CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. AZ-305

Free AZ-305 Exam Braindumps (page: 14)

Page 14 of 67
PDF with 267 Questions

Your company has the divisions shown in the following table.


Sub1 contains an Azure App Service web app named App1. App1 uses Azure AD for single-tenant user authentication. Users from contoso.com can authenticate to App1.

You need to recommend a solution to enable users in the fabrikam.com tenant to authenticate to App1.

What should you recommend?

  1. Configure the Azure AD provisioning service.
  2. Enable Azure AD pass-through authentication and update the sign-in endpoint.
  3. Configure Supported account types in the application registration and update the sign-in endpoint.
  4. Configure Azure AD join.

Answer(s): C

Explanation:

Identity and account types for single- and multi-tenant apps
You, as a developer, can choose if your app allows only users from your Azure Active Directory (Azure AD) tenant, any Azure AD tenant, or users with personal Microsoft accounts. You can configure your app to be either single tenant or multitenant during app registration in Azure.

Note: A required part of application registration in Azure AD is your selection of supported account types. While IT Pros in administrator roles decide who can consent to apps in their tenant, you, as a developer, specify who can use your app based on account type. When a tenant doesn't allow you to register your application in Azure AD, administrators will provide you with a way to communicate those details to them through another mechanism.

You'll choose from the following supported account type options when registering your application.

Accounts in this organizational directory only (O365 only - Single tenant)
Accounts in any organizational directory (Any Azure AD directory - Multitenant)
Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)
Personal Microsoft accounts only


Reference:

https://learn.microsoft.com/en-us/security/zero-trust/develop/identity-supported-account-types



HOTSPOT (Drag and Drop is not supported)
You have an Azure AD tenant that contains a management group named MG1.

You have the Azure subscriptions shown in the following table.


The subscriptions contain the resource groups shown in the following table.


The subscription contains the Azure AD security groups shown in the following table.


The subscription contains the user accounts shown in the following table.


You perform the following actions:

-Assign User3 the Contributor role for Sub1.
-Assign Group1 the Virtual Machine Contributor role for MG1.
-Assign Group3 the Contributor role for the Tenant Root Group.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Box 1: Yes
User1 is member of Group1.
Group1 is assigned the Virtual Machine Contributor role for MG1.
MG1 is in Sub1.
RG1 is in Sub1.

Virtual Machine Contributor
Create and manage virtual machines, manage disks, install and run software, reset password of the root user of the virtual machine using VM extensions, and manage local user accounts using VM extensions. This role does not grant you management access to the virtual network or storage account the virtual machines are connected to. This role does not allow you to assign roles in Azure RBAC.

Management groups are containers that help you manage access, policy, and compliance across multiple subscriptions. Create these containers to build an effective and efficient hierarchy that can be used with Azure Policy and Azure Role Based Access Controls.

If your organization has many subscriptions, you may need a way to efficiently manage access, policies, and compliance for those subscriptions. Azure management groups provide a level of scope above subscriptions. You organize subscriptions into containers called "management groups" and apply your governance conditions to the management groups. All subscriptions within a management group automatically inherit the conditions applied to the management group.

Box 2: No
User2 is a member of Group2.
User2 has no special permissions to Group2.

Box 3: Yes
User3 is a member of Group3.
Group3 is assigned the Contributor role for the Tenant Root Group.
As a member of the Tenant Root Group User3 can create storage accounts in RG2.

Note: Each Azure AD tenant is given a single top-level management group called the root management group. This root management group is built into the hierarchy to have all management groups and subscriptions fold up to it. This group allows global policies and Azure role assignments to be applied at the directory level.


Reference:

https://learn.microsoft.com/en-us/azure/role-based-access-control/built-in-roles
https://learn.microsoft.com/en-us/azure/governance/management-groups/manage
https://learn.microsoft.com/en-us/azure/defender-for-cloud/management-groups-roles



Your company has the divisions shown in the following table.


Sub1 contains an Azure App Service web app named App1. App1 uses Azure AD for single-tenant user authentication. Users from contoso.com can authenticate to App1.

