High Quality AZ-400 Braindumps 2021

NEW QUESTION 1
You are developing a multi-tier application. The application will use Azure App Service web apps as the front end and an Azure SQL database as the back end. The application will use Azure functions to write some data to Azure Storage. You need to send the Azure DevOps team an email message when the front end fails to return a status code of 200.
Which feature should you use?

• A. Service Map in Azure Log Analytics
• B. Profiler in Azure Application Insights
• C. availability tests in Azure Application Insights
• D. Application Map in Azure Application Insights

Answer: D

Explanation:
Application Map helps you spot performance bottlenecks or failure hotspots across all components of your distributed application. Each node on the map represents an application component or its dependencies; and has health KPI and alerts status. References: https://docs.microsoft.com/en-us/azure/azure-monitor/app/app-map

NEW QUESTION 2
DRAG DROP
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the appropriate security toots to the correct stages. Each security tool may be used once, more than once, or not at all. You may
need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Box 1: Threat modeling
Threat modeling¡¦s motto should be, ¡§The earlier the better, but not too late and never ignore.¡¨
Box 2: Static code analysis
Validation in the CI/CD begins before the developer commits his or her code. Static code analysis tools in the IDE provide the first line of defense to help ensure that security vulnerabilities are not introduced into the CI/CD process.
Box 3: Penetration testing
Once your code quality is verified, and the application is deployed to a lower environment like development or QA, the process should verify that there are not any security vulnerabilities in the running application. This can be accomplished by executing automated penetration test against the running application to scan it for vulnerabilities.
References: https://docs.microsoft.com/en-us/azure/devops/articles/securityvalidation- cicd-pipeline?view=vsts

NEW QUESTION 3
Your company is building a mobile app that targets Android devices and OS devices. Your team uses Azure DevOps to manage all work items and release cycles. You need to recommend a solution to perform the following tasks
¡E Collect crash reports for issue analysis
¡E Distribute beta releases to your testers.
¡E Get user feedback on the functionality of new apps. What should you include in the recommendation?

• A. Jenkins integration
• B. Azure Application Insights widgets
• C. the Microsoft Test & Feedback extension
• D. Microsoft Visual Studio App Center integration

Answer: D

NEW QUESTION 4
You use Azure Artifacts to host NuGet packages that you create.
You need to make one of the packages available to anonymous users outside your organization. The solution must minimize the number of publication points. What should you do?

• A. Create a new feed for the package
• B. Publish the package to a public NuGet repository.
• C. Promote the package to a release view.
• D. Change the feed URL of the packag

Answer: A

Explanation:
Azure Artifacts introduces the concept of multiple feeds that you can use to organize and control access to your packages.
Packages you host in Azure Artifacts are stored in a feed. Setting permissions on the feed allows you to share your packages with as many or as few people as your scenario requires.
Feeds have four levels of access: Owners, Contributors, Collaborators, and Readers.
References: https://docs.microsoft.com/en-us/azure/devops/artifacts/feeds/feedpermissions? view=vsts&tabs=new-nav

NEW QUESTION 5
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an approval process that contains a condition. The condition requires that releases be approved by a team leader before they are deployed.
You haw a pokey stating that approvals must occur within eight hours.
You discover that deployments only if the approvals take longer than two hours. You need to ensure that the deployments only fail if the approvals take longer than hours.
Solution From Post -deployment conditions, you modify the Timeout setting for post-deployment approvals.
Does this meet the goal?

• A. Yes
• B. NO

Answer: B

NEW QUESTION 6
Your company uses Service Now for incident management. You develop an application that runs on Azure.
The company needs to generate a ticket in Service Now when the application fails to authenticate.
Which Azure Log Analytics solution should you use?

