Case Study: Contoso Ltd

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
Overview
Contoso, Ltd. is a manufacturing company that has offices worldwide. Contoso works with partner organizations to bring products to market.
Contoso products are manufactured by using blueprint files that the company authors and maintains.
Existing Environment
Currently, Contoso uses multiple types of servers for business operations, including the following:
File servers
Domain controllers
Microsoft SQL Server servers

Your network contains an Active Directory forest named contoso.com. All servers and client computers are joined to Active Directory.
You have a public-facing application named App1. App1 is comprised of the following three tiers:

  • A SQL database
  • A web front end
  • A processing middle tier
Each tier is comprised of five virtual machines. Users access the web front end by using HTTPS only. Requirements
Planned Changes
Contoso plans to implement the following changes to the infrastructure:
Move all the tiers of App1 to Azure.
Move the existing product blueprint files to Azure Blob storage.
Create a hybrid directory to support an upcoming Microsoft Office 365 migration project.
Technical Requirements
Contoso must meet the following technical requirements:
  • Move all the virtual machines for App1 to Azure.
  • Minimize the number of open ports between the App1 tiers.
  • Ensure that all the virtual machines for App1 are protected by backups.
  • Copy the blueprint files to Azure over the Internet.
  • Ensure that the blueprint files are stored in the archive storage tier.
  • Ensure that partner access to the blueprint files is secured and temporary.
  • Prevent user passwords or hashes of passwords from being stored in Azure.
  • Use unmanaged standard storage for the hard disks of the virtual machines.
  • Ensure that when users join devices to Azure Active Directory (Azure AD), the users use a mobile phone to verify their identity.
Minimize administrative effort whenever possible.
User Requirements
Contoso identifies the following requirements for users:
Ensure that only users who are part of a group named Pilot can join devices to Azure AD.
Designate a new user named Admin1 as the service administrator of the Azure subscription. Ensure that a new user named User3 can create network objects for the Azure subscription.
 

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
You need to meet the user requirement for Admin1. What should you do?

From the Subscriptions blade, select the subscription, and then modify the Properties.
From the Subscriptions blade, select the subscription, and then modify the Access control (IAM) settings.
From the Azure Active Directory blade, modify the Properties.
From the Azure Active Directory blade, modify the Groups.

Answer: A
 

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
You need to move the blueprint files to Azure.
What should you do?

Generate a shared access signature (SAS). Map a drive, and then copy the files by using File Explorer.
Use the Azure Import/Export service.
Generate an access key. Map a drive, and then copy the files by using File Explorer.
Use Azure Storage Explorer to copy the files.

Answer: D
 

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
You need to implement a backup solution for App1 after the application is moved. What should you create first?

a recovery plan
an Azure Backup Server
a backup policy
a Recovery Services vault

Answer: D
 

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
You need to recommend a solution for App1. The solution must meet the technical requirements. What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

1122

1123

Explanation:
This reference architecture shows how to deploy VMs and a virtual network configured for an N-tier application, using SQL Server on Windows for the data tier.

1124
 

metro

Supplier
Supplier
Member
Joined
Oct 28, 2015
Messages
253
Reaction score
34
Points
18
You need to configure the Device settings to meet the technical requirements and the user requirements.
Which two settings should you modify? To answer, select the appropriate settings in the answer area.
1125

Answer:

1126

Explanation:
Box 1: Selected
Only selected users should be able to join devices
Box 2: Yes
Require Multi-Factor Auth to join devices.
From scenario:
?Ensure that only users who are part of a group named Pilot can join devices to Azure AD
?Ensure that when users join devices to Azure Active Directory (Azure AD), the users use a mobile phone to verify their identity.
Case Study: 3
Mix Questions
 
Top