Palo Alto Networks

Free Microsoft AZ-104 Exam Questions (page: 4)

Viewing Page 4 of 69 pages.

Download PDF version with 553 Questions

QUESTION: 17 Exam Topic: Mixed Questions Question Set 1

Your company has an Azure subscription that includes a Recovery Services vault.
You want to use Azure Backup to schedule a backup of your company's virtual machines (VMs) to the Recovery Services vault.
Which of the following VMs can you back up? Choose all that apply.

VMs that run Windows 10.
VMs that run Windows Server 2012 or higher.
VMs that have NOT been shut down.
VMs that run Debian 8.2+.
VMs that have been shut down.

Answer(s): A,B,C,D,E

Explanation:

Azure Backup supports backup of 64-bit Windows server operating system from Windows Server 2008. Azure Backup supports backup of 64-bit Windows 10 operating system.
Azure Backup supports backup of 64-bit Debian operating system from Debian 7.9+. Azure Backup supports backup of VM that are shutdown or offline.

Reference:

https://docs.microsoft.com/en-us/azure/backup/backup-support-matrix-iaas https://docs.microsoft.com/en-us/azure/virtual-machines/linux/endorsed-distros

Show Answer Next Question

QUESTION: 18 Exam Topic: Mixed Questions Question Set 1

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure Active Directory (Azure AD) tenant named contoso.com.
You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users.
Solution: You create a PowerShell script that runs the New-AzureADUser cmdlet for each user. Does this meet the goal?

Yes
No

Answer(s): B

Explanation:

The New-AzureADUser cmdlet creates a user in Azure Active Directory (Azure AD).
Instead use the New-AzureADMSInvitation cmdlet which is used to invite a new external user to your directory. Reference:
https://docs.microsoft.com/en-us/powershell/module/azuread/new-azureadmsinvitation

Show Answer Next Question

QUESTION: 19 Exam Topic: Mixed Questions Question Set 1

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft Entra tenant named contoso.com.
You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users. Solution: From Microsoft Entra ID in the Azure portal, you use the Bulk create user operation. Does this meet the goal?

Yes
No

Answer(s): B

Explanation:

Instead use the New-AzureADMSInvitation cmdlet which is used to invite a new external user to your directory.

Reference:

https://docs.microsoft.com/en-us/powershell/module/azuread/new-azureadmsinvitation

Show Answer Next Question

QUESTION: 20 Exam Topic: Mixed Questions Question Set 1

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure Active Directory (Azure AD) tenant named contoso.com.
You have a CSV file that contains the names and email addresses of 500 external users. You need to create a guest user account in contoso.com for each of the 500 external users.
Solution: You create a PowerShell script that runs the New-AzureADMSInvitation cmdlet for each external user.
Does this meet the goal?

Yes
No

Answer(s): A

Explanation:

Use the New-AzureADMSInvitation cmdlet which is used to invite a new external user to your directory.

Reference:

https://docs.microsoft.com/en-us/powershell/module/azuread/new-azureadmsinvitation

Show Answer Next Question

QUESTION: 21 Exam Topic: Manage Azure identities and governance Question Set 1

HOTSPOT (Drag and Drop is not supported)
You have an Azure subscription named Subscription1 that contains a resource group named RG1. In RG1, you create an internal load balancer named LB1 and a public load balancer named LB2.
You need to ensure that an administrator named Admin1 can manage LB1 and LB2. The solution must follow the principle of least privilege.
Which role should you assign to Admin1 for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

See Explanation section for answer.

Answer(s): A

Explanation:

The Network Contributor role lets you manage networks, but not access them. Reference:
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles

Show Answer Next Question

QUESTION: 22 Exam Topic: Manage Azure identities and governance Question Set 1

You have a Microsoft 365 tenant and a Microsoft Entra tenant named contoso.com.
You plan to grant three users named User1, User2, and User3 access to a temporary Microsoft SharePoint document library named Library1.
You need to create groups for the users. The solution must ensure that the groups are deleted automatically after 180 days.
Which two groups should you create? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

a Microsoft 365 group that uses the Assigned membership type
a Security group that uses the Assigned membership type
a Microsoft 365 group that uses the Dynamic User membership type
a Security group that uses the Dynamic User membership type
a Security group that uses the Dynamic Device membership type

Answer(s): A,C

Explanation:

You can set expiration policy only for Office 365 groups in a Microsoft Entra ID.
Note: With the increase in usage of Office 365 Groups, administrators and users need a way to clean up unused groups. Expiration policies can help remove inactive groups from the system and make things cleaner.
When a group expires, all of its associated services (the mailbox, Planner, SharePoint site, etc.) are also deleted.
You can set up a rule for dynamic membership on security groups or Office 365 groups. Incorrect Answers:
B, D, E: You can set expiration policy only for Office 365 groups in a Microsoft Entra ID.

