here’s a targeted explanation for Question 62.

Correct answer: D. Split the visuals onto multiple pages.

Why this is the best choice:

The page contains 25 visuals (15 AppSource + 10 default). Rendering and interacting with many visuals on a single page increases load time and interaction latency, especially in shared capacity.

Splitting visuals across multiple pages reduces the number of visuals that render on any given page, improving initial load times and responsiveness during interaction.

Why the other options aren’t as effective:

A) Changing DAX measures to use iterator functions is not a guaranteed performance win and can even slow calculations; it doesn’t address rendering many visuals.

B) Enabling visual interactions adds more cross-visual filtering work, which can hurt performance rather than help.

C) Replacing default visuals with AppSource visuals can sometimes slow things down; there’s no guarantee of speed improvement and isn’t a reliable fix for this scenario.

So, distributing visuals across multiple pages directly targets the root cause—too many visuals on one page impacting performance.
Pune, India

AI Explanation - verified by kiran21894 on: May 30, 2026
Question 7:
Question 7 asks how to pass data into a process from other parts of an Appian app. Here’s the core idea:

Correct answer: Create process variables on the Data Management tab of Process Model Properties (Option B).

Why this is correct:

Process variables (PVs) are the standard mechanism for passing data into a running process. They act as inputs/outputs for the process.

PVs are defined and configured on the Data Management tab in the process model properties. This is where you specify their type, default values, and how they’re bound to data from other parts of the app.

The other options are not the primary configuration requirement:

- Toggling a Parameter field on a process variable is not a typical or required step in Appian for data input. - Adding an interface as a Process Start Form is about collecting data at the moment the process starts from a user, but it’s not the fundamental mechanism needed to enable data passing from other app parts. PVs are still the underlying mechanism you bind data to.
Bengaluru, India

AI Explanation - verified by User1244 on: May 30, 2026
Question 46:
Question 46 asks how to simplify giving User1 access to the same Azure SQL data source.

Correct answer: PBIDS (Power BI data source connection file).

Why:

A PBIDS file stores the connection details (server, database, authentication settings) so another user can quickly connect to the same data source without re-entering info.

It does not contain the data itself (unlike PBIX) and is not a template (unlike PBIT) or a workbook (XLSX).

This file type is specifically designed to streamline setup for multiple users connecting to the same source.

Anonymous

AI Explanation - verified by User8144 on: May 30, 2026
Question 42:
Here’s the correct order and why.

Step 1: AppEvents

Step 2: | where Name startswith "Clicked Create New Ticket"

Step 3: | summarize NumberOfClicks = count() by User, Day = bin(TimeGenerated, 1d)

Step 4: | where NumberOfClicks >= 3

Step 5: | top 10 by NumberOfClicks desc

Why:

You must first filter to the relevant events (Step 2).

Then compute daily counts per user (Step 3). You can’t filter on NumberOfClicks before it exists.

Filter out days/users with fewer than 3 clicks (Step 4).

Finally, pick the top 10 results by the daily click count (Step 5).

Note: If you instead needed the top 10 users across all days (not per day), you’d aggregate by User after Step 3 (e.g., sum(NumberOfClicks) by User) and then Top 10 by that total.
Chennai, India

AI Explanation - verified by User8283 on: May 29, 2026
Question 70:
I can’t see the image in Question 70, so I don’t know the exact Yes/No statements. Please paste the statements (or describe them) and I’ll explain each one.
In the meantime, here’s a quick refresher to help you reason about SaaS, PaaS, and IaaS:

SaaS: the provider manages almost everything — infrastructure, OS, middleware, app runtime, and the app itself. You typically manage only data and users.

PaaS: the provider manages the OS, runtime, middleware, and development tools. You manage your application and its data.

IaaS: the provider manages hardware, virtualization, and networking. You manage the OS, middleware, runtime, and apps.

How to evaluate statements (general guidance):

“You manage the operating system” ? more likely true for IaaS; false for PaaS/PaaS and SaaS.

“The provider handles patching the OS” ? true for PaaS/SaaS; false for IaaS (where you patch the OS).

“You manage your application code” ? true for IaaS/PaaS; usually false for SaaS.

“The provider handles the entire software stack” ? true for SaaS; false for the others.

If you share the exact statements for Q70, I’ll walk through each one and tell you why it’s Yes or No, and whether the given answer (A) matches the correct reasoning.
Bhopal, India

AI Explanation - verified by s.subhasmita.jena on: May 29, 2026
Question 166:
Question 166 explanation:

Correct answer: C. Amazon QuickSight

Why:

Amazon QuickSight is AWS’s managed business intelligence service that lets you build interactive dashboards and reports.

It includes built-in machine learning insights, such as anomaly detection and forecasting, directly inside dashboards.

The other options serve different purposes:

- Amazon Athena is a serverless query service for data in S3. - Amazon Kendra is an enterprise search service. - Amazon Redshift is a data warehousing service.
So QuickSight is the service that combines interactive BI dashboards with ML-driven insights.
Bhubaneswar, India

AI Explanation - verified by s.subhasmita.jena on: May 29, 2026
Question 151:

Correct answer: AWS Snowmobile

Why: The question asks for migrating a very large amount of data (50 petabytes) with the least operational overhead. Snowmobile is a physical data transport service that can move massive datasets (up to ~100 PB per shipment) in a single operation, with AWS handling the transfer logistics. This minimizes ongoing management compared with multiple devices or complex network transfers.

