• Home
  • Articles
  • Free AZ-305 Exam Files Verified & Correct Answers Downloaded Instantly [Q128-Q143]

Free AZ-305 Exam Files Verified & Correct Answers Downloaded Instantly [Q128-Q143]

Share

Free AZ-305 Exam Files Verified & Correct Answers Downloaded Instantly

Instant Download AZ-305 Dumps Q&As Provide PDF&Test Engine


Achieving the Microsoft AZ-305 certification demonstrates that the candidate has the skills and knowledge required to design and implement Azure infrastructure solutions. Designing Microsoft Azure Infrastructure Solutions certification can help IT professionals advance their careers and increase their earning potential. Additionally, it helps organizations identify individuals who have the skills and knowledge to design and implement Azure solutions that meet their business requirements.


To pass the Microsoft AZ-305 exam, candidates must have a strong understanding of various Azure services, how they can be used in different scenarios, and how to design solutions that meet specific business and technical requirements. Candidates must also be familiar with various Azure deployment models and understand how to use them to deploy solutions.

 

NEW QUESTION # 128
You have an Azure subscription that contains 10 web apps. The apps are integrated with Azure AD and are accessed by users on different project teams.
The users frequently move between projects.
You need to recommend an access management solution for the web apps. The solution must meet the following requirements:
* The users must only have access to the app of the project to which they are assigned currently.
* Project managers must verify which users have access to their project s app and remove users that are no longer assigned to their project.
* Once every 30 days, the project managers must be prompted automatically to verify which users are assigned to the projects.
What should you include in the recommendation?

  • A. Microsoft Defender for Identity
  • B. Microsoft Entra Permissions Management
  • C. Azure AD Identity Protection
  • D. Azure AD Identity Governance

Answer: D


NEW QUESTION # 129
A company has an existing web application that runs on virtual machines (VMs) in Azure.
You need to ensure that the application is protected from SQL injection attempts and uses a layer-7 load balancer. The solution must minimize disruption to the code for the existing web application.
What should you recommend? To answer, drag the appropriate values to the correct items. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-faq
https://docs.microsoft.com/en-us/azure/application-gateway/waf-overview


NEW QUESTION # 130
You are designing a solution that will include containerized applications running in an Azure Kubernetes Service (AKS) cluster.
You need to recommend a load balancing solution for HTTPS traffic. The solution must meet the following requirements:
* Automatically configure load balancing rules as the applications are deployed to the cluster.
* Support Azure Web Application Firewall (WAF).
* Support cookie-based affinity.
* Support URL routing.
What should you include the recommendation?

  • A. an NGINX ingress controller
  • B. Application Gateway Ingress Controller (AGIC)
  • C. an HTTP application routing ingress controller
  • D. the Kubernetes load balancer service

Answer: B

Explanation:
Explanation
Much like the most popular Kubernetes Ingress Controllers, the Application Gateway Ingress Controller provides several features, leveraging Azure's native Application Gateway L7 load balancer. To name a few:
* URL routing
* Cookie-based affinity
* Secure Sockets Layer (SSL) termination
* End-to-end SSL
* Support for public, private, and hybrid web sites
* Integrated support of Azure web application firewall
Application Gateway redirection support isn't limited to HTTP to HTTPS redirection alone. This is a generic redirection mechanism, so you can redirect from and to any port you define using rules. It also supports redirection to an external site as well.
Reference:
https://docs.microsoft.com/en-us/azure/application-gateway/features


NEW QUESTION # 131
You have an on-premises network that uses an IP address space of 172.16.0.0/16. You plan to deploy 25 virtual machines to a new Azure subscription. You identify the following technical requirements:
* All Azure virtual machines must be placed on the same subnet named Subnet1.
* All the Azure virtual machines must be able to communicate with all on-premises servers.
* The servers must be able to communicate between the on-premises network and Azure by using a site-to-site VPN.
You need to recommend a subnet design that meets the technical requirements.
What should you include in the recommendation? To answer, drag the appropriate network addresses to the correct subnets. Each network address may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 132
You have an Azure subscription.
Your on-premises network contains a file server named Server1. Server 1 stores 5 TB of company files that are accessed rarely.
You plan to copy the files to Azure Storage.
You need to implement a storage solution for the files that meets the following requirements:
* The files must be available within 24 hours of being requested.
* Storage costs must be minimized.
Which two possible storage solutions achieve this goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