• A. Automation & Control
• B. IT Service Management Connector (ITSM)
• C. Application lmiQ.hu Connector
• D. insight & Analytics

Answer: B

Explanation:
The IT Service Management Connector (ITSMC) allows you to connect Azure and a supported IT Service Management (ITSM) product/service.
ITSMC supports connections with the following ITSM tools:
„hServiceNow
„hSystem Center Service Manager
„hProvance
„hCherwell
With ITSMC, you can
„hCreate work items in ITSM tool, based on your Azure alerts (metric alerts, Activity Log alerts and Log Analytics alerts).
„hOptionally, you can sync your incident and change request data from your ITSM tool to an Azure Log Analytics workspace.
References: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/itsmcoverview

NEW QUESTION 7
Where should the build and release agents for the investment planning applications suite run? To answer, select the appropriate options in the answer area
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

Case Study: 2 Overview
Existing Environment
This is a case study Case studies are not limed separately. You can use as much exam time at you would like to complete each case. However there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided m the case study Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of the case study, a review screen will appear. This screen allows you to review your answers and to mate changes before you move to the next section of the exam, After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttions in the left pane to explore the content of the case study before you answer the questions. Clicking these buttions displays information such as business requirements, existing environment and problem statements. If the case study has
an All Information tab, note that the information displayed on identical to the Information displayed on the subsequent tabs. When you are ready to answer a question, click the question button to return to the question.
Requirements
Contoso plans to improve its IT development and operations processes implementing Azue DevOps principles. Contoso has an Azure subscription and creates an Azure DevOPs organization.
The Azure DevOps organization includes:
„hThe Docker extension
„hA deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2021.
The Azure subscription contains an Azure Automation account. Planned Changes
Contoso plans to create projects in Azure DevOps as shown in the following table.

Technical Requirements
Contoso identities the following technical requirements:
¡E Implement build agents rot Project 1.
¡E Whenever possible, use Azure resources
¡EAvoid using deprecated technologies
¡E Implement a code flow strategy for Project2 that will:
¡EEnable Team 2 to submit pull requests for Project2.
¡E Enable Team 2 to work independently on changes to a copy of Project?
¡E Ensure that any intermediary changes performed by Tram2 on a copy of Project2 will be subject to the same restrictions as the ones defied in the build policy of Project2.
¡E Whenever possible. Implement automation and minimize administrative effort.
¡E Implement Protect3, Project5, Project6, and Project7 based on the planned changes.
¡E Implement Project4 and configure the project to push Docker images to Azure Container Reentry.

NEW QUESTION 8
Your company has a project in Azure DevOps.
You need to ensure that when there are multiple builds pending deployment only the most recent build is deployed.
What should you use?

• A. deployment queue settings
• B. deployment conditions
• C. release gates
• D. pull request triggers

Answer: A

NEW QUESTION 9
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen
Your company has a project in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: From the Continuous deployment trigger settings of the release pipeline, you enable the Pull request trigger setting.
Does the meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
In Visual Designer you enable continuous integration (CI) by:
„hSelect the Triggers tab.
„hEnable Continuous integration. References:
https://docs.microsoft.com/en-us/azure/devops/pipelines/get-started-designer

NEW QUESTION 10
Your company has a project in Azure DevOps for a new application. The application will be deployed to several Azure virtual machines that run Windows Server 2021.
You need to recommend a deployment strategy for the virtual machines. The strategy must meet the following requirements:
¡E Ensure that the virtual machines maintain a consistent configuration.
¡E Minimize administrative effort to configure the virtual machines What should you include in the recommendation?

• A. Deployment YAML and Azure pipeline stage templates
• B. Azure Resource Manager templates and the Custom Script Extension for Windows
• C. Azure Resource Manager templates and the PowerShell Desired State Configuration (DSC) extension for Windows
• D. Deployment YAML and Azure pipeline deployment groups

