This page was exported from Latest Exam Prep [ http://certify.vceprep.com ]

Export date:Sat Sep 21 11:43:53 2024 / +0000 GMT

___________________________________________________


Title: Get all the Information About Microsoft AZ-204 Exam 2023 Practice Test Questions [Q194-Q214]

---------------------------------------------------



 Get all the Information About Microsoft AZ-204 Exam 2023 Practice Test Questions
Check Real Microsoft AZ-204 Exam Question for Free (2023)


Microsoft AZ-204 exam is intended for developers who have experience with Azure and are looking to enhance their skills. AZ-204 exam covers a broad range of topics, including designing and developing Azure compute solutions, designing and developing Azure storage solutions, implementing Azure security, and designing Azure networking solutions. Candidates must demonstrate their knowledge of Azure development tools such as Visual Studio, Azure PowerShell, and Azure CLI.
 


NEW QUESTION 194You develop an application. You plan to host the application on a set of virtual machines (VMs) in Azure.You need to configure Azure Monitor to collect logs from the application.Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Reference:https://docs.microsoft.com/en-us/azure/azure-monitor/vm/vminsights-configure-workspacehttps://docs.microsoft.com/en-us/azure/azure-monitor/app/create-workspace-resourceNEW QUESTION 195You are a developer for a software as a service (SaaS) company that uses an Azure Function to process orders. The Azure Function currently runs on an Azure Function app that is triggered by an Azure Storage queue.You are preparing to migrate the Azure Function to Kubernetes using Kubernetes-based Event Driven Autoscaling (KEDA).You need to configure Kubernetes Custom Resource Definitions (CRD) for the Azure Function.Which CRDs should you configure? To answer, drag the appropriate CRD types to the correct locations. Each CRD type may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point.
Reference:https://www.thinktecture.com/en/kubernetes/serverless-workloads-with-keda/NEW QUESTION 196You develop Azure solutions.You must connect to a No-SQL globally-distributed database by using the .NET API.You need to create an object to configure and execute requests in the database.Which code segment should you use?
 new Container(EndpointUri, PrimaryKey);
 new Database(EndpointUri, PrimaryKey);
 new CosmosClient(EndpointUri, PrimaryKey);
Example:// Create a new instance of the Cosmos Clientthis.cosmosClient = new CosmosClient(EndpointUri, PrimaryKey)//ADD THIS PART TO YOUR CODEawait this.CreateDatabaseAsync();Reference:https://docs.microsoft.com/en-us/azure/cosmos-db/sql-api-get-startedImplement Azure securityTestlet 1Case studyThis is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.To start the case studyTo display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.BackgroundOverviewYou are a developer for Contoso, Ltd. The company has a social networking website that is developed as a Single Page Application (SPA). The main web application for the social networking website loads user uploaded content from blob storage.You are developing a solution to monitor uploaded data for inappropriate content. The following process occurs when users upload content by using the SPA:* Messages are sent to ContentUploadService.* Content is processed by ContentAnalysisService.* After processing is complete, the content is posted to the social network or a rejection message is posted in its place.The ContentAnalysisService is deployed with Azure Container Instances from a private Azure Container Registry named contosoimages.The solution will use eight CPU cores.Azure Active DirectoryContoso, Ltd. uses Azure Active Directory (Azure AD) for both internal and guest accounts.RequirementsContentAnalysisServiceThe company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso, Ltd.You must create an Azure Function named CheckUserContent to perform the content checks.CostsYou must minimize costs for all Azure services.Manual reviewTo review content, the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication.In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes.High availabilityAll services must run in multiple regions. The failure of any service in a region must not impact overall application availability.MonitoringAn alert must be raised if the ContentUploadService uses more than 80 percent of available CPU cores.SecurityYou have the following security requirements:* Any web service accessible over the Internet must be protected from cross site scripting attacks.* All websites and services must use SSL from a valid root certificate authority.* Azure Storage access keys must only be stored in memory and must be available only to the service.* All Internal services must only be accessible from internal Virtual Networks (VNets).* All parts of the system must support inbound and outbound traffic restrictions.