Guaranteed of 70-533 test question materials and training tools for Microsoft certification for candidates, Real Success Guaranteed with Updated 70-533 pdf dumps vce Materials. 100% PASS Implementing Microsoft Azure Infrastructure Solutions exam Today!
2021 Oct 70-533 free practice exam
Q51. You plan to use Password Sync on your DirSync Server with Azure Active Directory {Azure AD) on your company network. You configure the DirSync server and complete an initial synchronization of the users.
Several remote users are unable to log in to Office 365. You discover multiple event log entries for "Event ID 611 Password synchronization failed for domain."
You need to resolve the password synchronization issue.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Restart Azure AD Sync Service.
B. Run the Set-FullPasswordSync Power Shell cmdlet.
C. Force a manual synchronization on the DirSync server.
D. Add the DirSync service account to the Schema Admins domain group.
Answer: A,B
Explanation: On the computer that has the Azure Active Directory Sync tool installed, follow these steps: . Perform.a full password sync for all users who are synced through directory synchronization. To do this, follow these steps: Set-FullPasswordSync . Restart the Forefront Identity Manager Synchronization Service. To do this, follow
these steps: Reference: User passwords don't sync if your organization is using Azure Active Directory synchronization
http://support2.microsoft.com/kb/2915221
Q52. You manage an Azure Web Site that is running in Shared mode.
You discover that the website is experiencing increased average response time during periods of heavy user activity.
You need to update the website configuration to address the performance issues as they occur.
What should you do?
A. Set the website to Standard mode and configure automatic scaling based on CPU utilization.
B. Configure automatic seating during specific dates.
C. Modify the website instance size.
D. Configure automatic scaling based on memory utilization.
E. Set the website to Basic mode and configure automatic scaling based on CPU utilization.
Answer: A
Explanation: Scaling to Standard Plan Mode Selecting Standard expands the Capacity section to reveal the Instance Size and Instance Count options, which are also available in Basic mode. The Edit Scale Settings for Schedule and Scale by Metric options are available only in Standard mode.
Note:
* For increased performance and throughput for your websites on Microsoft Azure, you can use the Azure Management Portal to scale your Web Hosting Plan mode from Free to Shared, Basic, or Standard.
* There are 2 options for scaling:
Based on a Schedule Based on CPU usage
Reference: Azure, How to Scale Websites
Q53. Your company has two cloud services named CS01 and CS02. You create a virtual machine (VM) in CS02 named Accounts.
You need to ensure that users in CS01 can access the Accounts VM by using port 8080.
What should you do?
A. Create a firewall rule.
B. Configure load balancing.
C. Configure port redirection.
D. Configure port forwarding.
E. Create an end point.
Answer: E
Explanation: All virtual machines that you create in Azure can automatically communicate using a private network channel with other virtual machines in the same cloud service or virtual network. However, other resources on the Internet or other virtual networks require endpoints to handle the inbound network traffic to the virtual machine.
Reference: How to Set Up Endpoints to a Virtual Machine
URL: http://azure.microsoft.com/en-us/documentation/articles/virtual-machines-set-up-endpoints/
Q54. HOTSPOT
You manage a public-facing web application which allows authenticated users to upload and download large files. On the initial public page there is a promotional video.
You plan to give users access to the site content and promotional video.
In the table below, identify the access method that should be used for the anonymous and authenticated parts of the application. Make only one selection in each column.
Answer:
Q55. Your company has two physical locations configured in a geo-clustered environment that includes:
System Center Virtual Machine Manager 2012 R2
System Center Data Protection Manager 2012 R2
SQL Server 2012
Windows Server 2012 R2 Hyper-V
Over 100 virtual machines (VMs) in each physical location
Your company has recently signed up for Azure.
You plan to leverage your current network environment to provide a backup solution for your VMs.
You need to recommend a solution that ensures all VMs are redundant and deployable between locations. You also want the solution to minimize downtime in the event of an outage at either physical location.
Which solution should you recommend?
A. Configure a backup vault in Azure and use Data Protection Manager to back up The Windows Servers.
B. Use Data Protection Manager and back up the VMs in each location.
C. Use Azure site recovery in an on-premises to Azure protection configuration.
D. Use Azure site recovery in an on-premises to on-premises protection configuration.
Answer: D
Explanation: On-Premises to On-Premises (Hyper-V replication)
* Cloud metadata is sent to Azure Site Recovery.
Replicated data is stored in location specified on target Hyper-V server.
* Azure account with Azure Site Recovery enabled.
* Virtual machines replicate from source on-premises Hyper-V server to another. You can set up reverse replication to replicate back to the source location.
* Requires source and target VMM servers with at least one cloud on each, or a single VMM server with two clouds. Clouds must contain at least one Hyper-V host server or cluster.
Reference: Microsoft Azure, Site Recovery
Up to the minute 70-533 test engine:
Q56. You manage a collection of large video files that is stored in an Azure Storage account.
A user wants access to one of your video files within the next seven days.
You need to allow the user access only to the video file, and then revoke access once the user no longer needs it.
What should you do?
A. Give the user the secondary key for the storage account.
Once the user is done with the file, regenerate the secondary key.
B. Create an Ad-Hoc Shared Access Signature for the Blob resource.
Set the Shared Access Signature to expire in seven days.
C. Create an access policy on the container.
Give the external user a Shared Access Signature for the blob by using the policy.
Once the user is done with the file, delete the policy.
D. Create an access policy on the blob.
Give the external user access by using the policy.
Once the user is done with the file, delete the policy.
Answer: C
Explanation: See 3) below. By default, only the owner of the storage account may access blobs, tables, and queues within that account. If your service or application needs to make these resources available to other clients without sharing your access key, you have the following options for permitting access:
1.You can set a container's permissions to permit anonymous read access to the container and its blobs. This is not allowed for tables or queues.
2. You can expose a resource via a shared access signature, which enables you to delegate restricted access to a container, blob, table or queue resource by specifying the interval for which the resources are available and the permissions that a client will have to it.
3. You can use a stored access policy to manage shared access signatures for a container or its blobs, for a queue, or for a table. The stored access policy gives you an additional measure of control over your shared access signatures and also provides a straightforward means to revoke them.
Reference: Manage Access to Azure Storage Resources
Q57. HOTSPOT
You manage an Azure Web Site named contosoweb.
Some users report that they receive the following error when they access contosoweb:
"http Status 500.0 - Internal Server Error."
You need to view detailed diagnostic information in XML format.
Which option should you enable? To answer, select the appropriate option in the answer
area.
Answer:
Q58. You manage a cloud service that supports features hosted by two instances of an Azure virtual machine (VM).
You discover that occasional outages cause your service to fail.
You need to minimize the impact of outages to your cloud service.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Deploy a third instance of the VM.
B. Configure Load Balancing on the VMs.
C. Redeploy the VMs to belong to an Affinity Group.
D. Configure the VMs to belong to an Availability Set.
Answer: B,D
Explanation: Adding your virtual machine to an availability set helps your application stay available during network failures, local disk hardware failures, and any planned downtime..
Combine the Azure Load Balancer with an Availability Set to get the most application resiliency. The Azure Load Balancer distributes traffic between multiple virtual machines..
http://azure.microsoft.com/en-gb/documentation/articles/virtual-machines-manage-availability/
Reference: Manage the availability of virtual machines, Understand planned versus unplanned maintenance
Q59. You manage a cloud service that utilizes an Azure Service Bus queue. You need to ensure that messages that are never consumed are retained. What should you do?
A. Check the MOVE TO THE DEAD-LETTER SUBQUEUE option for Expired Messages in the Azure Portal.
B. From the Azure Management Portal, create a new queue and name it Dead-Letter.
C. Execute the Set-AzureServiceBus PowerShell cmdlet.
D. Execute the New-AzureSchedulerStorageQueueJob PowerShell cmdlet.
Answer: A
Explanation: The EnableDeadLetteringOnMessageExpiration property allows to enable\disable the dead-lettering on message expiration.
Reference: Azure, Managing and Testing Topics, Queues and Relay Services with the Service Bus Explorer Tool
Q60. You manage two datacenters in different geographic regions and one branch office.
You plan to implement a geo-redundant backup solution.
You need to ensure that each datacenter is a cold site for the other.
You create a recovery vault. What should you do next?
A. Install the provider.
B. Upload a certificate to the vault.
C. Generate a vault key.
D. Set all virtual machines to DHCP.
E. Prepare System Center Virtual Machine Manager (SCVMM) servers.
F. Create mappings between the virtual machine (VM) networks.
Answer: C
Explanation: . Within the Azure Portal screen, scroll down to Recovery Services (on the left menu), and click on “Create a New Vault” (this is where your VMs will be replicated to) which will bring up a Data Services / Recovery Services / Site Recovery Vault option, select Quick Create . For the name of the Vault, give it something you’d remember, in my case, I’ll call it RandsVault, and I’ll choose the Region West US since I’m in the Western United States, then click Create Vault . Once the Vault has been created, click on the Right Arrow next to the name of your vault. Under Setup Recovery, choose “Between an on-premise site and Microsoft Azure” so that you are telling the configuration settings that you are going to be replicating between your on-premise datacenter and Azure in the cloud. . You will now see a list of things you need to do which the first thing is to create a key exchange of certificates between Microsoft Azure and your VMM server.
Reference: Leveraging Microsoft Azure as your disaster recovery/failover data center