CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. AZ-104

Free AZ-104 Exam Braindumps (page: 48)

Page 47 of 132
PDF with 606 Questions

You have an Azure subscription that contains eight virtual machines and the resources shown in the following table.



You need to configure access for VNET1. The solution must meet the following requirements:

•The virtual machines connected to VNET1 must be able to communicate with the virtual machines connected to VNET2 by using the Microsoft backbone.
•The virtual machines connected to VNET1 must be able to access storage1, storage2, and Azure AD by using the Microsoft backbone.

What is the minimum number of service endpoints you should add to VNET1?

  1. 1
  2. 2
  3. 3
  4. 5

Answer(s): B



You need to configure an Azure web app named contoso.azurewebsites.net to host www.contoso.com. What should you do first?

  1. Create A records named www.contoso.com and asuid.contoso.com.
  2. Create a TXT record named asuid that contains the domain verification ID.
  3. Create a CNAME record named asuid that contains the domain verification ID.
  4. Create a TXT record named www.contoso.com that has a value of contoso.azurewebsites.net.

Answer(s): B



You have an Azure subscription that contains 10 network security groups (NSGs), 10 virtual machines, and a Log Analytics workspace named Workspace1. Each NSG is connected to a virtual machine.

You need to configure an Azure Monitor Network Insights alert that will be triggered when suspicious network traffic is detected.

What should you do first?

  1. Deploy Connection Monitor.
  2. Configure data collection endpoints.
  3. Configure a private link.
  4. Configure NSG flow logs.

Answer(s): D

Explanation:

Azure Monitor Network Insights is structured around these key components of monitoring:

Topology
Network health and metrics
Connectivity
Traffic
Diagnostic Toolkit

Traffic
The Traffic tab provides access to all NSGs configured for NSG flow logs and Traffic Analytics for the selected set of subscriptions, grouped by location. The search functionality provided on this tab enables you to identify the NSGs configured for the searched IP address. You can search for any IP address in your environment. The tiled regional view will display all NSGs along with the NSG flow logs and Traffic Analytics configuration status.

The Alert box on the right side of the page provides a view of all Traffic Analytics workspace-based alerts across all subscriptions. Select the alert counts to go to a detailed alerts page.

Why use Flow Logs?
It is vital to monitor, manage, and know your own network for uncompromised security, compliance, and performance. Knowing your own environment is of paramount importance to protect and optimize it. You often need to know the current state of the network, who is connecting, where they're connecting from, which ports are open to the internet, expected network behavior, irregular network behavior, and sudden rises in traffic.


Reference:

https://learn.microsoft.com/en-us/azure/network-watcher/network-insights-overview



HOTSPOT (Drag and Drop is not supported)
You have an Azure subscription named Sub1 that contains the resources shown in the following table.



Sub1 contains the following alert rule:

•Name: Alert1
•Scope: All resource groups in Sub1
-Include all future resources
•Condition: All administrative operations
•Actions: Action1

Sub1 contains the following alert processing rule:

•Name: Rule1
•Scope: Sub1
•Rule type: Suppress notifications
•Apply the rule: On a specific time
-Start: August 10, 2022
-End: August 13, 2022

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Box 1: Yes
The alert processing rule Rule1 suppresses notifications between August 10. 2022 and August 13. 2022.
However:
Suppression: This action removes all the action groups from the affected fired alerts. So, the fired alerts won't invoke any of their action groups, not even at the end of the maintenance window. Those fired alerts will still be visible when you list your alerts in the portal, Azure Resource Graph, API, or PowerShell

Note: Alert processing rules allow you to apply processing on fired alerts. Alert processing rules are different from alert rules. Alert rules generate new alerts, while alert processing rules modify the fired alerts as they're being fired.

Use case, Suppress notifications during planned maintenance
Many customers set up a planned maintenance time for their resources, either on a one-time basis or on a regular schedule. The planned maintenance might cover a single resource, like a virtual machine, or multiple resources, like all virtual machines in a resource group. So, you might want to stop receiving alert notifications for those resources during the maintenance window.

Box 2: No
The alert action is suppressed.

Box 3: Yes
No suppression.


Reference:

https://learn.microsoft.com/en-us/azure/azure-monitor/alerts/alerts-processing-rules






Post your Comments and Discuss Microsoft AZ-104 exam with other Community members:

AZ-104 Exam Discussions & Posts