  • A. Create a general-purpose v1 storage account. Create a file share in the storage account and copy the files to the file share.
  • B. Create a general-purpose v2 storage account that is configured for the Cool default access tier. Create a file share in the storage account and copy the files to the file share.
  • C. Create a general-purpose v1 storage account. Create a blob container and copy the files to the blob container.
  • D. Create an Azure Blob storage account that is configured for the Cool default access tier. Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.
  • E. Create a general-purpose v2 storage account that is configured for the Hot default access tier. Create a blob container, copy the files to the blob container, and set each file to the Archive access tier.

Answer: D,E

Explanation:
https://docs.microsoft.com/en-us/azure/storage/blobs/manage-access-tier?tabs=portal


NEW QUESTION # 133
You need to design a storage solution for an app that will store large amounts of frequently used dat a. The solution must meet the following requirements:
Maximize data throughput.
Prevent the modification of data for one year.
Minimize latency for read and write operations.
Which Azure Storage account type and storage service should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/azure/storage/blobs/archive-blob


NEW QUESTION # 134
To meet the authentication requirements of Fabrikam, what should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation
1
1
0


NEW QUESTION # 135
You have an Azure subscription named Subscription1 that is linked to a hybrid Azure Active Directory (Azure AD) tenant.
You have an on-premises datacenter that doesNOThave a VPN connection to Subscription1. The datacenter contains a computer named Server1 that has Microsoft SQL Server 2016 installed. Server1 is prevented from accessing the internet.
An Azure logic app named LogicApp1 requires write access to a database on Server1.
You need to recommend a solution to provide LogicApp1 with the ability to access Server1.
What should you recommend deploying on-premises and in Azure? To answer, select the appropriate options in the answer area.
NOTE:Each correct selection is worth one point.

Answer:

Explanation:

Explanation
Graphical user interface, text, application, chat or text message Description automatically generated

Box 1: An on-premises data gateway
For logic apps in global, multi-tenant Azure that connect to on-premises SQL Server, you need to have the on-premises data gateway installed on a local computer and a data gateway resource that's already created in Azure.
Box 2: A connection gateway resource
Reference:
https://docs.microsoft.com/en-us/azure/connectors/connectors-create-api-sqlazure


NEW QUESTION # 136
You have SQL Server on an Azure virtual machine. The databases are written to nightly as part of a batch process.
You need to recommend a disaster recovery solution for the dat
a. The solution must meet the following requirements:
Provide the ability to recover in the event of a regional outage.
Support a recovery time objective (RTO) of 15 minutes.
Support a recovery point objective (RPO) of 24 hours.
Support automated recovery.
Minimize costs.
What should you include in the recommendation?

  • A. Azure Site Recovery
  • B. Azure virtual machine availability sets
  • C. an Always On availability group
  • D. Azure Disk Backup

Answer: A

Explanation:
Replication with Azure Site Recover:
RTO is typically less than 15 minutes.
RPO: One hour for application consistency and five minutes for crash consistency.
Reference:
https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-sql


NEW QUESTION # 137
You are designing an application that will aggregate content for users.
You need to recommend a database solution for the application. The solution must meet the following requirements:
Support SQL commands.
Support multi-master writes.
Guarantee low latency read operations.
What should you include in the recommendation?