Reference:

https://docs.microsoft.com/en-us/office365/admin/create-groups/office-365-groups-expiration-policy? view=o365-worldwide

Show Answer Next Question

QUESTION: 23 Exam Topic: Manage Azure identities and governance Question Set 1

You have an Azure policy as shown in the following exhibit:

What is the effect of the policy?

You are prevented from creating Azure SQL servers anywhere in Subscription 1.
You can create Azure SQL servers in ContosoRG1 only.
You are prevented from creating Azure SQL Servers in ContosoRG1 only.
You can create Azure SQL servers in any resource group within Subscription 1.

Answer(s): B

Explanation:

You are prevented from creating Azure SQL servers anywhere in Subscription 1 with the exception of ContosoRG1

Show Answer Next Question

QUESTION: 24 Exam Topic: Manage Azure identities and governance Question Set 1

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft Entra tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev.
You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group. Solution: On Subscription1, you assign the DevTest Labs User role to the Developers group.
Does this meet the goal?

Yes
No

Answer(s): B

Explanation:

DevTest Labs User role only lets you connect, start, restart, and shutdown virtual machines in your Azure DevTest Labs.
The Logic App Contributor role lets you manage logic app, but not access to them. It provides access to view, edit, and update a logic app.

Reference:

https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-securing-a-logic-app

Show Answer Next Question

2
3
4
5
6
…

Viewing page 4 of 69

Post your Comments and Discuss Microsoft AZ-104 exam prep with other Community members:

Comments:

Name:

AZ-104 Exam Discussions & Posts

YNWA97 Commented on October 26, 2025
Excellent resource
Anonymous

YNWA97 Commented on October 26, 2025
Have perused comments and appears trustworthy. Prepping for International.
Anonymous

Tester Jim Commented on October 25, 2025
Testing this is a real comments page
Anonymous

Sunhill Commented on October 17, 2025
Took the test today preparing for it and some of these questions are still on here.
Anonymous

Triveni Commented on October 08, 2025
I started to prepare for AZ-104 exam. This site is good and gives the idea what kind of question will come in the exam.
INDIA

Farook Commented on September 06, 2025
To all the guys preping for this exam I want to share that I passed my exam yesterday. These questions are real and same wording in the exam.
Anonymous

Anonymous Commented on September 05, 2025
Will I pass the exam with this? thanks!
Anonymous

ananymous Commented on September 05, 2025
Is this valid? All questions are in the exam?
Anonymous

Dax Commented on August 14, 2025
Thanks @Raf
Anonymous

Raf Commented on August 14, 2025
Hay @Dax, Yes it is valid. I used these and studied for a bout a week. Mind that the free version contains about 60% of the questions. The full PDF version has all the questions. I ended up paying for the PDF version. Good luck man.
Anonymous

Dax Commented on August 14, 2025
Is this Valid?
Anonymous

13_square Commented on August 05, 2025
Thanks for making education free.
Anonymous

Mantas Commented on August 04, 2025
I started to prepare for AZ-104 exam. I think that questions and answers are good practice for that
LITHUANIA

PM Commented on August 02, 2025
VEry usefull to prepare for the exam
Anonymous

Anne Commented on August 01, 2025
Very useful
Anonymous

pooja Commented on July 31, 2025
I am reading these questions and found them really helpful to understand .
Anonymous

Pooja Commented on July 31, 2025
Very nice set of questions for preparation of AZ-104
Anonymous

yazmeister_93 Commented on July 30, 2025
useful content
UNITED KINGDOM

kavya Commented on July 29, 2025
This is very helpfu;
Anonymous

Greg Commented on July 29, 2025
Just passed my AZ-104 exam and I’m thrilled! I’m Greg from Ireland, and I found the prep questions on this site incredibly helpful. They gave me a solid idea of the exam format and helped reinforce key topics like Azure AD, storage, and networking. While they’re not a replacement for studying the official Microsoft materials, they’re great for practice and building confidence. I used them alongside the Microsoft Learn content and some labs on Azure. If you’re preparing for AZ-104, I’d definitely recommend using this exam questions and answers for review. It made a big difference for me. Best of luck to everyone studying!
Anonymous

Davz Commented on July 29, 2025
Great help to practice
Anonymous

imaz Commented on July 23, 2025
This site is extremely helpful, not only for the AZ-104 exam but also for understanding Azure infrastructure through various scenarios.
UNITED STATES