* All service calls must be authenticated by using Azure AD.User agreementsWhen a user submits content, they must agree to a user agreement. The agreement allows employees of Contoso, Ltd. to review content, store cookies on user devices, and track user’s IP addresses.Information regarding agreements is used by multiple divisions within Contoso, Ltd.User responses must not be lost and must be available to all parties regardless of individual service uptime.The volume of agreements is expected to be in the millions per hour.Validation testingWhen a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.IssuesUsers of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages.CodeContentUploadServiceImplement Azure securityTestlet 2Case studyThis is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.To start the case studyTo display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.Current environmentWindows Server 2016 virtual machineThis virtual machine (VM) runs BizTalk Server 2016. The VM runs the following workflows:* Ocean Transport – This workflow gathers and validates container information including container contents and arrival notices at various shipping ports.* Inland Transport – This workflow gathers and validates trucking information including fuel usage, number of stops, and routes.The VM supports the following REST API calls:* Container API – This API provides container information including weight, contents, and other attributes.* Location API – This API provides location information regarding shipping ports of call and trucking stops.* Shipping REST API – This API provides shipping information for use and display on the shipping website.Shipping DataThe application uses MongoDB JSON document storage database for all container and transport information.Shipping Web SiteThe site displays shipping container tracking information and container contents. The site is located at http:// shipping.wideworldimporters.com/ Proposed solution The on-premises shipping application must be moved to Azure. The VM has been migrated to a new Standard_D16s_v3 Azure VM by using Azure Site Recovery and must remain running in Azure to complete the BizTalk component migrations. You create a Standard_D16s_v3 Azure VM to host BizTalk Server. The Azure architecture diagram for the proposed solution is shown below:RequirementsShipping Logic appThe Shipping Logic app must meet the following requirements:* Support the ocean transport and inland transport workflows by using a Logic App.* Support industry-standard protocol X12 message format for various messages including vessel content details and arrival notices.* Secure resources to the corporate VNet and use dedicated storage resources with a fixed costing model.* Maintain on-premises connectivity to support legacy applications and final BizTalk migrations.Shipping Function appImplement secure function endpoints by using app-level security and include Azure Active Directory (Azure AD).REST APIsThe REST API’s that support the solution must meet the following requirements:* Secure resources to the corporate VNet.* Allow deployment to a testing location within Azure while not incurring additional costs.* Automatically scale to double capacity during peak shipping times while not causing application downtime.* Minimize costs when selecting an Azure payment model.Shipping dataData migration from on-premises to Azure must minimize costs and downtime.Shipping websiteUse Azure Content Delivery Network (CDN) and ensure maximum performance for dynamic content while minimizing latency and costs.IssuesWindows Server 2016 VMThe VM shows high network latency, jitter, and high CPU utilization. The VM is critical and has not been backed up in the past. The VM must enable a quick restore from a 7-day snapshot to include in-place restore of disks in case of failure.Shipping website and REST APIsThe following error message displays while you are testing the website:Failed to load http://test-shippingapi.wideworldimporters.com/: No ‘Access- Control-Allow-Origin’ header is present on the requested resource. Origin‘http://test.wideworldimporters.com/’ is therefore not allowed access.NEW QUESTION 197A web service provides customer summary information for e-commerce partners. The web service is implemented as an Azure Function app with an HTTP trigger. Access to the API is provided by an Azure API Management instance. The API Management instance is configured in consumption plan mode. All API calls are authenticated by using OAuth.API calls must be cached. Customers must not be able to view cached data for other customers.You need to configure API Management policies for caching.How should you complete the policy statement?
ExplanationBox 1: internalcaching-typeChoose between the following values of the attribute:* internal to use the built-in API Management cache,* external to use the external cache as Azure Cache for Redis* prefer-external to use external cache if configured or internal cache otherwise.Box 2: privatedownstream-caching-typeThis attribute must be set to one of the following values.* none – downstream caching is not allowed.* private – downstream private caching is allowed.* public – private and shared downstream caching is allowed.Box 3: Authorization<vary-by-header>Authorization</vary-by-header><!– should be present when allow-private-response-caching is “true”–> Note: Start caching responses per value of specified header, such as Accept, Accept-Charset, Accept-Encoding, Accept-Language, Authorization, Expect, From, Host, If-Match Reference:https://docs.microsoft.com/en-us/azure/api-management/api-management-caching-policiesNEW QUESTION 198You create the following PowerShell script:For each of the following statements, select Yes if the statement is true. Otherwise, select No,NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/powershell/module/az.monitor/new-azscheduledqueryrulehttps://docs.microsoft.com/en-us/powershell/module/az.monitor/new-azscheduledqueryruletriggerconditionNEW QUESTION 199You need to implement the Log policy.How should you complete the EnsureLogging method in EventGridController.cs? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Reference:https://blog.hompus.nl/2017/05/29/adding-application-logging-blob-to-a-azure-web-app-service-using-powershell/ This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.NEW QUESTION 200You need to update the APIs to resolve the testing error.How should you complete the Azure CLI command? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Explanation:Enable Cross-Origin Resource Sharing (CORS) on your Azure App Service Web App.Enter the full URL of the site you want to allow to access your WEB API or * to allow all domains.Box 1: corsBox 2: addBox 3: allowed-originsBox 4: http://testwideworldimporters.com/References:http://donovanbrown.com/post/How-to-clear-No-Access-Control-Allow-Origin-header-error-with-Azure-App-ServiceTopic 2, ContentAnalysisServiceContentAnalysisServiceThis is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.To start the case studyTo display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.RequirementsContentAnalysisServiceThe company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso, Ltd.You must create an Azure Function named CheckUserContent to perform the content checks.CostsYou must minimize costs for all Azure services.Manual reviewTo review content, the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication. In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes.High availabilityAll services must run in multiple regions. The failure of any service in a region must not impact overall application availability.MonitoringAn alert must be raised if the ContentUploadService uses more than 80 percent of available CPU-cores.SecurityYou have the following security requirements:* Any web service accessible over the Internet must be protected from cross site scripting attacks.* All websites and services must use SSL from a valid root certificate authority.* Azure Storage access keys must only be stored in memory and must be available only to the service.* All Internal services must only be accessible from Internal Virtual Networks (VNets)* All parts of the system must support inbound and outbound traffic restrictions.* All service calls must be authenticated by using Azure AD.User agreementsWhen a user submits content, they must agree to a user agreement. The agreement allows employees of Contoso.Ltd to review content, store cookies on user devices and track user’s IP addresses.Information regarding agreements is used by multiple divisions within Contoso, Ltd.User responses must not be lost and must be available to all parties regardless of individual service uptime. The volume of agreements is expected to be in the millions per hour.Validation testingWhen a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.IssuesUsers of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages.CodeContentUploadServiceNEW QUESTION 201You are developing an Azure-hosted application that must use an on-premises hardware security module (HSM) key.The key must be transferred to your existing Azure Key Vault by using the Bring Your Own Key (BYOK) process.You need to securely transfer the key to Azure Key Vault.Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
ExplanationText Description automatically generatedTo perform a key transfer, a user performs following steps:* Generate KEK.* Retrieve the public key of the KEK.* Using HSM vendor provided BYOK tool – Import the KEK into the target HSM and exports the Target Key protected by the KEK.* Import the protected Target Key to Azure Key Vault.Step 1: Generate a Key Exchange Key (KEK).Step 2: Retrieve the Key Exchange Key (KEK) public key.Step 3: Generate a key transfer blob file by using the HSM vendor-provided tool.Generate key transfer blob using HSM vendor provided BYOK toolStep 4: Run the az keyvault key import commandUpload key transfer blob to import HSM-key.Customer will transfer the Key Transfer Blob (“.byok” file) to an online workstation and then run a az keyvault key import command to import this blob as a new HSM-backed key into Key Vault.To import an RSA key use this command:az keyvault key importReference:https://docs.microsoft.com/en-us/azure/key-vault/keys/byok-specificationNEW QUESTION 202You are developing a ticket reservation system for an airline.The storage solution for the application must meet the following requirements:Ensure at least 99.99% availability and provide low latency.Accept reservations event when localized network outages or other unforeseen failures occur.Process reservations in the exact sequence as reservations are submitted to minimize overbooking or selling the same seat to multiple travelers.Allow simultaneous and out-of-order reservations with a maximum five-second tolerance window.You provision a resource group named airlineResourceGroup in the Azure South-Central US region.You need to provision a SQL SPI Cosmos DB account to support the app.How should you complete the Azure CLI commands? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
NEW QUESTION 203You are developing an application to store and retrieve data in Azure Blob storage. The application will be hosted in an on-premises virtual machine (VM). The VM is connected to Azure by using a Site-to-Site VPN gateway connection. The application is secured by using Azure Active Directory (Azure AD) credentials.The application must be granted access to the Azure Blob storage account with a start time, expiry time, and read permissions. The Azure Blob storage account access must use the Azure AD credentials of the application to secure data access. Data access must be able to be revoked if the client application security is breached.You need to secure the application access to Azure Blob storage.Which security features should you use? To answer select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/azure/storage/common/storage-sas-overviewNEW QUESTION 204You are preparing to deploy a Python website to an Azure Web App using a container. The solution will use multiple containers in the same container group. The Dockerfile that builds the container is as follows:You build a container by using the following command. The Azure Container Registry instance named images is a private registry.The user name and password for the registry is admin.The Web App must always run the same version of the website regardless of future builds.You need to create an Azure Web App to run the website.How should you complete the commands? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/cli/azure/appservice/planNEW QUESTION 205You are developing an ASP.NET Core website that can be used to manage photographs which are stored in Azure Blob Storage containers.Users of the website authenticate by using their Azure Active Directory (Azure AD) credentials.You implement role-based access control (RBAC) role permissions on the containers that store photographs. You assign users to RBAC roles.You need to configure the website’s Azure AD Application so that user’s permissions can be used with the Azure Blob containers.How should you configure the application? To answer, drag the appropriate setting to the correct location. Each setting can be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/samples/azure-samples/active-directory-dotnet-webapp-webapi-openidconnect-aspnetcore/calling-a-web-api-in-an-aspnet-core-web-application-using-azure-ad/NEW QUESTION 206You need to configure API Management for authentication.Which policy values should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Explanation:Box 1: Validate JWTThe validate-jwt policy enforces existence and validity of a JWT extracted from either a specified HTTP Header or a specified query parameter.Scenario: User authentication (see step 5 below)The following steps detail the user authentication process:The user selects Sign in in the website.The browser redirects the user to the Azure Active Directory (Azure AD) sign in page.The user signs in.Azure AD redirects the user’s session back to the web application. The URL includes an access token.The web application calls an API and includes the access token in the authentication header. The application ID is sent as the audience (‘aud’) claim in the access token.The back-end API validates the access token.Box 2: OutboundReference:https://docs.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policiesNEW QUESTION 207You are building an application that stores sensitive customer data in Azure Blob storage. The data must be encrypted with a key that is unique for each customer.If the encryption key has been corrupted it must not be used for encryption.You need to ensure that the blob is encrypted.How should you complete the code segment? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
NEW QUESTION 208You are preparing to deploy an ASP.NET Core website to an Azure Web App from a GitHub repository. The website includes static content generated by a script.You plan to use the Azure Web App continuous deployment feature.You need to run the static generation script before the website starts serving traffic.What are two possible ways to achieve this goal? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point.
 Create a file named .deployment in the root of the repository that calls a script which generates the static content and deploys the website.
 Add a PreBuild target in the websites csproj project file that runs the static content generation script.
 Create a file named run.cmd in the folder /run that calls a script which generates the static content and deploys the website.
 Add the path to the static content generation tool to WEBSITE_RUN_FROM_PACKAGE setting in the host.json file.
ExplanationA: To customize your deployment, include a .deployment file in the repository root.You just need to add a file to the root of your repository with the name .deployment and the content:[config]command = YOUR COMMAND TO RUN FOR DEPLOYMENTthis command can be just running a script (batch file) that has all that is required for your deployment, like copying files from the repository to the web root directory for example.D: In Azure, you can run your functions directly from a deployment package file in your function app. The other option is to deploy your files in the d:homesitewwwroot directory of your function app (see A above).To enable your function app to run from a package, you just add a WEBSITE_RUN_FROM_PACKAGE setting to your function app settings.Note: The host.json metadata file contains global configuration options that affect all functions for a function app.References:https://github.com/projectkudu/kudu/wiki/Custom-Deployment-Scripthttps://docs.microsoft.com/bs-latn-ba/azure/azure-functions/run-functions-from-deployment-packageNEW QUESTION 209You are developing an ASP.NET Core website that can be used to manage photographs which are stored in Azure Blob Storage containers.Users of the website authenticate by using their Azure Active Directory (Azure AD) credentials.You implement role-based access control (RBAC) role permission on the containers that store photographs. You assign users to RBAC role.You need to configure the website’s Azure AD Application so that user’s permissions can be used with the Azure Blob containers.How should you configure the application? To answer, drag the appropriate setting to the correct location. Each setting may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/samples/azure-samples/active-directory-dotnet-webapp-webapi-openidconnect-aspnetcore/calling-a-web-api-in-an-aspnet-core-web-application-using-azure-ad/NEW QUESTION 210You are creating a hazard notification system that has a single signaling server which triggers audio and visual alarms to start and stop.You implement Azure Service Bus to publish alarms. Each alarm controller uses Azure Service Bus to receive alarm signals as part of a transaction. Alarm events must be recorded for audit purposes. Each transaction record must include information about the alarm type that was activated.You need to implement a reply trail auditing solution.Which two actions should you perform? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.
 Assign the value of the hazard message SessionID property to the SequenceNumber property.
 Assign the value of the hazard message SequenceNumber property to the DeliveryCount property. C.Assign the value of the hazard message MessageId property to the DeliveryCount property.
 Assign the value of the hazard message SessionID property to the ReplyToSessionld property.
 Assign the value of the hazard message MessageId property to the SequenceNumber property.
 Assign the value of the hazard message Messageld property to the CorrelationId property.
NEW QUESTION 211You need to ensure that validation testing is triggered per the requirements.How should you complete the code segment? To answer, select the appropriate values in the answer area.NOTE: Each correct selection is worth one point.
ExplanationBox 1: RepositoryUpdatedWhen a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.Box 2: serviceBox 3: imageCollectionReference:https://docs.microsoft.com/en-us/azure/devops/notifications/oob-supported-event-typesTopic 1, Contoso, LtdCase studyThis is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.To start the case studyTo display the first question in this case study, click the   button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Background Overview You are a developer for Contoso, Ltd. The company has a social networking website that is developed as a Single Page Application (SPA). The main web application for the social networking website loads user uploaded content from blob storage.You are developing a solution to monitor uploaded data for inappropriate content. The following process occurs when users upload content by using the SPA:* Messages are sent to ContentUploadService.* Content is processed by ContentAnalysisService.* After processing is complete, the content is posted to the social network or a rejection message is posted in its place.The ContentAnalysisService is deployed with Azure Container Instances from a private Azure Container Registry named contosoimages.The solution will use eight CPU cores.Azure Active DirectoryContoso, Ltd. uses Azure Active Directory (Azure AD) for both internal and guest accounts.RequirementsContentAnalysisServiceThe company’s data science group built ContentAnalysisService which accepts user generated content as a string and returns a probable value for inappropriate content. Any values over a specific threshold must be reviewed by an employee of Contoso, Ltd.You must create an Azure Function named CheckUserContent to perform the content checks.CostsYou must minimize costs for all Azure services.Manual reviewTo review content, the user must authenticate to the website portion of the ContentAnalysisService using their Azure AD credentials. The website is built using React and all pages and API endpoints require authentication.In order to review content a user must be part of a ContentReviewer role. All completed reviews must include the reviewer’s email address for auditing purposes.High availabilityAll services must run in multiple regions. The failure of any service in a region must not impact overall application availability.MonitoringAn alert must be raised if the ContentUploadService uses more than 80 percent of available CPU cores.SecurityYou have the following security requirements:* Any web service accessible over the Internet must be protected from cross site scripting attacks.* All websites and services must use SSL from a valid root certificate authority.* Azure Storage access keys must only be stored in memory and must be available only to the service.* All Internal services must only be accessible from internal Virtual Networks (VNets).* All parts of the system must support inbound and outbound traffic restrictions.* All service calls must be authenticated by using Azure AD.User agreementsWhen a user submits content, they must agree to a user agreement. The agreement allows employees of Contoso, Ltd. to review content, store cookies on user devices, and track user’s IP addresses.Information regarding agreements is used by multiple divisions within Contoso, Ltd.User responses must not be lost and must be available to all parties regardless of individual service uptime.The volume of agreements is expected to be in the millions per hour.Validation testingWhen a new version of the ContentAnalysisService is available the previous seven days of content must be processed with the new version to verify that the new version does not significantly deviate from the old version.IssuesUsers of the ContentUploadService report that they occasionally see HTTP 502 responses on specific pages.CodeContentUploadServiceNEW QUESTION 212You are developing an application that runs in several customer Azure Kubernetes Service clusters, Within each cluster, a pod runs that collects performance data to be analyzed later, a large amount of data is collected so saving latency must be minimized The performance data must be stored so that pod restarts do not impact the stored dat a. Write latency should be minimized.You need to configure blob storage.How should you complete the YAML configuration? To answer, select the appropriate options in the answer area.
NEW QUESTION 213You are configuring a development environment for your team. You deploy the latest Visual Studio image from the Azure Marketplace to your Azure subscription.The development environment requires several software development kits (SDKs) and third-party components to support application development across the organization. You install and customize the deployed virtual machine (VM) for your development team. The customized VM must be saved to allow provisioning of a new team member development environment.You need to save the customized VM for future provisioning.Which tools or services should you use? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
ExplanationBox 1: Azure PowershellCreating an image directly from the VM ensures that the image includes all of the disks associated with the VM, including the OS disk and any data disks.Before you begin, make sure that you have the latest version of the Azure PowerShell module.You use Sysprep to generalize the virtual machine, then use Azure PowerShell to create the image.Box 2: Azure Blob StorageReferences:https://docs.microsoft.com/en-us/azure/virtual-machines/windows/capture-image-resource#create-an-image-of-aNEW QUESTION 214A company is developing a Java web app. The web app code is hosted in a GitHub repository located athttps://github.com/Contoso/webapp.The web app must be evaluated before it is moved to production. You must deploy the initial code release to a deployment slot named staging.You need to create the web app and deploy the code.How should you complete the commands? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
ExplanationBox 1: group# Create a resource group.az group create –location westeurope –name myResourceGroupBox 2: appservice plan# Create an App Service plan in STANDARD tier (minimum required by deployment slots).az appservice plan create –name $webappname –resource-group myResourceGroup –sku S1 Box 3: webapp# Create a web app.az webapp create –name $webappname –resource-group myResourceGroup –plan $webappnameBox 4: webapp deployment slot#Create a deployment slot with the name “staging”.az webapp deployment slot create –name $webappname –resource-group myResourceGroup –slot stagingBox 5: webapp deployment source# Deploy sample code to “staging” slot from GitHub.az webapp deployment source config –name $webappname –resource-group myResourceGroup –slot staging –repo-url $gitrepo –branch master –manual-integration References:https://docs.microsoft.com/en-us/azure/app-service/scripts/cli-deploy-staging-environment Loading …






	
	


Microsoft AZ-204 exam is designed for developers who want to demonstrate their expertise in developing solutions for Microsoft Azure. Developing Solutions for Microsoft Azure certification exam is ideal for individuals who have a strong understanding of Azure development, including Azure compute, storage, security, and networking services. AZ-204 exam tests the candidate's ability to design and develop solutions that integrate with Azure services, configure Azure services, and manage Azure resources.
 

Use Free AZ-204 Exam Questions that Stimulates Actual EXAM : https://www.vceprep.com/AZ-204-latest-vce-prep.html


---------------------------------------------------


Images: https://certify.vceprep.com/wp-content/plugins/watu/loading.gif
https://certify.vceprep.com/wp-content/plugins/watu/loading.gif


---------------------------------------------------




---------------------------------------------------


Post date: 2023-12-10 14:05:16

Post date GMT: 2023-12-10 14:05:16

Post modified date: 2023-12-10 14:05:16

Post modified date GMT: 2023-12-10 14:05:16