Winter Sale Special 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ex2p65

Exact2Pass Menu

Question # 4

You have a project in Azure DevOps that uses an Azure Boards board and stores code in a GitHub repository. The repository contains a file named README.md.

You need to ensure that README.md includes the status of the work items on the board. The solution must minimize administrative effort.

What should you do first?

A.

Enable GitHub annotations for the board.

B.

Install the Azure Boards app for GitHub.

C.

Create a GitHub personal access token (PAT).

D.

Select Allow anonymous users to access the status badge.

Full Access
Question # 5

You have an Azure function hosted in an App Service plan named az400-9940427-func1.

You need to configure az400-9940427-func1 to upgrade the functions automatically whenever new code is committed to the master branch of https://github.com/Azure-Samples/functions-quickstart.

To complete this task, sign in to the Microsoft Azure portal.

Full Access
Question # 6

You plan to deploy a template named D:\Deploy.json to a resource group named Deploy-lod9940427.

You need to modify the template to meet the following requirements, and then to deploy the template:

    The address space must be reduced to support only 256 total IP addresses.

    The subnet address space must be reduced to support only 64 total IP addresses.

To complete this task, sign in to the Microsoft Azure portal.

Full Access
Question # 7

You are deploying a server application that will run on a Server Core installation of Windows Server 2019.

You create an Azure key vault and a secret.

You need to use the key vault to secure API secrets for third-party integrations.

Which three actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

D18912E1457D5D1DDCBD40AB3BF70D5D

A.

Configure RBAC for the key vault.

B.

Modify the application to access the key vault.

C.

Configure a Key Vault access policy.

D.

Deploy an Azure Desired State Configuration (DSC) extension.

E.

Deploy a virtual machine that uses a system-assigned managed identity.

Full Access
Question # 8

You need to meet the technical requirements for controlling access to Azure DevOps.

What should you use?

A.

Azure Multi-Factor Authentication (MFA)

B.

on-premises firewall rules

C.

conditional access policies in Azure AD

D.

Azure role-based access control (Azure RBAC)

Full Access
Question # 9

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it As a result, these questions will not appear in the review screen.

You need to recommend an integration strategy for the build process of a Java application. The solution must meet the following requirements:

• The builds must access an on-premises dependency management system.

• The build outputs must be stored as Server artifacts m Azure DevOps.

• The source code must be stored in a get repository in Azure DevOps.

Solution: Configure the build pipeline to use a Microsoft-hosted agent pool running the Windows Server 2022 with Visual Studio 2022 image, include the Java Tool installer task in the build pipeline.

Does this meet the goal?

A.

Yes

B.

No

Full Access
Question # 10

You have an Azure Pipelines pipeline named Pipeline1 that has the following YAML definition.

NOTE: Each correct selection is worth one point.

Full Access
Question # 11

You plan to use Terraform to deploy an Azure resource group.

You need to install the required frameworks to support the planned deployment.

Which two frameworks should you install? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.

Vault

B.

Terratest

C.

Node.js

D.

Yeoman

E.

Tiller

Full Access
Question # 12

You have an Azure subscription.

You have the standards shown in the following table.

You plan to use Azure Pipelines to build and release web apps.

You need to recommend a solution to build the pipelines. The solution must meet the following requirements:

• Ensure that all new pipelines meet the security requirements defined in Standards

• Ensure that the first stage of all new pipelines contains the software prerequisites defined in Standard2.

• Minimize administrative effort.

What should you use to implement each standard? To answer, drag the appropriate options to the correct standards. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access
Question # 13

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an approval process that contains a condition. The condition requires that releases be approved by a team leader before they are deployed.

You have a policy stating that approvals must occur within eight hours.

You discover that deployment fail if the approvals take longer than two hours.

You need to ensure that the deployments only fail if the approvals take longer than eight hours.

Solution: From Pre-deployment conditions, you modify the Time between re-evaluation of gates option.

Does this meet the goal?

A.

Yes

B.

No

Full Access
Question # 14

You have a web app hosted on Azure App Service. The web app stores data in an Azure SQL database.

