10 Tips For 70-354 IT learners

Our pass rate is high to 98.9% and the similarity percentage between our 70-354 study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the Microsoft 70-354 exam in just one try? I am currently studying for the Microsoft 70-354 exam. Latest Microsoft 70-354 Test exam practice questions and answers, Try Microsoft 70-354 Brain Dumps First.

Q11. - (Topic 6) 

You are designing an Azure application. The application includes services hosted in different geographic locations. The service locations may change. 

You must minimize the cost of communication between services. 

You need to recommend an approach for data transmission between your application and Azure services. The solution must minimize administrative effort. 

What should you recommend? 

A. Azure Table storage 

B. Service Bus 

C. Service Management API 

D. Azure Queue storage 

Answer: B 

Explanation: The cost of ACS transactions is insignificant when performing messaging operations against Service Bus queues. Service Bus acquires one ACS token per a single instance of the messaging factory object. The token is then reused until it expires, after about 20 minutes. Therefore, the volume of messaging operations in Service Bus is not directly proportional to the amount of ACS transactions required to support these operations. 

Reference: Azure Queues and Service Bus Queues - Compared and Contrasted 

https://msdn.microsoft.com/library/azure/hh767287.aspx 

Q12. - (Topic 6) 

A company has multiple Azure subscriptions. It plans to deploy a large number of virtual machines (VMs) into Azure. 

You install the Azure PowerShell module, but you are unable connect to all of the company's Azure subscriptions. 

You need to automate the management of the Azure subscriptions. 

Which two Azure PowerShell cmdlets should you run? 

A. Get-AzurePublishSettingsFile 

B. Import-AzurePublishSettingsFile 

C. Add-AzureSubscription 

D. Import-AzureCertificate 

E. Get-AzureCertificate 

Answer: A,B 

Explanation: Before you start using the Windows Azure cmdlets to automate deployments, you must configure connectivity between the provisioning computer and Windows Azure. You can do this automatically by downloading the PublishSettings file from Windows Azure and importing it. 

To download and import publish settings and subscription information . At the Windows PowerShell command prompt, type the following command, and then press Enter. Get-AzurePublishSettingsFile 

2. 

Sign in to the Windows Azure Management Portal, and then follow the instructions to download your Windows Azure publishing settings. Save the file as a .publishsettings type file to your computer. 

3. 

In the Windows Azure PowerShell window, at the command prompt, type the following command, and then press Enter. Import-AzurePublishSettingsFile <mysettings>.publishsettings 

Reference: How to: Download and Import Publish Settings and Subscription Information 

https://msdn.microsoft.com/en-us/library/dn385850%28v=nav.70%29.aspx 

Q13. - (Topic 1) 

You need to design the system that alerts project managers to data changes in the contractor information app. 

Which service should you use? 

A. Azure Mobile Service 

B. Azure Service Bus Message Queueing 

C. Azure Queue Messaging 

D. Azure Notification Hub 

Answer: C 

Explanation: * Scenario: 

/ Mobile Apps: Event-triggered alerts must be pushed to mobile apps by using a custom 

Node.js script. 

/ The service level agreement (SLA) for the solution requires an uptime of 99.9% 

* If you are already using Azure Storage Blobs or Tables and you start using queues, you are guaranteed 99.9% availability. If you use Blobs or Tables with Service Bus queues, you will have lower availability. 

Note: Microsoft Azure supports two types of queue mechanisms: Azure Queues and Service Bus Queues. / Azure Queues, which are part of the Azure storage infrastructure, feature a simple REST-based Get/Put/Peek interface, providing reliable, persistent messaging within and between services. / Service Bus queues are part of a broader Azure messaging infrastructure that supports queuing as well as publish/subscribe, Web service remoting, and integration patterns. 

: Azure Queues and Service Bus Queues - Compared and Contrasted 

https://msdn.microsoft.com/en-us/library/azure/hh767287.aspx 

Q14. - (Topic 1) 

You need to assign permissions for the Virtual Machine workloads that you migrate to Azure. 

The solution must use the principal of least privileges. 