Why the other options are less suitable:

- AWS Snowball Edge: Each device handles up to ~50 TB, which would require many devices and more manual orchestration. - AWS Data Exchange: Designed for sharing data between parties, not for bulk on-prem to AWS migration. - AWS Database Migration Service (DMS): For migrating databases, not generic file storage data.
In short, Snowmobile offers the lowest ongoing operational overhead for a 50 PB file migration.
Bhubaneswar, India

AI Explanation - verified by User7980 on: May 29, 2026
Question 127:
The correct answer is Operations (B).
Why:

The AWS CAF has six perspectives: Business, People, Governance, Platform, Security, and Operations.

The Operations perspective covers the day-to-day management of cloud workloads, including capabilities like configuration management and patch management, change control, runbooks, monitoring, and incident response.

The other perspectives focus on different areas: Governance on policy/risk, Security on security controls, Platform on the cloud foundation and platform services, and Business/People on equivalents of business outcomes and skills.

If you want, I can walk through how each perspective maps to other common exam questions.
Bhubaneswar, India

AI Explanation - verified by poonam.lavania on: May 29, 2026
Question 173:
Question 173 deals with loading a 3 GB JSON file that is a concatenation of multiple JSON documents. The COPY INTO command used was: COPY INTO SAMPLE FROM @~/SAMPLE.JSON (TYPE=JSON). It failed with “Max LOB size (16777216) exceeded, actual size of parsed column is 17894470.”
Key idea:

When loading JSON with TYPE=JSON, Snowflake treats the input as a single JSON document unless told otherwise. If the input is a JSON array (outer array) containing many documents, Snowflake may try to parse the entire array as one document, which can exceed the 16 MB LOB limit.

Correct resolution:

Use STRIP_OUTER_ARRAY=TRUE to treat each element of the outer JSON array as a separate row, rather than parsing the entire array as one document. So the command becomes:

- COPY INTO SAMPLE FROM @~/SAMPLE.JSON (TYPE=JSON, STRIP_OUTER_ARRAY=TRUE)
Why the other options are less appropriate:

Compressing or splitting the file doesn’t address the root issue of a single large parsed document.

A larger warehouse won’t fix the 16 MB per JSON document limit.

In short: the fix is to add STRIP_OUTER_ARRAY=TRUE to correctly parse multiple documents within the JSON array.
New Delhi, India

AI Explanation - verified by User1064 on: May 29, 2026
Question 20:
No—the third mapping is not correct.
Correct mappings:

Box 1: Lead time — How long it takes to close a work item

Box 2: Velocity — The number of completed backlog items

Box 3: MTTR (Mean Time To Recovery) — How long it takes to restore failed services

Why:

Lead time is from item creation to completion, so it fits “close a work item.”

Velocity is the count (or points) of items completed in a sprint, matching “completed backlog items.”

Cycle time measures how long a work item takes to complete once work starts; it’s not the proper measure for outage recovery. MTTR is the standard metric for recovery time after a failure.

If you’re implementing this in Azure DevOps, look for a MTTR metric or a custom chart to track recovery time in addition to lead time and velocity. I can walk through setting this up on a dashboard if you’d like.
Chennai, India

AI Explanation - verified by User7980 on: May 29, 2026
Question 74:
Answer: C
Explanation:

Amazon EBS encryption uses keys from AWS Key Management Service (KMS). When you enable encryption on an EBS volume, data at rest is encrypted with a data key that is itself protected by a KMS Customer Master Key (CMK), either AWS-managed or customer-managed.

The other services aren’t used for EBS encryption:

- AWS Certificate Manager (ACM) manages TLS certificates for securing network traffic. - AWS Systems Manager is for operational tasks like patching and inventory. - AWS Config records configurations and changes, not encryption keys.
So encryption of EBS is provided via KMS.
Bhubaneswar, India

AI Explanation - verified by User7980 on: May 29, 2026
Question 67:

Correct answer: B. Spot Instances

Explanation:

Spot Instances use spare EC2 capacity and are priced much lower than On-Demand. They are ideal for flexible, compute-heavy workloads that don’t need to run at specific times.

The trade-off: Spot can be interrupted when AWS needs the capacity, with a short two-minute warning. This is acceptable for ML training if you can checkpoint work and resume later.

On-Demand is more expensive and better for steady, uninterruptible workloads.

Reserved Instances offer discounts for long terms (1–3 years) but require a commitment and are not as low-cost as Spot for flexible, non-time-bound workloads.

Dedicated Instances are more expensive and don’t provide spare-capacity pricing benefits.

Practical tip: use Spot with a fallback (e.g., mixed instances or On-Demand as fallback) and implement checkpointing to minimize disruption.

Bhubaneswar, India

AI Tutor 👋 I’m here to help!

Cisco 350-901 Exam Questions Developing Applications using Cisco Core Platforms and APIs (DEVCOR) (Page 14 )

QUESTION: 60

QUESTION: 61

QUESTION: 62

Explanation:

QUESTION: 63

Reference:

QUESTION: 64

Reference:

350-901 Exam Discussions & Posts (Share your experience with others)

Cisco 350-901 Exam Questions
Developing Applications using Cisco Core Platforms and APIs (DEVCOR) (Page 14 )