we provide 100% Guarantee Microsoft 70 534 exam questions practice exam which are the best for clearing microsoft 70 534 test, and to get certified by Microsoft Architecting Microsoft Azure Solutions. The 70 534 architecting microsoft azure solutions pdf Questions & Answers covers all the knowledge points of the real exam ref 70 534 architecting microsoft azure solutions pdf exam. Crack your Microsoft microsoft 70 534 Exam with latest dumps, guaranteed!
Q17. - (Topic 1)
You need to assign permissions for the Virtual Machine workloads that you migrate to Azure.
The solution must use the principal of least privileges. What should you do?
A. Create all VMs in the cloud service named Groupl and then connect to the Azure subscription. Run the following Windows PowerShell command:
New-AzureRoleAssignment -Mail user1@vanarsdelltd.com -RoleDefinitionName Contributor -ResourceGroupName group1
B. In the Azure portal, select an individual virtual machine and add an owner.
C. In the Azure portal, assign read permission to the user at the subscription level.
D. Create each VM in a separate cloud service and then connect to the Azure subscription. Run the following Windows PowerShell command:
Get-AzureVM | New-AzureRoleAssignment -Mail userl@vanarsdelltd.com - RoleDefinitionName Contributor
Answer: A
Explanation: * Scenario: Permissions must be assigned by using Role Based Access Control (RBAC).
* Role-Based access control (RBAC) in the Azure Portal and Azure Resource Management
API allows you to manage access to your subscription at a fine-grained level. With this feature, you can grant access for Active Directory users, groups, or service principals by assigning some roles to them at a particular scope.
Create a role assignment
Use New-AzureRoleAssignment to create a role assignment.
Example: This will create a role assignment for a group at a resource group level.
PS C:\> New-AzureRoleAssignment -ObjectID <group object ID> -RoleDefinitionName Reader -ResourceGroupName group1
Reference: Managing Role-Based Access Control with Windows PowerShell https://azure.microsoft.com/en-gb/documentation/articles/role-based-access-control-
powershell/
Q18. - (Topic 7)
You need to generate the report for the WGBLeaseLeader app. Which Azure service should you use?
A. Azure Scheduler
B. Azure Data Lake Store
C. Azure Storage Queue
D. Azure Stream Analytics
Answer: A
Q19. DRAG DROP - (Topic 6)
You need to automate tasks with Azure by using Azure PowerShell workflows.
How should you complete the Azure PowerShell script? To answer, drag the appropriate cmdlet to the correct location. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
workflow Use-WorkflowCheckpointSample
{
# An exception occurs if 'HasBeenSuspended' does not already exist.
# Exceptions that are not caught with a try/catch will cause the runbook to suspend.
Set-AutomationVariable -Name 'HasBeenSuspended' -Value $False
# This line occurs before the checkpoint. When the runbook is resumed after
# suspension, 'Before Checkpoint' will not be output a second time. Write-Output "Before Checkpoint"
# A checkpoint is created. Checkpoint-Workflow
# This line occurs after the checkpoint. The runbook will start here on resume. Write-Output "After Checkpoint"
$HasBeenSuspended = Get-AutomationVariable -Name 'HasBeenSuspended'
# If branch only executes if the runbook has not previously suspended. if (!$HasBeenSuspended) {
Set-AutomationVariable -Name 'HasBeenSuspended' -Value $True
# This will cause a runtime exception. Any runtime exception in a runbook
# will cause the runbook to suspend. 1 + "abc"
}
Write-Output "Runbook Complete"
}
Q20. - (Topic 6)
A company has multiple Azure subscriptions. It plans to deploy a large number of virtual machines (VMs) into Azure.
You install the Azure PowerShell module, but you are unable connect to all of the company's Azure subscriptions.
You need to automate the management of the Azure subscriptions. Which two Azure PowerShell cmdlets should you run?
A. Get-AzurePublishSettingsFile
B. Import-AzurePublishSettingsFile
C. Add-AzureSubscription
D. Import-AzureCertificate
E. Get-AzureCertificate
Answer: A,B
Explanation: Before you start using the Windows Azure cmdlets to automate deployments, you must configure connectivity between the provisioning computer and Windows Azure. You can do this automatically by downloading the PublishSettings file from Windows Azure and importing it.