What should you do? 

A. Create all VMs in the cloud service named Groupl and then connect to the Azure 

subscription. Run the following Windows PowerShell command: 

New-AzureRoleAssignment -Mail user1@vanarsdelltd.com -RoleDefinitionName 

Contributor -ResourceGroupName group1 

B. In the Azure portal, select an individual virtual machine and add an owner. 

C. In the Azure portal, assign read permission to the user at the subscription level. 

D. Create each VM in a separate cloud service and then connect to the Azure subscription. 

Run the following Windows PowerShell command: 

Get-AzureVM | New-AzureRoleAssignment -Mail userl@vanarsdelltd.com -

RoleDefinitionName Contributor 

Answer: A 

Explanation: * Scenario: Permissions must be assigned by using Role Based Access Control (RBAC). 

* Role-Based access control (RBAC) in the Azure Portal and Azure Resource Management API allows you to manage access to your subscription at a fine-grained level. With this feature, you can grant access for Active Directory users, groups, or service principals by assigning some roles to them at a particular scope. 

Create a role assignment 

Use New-AzureRoleAssignment to create a role assignment. 

Example: This will create a role assignment for a group at a resource group level. 

PS C:\> New-AzureRoleAssignment -ObjectID <group object ID> -RoleDefinitionName 

Reader -ResourceGroupName group1 

Reference: Managing Role-Based Access Control with Windows PowerShell 

https://azure.microsoft.com/en-gb/documentation/articles/role-based-access-control-powershell/ 

Q15. - (Topic 6) 

A company has 10 on-premises SQL databases. The company plans to move the databases to SQL Server 2012 that runs in Azure Infrastructure-as-a-Service (IaaS). After migration, the databases will support a limited number of Azure websites in the same Azure Virtual Network. 

You have the following requirements: 

. You must restore copies of existing on-premises SQL databases to the SQL 

servers that run in Azure IaaS. 

. You must be able to manage the SQL databases remotely. 

. You must not open a direct connection from all of the machines on the on-

premises network to Azure. 

. Connections to the databases must originate from only five Windows computers. 

You need to configure remote connectivity to the databases. 

Which technology solution should you implement? 

A. Azure Virtual Network site-to-site VPN 

B. Azure Virtual Network multi-point VPN 

C. Azure Virtual Network point-to-site VPN 

D. Azure ExpressRoute 

Answer: C 

Explanation: A point-to-site VPN would meet the requirements. 

Reference: Configure a Point-to-Site VPN connection to an Azure Virtual Network 

https://azure.microsoft.com/en-us/documentation/articles/vpn-gateway-point-to-site-create/ 

Q16. - (Topic 1) 

You need to recommend a solution that allows partners to authenticate. 

Which solution should you recommend? 

A. Configure the federation provider to trust social identity providers. 

B. Configure the federation provider to use the Azure Access Control service. 

C. Create a new directory in Azure Active Directory and create a user account for the partner. 

D. Create an account on the VanArsdel domain for the partner and send an email message that contains the password to the partner. 

Answer: B 

Explanation: * Scenario: The partners all use Hotmail.com email addresses. 

* In Microsoft Azure Active Directory Access Control (also known as Access Control Service or ACS), an identity provider is a service that authenticates user or client identities and issues security tokens that ACS consumes. The ACS Management Portal provides built-in support for configuring Windows Live ID as an ACS Identity Provider. 

Incorrect: 

Not C, not D: Scenario: VanArsdel management does NOT want to create and manage 

user accounts for partners. 

Reference: Identity Providers 

https://msdn.microsoft.com/en-us/library/azure/gg185971.aspx 

Topic 2, Trey Research

Background

Overview

Trey Research conducts agricultural research and sells the results to the agriculture and food industries. The company uses a combination of on-premises and third-party server clusters to meet its storage needs. Trey Research has seasonal demands on its services, with up to 50 percent drops in data capacity and bandwidth demand during low-demand periods. They plan to host their websites in an agile, cloud environment where the company can deploy and remove its websites based on its business requirements rather than the requirements of the hosting company.