  • A. Azure SQL Database Hyperscale
  • B. Azure Cosmos DB SQL API
  • C. Azure SQL Database that uses active geo-replication
  • D. Azure Database for PostgreSQL

Answer: B

Explanation:
With Cosmos DB's novel multi-region (multi-master) writes replication protocol, every region supports both writes and reads. The multi-region writes capability also enables:
Unlimited elastic write and read scalability.
99.999% read and write availability all around the world.
Guaranteed reads and writes served in less than 10 milliseconds at the 99th percentile.
Reference:
https://docs.microsoft.com/en-us/azure/cosmos-db/distribute-data-globally


NEW QUESTION # 138
You have an Azure subscription that contains two applications named App1 and App2. App1 is a sales processing application. When a transaction in App1 requires shipping, a message is added to an Azure Storage account queue, and then App2 listens to the queue for relevant transactions.
In the future, additional applications will be added that will process some of the shipping requests based on the specific details of the transactions.
You need to recommend a replacement for the storage account queue to ensure that each additional application will be able to read the relevant transactions.
What should you recommend?

  • A. one Azure Service Bus topic
  • B. one Azure Service Bus queue
  • C. one Azure Data Factory pipeline
  • D. multiple storage account queues

Answer: A

Explanation:
A queue allows processing of a message by a single consumer. In contrast to queues, topics and subscriptions provide a one-to-many form of communication in a publish and subscribe pattern. It's useful for scaling to large numbers of recipients. Each published message is made available to each subscription registered with the topic. Publisher sends a message to a topic and one or more subscribers receive a copy of the message, depending on filter rules set on these subscriptions.
Reference:
https://docs.microsoft.com/en-us/azure/service-bus-messaging/service-bus-queues-topics-subscriptions


NEW QUESTION # 139
Your company deploys several Linux and Windows virtual machines (VMs) to Azure. The VMs are deployed with the Microsoft Dependency Agent and the Log Analytics Agent installed by using Azure VM extensions. On-premises connectivity has been enabled by using Azure ExpressRoute.
You need to design a solution to monitor the VMs.
Which Azure monitoring services should you use? To answer, select the appropriate Azure monitoring services in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/azure/network-watcher/traffic-analytics
https://docs.microsoft.com/en-us/azure/azure-monitor/insights/service-map


NEW QUESTION # 140
Your company develops a web service that is deployed to an Azure virtual machine named VM1. The web service allows an API to access real-time data from VM1.
The current virtual machine deployment is shown in the Deployment exhibit. (Click the Deployment tab).

The chief technology officer (CTO) sends you the following email message: "Our developers have deployed the web service to a virtual machine named VM1. Testing has shown that the API is accessible from VM1 and VM2. Our partners must be able to connect to the API over the Internet. Partners will use this data in applications that they develop." You deploy an Azure API Management (APIM) service. The relevant API Management configuration is shown in the API exhibit. (Click the API tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/azure/api-management/api-management-using-with-vnet


NEW QUESTION # 141
You need to recommend a solution that meets the data requirements for App1.
What should you recommend deploying to each availability zone that contains an instance of App1?

  • A. an Azure Cosmos DB that uses multi-region writes
  • B. an Azure Data Lake store that uses geo-zone-redundant storage (GZRS)
  • C. an Azure SQL database that uses active geo-replication
  • D. an Azure Storage account that uses geo-zone-redundant storage (GZRS)

Answer: A

Explanation:
Explanation
Scenario: App1 has the following data requirements:
* Each instance will write data to a data store in the same availability zone as the instance.
* Data written by any App1 instance must be visible to all App1 instances.
Azure Cosmos DB: Each partition across all the regions is replicated. Each region contains all the data partitions of an Azure Cosmos container and can serve reads as well as serve writes when multi-region writes is enabled.
Reference:
https://docs.microsoft.com/en-us/azure/cosmos-db/high-availability


NEW QUESTION # 142
You deploy several Azure SQL Database instances.
You plan to configure the Diagnostics settings on the databases as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 143
......

Exam Valid Dumps with Instant Download Free Updates: https://testking.practicedump.com/AZ-305-exam-questions.html

Related Articles

more
Microsoft AZ-305 Certification Practice Exam

Copyright © 2026 PracticeDump NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy