Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. AZ-305

Microsoft AZ-305 Exam
Designing Microsoft Azure Infrastructure Solutions (Page 3 )

Updated On: 12-Feb-2026
Page 3 of 67
PDF with 343 Questions
View Related Case Study

You need to recommend a solution to meet the database backup retention requirements.

What should you recommend?

  1. Configure a long-term retention policy for the database.
  2. Configure Azure Site Recovery.
  3. Use automatic Azure SQL Database backups.
  4. Configure geo-replication of the database.

Answer(s): A

Explanation:

Scenario: Database backups must be retained for a minimum of seven years to meet compliance requirements.
Many applications have regulatory, compliance, or other business purposes that require you to retain database backups beyond the 7-35 days provided by Azure SQL Database and Azure SQL Managed Instance automatic backups. By using the long-term retention (LTR) feature, you can store specified SQL Database and SQL Managed Instance full backups in Azure Blob storage with configured redundancy for up to 10 years. LTR backups can then be restored as a new database.


Reference:

https://docs.microsoft.com/en-us/azure/azure-sql/database/long-term-retention-overview



View Related Case Study

HOTSPOT (Drag and Drop is not supported)

What should you implement to meet the identity requirements? To answer, select the appropriate options in the answer area.

Note: Each correct selection is worth one point.

Hot Area:


  1. See Explanation section for answer.

Answer(s): A

Explanation:



Requirements: Identity Requirements
Contoso identifies the following requirements for managing Fabrikam access to resources:
* Every month, an account manager at Fabrikam must review which Fabrikam users have access permissions to App1. Accounts that no longer need permissions must be removed as guests.
* The solution must minimize development effort.

Box 1: Microsoft Entra ID Governance

Incorrect:
Not PIM: Life Cycle Requirements must be met.

Box 2: Access reviews
Microsoft Entra access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and role assignments. User’s access can be reviewed on a regular basis to make sure only the right people have continued access.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview



View Related Case Study

What should you recommend to meet the monitoring requirements for App2?

  1. VM insights
  2. Azure Application Insights
  3. Microsoft Sentinel
  4. Container insights

Answer(s): B

Explanation:

Scenario: You need to monitor App2 to analyze how long it takes to perform different transactions within the application. The solution must not require changes to the application code.
Unified cross-component transaction diagnostics.
The unified diagnostics experience automatically correlates server-side telemetry from across all your Application Insights monitored components into a single view. It doesn’t matter if you have multiple resources.
Application Insights detects the underlying relationship and allows you to easily diagnose the application component, dependency, or exception that caused a transaction slowdown or failure.
Note: Components are independently deployable parts of your distributed/microservices application.
Developers and operations teams have code-level visibility or access to telemetry generated by these application components.


Reference:

https://docs.microsoft.com/en-us/azure/azure-monitor/app/transaction-diagnostics



You have an Azure subscription that contains a custom application named Application1. Application1 was developed by an external company named Fabrikam, Ltd. Developers at Fabrikam were assigned role-based permissions to the Application1 components. All users are licensed for the Microsoft 365 E5 plan.

You need to recommend a solution to verify whether the Fabrikam developers still require permissions to Application1. The solution must meet the following requirements:

To the manager of the developers, send a monthly email message that lists the access permissions to

Application1.
If the manager does not verify an access permission, automatically revoke that permission.

Minimize development effort.

What should you recommend?

  1. In Microsoft Entra ID, create an access review of Application1.
  2. Create an Azure Automation runbook that runs the Get-AzRoleAssignment cmdlet.
  3. In Microsoft Entra Privileged Identity Management, create a custom role assignment for the Application1 resources.
  4. Create an Azure Automation runbook that runs the
    Get-AzureADUserAppRoleAssignment cmdlet.

Answer(s): A


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/manage-user-access-with-access-reviews



You have an Azure subscription. The subscription has a blob container that contains multiple blobs.

Ten users in the finance department of your company plan to access the blobs during the month of April.

You need to recommend a solution to enable access to the blobs during the month of April only.

Which security solution should you include in the recommendation?

  1. shared access signatures (SAS)
  2. Conditional Access policies
  3. certificates
  4. access keys

Answer(s): A

Explanation:

Shared Access Signatures (SAS) allows for limited-time fine grained access control to resources. So you can generate URL, specify duration (for month of April) and disseminate URL to 10 team members. On May 1, the SAS token is automatically invalidated, denying team members continued access.


Reference:

https://docs.microsoft.com/en-us/azure/storage/common/storage-sas-overview






Post your Comments and Discuss Microsoft AZ-305 exam prep with other Community members:

Join the AZ-305 Discussion