You need to recommend a solution for protecting the content of the payment processing system.
What should you include in the recommendation?

• A.Transparent Data Encryption (TDE)
• B.Azure Storage Service Encryption
• C.Always Encrypted with randomized encryption
• D.Always Encrypted with deterministic encryption

Comment: *

Name: *

Email: *

Verification: *

You are designing a microservices architecture that will use Azure Kubernetes Service (AKS) to host pods that run containers. Each pod deployment will host a separate API Each API will be implemented as a separate service- You need to recommend a solution to make the APIs available to external users from Azure API Management.
The solution must meet the following requirements:
* Control access to the APIs by using mutual US authentication between API Management and the AKS-based APIs.
* Provide access to the APIs by using a single IP address.
What should you recommend to provide access to the APIs?

• A.custom network security groups (NSGs)
• B.the LoadBelancer service in AKS
• C.the Ingress Controller in AKS

Comment: *

Name: *

Email: *

Verification: *

Your company has the divisions shown in the following table.

You plan to deploy a custom application to each subscription. The application will contain the following:
A resource group
An Azure web app
Custom role assignments
An Azure Cosmos DB account
You need to use Azure Blueprints to deploy the application to each subscription.
What is the minimum number of objects required to deploy the application? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Correct Answer:

Explanation:
Box 1: 2
One management group for East, and one for West.
When creating a blueprint definition, you'll define where the blueprint is saved. Blueprints can be saved to a management group or subscription that you have Contributor access to. If the location is a management group, the blueprint is available to assign to any child subscription of that management group.
Box 2: 1
One definition as the you plan to deploy a custom application to each subscription.
With Azure Blueprints, the relationship between the blueprint definition (what should be deployed) and the blueprint assignment (what was deployed) is preserved.
Box 3: 4
One assignment for each subscription.
Reference:
https://docs.microsoft.com/en-us/azure/governance/blueprints/overview

Comment: *

Name: *

Email: *

Verification: *

Your company deploys an Azure App Service Web App.
During testing the application fails under load. The application cannot handle more than 100 concurrent user sessions. You enable the Always On feature. You also configure auto-scaling to increase counts from two to 10 based on HTTP queue length.
You need to improve the performance of the application.
Which solution should you use for each application scenario? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Correct Answer:

Explanation:
Box 1: Content Delivery Network
A content delivery network (CDN) is a distributed network of servers that can efficiently deliver web content to users. CDNs store cached content on edge servers in point-of-presence (POP) locations that are close to end users, to minimize latency.
Azure Content Delivery Network (CDN) offers developers a global solution for rapidly delivering high-bandwidth content to users by caching their content at strategically placed physical nodes across the world. Azure CDN can also accelerate dynamic content, which cannot be cached, by leveraging various network optimizations using CDN POPs. For example, route optimization to bypass Border Gateway Protocol (BGP).
Box 2: Azure Redis Cache
Azure Cache for Redis is based on the popular software Redis. It is typically used as a cache to improve the performance and scalability of systems that rely heavily on backend data-stores. Performance is improved by temporarily copying frequently accessed data to fast storage located close to the application. With Azure Cache for Redis, this fast storage is located in-memory with Azure Cache for Redis instead of being loaded from disk by a database.
References:
https://docs.microsoft.com/en-us/azure/azure-cache-for-redis/cache-overview

Comment: *

Name: *

Email: *

Verification: *

You are designing a microservices architecture that will use Azure Kubernetes Service (AKS) to host pods that run containers. Each pod deployment will host a separate API Each API will be implemented as a separate service- You need to recommend a solution to make the APIs available to external users from Azure API Management. The solution must meet the following requirements:
* Control access to the APIs by using mutual US authentication between API Management and the AKS-based APIs.
* Provide access to the APIs by using a single IP address.
What should you recommend to provide access to the APIs?

• A.custom network security groups (NSGs)
• B.the LoadBelancer service in AKS
• C.the Ingress Controller in AKS

Comment: *

Name: *

Email: *

Verification: *