A recent fire near the datacenter that Trey Research uses raises the management team's awareness of the vulnerability of hosting all of the company's websites and data at any single location. The management team is concerned about protecting its data from loss as a result of a disaster.

Websites

Trey Research has a portfolio of 300 websites and associated background processes that are currently hosted in a third-party datacenter. All of the websites are written in ASP.NET, and the background processes use Windows Services. The hosting environment costs Trey Research approximately S25 million in hosting and maintenance fees.

Infrastructure

Trey Research also has on-premises servers that run VMs to support line-of-business applications. The company wants to migrate the line-of-business applications to the cloud, one application at a time. The company is migrating most of its production VMs from an aging VMWare ESXi farm to a Hyper-V cluster that runs on Windows Server 2012.

Applications

DistributionTracking

Trey Research has a web application named Distributiontracking. This application constantly collects realtime data that tracks worldwide distribution points to customer retail sites. This data is available to customers at all times.

The company wants to ensure that the distribution tracking data is stored at a location that is geographically close to the customers who will be using the information. The system must continue running in the event of VM failures without corrupting data. The system is processor intensive and should be run in a multithreading environment.

HRApp

The company has a human resources (HR) application named HRApp that stores data in an on-premises SQL Server database. The database must have at least two copies, but data to support backups and business continuity must stay in Trey Research locations only.

The data must remain on-premises and cannot be stored in the cloud.

HRApp was written by a third party, and the code cannot be modified. The human resources data is used by all business offices, and each office requires access to the entire database. Users report that HRApp takes all night to generate the required payroll reports, and they would like to reduce this time.

MetricsTracking

Trey Research has an application named MetricsTracking that is used to track analytics for the DistributionTracking web application. The data MetricsTracking collects is not customer-facing. Data is stored on an on-premises SQL Server database, but this data should be moved to the cloud. Employees at other locations access this data by using a remote desktop connection to connect to the application, but latency issues degrade the functionality.

Trey Research wants a solution that allows remote employees to access metrics data without using a remote desktop connection. MetricsTracking was written in-house, and the development team is available to make modifications to the application if necessary.

However, the company wants to continue to use SQL Server for MetricsTracking.

Business Requirements

Business Continuity

You have the following requirements:

Move all customer-facing data to the cloud.

Web servers should be backed up to geographically separate locations,

If one website becomes unavailable, customers should automatically be routed to websites that are still operational.

Data must be available regardless of the operational status of any particular website.

The HRApp system must remain on-premises and must be backed up.

The MetricsTracking data must be replicated so that it is locally available to all Trey Research offices.

Auditing and Security

You have the following requirements:

Both internal and external consumers should be able to access research results.

Internal users should be able to access data by using their existing company credentials without requiring multiple logins.

Consumers should be able to access the service by using their Microsoft credentials.

Applications written to access the data must be authenticated.

Access and activity must be monitored and audited.

Ensure the security and integrity of the data collected from the worldwide distribution points for the distribution tracking application.

Storage and Processing

You have the following requirements:

Provide real-time analysis of distribution tracking data by geographic location.

Collect and store large datasets in real-time data for customer use.

Locate the distribution tracking data as close to the central office as possible to improve bandwidth.

Co-locate the distribution tracking data as close to the customer as possible based on the customer's location.

Distribution tracking data must be stored in the JSON format and indexed by metadata that is stored in a SQL Server database.

Data in the cloud must be stored in geographically separate locations, but kept with the same political boundaries.

Technical Requirements

Migration

You have the following requirements:

Deploy all websites to Azure.

Replace on-premises and third-party physical server clusters with cloud-based solutions.

Optimize the speed for retrieving exiting JSON objects that contain the distribution tracking data.

Recommend strategies for partitioning data for load balancing.

Auditing and Security

You have the following requirements:

Use Active Directory for internal and external authentication.

Use OAuth for application authentication.

Business Continuity

You have the following requirements:

Data must be backed up to separate geographic locations.

Web servers must run concurrent versions of all websites in distinct geographic locations.

Use Azure to back up the on-premises MetricsTracking data.

Use Azure virtual machines as a recovery platform for MetricsTracking and HRApp.

Ensure that there is at least one additional on-premises recovery environment for the HRApp.

9. DRAG DROP - (Topic 2) 

You need to ensure that customer data is secured both in transit and at rest. 

Which technologies should you recommend? To answer, drag the appropriate technology to the correct security requirement. Each technology may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. 

Answer: 

Q17. - (Topic 4) 

You need to analyze Lucerne’s performance monitoring solution. 

Which three applications should you monitor? Each correct answer presents a complete solution. 

A. The Lucerne Media-D application 

B. The data mining application 

C. The Lucerne Media-W application 

D. The Lucerne Media-M app 

E. The Lucerne Media-N app 

Answer: C,D,E 

Explanation: Monitor the web application and the mobile apps. 

C: Lucerne Media W - a web application that delivers media by using any browser 

D: Lucerne Media M - a mobile app that delivers media by using Windows Phone 8.1 

E: Lucerne Media N - a mobile app that delivers media by using an Android device 

* Scenario: 

/ Lucerne Publishing must be able to monitor the performance and usage of its customer-

facing app. 

/ Customers must be able to access all data by using a web application. They must also be 

able to access data by using a mobile app that is provided by Lucerne Publishing. 

Q18. - (Topic 3) 

You need to recommend a solution for publishing one of the company websites to Azure and configuring it for remote debugging. 

Which two actions should you perform? Each correct answer presents part of the solution. 

A. From Visual Studio, attach the debugger to the solution. 

B. Set the application logging level to Verbose and enable logging. 

C. Set the Web Server logging level to Information and enable logging. 

D. Set the Web Server logging level to Verbose and enable logging. 

E. From Visual Studio, configure the site to enable Debugger Attaching and then publish the site. 

Answer: A,D 

Explanation: * Scenario: 

/ Mitigate the need to purchase additional tools for monitoring and debugging. 

/A debugger must automatically attach to websites on a weekly basis. The scripts that 

handle the configuration and setup of debugging cannot work if there is a delay in attaching 

the debugger. 

* A: After publishing your application you can use the Server Explorer in Visual Studio to 

access your web sites. 

After signing in you will see your Web Sites under the Windows Azure node in Server 

Explorer. Right click on the site that you would like to debug and select Attach Debugger. 

D: We need to debug the web site, not an application. We should use the more informative 

Verbose logging level. 

Reference: Remote Debugging a Window Azure Web Site with Visual Studio 2013 

http://blogs.msdn.com/b/webdev/archive/2013/11/05/remote-debugging-a-window-azure-web-site-with-visual-studio-2013.aspx 

Q19. - (Topic 2) 

You need to configure the distribution tracking application. 

What should you do? 

A. Map each role to a single upgrade domain to optimize resource utilization. 

B. Design all services as stateless services. 

C. Configure operations to queue when a role reaches its capacity. 

D. Configure multiple worker roles to run on each virtual machine. 

Answer: D 

Explanation: * Scenario: distribution tracking application 

The system is processor intensive and should be run in a multithreading environment. 

Reference: Running multiple workers inside one Windows Azure Worker Role 

http://mark.mymonster.nl/2013/01/29/running-multiple-workers-inside-one-windows-azure-worker-role 

Q20. - (Topic 6) 

You are designing a distributed application for Azure. 

The application must securely integrate with on-premises servers. 

You need to recommend a method of enabling Internet Protocol security (IPsec)-protected 

connections between on-premises servers and the distributed application. 

What should you recommend? 

A. Azure Access Control 

B. Azure Content Delivery Network (CDN) 

C. Azure Service Bus 

D. Azure Site-to-Site VPN 

Answer: D 

Explanation: IPsec can be used on Azure Site-to-Site VPN connections. Distributed applications can used the IPSec VPN connections to communicate. 

Reference: About Virtual Network Secure Cross-Premises Connectivity 

https://msdn.microsoft.com/en-us/library/azure/dn133798.aspx