To download and import publish settings and subscription information
✑ At the Windows PowerShell command prompt, type the following command, and then press Enter.
Get-AzurePublishSettingsFile
2. Sign in to the Windows Azure Management Portal, and then follow the instructions to download your Windows Azure publishing settings. Save the file as a .publishsettings type file to your computer.
3. In the Windows Azure PowerShell window, at the command prompt, type the following command, and then press Enter.
Import-AzurePublishSettingsFile <mysettings>.publishsettings
Reference: How to: Download and Import Publish Settings and Subscription Information https://msdn.microsoft.com/en-us/library/dn385850%28v=nav.70%29.aspx
Q21. - (Topic 6)
Contoso, Ltd., uses Azure websites for public-facing customer websites. The company has a mobile app that requires customers sign in by using a Contoso customer account.
Customers must be able to sign on to the websites and mobile app by using a Microsoft, Facebook, or Google account. All transactions must be secured in-transit regardless of device.
You need to configure the websites and mobile app to work with external identity providers. Which three actions should you perform? Each correct answer presents part of the
solution.
A. Request a certificate from a domain registrar for the website URL, and enable TLS/SSL.
B. Configure IPsec for the websites and the mobile app.
C. Configure the KerberosTokenProfile 1.1 protocol.
D. Configure OAuth2 to connect to an external authentication provider.
E. Build an app by using MVC 5 that is hosted in Azure to provide a framework for the underlying authentication.
Answer: A,D,E
Explanation: DE: This tutorial shows you how to build an ASP.NET MVC 5 web application that enables users to log in using OAuth 2.0 with credentials from an external authentication provider, such as Facebook, Twitter, LinkedIn, Microsoft, or Google.
A:
* You will now be redirected back to the Register page of the MvcAuth application where you can register your Google account. You have the option of changing the local email registration name used for your Gmail account, but you generally want to keep the default email alias (that is, the one you used for authentication). Click Register.
* To connect to authentication providers like Google and Facebook, you will need to set up IIS-Express to use SSL.
Reference: Code! MVC 5 App with Facebook, Twitter, LinkedIn and Google OAuth2 Sign- on (C#)
http://www.asp.net/mvc/overview/security/create-an-aspnet-mvc-5-app-with-facebook-and- google-oauth2-and-openid-sign-on
Q22. HOTSPOT - (Topic 4)
The company has two corporate offices. Customers will access the websites from datacenters around the world.
You need to architect the global website strategy to meet the business requirements. Use the drop-down menus to select the answer choice that answers each question.
Answer:
Explanation:
* Scenario: The customer-facing website must have access to all ad copy and media.
Q23. DRAG DROP - (Topic 5)
You need to design the notification service for the customer-facing mobile app.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Explanation:
Azure Notification Hubs provide an easy-to-use infrastructure that enables you to send mobile push notifications from any backend (in the cloud or on-premises) to any mobile platform.
Configuration steps include:
1. Configure your Notification Hub
2. Connecting your app to the Notification Hub
3. Send notification from your back-end
You can send notifications using Notification Hubs from any back-end using the REST interface. You do this through a script, not a configuration of Mobile Services. Use Java or PHP for the script.
Q24. - (Topic 6)
You are designing an Azure application. The application includes services hosted in
different geographic locations. The service locations may change. You must minimize the cost of communication between services.
You need to recommend an approach for data transmission between your application and Azure services. The solution must minimize administrative effort.
What should you recommend?
A. Azure Table storage
B. Service Bus queue
C. Service Management API
D. Azure Queue storage
Answer: B
Explanation: The cost of ACS transactions is insignificant when performing messaging operations against Service Bus queues. Service Bus acquires one ACS token per a single instance of the messaging factory object. The token is then reused until it expires, after about 20 minutes. Therefore, the volume of messaging operations in Service Bus is not directly proportional to the amount of ACS transactions required to support these operations.
Reference: Azure Queues and Service Bus Queues - Compared and Contrasted https://msdn.microsoft.com/library/azure/hh767287.aspx