You need to generate an alert when there are 10,000 simultaneous connections to the database. The solution must minimize development effort.

Which option should you select in the Diagnostics settings of the database?

A.

Send to Log Analytics

B.

Stream to an event hub

C.

Archive to a storage account

Full Access
Question # 15

You have an Azure solution that contains a build pipeline in Azure Pipelines. You experience intermittent delays before the build pipeline starts. You need to reduce the time it takes to start the build pipeline. What should you do?

A.

Split the build pipeline into multiple stages.

B.

Purchase an additional parallel job.

C.

Create a new agent pool.

D.

Enable self-hosted build agents.

Full Access
Question # 16

HOTSPOT

You are using PowerShell to administer Azure Log Analytics workspaces.

You need to list the available workspaces and their properties.

How should you complete the command? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 17

Your company has a project in Azure DevOps.

You need to ensure that when there are multiple builds pending deployment only the most recent build is deployed.

What should you use?

A.

deployment queue settings

B.

deployment conditions

C.

release gates

D.

pull request triggers

Full Access
Question # 18

You have a GitHub organization named org1 and an Azure tenant named Tenant1.

You need to enable single sign-on (SSO) in Azure Active Directory (Azure AD) for the users in org1.

Which URIs should you use for the SAML configuration in Azure AD? To answer, drag the appropriate URIs to the correct settings. Each URI may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access
Question # 19

You use Get for source control.

You need to optimize the performance of a repository. The solution must meet the following requirements:

    Permanently remove all items referenced only in the ref log.

    Remove history that is NOT in any current branch.

How should you complete the command? To answer, select the appropriate options in the answer area.

Full Access
Question # 20

You plan to use Azure Kubernetes Service (AKS) to host containers deployed from images hosted in a Docker Trusted Registry.

You need to recommend a solution for provisioning and connecting to AKS. The solution must ensure that AKS is RBAC-enaWed and uses a custom service principal.

Which three commands should you recommend be run in sequence? To answer, move the appropriate commands from the list of commands to the answer area and arrange them in the coned order.

Full Access
Question # 21

Which package feed access levels should be assigned to the Developers and Team Leaders groups for the investment planning applications suite? To answer, drag the appropriate access levels to the correct groups. Each access level may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access
Question # 22

You have a project in Azure DevOps.

You plan to deploy a self-hosted agent by using an unattended configuration script.

Which two values should you define in the configuration script? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.

authorization credentials

B.

the project name

C.

the deployment group name

D.

the organization URL

E.

the agent pool name

Full Access
Question # 23

You have an Azure Repos repository named Repo1 that is used for source control.

You need to configure code scanning for Repo1.

Which three tasks should the pipeline perform in sequence? To answer, move the appropriate tasks from the list of tasks to the answer area and arrange them in the correct order

Full Access
Question # 24

How should you complete the code to initialize App Center in the mobile application? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection a worth one point.

Full Access
Question # 25

You are using GitHub as a source code repository.

You create a client-side Git hook on the commit-msg event. The hook requires that each commit message contain a custom work item tag.

You need to make a commit that does not have a work item tag.

Which git commit parameter should you use?

A.

--squash

B.

--no-verify

C.

--message ''

D.

--no-post-rewrite

Full Access
Question # 26

HOTSPOT

You have an Azure virtual machine named VM1 that runs Linux.

You plan to deploy the Desired State Configuration (DSC) extension to VM1.

You need to grant the Log Analytics agent the appropriate directory permissions.

How should you complete the command? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 27

How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 28

How should you configure the release retention policy for the investment planning applications suite? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 29

Which branching strategy should you recommend for the investment planning applications suite?

A.

release isolation

B.

main only

C.

development isolation

D.

feature isolation

Full Access
Question # 30

To resolve the current technical issue, what should you do to the Register-AzureRmAutomationDscNode command?

A.

Change the value of the ConfigurationMode parameter.

B.

Replace the Register-AzureRmAutomationDscNode cmdlet with

Register-AzureRmAutomationScheduledRunbook

C.

