Free AZ-305 Exam Braindumps (page: 18)

Page 17 of 67

You have an Azure subscription.

You plan to deploy a monitoring solution that will include the following:

-Azure Monitor Network Insights
-Application Insights
-Microsoft Sentinel
-VM insights

The monitoring solution will be managed by a single team.

What is the minimum number of Azure Monitor workspaces required?

  1. 1
  2. 2
  3. 3
  4. 4

Answer(s): C

Explanation:

1: A Log Analytics workspace is a unique environment for log data from Azure Monitor and other Azure services, such as Microsoft Sentinel and Microsoft Defender for Cloud. Each workspace has its own data repository and configuration but might combine data from multiple services.

1: With workspace-based resources, Application Insights sends telemetry to a common Log Analytics workspace, providing full access to all the features of Log Analytics while keeping your application, infrastructure, and platform logs in a single consolidated location.

1: VM insights collects its data from one or more Log Analytics workspaces in Azure Monitor. Prior to onboarding agents, you must create and configure a workspace.
The only requirement of the workspace is that it must be located in a supported location and be configured with the VMInsights solution.


Reference:

https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/azure-monitor-workspace-overview
https://learn.microsoft.com/en-us/azure/azure-monitor/app/create-workspace-resource
https://learn.microsoft.com/en-us/azure/azure-monitor/vm/vminsights-configure-workspace



You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager (ARM) resource deployments in your Azure subscription.

What should you include in the recommendation?

  1. Application Insights
  2. Azure Analysis Services
  3. Azure Advisor
  4. Azure Activity Log

Answer(s): D

Explanation:

The Activity log is a platform log in Azure that provides insight into subscription-level events. Activity log includes such information as when a resource is modified or when a virtual machine is started.
Activity log events are retained in Azure for 90 days and then deleted.

For more functionality, you should create a diagnostic setting to send the Activity log to one or more of these locations for the following reasons:

to Azure Monitor Logs for more complex querying and alerting, and longer retention (up to two years)
to Azure Event Hubs to forward outside of Azure
to Azure Storage for cheaper, long-term archiving

Note: Azure Monitor builds on top of Log Analytics, the platform service that gathers log and metrics data from all your resources. The easiest way to think about it is that Azure Monitor is the marketing name, whereas Log Analytics is the technology that powers it.


Reference:

https://docs.microsoft.com/en-us/azure/azure-monitor/essentials/activity-log



You have an Azure subscription that contains 10 web apps. The apps are integrated with Azure AD and are accessed by users on different project teams.

The users frequently move between projects.

You need to recommend an access management solution for the web apps. The solution must meet the following requirements:

•The users must only have access to the app of the project to which they are assigned currently.
•Project managers must verify which users have access to their project’s app and remove users that are no longer assigned to their project.
•Once every 30 days, the project managers must be prompted automatically to verify which users are assigned to their projects.

What should you include in the recommendation?

  1. Azure AD Identity Protection
  2. Microsoft Defender for Identity
  3. Microsoft Entra Permissions Management
  4. Azure AD Identity Governance

Answer(s): D



HOTSPOT (Drag and Drop is not supported)
You have an Azure subscription that contains 50 Azure SQL databases.

You create an Azure Resource Manager (ARM) template named Template1 that enables Transparent Data Encryption (TDE).

You need to create an Azure Policy definition named Policy1 that will use Template1 to enable TDE for any noncompliant Azure SQL databases.

How should you configure Policy1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

  1. See Explanation section for answer.

Answer(s): A

Explanation:






Post your Comments and Discuss Microsoft AZ-305 exam with other Community members:

AZ-305 Discussions & Posts