You need to recommend a solution to enable users in the fabrikam.com tenant to authenticate to App1.

What should you recommend?

  1. Configure Azure AD Identity Protection.
  2. Configure assignments for the fabrikam.com users by using Azure AD Privileged Identity Management (PIM).
  3. Configure Supported account types in the application registration and update the sign-in endpoint.
  4. Configure a Conditional Access policy.

Answer(s): C

Explanation:

Identity and account types for single- and multi-tenant apps
You, as a developer, can choose if your app allows only users from your Azure Active Directory (Azure AD) tenant, any Azure AD tenant, or users with personal Microsoft accounts. You can configure your app to be either single tenant or multitenant during app registration in Azure.

Note: A required part of application registration in Azure AD is your selection of supported account types. While IT Pros in administrator roles decide who can consent to apps in their tenant, you, as a developer, specify who can use your app based on account type. When a tenant doesn't allow you to register your application in Azure AD, administrators will provide you with a way to communicate those details to them through another mechanism.

You'll choose from the following supported account type options when registering your application.

Accounts in this organizational directory only (O365 only - Single tenant)
Accounts in any organizational directory (Any Azure AD directory - Multitenant)
Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)
Personal Microsoft accounts only

Incorrect:

* Configure Azure AD Identity Protection
Identity Protection allows organizations to accomplish three key tasks: Automate the detection and remediation of identity-based risks. Investigate risks using data in the portal. Export risk detection data to other tools.


Reference:

https://learn.microsoft.com/en-us/security/zero-trust/develop/identity-supported-account-types



Your company has the divisions shown in the following table.


Sub1 contains an Azure App Service web app named App1. App1 uses Azure AD for single-tenant user authentication. Users from contoso.com can authenticate to App1.

You need to recommend a solution to enable users in the fabrikam.com tenant to authenticate to App1.

What should you recommend?

  1. Use Azure AD entitlement management to govern external users.
  2. Enable Azure AD pass-through authentication and update the sign-in endpoint.
  3. Configure a Conditional Access policy.
  4. Configure assignments for the fabrikam.com users by using Azure AD Privileged Identity Management (PIM).

Answer(s): A

Explanation:

Govern access for external users in Azure AD entitlement management
Azure AD entitlement management uses Azure AD business-to-business (B2B) to share access so you can collaborate with people outside your organization. With Azure AD B2B, external users authenticate to their home directory, but have a representation in your directory. The representation in your directory enables the user to be assigned access to your resources.


Reference:

https://learn.microsoft.com/en-us/azure/active-directory/governance/entitlement-management-external-users



Page 14 of 67



Post your Comments and Discuss Microsoft AZ-305 exam with other Community members:

Criss commented on December 29, 2024
Very nice and very good questions
Anonymous
upvote

Jay Gomes commented on November 07, 2024
Very nice and very good questions
Anonymous
upvote

Jay Gomes commented on November 07, 2024
Nice v nice questions
Anonymous
upvote

Farid commented on November 05, 2024
This exam is hard but not as bad as others have stated here. With these question you can pass on first try.
Canada
upvote

Bobby commented on September 12, 2024
nice collection
Anonymous
upvote

Ram commented on September 06, 2024
Its a nice collection of questions with examplanation
Anonymous
upvote

Doran commented on June 10, 2024
Used these exam dumps and passed my exam. Of course I went for the full PDF version. Felt like I had the answers in my back pocket. If only they could help me find my car keys too!
United Kingdom
upvote

Emma Martin commented on May 04, 2024
I highly recommend Xcerts.com's Microsoft AZ-305 Dumps PDF for anyone preparing for the AZ-305 certification exam. The content is well-organized, comprehensive, and up-to-date, covering all key topics effectively. The inclusion of real-world scenarios and practice questions makes it a valuable resource for honing Azure solutions skills. Passexam4sure's AZ-305 Dumps PDF is a must-have for achieving success in Azure solutions architecture!
UNITED STATES
upvote

Komar commented on April 14, 2024
Practice Questions seem very relevant and the price is quite affordable compare to other sites where they charge for study guides and the software separately.
UNITED STATES
upvote

Ken commented on March 27, 2024
I wanted to say thank you for the set of study guides and practice questions. They turned out to be very helpful. I pass the exam.
ITALY
upvote

Sushant commented on February 02, 2024
The question are very relevant to real exam. Some are word by word. However some answers are not 100% correct. So if you have some knowledge of the topics like me then it is an easy pass with these questions.
Anonymous
upvote

Žarko commented on September 05, 2023
@t it seems like azure service bus message quesues could be the best solution
UNITED KINGDOM
upvote

Santhi commented on January 01, 2024
passed today.40% questions were new.litwere case study,lots of new questions on afd,ratelimit,tm,lb,app gatway.got 2 set series of questions which are not present here.questions on azure cyclecloud, no.of vnet/vms required for implimentation,blueprints assignment/management group etc
INDIA
upvote

T commented on July 28, 2023
this question is keep repeat : you are developing a sales application that will contain several azure cloud services and handle different components of a transaction. different cloud services will process customer orders, billing, payment, inventory, and shipping. you need to recommend a solution to enable the cloud services to asynchronously communicate transaction information by using xml messages. what should you include in the recommendation?
NEW ZEALAND
upvote

alaska commented on October 24, 2023
i scored 87% on the az-204 exam. thanks! i always trust
GERMANY
upvote

Chere commented on September 15, 2023
found it good
Anonymous
upvote

Santhi commented on January 01, 2024
Passed Today.40% questions were new.Litwere case study,Lots of new Questions on AFD,Ratelimit,TM,LB,App gatway.Got 2 set series of questions which are not present here.Questions on Azure CycleCloud, No.of vnet/vm's required for implimentation,Blueprints assignment/management group etc
INDIA
upvote

alaska commented on October 24, 2023
I scored 87% on the AZ-204 exam. Thanks! I always trust
GERMANY
upvote

luvinit commented on September 27, 2023
purfect happy to be here
UNITED STATES
upvote

Chere commented on September 15, 2023
Found it good
Anonymous
upvote

Chere commented on September 15, 2023
I am.just visiting the website, it looks good and valid.
Anonymous
upvote

Žarko commented on September 05, 2023
Q42: Shouldn't Answer be Access Review?!!
UNITED KINGDOM
upvote

Žarko commented on September 05, 2023
@T It seems like Azure Service Bus message quesues could be the best solution
UNITED KINGDOM
upvote

Computers Student commented on August 18, 2023
I am planning to take this exam soon. I will share the results.
SOUTH AFRICA
upvote

T commented on July 28, 2023
This question is keep repeat : You are developing a sales application that will contain several Azure cloud services and handle different components of a transaction. Different cloud services will process customer orders, billing, payment, inventory, and shipping. You need to recommend a solution to enable the cloud services to asynchronously communicate transaction information by using XML messages. What should you include in the recommendation?
NEW ZEALAND
upvote

avread09 commented on June 10, 2023
good set of questions
Anonymous
upvote

chopra commented on April 27, 2023
These questions cover a wide range of topics and are very helpful.
INDIA
upvote

Isaac commented on April 24, 2023
The dumps covered all the important topics. Very helpful for passing the exam.
UNITED KINGDOM
upvote

Rez commented on April 23, 2023
This is a good shortcut to passing. Questions are very similar to what I saw in my exam. That is what helped me pass.
GERMANY
upvote

George commented on March 27, 2023
This exam question and answer guide was an absolute lifesaver - I felt prepared and confident going into my exam and passed it.
CANADA
upvote

Pradhan commented on March 14, 2023
Real questions and answers in this exam dumps... helped me maximize my study time and pass my exam.
UNITED STATES
upvote

marcee commented on January 25, 2023
some new question came up in the exam and some answer are wrong, how ever the dump was useful
EUROPEAN UNION
upvote

Amit commented on September 05, 2022
The good thing about this site is that they provide free updates. The latest upddate has the new exam questions.
INDIA
upvote

Ranjeet commented on June 29, 2022
Second attemp and managed to pass with the help of this exam dumps questions. What relief.
INDIA
upvote