Answer: C

Explanation:
Case Study: 1 Overview
Existing Environment
Litware, Inc. e an independent software vendor (ISV) Litware has a main office and five branch offices.
Application Architecture
The company¡¦ s primary application is a single monolithic retirement fund management system based on ASP.NE T web forms that use logic written in V8.NET. Some new sections of the application are written in C#.
Variations of the application are created for individual customers. Currently, there are more than 80 have code branches in the application¡¦s code base.
The application was developed by using Microsoft Visual Studio. Source code is stored in Team Foundation Server (TFS) in the main office. The branch offices access of the source code by using TFS proxy servers.
Architectural Issues
Litware focuses on writing new code for customers. No resources are provided to refactor or remove existing code. Changes to the code base take a long time, AS dependencies are not obvious to individual developers.
Merge operations of the code often take months and involve many developers. Code merging frequently introduces bugs that are difficult to locate and resolve.
Customers report that ownership costs of the retirement fund management system increase continually. The need to merge unrelated code makes even minor code changes expensive.
Requirements Planned Changes
Litware plans to develop a new suite of applications for investment planning. The investment planning Applications will require only minor integration with the easting retirement fund management system.
The investment planning applications suite will include one multi-tier web application and two iOS mobile applications. One mobile application will be used by employees; the other will be used by customers.
Litware plans to move to a more agile development methodology. Shared code will be extracted into a series of package.
Litware has started an internal cloud transformation process and plans to use cloud based services whenever suitable.
Litware wants to become proactive m detecting failures, rather than always waning for customer bug reports.
Technical Requirements
The company's investment planning applications suite must meet the following technical requirements:
¡E New incoming connections through the firewall must be minimized.
¡E Members of a group named Developers must be able to install packages.
¡E The principle of least privilege must be used for all permission assignments
¡E A branching strategy that supports developing new functionality in isolation must be used.
¡E Members of a group named Team leaders must be able to create new packages and edit the permissions of package feeds
¡E Visual Studio App Center must be used to centralize the reporting of mobile application crashes and device types in use.
¡E By default, all App Center must be used to centralize the reporting of mobile application crashes and device types in use.
¡E Code quality and release quality are critical. During release, deployments must not proceed between stages if any active bugs are logged against the release.
¡E The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HUPS.
¡E The required operating system configuration tor the test servers changes weekly. Azure Automation State Configuration must be used to ensure that the operating system on each test servers configured the same way when the servers are created and checked periodically.
Current Technical
The test servers are configured correctly when first deployed, but they experience configuration drift over time. Azure Automation State Configuration fails to correct the configurations.
Azure Automation State Configuration nodes are registered by using the following command.

NEW QUESTION 11
HOTSPOT
How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Every request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key. Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application
and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorizewith- shared-key

NEW QUESTION 12
Your company hosts a web application in Azure. The company uses Azure Pipelines for the build and release management of the application.
Stakeholders report that the past few releases have negatively affected system performance.
You configure alerts in Azure Monitor.
You need to ensure that new releases are only deployed to production if the releases meet defined performance baseline criteria in the staging environment first What should you use to prevent the deployment of releases that fail to meet the performance baseline?

• A. a trigger
• B. an Azure function
• C. a gate
• D. an Azure Scheduler job

Answer: C

NEW QUESTION 13
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create a main template that has two linked templates, each of which will deploy the resource in its respective group.
Does this meet the goal?

• A. Yes
• B. No

Answer: A

Explanation:
To deploy your solution, you can use either a single template or a main template with many related templates. The related template can be either a separate file that is linked to from the main template, or a template that is nested within the main template.
References: https://docs.microsoft.com/en-us/azure/azure-resourcemanager/resource-group-linked-templates

NEW QUESTION 14
You are developing an open source solution that uses a GitHub repository. You create a new public project in Azure DevOps.
You plan to use Azure Pipelines for continuous build. The solution will use the GitHub Checks API.
Which authentication type should you use?

• A. a personal access token
• B. SAML
• C. GrtHub App
• D. OAuth

Answer: D

Explanation:
You can authenticate as a GitHub App.
References: https://developer.github.com/apps/building-github-apps/authenticatingwith- github-apps/

NEW QUESTION 15
DRAG DROP
You need to configure access to Azure DevOps Agent pools to meet the forwarding requirements:
¡E Use a project agent pool when authoring build release pipelines.
¡E View the agent pool and agents of the organization.
¡E Use the principle of least privilege.
Which role memberships are required for the Azure 0e%Oos organization and the project? To answer, drag the appropriate role membership to the correct targets.
Each role membership may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to content
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

Box 1: Reader
Members of the Reader role can view the organization agent pool as well as agents. You typically use this to add operators that are responsible for monitoring the agents and their health.
Box 2: Service account
Members of the Service account role can use the organization agent pool to create a project agent pool in a project. If you follow the guidelines above for creating new project agent pools,
you typically do not have to add any members here. Incorrect Answers:
In addition to all the permissions given the Reader and the Service Account role, members of the administrator role can register or unregister agents from the organization agent pool. They can also refer to the organization agent pool when creating a project agent pool in a project. Finally, they can also manage membership for all roles of the organization agent pool. The user that created the organization agent pool is automatically added to the Administrator role for that pool.
References: https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/poolsqueues

