AZ-304 Microsoft Azure Architect Design (beta) Exam

Posted by

Skills measured
Design monitoring (10-15%)
Design identity and security (25-30%)
Design data storage (15-20%)
Design business continuity (10-15%)
Design infrastructure (25-30%)

Audience Profile
Candidates for this exam should have subject matter expertise in designing and implementing solutions that run on Microsoft Azure, including aspects like compute, network, storage, and security.
Responsibilities for an Azure Solution Architect include advising stakeholders and translating business requirements into secure, scalable, and reliable cloud solutions.
An Azure Solution Architect partners with cloud administrators, cloud DBAs, and clients to implement solutions.
A candidate for this exam should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance–this role should manage how decisions in each area affect an overall solution. In addition, this role should have expert-level skills in Azure administration and have experience with Azure development and DevOps processes.

Skills Measured
NOTE: The bullets that appear below each of the skills measured are intended to illustrate how we are assessing that skill. This list is not definitive or exhaustive.
NOTE: In most cases, exams do NOT cover preview features, and some features will only be added to an exam when they are GA (General Availability).

Design Monitoring (10-15%)
Design for cost optimization
• recommend a solution for cost management and cost reporting
• recommend solutions to minimize costs

Design a solution for logging and monitoring
• determine levels and storage locations for logs
• plan for integration with monitoring tools including Azure Monitor and Azure Sentinel
• recommend appropriate monitoring tool(s) for a solution
• choose a mechanism for event routing and escalation
• recommend a logging solution for compliance requirements

Design Identity and Security (25-30%)
Design authentication
• recommend a solution for single-sign on
• recommend a solution for authentication
• recommend a solution for Conditional Access, including multi-factor authentication
• recommend a solution for network access authentication
• recommend a solution for a hybrid identity including Azure AD Connect and Azure AD Connect Health
• recommend a solution for user self-service
• recommend and implement a solution for B2B integration

Design authorization
• choose an authorization approach
• recommend a hierarchical structure that includes management groups, subscriptions and resource groups
• recommend an access management solution including RBAC policies, access reviews, role assignments, physical access, Privileged Identity Management (PIM), Azure AD Identity Protection, Just In Time (JIT) access

Design governance
• recommend a strategy for tagging
• recommend a solution for using Azure Policy
• recommend a solution for using Azure Blueprint

Design security for applications
• recommend a solution that includes KeyVault
o What can be stored in KeyVault
o KeyVault operations
o KeyVault regions
• recommend a solution that includes Azure AD Managed Identities
• recommend a solution for integrating applications into Azure AD

Design Data Storage (15-20%)
Design a solution for databases
• select an appropriate data platform based on requirements
• recommend database service tier sizing
• recommend a solution for database scalability
• recommend a solution for encrypting data at rest, data in transmission, and data in use

Design data integration
• recommend a data flow to meet business requirements
• recommend a solution for data integration, including Azure Data Factory, Azure Data Bricks, Azure Data Lake, Azure Synapse Analytics

Select an appropriate storage account
• choose between storage tiers
• recommend a storage access solution
• recommend storage management tools

Design Business Continuity (10-15%)
Design a solution for backup and recovery
• recommend a recovery solution for Azure hybrid and on-premises workloads that meets recovery objectives (RTO, RLO, RPO)
• design and Azure Site Recovery solution
o recommend a site recovery replication policy
o recommend a solution for site recovery capacity
o recommend a solution for site failover and failback (planned/unplanned)
o recommend a solution for the site recovery network
• recommend a solution for recovery in different regions
• recommend a solution for Azure Backup management
• design a solution for data archiving and retention
o recommend storage types and methodology for data archiving
o identify business compliance requirements for data archiving
o identify requirements for data archiving
o identify SLA(s) for data archiving
o recommend a data retention policy

Design for high availability
• recommend a solution for application and workload redundancy, including compute, database, and storage
• recommend a solution for autoscaling
• identify resources that require high availability
• identify storage types for high availability
• recommend a solution for geo-redundancy of workloads

Design Infrastructure (25-30%)
Design a compute solution
• recommend a solution for compute provisioning
• determine appropriate compute technologies, including virtual machines, App Services, Service Fabric, Azure Functions, Windows Virtual Desktop, and containers
• recommend a solution for containers
o AKS versus ACI and the configuration of each one
• recommend a solution for automating compute management

Design a network solution
• recommend a solution for network addressing and name resolution
• recommend a solution for network provisioning
• recommend a solution for network security
o private endpoints
o Firewalls
o Gateways
• recommend a solution for network connectivity to the Internet, on-premises networks, and other Azure virtual networks
• recommend a solution for automating network management
• recommend a solution for load balancing and traffic routing

Design an application architecture
• recommend a microservices architecture including Event Grid, Event Hubs, Service Bus, Storage Queues, Logic Apps, Azure Functions, and webhooks
• recommend an orchestration solution for deployment of applications including ARM templates, Logic Apps, or Azure Functions
o select an automation method
o choose which resources or lifecycle steps will be automated
o design integration with other sources such as an ITSM solution
o recommend a solution for monitoring automation
• recommend a solution for API integration
o design an API gateway strategy
o determine policies for internal and external consumption of APIs
o recommend a hosting structure for API management
o recommend when and how to use API Keys

Design migrations
• assess and interpret on-premises servers, data, and applications for migration
• recommend a solution for migrating applications and VMs
• recommend a solution for migration of databases
o determine migration scope, including redundant, related, trivial, and outdated data


QUESTION 1
You need to recommend a solution to generate a monthly report of all the new Azure Resource Manager
resource deployments in your subscription.
What should you include in the recommendation?

A. the Change Tracking management solution
B. Application Insights
C. Azure Monitor action groups
D. Azure Activity Log

Correct Answer: D

QUESTION 2
You have an Azure subscription that contains an Azure SQL database named DB1.
Several queries that query the data in DB1 take a long time to execute.
You need to recommend a solution to identify the queries that take the longest to execute.
What should you include in the recommendation?

A. SQL Database Advisor
B. Azure Monitor
C. Performance Recommendations
D. Query Performance Insight

Correct Answer: D

QUESTION 3
You have an on-premises Hyper-V cluster. The cluster contains Hyper-V hosts that run Windows Server 2016
Datacenter. The hosts are licensed under a Microsoft Enterprise Agreement that has Software Assurance.
The Hyper-V cluster contains 30 virtual machines that run Windows Server 2012 R2. Each virtual machine
runs a different workload. The workloads have predictable consumption patterns.
You plan to replace the virtual machines with Azure virtual machines that run Windows Server 2016. The
virtual machines will be sized according to the consumption pattern of each workload.
You need to recommend a solution to minimize the compute costs of the Azure virtual machines.
Which two recommendations should you include in the solution? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

A. Configure a spending limit in the Azure account center.
B. Create a virtual machine scale set that uses autoscaling.
C. Activate Azure Hybrid Benefit for the Azure virtual machines.
D. Purchase Azure Reserved Virtual Machine Instances for the Azure virtual machines.
E. Create a lab in Azure DevTest Labs and place the Azure virtual machines in the lab.

Correct Answer: CD

QUESTION 4
A company has a hybrid ASP.NET Web API application that is based on a software as a service (SaaS) offering.
Users report general issues with the data. You advise the company to implement live monitoring and use ad
hoc queries on stored JSON data. You also advise the company to set up smart alerting to detect anomalies in the data.
You need to recommend a solution to set up smart alerting.
What should you recommend?

A. Azure Site Recovery and Azure Monitor Logs
B. Azure Data Lake Analytics and Azure Monitor Logs
C. Azure Application Insights and Azure Monitor Logs
D. Azure Security Center and Azure Data Lake Store

Correct Answer: B

Actualkey Microsoft Azure AZ-304 exam pdf, Certkingdom Microsoft Azure AZ-304 PDF

MCTS Training, MCITP Trainnig

Best Microsoft Azure AZ-304 Certification, Microsoft Azure AZ-304 Training at certkingdom.com

Click to rate this post!
[Total: 0 Average: 0]