CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. AZ-140

Free AZ-140 Exam Braindumps (page: 6)

Page 6 of 84
PDF with 330 Questions

You have an Azure subscription that contains 500 users. The users are assigned Microsoft Office 365 E1 licenses.

You deploy an Azure Virtual Desktop solution that contains Windows 10 multi-session hosts and streams a custom remote app named App1.

You need to ensure that the users are licensed to stream App1. The solution must minimize costs.

Which license should you use?

  1. Microsoft 365 E5
  2. Office 365 E3
  3. a Remote Desktop Services (RDS) client access license (CAL)
  4. Windows 10 Enterprise E3

Answer(s): D

Explanation:

App-V client. The App-V client must be enabled on any client device on which apps will be run from the App-V server. These will be the Windows 10/11 Enterprise E3 devices.


Reference:

https://docs.microsoft.com/sv-se/windows/deployment/windows-10-enterprise-e3-overview



DRAG DROP (Drag and Drop is not supported)

You have an Azure subscription that contains a virtual machine named VM1. VM1 runs a customized version of Windows 10 Enterprise.

You generalize the operating system on VM1 and shut down the virtual machine.

You need to deploy additional virtual machines based on an image of VM1 by using the Azure portal.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Create a managed image from a snapshot using PowerShell.
You can create a managed image from a snapshot of a generalized VM by following these steps:

1. Create an image of a VM in the portal, capture a VM in the portal

2. Go to the Azure portal, then search for and select Virtual machines.

3. Select your VM from the list.

4. On the page for the VM, on the upper menu, select Capture.

5. The Create an image page appears.

6. For Resource group, either select Create new and enter a name, or select a resource group to use from the drop-down list. If you want to use an existing gallery, select the resource group for the gallery you want to use.

7. To create the image in a gallery, select Yes, share it to a gallery as an image version.

8. To only create a managed image, select No, capture only a managed image. The VM must have been generalized to create a managed image. The only other required information is a name for the image.

9. If you want to delete the source VM after the image has been created, select Automatically delete this virtual machine after creating the image. This is not recommended.

10. For Gallery details, select the gallery or create a new gallery by selecting Create new. (Step 1)

11. In Operating system state select generalized or specialized. For more information, see Generalized and specialized images.

12. Select an image definition or select create new and provide a name and information for a new Image definition. (Step 2)

13. Enter an image version number. If this is the first version of this image, type 1.0.0. (Step 3)

14. If you want this version to be included when you specify latest for the image version, then leave Exclude from latest unchecked.

15. Select an End of life date. This date can be used to track when older images need to be retired.

16. Under Replication, select a default replica count and then select any additional regions where you would like your image replicated.

17.
When you are done, select Review + create.

18. After validation passes, select Create to create the image.


Reference:

https://docs.microsoft.com/en-us/azure/virtual-machines/capture-image-portal



You have an Azure Virtual Desktop deployment that contains an Azure compute gallery. The Azure compute gallery contains an image definition named Definition1. Definition1 contains the following image versions:

· 1.0.0
· 1.1.0
· 1.2.0

You need to ensure that when a virtual machine is created from the Azure compute gallery, the 1.1.0 image version is used by default.

What should you do?

  1. Select Exclude from latest for image version 1.0.0.
  2. Select Exclude from latest for image version 1.2.0.
  3. Apply a lock to image version 1.1.0.
  4. Apply a tag named default to image version 1.1.0.

Answer(s): B

Explanation:

Updating resources.
Once created, you can make some changes to the gallery resources. These are limited to:
* Azure Compute Gallery:
* Image definition:
* Image version:
Regional replica count
Target regions
Exclude from latest
End of life date
Note: When you specify to use latest when creating a VM, the latest image is chosen based on the highest MajorVersion, then MinorVersion, then Patch.


Reference:

https://docs.microsoft.com/en-us/azure/virtual-machines/shared-image-galleries



HOTSPOT (Drag and Drop is not supported)

You have an Azure Virtual Desktop deployment and two Azure Active Directory groups named Group1 and Group2.

You create two Conditional Access policies named Policy1 and Policy2. Policy1 is assigned to Group1. Policy2 is assigned to Group2. Both policies include Azure Virtual Desktop as a cloud app.

You need to meet the following requirements:

The users in Group1 must be prompted for multi-factor authentication (MFA) when they connect to Azure

Virtual Desktop.
The users in Group2 must reauthenticate every eight hours while they are connected to Azure Virtual

Desktop.

Which settings should you configure in Policy1 and Policy2? To answer, select the appropriate options in the answer area.

Note: Each correct selection is worth one point.

Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Box 1: Access control: Grant
The users in Group1 must be prompted for multi-factor authentication (MFA) when they connect to Azure Virtual Desktop.

Create a Conditional Access policy (see step 15 below).
Here's how to create a Conditional Access policy that requires multi-factor authentication when connecting to Azure Virtual Desktop:

1. Sign in to the Azure portal as a global administrator, security administrator, or Conditional Access administrator.

2. In the search bar, type Azure Active Directory and select the matching service entry.

3. Browse to Security > Conditional Access.

4. Select New policy > Create new policy.

5. Give your policy a name. We recommend that organizations create a meaningful standard for the names of their policies.

6. Under Assignments, select Users or workload entities.

7. Under the Include tab, select Select users and groups and tick Users and groups. On the right, search for and choose the group that contains your Azure Virtual Desktop users as group members.

8. Select Select.

9. Under Assignments, select Cloud apps or actions.

10. Under the Include tab, select Select apps.

11. On the right, select one of the following apps based on which version of Azure Virtual Desktop you're using. If you're using Azure Virtual Desktop (based on Azure Resource Manager), you can configure MFA on two different apps:
* Azure Virtual Desktop (app ID 9cdead84-a844-4324-93f2-b2e6bb768d07), which applies when the user subscribes to a feed and authenticates to the Azure Virtual Desktop Gateway during a connection.
* Microsoft Remote Desktop

If you're using Azure Virtual Desktop (classic), choose these apps:
Windows Virtual Desktop (app ID 5a0aa725-4958-4b0c-80a9-34562e23f3b7) Windows Virtual Desktop Client (app ID fa4345a4-a730-4230-84a8-7d9651b86739), which will let you set policies on the web client.

12. Once you've selected your app, select Select.

13. Under Assignments, select Conditions > Client apps. On the right, for Configure, select Yes, and then select the client apps this policy will apply to

14. Once you've selected the client apps this policy will apply to, select Done.

15. Under Assignments, select Access controls > Grant, select Grant access, Require multi-factor authentication, and then select Select.

16. At the bottom of the page, set Enable policy to On and select Create.

Box 2: Access controls: Session
The users in Group2 must reauthenticate every eight hours while they are connected to Azure Virtual Desktop.

Configure sign-in frequency
To optionally configure the time period before a user is asked to sign-in again:

1. Open the policy you created previously.
2. Under Assignments, select Access controls > Session. On the right, select Sign-in frequency. Set the value for the time period before a user is asked to sign-in again, and then select Select. For example, setting the value to 1 and the unit to Hours, will require multi-factor authentication if a connection is launched over an hour after the last one.
3. At the bottom of the page, under Enable policy select Save.


Reference:

https://learn.microsoft.com/en-us/azure/virtual-desktop/set-up-mfa






Post your Comments and Discuss Microsoft AZ-140 exam with other Community members:

AZ-140 Exam Discussions & Posts