NEW QUESTION 16
Your company builds a multi tier web application.
>You use Azure DevOps and host the production application on Azure virtual machines.
Your team prepares an Azure Resource Manager template of the virtual machine that you mil use to test new features.
You need to create a staging environment in Azure that meets the following requirements:
¡E Minimizes the cost of Azure hosting
¡E Provisions the virtual machines automatically
¡E Use* the custom Azure Resource Manager template to provision the virtual machines
What should you do?

• A. In Azure DevOps, configure new tasks in the release pipeline to create and delete the virtual machines m Azure DevTest Labs.
• B. From Azure Cloud Shell, run Azure PowerShell commands to create and delete the new virtual machines in a staging resource group.
• C. In Azure DevOps, configure new tasks in the release pipeline to deploy to Azure Cloud Services.
• D. In Azure Cloud Shell, run Azure CLI commands to create and delete the new virtual machines in a staging resource group.

Answer: A

Explanation:
You can use the Azure DevTest Labs Tasks extension that's installed in Azure DevOps to easily integrate your CI/CD build-and-release pipeline with Azure DevTest Labs. The extension installs three tasks:
„hCreate a VM
„hCreate a custom image from a VM
„hDelete a VM
The process makes it easy to, for example, quickly deploy a "golden image" for a specific test task and then delete it when the test is finished.
References: https://docs.microsoft.com/en-us/azure/lab-services/devtest-labintegrate- ci-cd-vsts

NEW QUESTION 17
HOTSPOT
You are configuring a release pipeline in Azure DevOps as shown in the exhibit.

Use the drop-down menus to select the answer choice that answers each question based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Box 1: 5
There are five stages: Development, QA, Pre-production, Load Test and Production. They all have triggers.
Box 2: The Internal Review stage References: https://docs.microsoft.com/enus/ azure/devops/pipelines/release/triggers

NEW QUESTION 18
HOTSPOT
Your company uses Team Foundation Server 2013 (TFS 2013). You plan to migrate to Azure DevOps.
You need to recommend a migration strategy that meets the following requirements:
„hPreserves the dates of Team Foundation Version Control changesets
„hPreserves the changes dates of work items revisions
„hMinimizes migration effort
„hMigrates all TFS artifacts
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Box 1: Upgrade TFS to the most recent RTM release.
One of the major prerequisites for migrating your Team Foundation Server database is to get your database schema version as close as possible to what is currently deployed in Azure Devops Services.
Box 2: Use the TFS Database Import Service
In Phase 3 of your migration project, you will work on upgrading your Team Foundation Server to one of the supported versions for the Database Import Service in Azure Devops Services.
References: Team Foundation Server to Azure Devops Services Migration Guide

NEW QUESTION 19
You need to recommend a Docker container build strategy that meets the following requirements
¡E Minimizes image sues
¡E Minimizes the security surface area of the final image What should you include m the recommendation?

• A. multi-stage builds
• B. single-stage builds
• C. PowerShell Desired State Configuration (DSC)
• D. Docker Swarm

Answer: A

Explanation:
Multi-stage builds are a new feature requiring Docker 17.05 or higher on the daemon and client. Multistage builds are useful to anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. References: https://docs.docker.com/develop/develop-images/multistage-build/

NEW QUESTION 20
Note: This question is part of * series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated
goals. Some question sett might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an approval process that contains a condition. The condition requires that releases be approved by a team leader before they are deployed.
You have a poky stating that approvals must occur within eight hour.
You discover that deployments fail if the approvals take longer than two hours. You need to ensure that the deployments only fail if the approvals take longer than eight hours.
Solution: From Post-deployment conditions, you modify the Time between reevaluation of gates option.
Does this meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
Use a gate From Pre-deployment conditions instead. References: https://docs.microsoft.com/enus/ azure/devops/pipelines/release/approvals/gates

NEW QUESTION 21
......