Azure Site Recovery - VM subnet mapping rules Commented on July 14, 2025
Azure Site Recovery - VM subnet mapping 1. the subnet of same name (if exists) 2. first subnet (alphabetically)
UNITED STATES

To deploy a resourcegroup using template use New-A Commented on June 28, 2025
Page69/Q55 - Correct answer is B
JAPAN

Mukund Surjuse Commented on June 27, 2025
Question50 > Answers in Box1 & Box2 seem incorrect. Box3 is correct. We are allowed to more than one network link to a VNET but auto-registration is not allow. Cross regions multiple network link creation is also allowed.
JAPAN

jeff Commented on June 25, 2025
q55. New-AzResourceGroupDeployment cmdlet To deploy a template, you can use the New-AzResourceGroupDeployment cmdlet12. This command allows you to deploy a saved JSON template at the resource group scope2.
Anonymous

jeff Commented on June 25, 2025
q.108. One! When configuring secure RDP connections to virtual machines using Azure Bastion, the minimum number of Bastion hosts required is one. Virtual network peering can be used together with Azure Bastion, so you don't need to deploy Bastion in each peered VNet2. By default, a virtual network is peered with up to 500 other virtual networks, but you can increase this limit to peer up to 1,000 virtual networks to a single virtual network5.
Anonymous

jeff Commented on June 25, 2025
q108. One When configuring secure RDP connections to virtual machines using Azure Bastion, the minimum number of Bastion hosts required is one. Virtual network peering can be used together with Azure Bastion, so you don't need to deploy Bastion in each peered VNet2. By default, a virtual network is peered with up to 500 other virtual networks, but you can increase this limit to peer up to 1,000 virtual networks to a single virtual network5.
Anonymous

Jeff Commented on June 24, 2025
Q61. In Kubernetes, the max count typically refers to the maximum number of replicas or pods that can be created for a deployment, stateful set, or other workload.and max surge is a parameter used in the context of rolling updates for Deployments or StatefulSets. It defines the maximum number of additional Pods that can be created during an update process, temporarily exceeding the desired number of replicas. This helps ensure high availability during updates by allowing new Pods to start before old ones are terminated.
Anonymous

Borce Commented on June 22, 2025
Just passed this exam. This exam dumps is pretty valid. All questions and answers were in the exam.
UNITED STATES

user Commented on June 22, 2025
very useful one
JAPAN

user Commented on June 22, 2025
are all 606 questions available
JAPAN

user Commented on June 22, 2025
Are these useful
JAPAN

vin Commented on June 20, 2025
useful information
NEW ZEALAND

vin Commented on June 20, 2025
very useful one
NEW ZEALAND

Moe Commented on June 02, 2025
@Jured, I believe the paid version has the complete set of questions in PDF format and comes with a testing software. The answers are I think corrected as well.
Anonymous

Jured Commented on June 02, 2025
Is there diference between payed questions and free
Anonymous

Vishwas Commented on May 30, 2025
nice, some answers are wrong. better to include a feature discussion of questions .
Anonymous

Farhad Commented on May 29, 2025
yes, after trying some other brain dumps, i have to say: nice website :-)
GERMANY

Alex Commented on May 24, 2025
Can I trust to this source?
Anonymous

Piyush Commented on May 23, 2025
Hey! you! yes you! you can do it
CHINA

Khoshal Commented on May 16, 2025
I am happy to report that I passed the AZ-104 exam.
India

Homan Commented on May 15, 2025
@Gct, to be honest with you I did not want to take the chance and fail. Because the free version gives you access to half of the questions. The full version has all of the questions from the Microsoft Question Bank. So it is up to you.
Anonymous

gct Commented on May 15, 2025
Can we pass the exam with free questions ?
INDIA

Sipan Commented on May 12, 2025
Frage 52 Lösung: 1. Backup1 only, 2. Backup1 only
GERMANY

Sipan Commented on May 12, 2025
Frage 52 lautet: Nein Begründung: Bei einem internen Load Balancer (ILB) dürfen die virtuellen Maschinen im Back-End-Pool keine öffentliche IP-Adresse besitzen.
GERMANY

Kosav Commented on May 04, 2025
Just passed this exam. Questions are valid but there are some duplicate ones you need to watch out for.
EUROPEAN UNION

Sipan Commented on April 24, 2025
Frage 45 sollte ist Ja
EUROPEAN UNION

Vingo Commented on April 23, 2025
Q45: Box 1 should be 2, because the question ask the number of public IP address in Azure.
UNITED STATES

Sipan Commented on April 11, 2025
die Frage 108 ist leider falsch, die Lösung lautet 3
EUROPEAN UNION