We provide real exam ref 70 534 architecting microsoft azure solutions pdf exam questions and answers braindumps in two formats. Download PDF & Practice Tests. Pass Microsoft exam ref 70 534 Exam quickly & easily. The exam ref 70 534 pdf PDF type is available for reading and printing. You can print more and practice many times. With the help of our Microsoft 70 534 dumps pdf dumps pdf and vce product and material, you can easily pass the 70 534 architecting microsoft azure solutions exam.
Q9. DRAG DROP - (Topic 6)
You manage a large number of on-premises applications. You plan to migrate the applications to Azure.
You need to implement Azure Storage for each type of data that the applications use.
For each type of data, which storage mechanism should you use? To answer, drag the appropriate storage mechanism to the correct type of data. Each storage mechanism may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Q10. - (Topic 6)
You manage an Azure Web App that has one Web Role instance, and several Worker Role instances. The cloud service has multiple tiers. Different groups develop and maintain each tier.
You need to ensure that the cloud service remains highly available and responsive when the Worker Roles are performing extensive work.
What should you do?
A. Create a resource group.
B. Create an availability set for each tier of the application.
C. Implement auto-scaling for the Worker Roles.
D. Create an availability set with two or more virtual machines.
Answer: C
Q11. - (Topic 1)
You need to design the system that alerts project managers to data changes in the contractor information app.
Which service should you use?
A. Azure Mobile Service
B. Azure Service Bus Message Queueing
C. Azure Queue Messaging
D. Azure Notification Hub
Answer: C
Explanation: * Scenario:
/ Mobile Apps: Event-triggered alerts must be pushed to mobile apps by using a custom Node.js script.
/ The service level agreement (SLA) for the solution requires an uptime of 99.9%
* If you are already using Azure Storage Blobs or Tables and you start using queues, you are guaranteed 99.9% availability. If you use Blobs or Tables with Service Bus queues, you will have lower availability.
Note: Microsoft Azure supports two types of queue mechanisms: Azure Queues and Service Bus Queues.
/ Azure Queues, which are part of the Azure storage infrastructure, feature a simple REST- based Get/Put/Peek interface, providing reliable, persistent messaging within and between services.
/ Service Bus queues are part of a broader Azure messaging infrastructure that supports queuing as well as publish/subscribe, Web service remoting, and integration patterns.
Reference: Azure Queues and Service Bus Queues - Compared and Contrasted https://msdn.microsoft.com/en-us/library/azure/hh767287.aspx
Q12. - (Topic 4)
You need to ensure that the website scales. What should you do?
A. Deploy Traffic Manager and configure it to route user traffic to specified endpoints to other Azure datacenters.
B. Enter multiple DNS entries in each virtual network to route requests to other Azure datacenters.
C. Set up a new Azure datacenter to Azure datacenter VPN to enable the solution to communicate across regions.
D. Use a virtual network to route network traffic in a single Azure datacenter.
Answer: C
Explanation: Scenario: The customer-facing website must automatically scale and replicate to locations around the world.
Azure ExpressRoute enables you to create private connections between Azure datacenters and infrastructure that’s on your premises or in a colocation environment. ExpressRoute connections do not go over the public Internet, and offer more reliability, faster speeds, lower latencies and higher security than typical connections over the Internet. In some cases, using ExpressRoute connections to transfer data between on-premises and Azure can also yield significant cost benefits.
Reference: ExpressRoute, Experience a faster, private connection to Azure http://azure.microsoft.com/en-us/services/expressroute/
Q13. DRAG DROP - (Topic 3)
You need to recommend network connectivity solutions for the experimental applications.
What should you recommend? To answer, drag the appropriate solution to the correct network connection requirements. Each solution may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
ExpressRoute gives you a fast and reliable connection to Azure making it suitable for scenarios like periodic data migration, replication for business continuity, disaster recovery and other high availability strategies. It can also be a cost-effective option for transferring large amounts of data such as datasets for high performance computing applications or moving large VMs between your dev/test environment in Azure and on-premises production environment.
Box 2: point-to-site VPN Box 3: point-to-site VPN
A point-to-site VPN also allows you to create a secure connection to your virtual network. In a point-to-site configuration, the connection is configured individually on each client computer that you want to connect to the virtual network
Box 4: site-to-site VPN
A site-to-site VPN allows you to create a secure connection between your on-premises site and your virtual network. To create a site-to-site connection, a VPN device that is located on your on-premises network is configured to create a secure connection with the Azure Virtual Network Gateway. Once the connection is created, resources on your local network and resources located in your virtual network can communicate directly and securely. Site- to-site connections do not require you to establish a separate connection for each client computer on your local network to access resources in the virtual network.
* Scenario: Support building experimental applications by using data from the Azure
deployment and on-premises data sources.
Q14. HOTSPOT - (Topic 6)
You are migrating an on-premises application to Azure. The application requires secure storage of database connection strings. When the application is running locally, the connection strings are encrypted with an X509 certificate prior to being stored on disk. The X509 certificate is part of a trust chain to allow the certificate to be revoked by the Certificate Authority if a security breech is suspected.
The application must run on Azure. The X509 certificate must never be stored on disk or in RAM memory. A Certificate Authority must be able to revoke the certificate.
You need to configure Azure Key value.
How should you construct the Azure PowerShell script? To answer, select the appropriate A?ure PowerShell commands in the answer area.
Answer:
Q15. - (Topic 6)
You are evaluating an Azure application. The application includes the following elements:
✑ A web role that provides the ASP.NET user interface and business logic
✑ A single SQL database that contains all application data
Each webpage must receive data from the business logic layer before returning results to the client. Traffic has increased significantly. The business logic is causing high CPU usage.
You need to recommend an approach for scaling the application. What should you recommend?