Add the AllowModuleOverwrite parameter.

D.

Add the DefaultProfile parameter.

Full Access
Question # 31

Where should the build and release agents for the investment planning application suite run? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 32

What should you use to implement the code quality restriction on the release pipeline for the investment planning applications suite?

A.

a trigger

B.

a pre deployment approval

C.

a post-deployment approval

D.

a deployment gate

Full Access
Question # 33

You need to configure a cloud service to store the secrets required by the mobile applications to call the share.

What should you include in the solution? To answer, select the appropriate options m the answer area, NOTE: Each correct selection is worth one point.

Full Access
Question # 34

You have Azure Pipelines and GitHub integrated as a source code repository.

The build pipeline has continuous integration enabled.

You plan to trigger an automated build whenever code changes are committed to the repository.

You need to ensure that the system will wait until a build completes before queuing another build.

What should you implement?

A.

path filters

B.

batch changes

C.

scheduled builds

D.

branch filters

Full Access
Question # 35

Task 6

You have an Azure function hosted in an App Service plan named az400-38443478-funct

You need to configure az400 38443478-funcl lo update the functions automatically whenever new code is committed to the main branch of https://githubcom/Azure-Samples/functions-quickstart.

NOTE: Access to GitHub is blocked in the exam environment. Access to GitHub is NOT required to complete the task successfully.

Full Access
Question # 36

Task 7

You need to prepare a network security group (NSG) named az400 38443478 nsgl to host an Azure DevOps pipeline agent. The solution must allow only the required outbound port for Azure DevOps and deny all other inbound and outbound access to the Internet

Full Access
Question # 37

Task 4

You need to configure a virtual machine template in a DevTest Labs environment named az400-38443478-dtl1. The operating system must be based on Windows Server 2016 Datacenter. Virtual machines created from the DevTest Lab must include the Selenium tool and the Google Chrome browser.

Full Access
Question # 38

Task 8

You need to ensure that the https://contoso.com/statushook webhook is called every time a repository named az40038443478acr 1 receives a new version of an image named dotnetapp

Full Access
Question # 39

Task 11

You need to write a KQL query that will count the number of inbound requests for each source IP address, for any connection made during the last three months of 2021.

Open Azure Data Explorer by using the following link:

https//dataexploter azure.com/clusters/help/databases/Securiitylogs

The requests are contained in a table named InboundBrowsing in the Securitylogs connection.

The query must return two columns named NumberOfRequests and SourcelP.

Export the query result to C:\Samples

Full Access
Question # 40

Task 5

You plan to stoic signed images in an Azure Container Registry instance named az40038443478act1.

You need to modify the SKU for az40038443478aa1 to support the planned images. The solution must minimize costs.

Full Access
Question # 41

Task 3

You need to create a new team dashboard named Dashboard1 for the default project team of Project1. The dashboard must display the members of the team

Full Access
Question # 42

Task 6

Initialize the default main branch, if it does not exist already.

For Project 1, you need to implement branch merging restrictions to enable squash merge for all changes merged into the main branch.

Full Access
Question # 43

Task 3

You need to ensure that an Azure Web App named az400-38443478-matn supports rolling upgrades The solution must ensure that only 10 percent of users who connect to az400-38443478 main use updated versions of the app. The solution must minimize administrative effort.

Full Access
Question # 44

Task 5

For Project1, you need to create a project wiki named Wiki1 that uses the Mermaid syntax to render a diagram A sample of the desired output is stored in C:\Resources\TCPHandshake.png.

Full Access
Question # 45

Task 9

In Project1, you need to create a variable group named varGroup1 that will contain the following variables:

serverNane: server1 dbName: db1

Full Access
Question # 46

Task 8

Initialize the default main branch, if it does not exist already.

In Project 1, you need to create a new Azure Pipelines YAML pipeline by using the ASP.NET template.

The pipeline must use Azure Repos as the hosting platform and must be created in a new branch named azure-pipelines.

Full Access
Question # 47

Task 7

Initialize the default main branch, if it does not exist already

In the User 1-42147509 organization, you need to install the Microsoft Security DevOps extension.

Next, create a new starter pipeline named starter1 that will use the following starter code.

Ensure that starter! includes a task that executes the extension and uses the following input*:

• Command: run

• Policy aruredevops

• Publish: true

Save the pipeline to a new branch named starter

Full Access
Question # 48

Task 10

For Project1, you need to ensure that artifacts, symbols, and attachments are retained for 60 days.

Full Access
Question # 49

Task 4

Initialize the default main branch, if it does not exist already.

In the Userl-42147509 Azure DevOps project, you need to implement an approval process for the default main branch.

The process must use the four-eyes principle and have at least one approval on every iteration.

Full Access
Question # 50

You plan to deploy a new database environment. The solution must meet the technical requirements. You need to prepare the database for the deployment. How should you format the export?

A.

NDF

B.

MDF

C.

BACPAC

D.

DACPAC

Full Access
Question # 51

You need to configure the alert for VM1. The solution must meet the technical requirements.

Which two settings should you configure? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 52

Task 12

You need to create a personal access token (PAT) named Token! that has only the following capabilities

• Read write, and manage code

• Read and execute builds

• Read releases

Token1 must expire in 60 days.

Full Access
Question # 53

Task 2

For the RG1 lod42147S09 resource group, you need to create an action group named DevOpsAG that can be triggered in any region by using Alerts.

The action group must email two users named admin1 @contoso.com and admin2@contoso.com and notify members of the Owner role for the resource.

Use only the common alert schema for notifying the resource owners.

Full Access
Question # 54

Task 1

Navigate to https://dev.azure.com, select Start Free, and specify the following credentials:

• UserUsefl-42147509@ExamUsers.com

• Password: eWrSalD2!

Use the default setting to sign up for Azure DevOps and create an Azure DevOps organization. Once the organization is created. creates private project named Project1.

You need to add an external user that has an email address of Usfrr2-42147S09@ExamUsers.com as a stakeholder of the User1 -42147509 Azure DevOps organization.

The user must be added to the most restrictive Azure DevOps group.

To complete this task, sign in to the Azure DevOps portal as Userl-42147509©ExamUsers.com.

Full Access
Question # 55

Your company creates a web application.

You need to recommend a solution that automatically sends to Microsoft Teams a dairy summary of the exceptions that occur m the application.

Which two Azure services should you recommend? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.

Microsoft Visual Studio App Center

B.

Azure DevOps Project

C.

Azure Logic Apps

D.

Azure Pipelines

E.

Azure Application Insights

Full Access
Question # 56

You need to the merge the POC branch into the main branch. The solution must meet the technical requirements.

Which command should you run?

A.

git push

B.

git merge --squash

C.

git merge --allow-unrelated-histories

D.

git rebase

Full Access
Question # 57

You need to meet the technical requirements for monitoring App1.

What should you use?

A.

Splunk

B.

Azure Application Insights

C.

Azure Advisor

D.

App Service logs

Full Access
Question # 58

You are configuring the Azure DevOps dashboard. The solution must meet the technical requirements.

Which widget should you use for each metric? To answer, drag the appropriate widgets to the correct metrics. Each widget may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access
Question # 59

You need to configure authentication for App1. The solution must support the planned changes.

Which three actions should you perform in sequence? To answer, move all actions from the list of actions to the answer area and arrange them in the correct order.

Full Access
Question # 60

You need !0 the merge the POC branch into the default branch. The solution must meet the technical requirements. Which command should you run?

A.

it push

B.

git merge -- allow-unrelated-histories

C.

git rebase

D.

git merge --squash

Full Access
Question # 61

You need to configure Azure Pipelines to control App2 builds.

Which authentication method should you use?

A.

Windows NTLM

B.

certificate

C.

SAML

D.

personal access token (PAT)

Full Access
Question # 62

You need to replace the existing DevOps tools to support the planned changes.

What should you use? To answer, drag the appropriate tools to the correct targets. Each tool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Full Access