A. Store the business logic results in Azure Table storage.
B. Vertically partition the SQL database.
C. Move the business logic to a worker role.
D. Store the business logic results in Azure local storage.
Answer: C
Explanation: For Cloud Services in Azure applications need both web and worker roles to
scale well.
Reference: Application Patterns and Development Strategies for SQL Server in Azure Virtual Machines
https://msdn.microsoft.com/en-us/library/azure/dn574746.aspx
Topic 7, Woodgrove Bank
Overview
Woodgrove Bank has 20 regional offices and operates 1,500 branch office locations. Each regional office hosts the servers, infrastructure, and applications that support that region. Woodgrove Bank plans to move all of Their on-premises resources to Azure, including virtual machine (VM)-based, line-of-business workloads, and SQL databases. You are the owner of the Azure subscription that Woodgrove Bank is using. Your team is using Git repositories hosted on GitHub for source control.
Security
Currently, Woodgrove Bank's Computer Security Incident Response Team (CSIRT) has a problem investigating security issues due to the lack of security intelligence integrated with their current incident response tools. This lack of integration introduces a problem during the detection (too many false positives), assessment, and diagnose stages. You decide to use Azure Security Center to help address this problem.
Woodgrove Bank has several apps with regulated data such as Personally Identifiable Information (PU) that require a higher level of security. All apps are currently secured by using an on-premises Active Directory Domain Services (AD DS). The company depends on following mission-critical apps: WGBLoanMaster, WGBLeaseLeader, and WGBCreditCruncher apps. You plan to move each of these apps to Azure as part of an app migration project.
Apps
The WGBLoanMaster app has been audited for transaction loss. Many transactions have been lost in processing and monetary write-offs have cost the bank. The app runs on two VMs that include several public end points.
The WGBteaseLeader app has been audited for several data breaches. The app includes a SQL Server database and a web-based portal. The portal uses an ASP.NET Web API function to generate a monthly aggregate report from the database.
The WGBCreditCruncher app runs on a VM and is load balanced at the network level. The app includes several stateless components and must accommodate scaling of increased credit processing. The app runs on a nightly basis to process credit transactions that are batched during the day. The app includes a web-based portal where customers can check their credit information. A mobile version of the app allows users to upload check images.
Business Requirements: WGBLoanMasterApp
The app audit revealed a need for zero transaction loss. The business is losing money due to the app losing and not processing loan information. In addition, transactions fail to process after running for a long time. The business has requested the aggregation processing to be scheduled for 01:00 to prevent system slowdown.
WGBLeaseLeader App
The app should be secured to stop data breaches. It the data is breached, it must not be readable. The app is continuing to see increased volume and the business does not want the issues presented in the WGBLoanMaster app. Transaction loss is unacceptable, and although the lease monetary amounts are smaller than loans, they are still an important profit center for Woodgrove Bank. The business would also like the monthly report to be automatically generated on the first of the month. Currently, a user must log in to the portal and click a button to generate the report.
WGBCreditCruncher app
The web-based portal area of the app must allow users to sign in with their Facebook credentials. The bank would like to allow this feature to enable more users to check their credit within the app.
Woodgrove Bank needs to develop a new financial risk modeling feature that they can include in the WGBCreditCruncher app. The financial risk modeling feature has not been developed due to costs associated with processing, transforming, and analyzing the large volumes of data that are collected. You need to find a way to implement parallel processing to ensure that the features runs efficiently, reliably, and quickly. The feature must scale based on computing demand to process the large volumes of data and output several financial risk models.
Technical Requirements: WGBLoanMaster App
The app uses several compute-intensive tasks that create long-running requests to the system. The app is critical to the business and must be scalable to increased loan processing demands. The VMs that run the app include a Windows Task Scheduler task that aggregates loan information from the app to send to a third party. This task runs a console app on the VM.
The app requires a messaging system to handle transaction processing. The messaging system must meet the following requirements:
*Allow messages to reside in the queue for up to a month
*Be able to publish and consume batches of messages
*Allow full integration with the Windows Communication Foundation (WCF) communication stack
*Provide a role-based access model to the queues, including different permissions for senders and receivers
You develop an Azure Resource Manager (ARM) template to deploy the VMs used to support the app. The template must be deployed to a new resource group and you must validate your deployment settings before creating actual resources.
WGBLeaseLeader App
The app must use Azure SQL Databases as a replacement to the current Microsoft SQL Server environment. The monthly report must be automatically generated.
The app requires a messaging system to handle transaction processing. The messaging system must meet the following requirements:
*Require server-side logs of all of the transactions run against your queues
*Track progress of a message within the queue
*Process the messages within 7 days
*Provide a differing timeout value per message
WGBCreditCruncher app
The app must
*Secure inbound and outbound traffic
*Analyze inbound network traffic for vulnerabilities.
*Use an instance-level public IP and allow web traffic on port 443 only.
*Upgrade the portal to a Single Page Application (SPA) that uses JavaScript Azure Active Directory (Azure AD), and the OAuth 2.0 implicit authorization grant to secure the Web API back end.
*Cache authentication and host the Web API back end using the Open Web Interface for
.NET (OWIN) middleware.
*Immediately compress check images received from the mobile web app.
*Schedule processing of the batched credit transactions on a nightly basis.
*Provide parallel processing and scalable computing resources to output financial risk models.
*Use simultaneous compute nodes to enable high performance computing and updating of the financial risk models.
Key Security Areas
Q16. HOTSPOT - (Topic 6)
You have an on-premises Active Directory Domain Services domain. You are considering moving your infrastructure to Azure Active Directory.
You need describe the features that each directory service provides.
For each feature, what should you implement? To answer, select the appropriate option from each list in the answer area.
Answer: