17 July, 2023
Download Microsoft AZ-400 Testing Material Online
we provide Accurate Microsoft AZ-400 free practice questions which are the best for clearing AZ-400 test, and to get certified by Microsoft Microsoft Azure DevOps Solutions (beta). The AZ-400 Questions & Answers covers all the knowledge points of the real AZ-400 exam. Crack your Microsoft AZ-400 Exam with latest dumps, guaranteed!
Online Microsoft AZ-400 free dumps demo Below:
Question 1
DRAG DROP
You need to configure Azure Automation for the computer in Group7.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Solution:
Step 1: Create a Desired State Configuration (DSC) configuration file that has an extension of .ps1.
Step 2: Run the Import-AzureRmAutomationDscConfiguration Azure Powershell cmdlet
The Import-AzureRmAutomationDscConfiguration cmdlet imports an APS Desired State Configuration (DSC) configuration into Azure Automation. Specify the path of an APS script that contains a single DSC configuration.
Example:
PS C:>Import-AzureRmAutomationDscConfiguration -AutomationAccountName "Contoso17"-ResourceGroupName "ResourceGroup01" -SourcePath "C:DSCclient.ps1" -Force
This command imports the DSC configuration in the file named client.ps1 into the Automation account named Contoso17. The command specifies the Force parameter. If there is an existing DSC configuration, this command replaces it. Step 3: Run the Start-AzureRmAutomationDscCompilationJob Azure Powershell
cmdlet
The Start-AzureRmAutomationDscCompilationJob cmdlet compiles an APS Desired State Configuration (DSC) configuration in Azure Automation.
References:
https://docs.microsoft.com/en-us/powershell/module/azurerm.automation/importazurermautomationdscconfiguration https://docs.microsoft.com/en-us/powershell/module/azurerm.automation/startazurermautomationdsccompilationjob
Does this meet the goal?
You need to configure Azure Automation for the computer in Group7.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Solution:
Step 1: Create a Desired State Configuration (DSC) configuration file that has an extension of .ps1.
Step 2: Run the Import-AzureRmAutomationDscConfiguration Azure Powershell cmdlet
The Import-AzureRmAutomationDscConfiguration cmdlet imports an APS Desired State Configuration (DSC) configuration into Azure Automation. Specify the path of an APS script that contains a single DSC configuration.
Example:
PS C:>Import-AzureRmAutomationDscConfiguration -AutomationAccountName "Contoso17"-ResourceGroupName "ResourceGroup01" -SourcePath "C:DSCclient.ps1" -Force
This command imports the DSC configuration in the file named client.ps1 into the Automation account named Contoso17. The command specifies the Force parameter. If there is an existing DSC configuration, this command replaces it. Step 3: Run the Start-AzureRmAutomationDscCompilationJob Azure Powershell
cmdlet
The Start-AzureRmAutomationDscCompilationJob cmdlet compiles an APS Desired State Configuration (DSC) configuration in Azure Automation.
References:
https://docs.microsoft.com/en-us/powershell/module/azurerm.automation/importazurermautomationdscconfiguration https://docs.microsoft.com/en-us/powershell/module/azurerm.automation/startazurermautomationdsccompilationjob
Does this meet the goal?
Question 2
You manage build pipelines and deployment pipelines by using Azure DevOps.
Your company has a team of 500 developers. New members are added continual lo the team
You need to automate me management of users and licenses whenever possible Which task must you perform manually?
Your company has a team of 500 developers. New members are added continual lo the team
You need to automate me management of users and licenses whenever possible Which task must you perform manually?
Question 3
Your company builds a multi tier web application.
>You use Azure DevOps and host the production application on Azure virtual machines.
Your team prepares an Azure Resource Manager template of the virtual machine that you mil use to test new features.
You need to create a staging environment in Azure that meets the following requirements:
¡E Minimizes the cost of Azure hosting
¡E Provisions the virtual machines automatically
¡E Use* the custom Azure Resource Manager template to provision the virtual machines
What should you do?
>You use Azure DevOps and host the production application on Azure virtual machines.
Your team prepares an Azure Resource Manager template of the virtual machine that you mil use to test new features.
You need to create a staging environment in Azure that meets the following requirements:
¡E Minimizes the cost of Azure hosting
¡E Provisions the virtual machines automatically
¡E Use* the custom Azure Resource Manager template to provision the virtual machines
What should you do?
Question 4
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline. What should you use?
You need to add code coverage testing and publish the outcomes to the pipeline. What should you use?
Question 5
DRAG DROP
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the appropriate security toots to the correct stages. Each security tool may be used once, more than once, or not at all. You may
need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point.
Solution:
Box 1: Threat modeling
Threat modeling¡¦s motto should be, ¡§The earlier the better, but not too late and never ignore.¡¨
Box 2: Static code analysis
Validation in the CI/CD begins before the developer commits his or her code. Static code analysis tools in the IDE provide the first line of defense to help ensure that security vulnerabilities are not introduced into the CI/CD process.
Box 3: Penetration testing
Once your code quality is verified, and the application is deployed to a lower environment like development or QA, the process should verify that there are not any security vulnerabilities in the running application. This can be accomplished by executing automated penetration test against the running application to scan it for vulnerabilities.
References: https://docs.microsoft.com/en-us/azure/devops/articles/securityvalidation- cicd-pipeline?view=vsts
Does this meet the goal?
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the appropriate security toots to the correct stages. Each security tool may be used once, more than once, or not at all. You may
need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point.
Solution:
Box 1: Threat modeling
Threat modeling¡¦s motto should be, ¡§The earlier the better, but not too late and never ignore.¡¨
Box 2: Static code analysis
Validation in the CI/CD begins before the developer commits his or her code. Static code analysis tools in the IDE provide the first line of defense to help ensure that security vulnerabilities are not introduced into the CI/CD process.
Box 3: Penetration testing
Once your code quality is verified, and the application is deployed to a lower environment like development or QA, the process should verify that there are not any security vulnerabilities in the running application. This can be accomplished by executing automated penetration test against the running application to scan it for vulnerabilities.
References: https://docs.microsoft.com/en-us/azure/devops/articles/securityvalidation- cicd-pipeline?view=vsts
Does this meet the goal?
Question 6
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create two standalone templates, each of which will deploy the resources in its respective group.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create two standalone templates, each of which will deploy the resources in its respective group.
Does this meet the goal?
Question 7
You use Azure SQL Database Intelligent Insights and Azure Application Insights foe monitoring.
You need to write ad-hoc Queries against the monitoring data. Which Query language should you use?
You need to write ad-hoc Queries against the monitoring data. Which Query language should you use?
Question 8
During a code review, you discover many quality issues. Many modules contain unused variables and empty catch Modes. You need to recommend a solution to improve the quality o' the code. What should you recommend?
Question 9
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create a main template that has two linked templates, each of which will deploy the resource in its respective group.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create a main template that has two linked templates, each of which will deploy the resource in its respective group.
Does this meet the goal?
Question 10
DRAG DROP
Your company has a project in Azure DevOps.
You plan to create a release pipeline that will deploy resources by using Azure Resource Manager templates. The templates will reference secrets stored in Azure
Key Vault.
You need to recommend a solution for accessing the secrets stored in the key vault during deployments. The solution must use the principle of least privilege.
What should you include in the recommendation? To answer, drag the appropriate configurations to the correct targets. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Solution:
Box 1: A key Vault advanced access policy
Box 2: RBAC
Management plane access control uses RBAC.
The management plane consists of operations that affect the key vault itself, such as:
„hCreating or deleting a key vault.
„hGetting a list of vaults in a subscription.
„hRetrieving Key Vault properties (such as SKU and tags).
„hSetting Key Vault access policies that control user and application access to keys and secrets.
References: https://docs.microsoft.com/en-us/azure/azure-resourcemanager/resource-manager-tutorial-use-key-vault
Does this meet the goal?
Your company has a project in Azure DevOps.
You plan to create a release pipeline that will deploy resources by using Azure Resource Manager templates. The templates will reference secrets stored in Azure
Key Vault.
You need to recommend a solution for accessing the secrets stored in the key vault during deployments. The solution must use the principle of least privilege.
What should you include in the recommendation? To answer, drag the appropriate configurations to the correct targets. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Solution:
Box 1: A key Vault advanced access policy
Box 2: RBAC
Management plane access control uses RBAC.
The management plane consists of operations that affect the key vault itself, such as:
„hCreating or deleting a key vault.
„hGetting a list of vaults in a subscription.
„hRetrieving Key Vault properties (such as SKU and tags).
„hSetting Key Vault access policies that control user and application access to keys and secrets.
References: https://docs.microsoft.com/en-us/azure/azure-resourcemanager/resource-manager-tutorial-use-key-vault
Does this meet the goal?
Question 11
HOTSPOT
How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Solution:
Every request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key. Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application
and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorizewith- shared-key
Does this meet the goal?
How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Solution:
Every request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key. Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application
and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorizewith- shared-key
Does this meet the goal?
Question 12
You have a brand policy in a project in Azure DevOps. The policy requires that code always builds successfully.
You need to ensure that a specific user can always merge change to the master branch, even if the code fails to compile. The solution must use the principle of least privilege.
What should you do?
You need to ensure that a specific user can always merge change to the master branch, even if the code fails to compile. The solution must use the principle of least privilege.
What should you do?
Question 13
HOTSPOT
You are configuring a release pipeline in Azure DevOps as shown in the exhibit.
Use the drop-down menus to select the answer choice that answers each question based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Solution:
Box 1: 5
There are five stages: Development, QA, Pre-production, Load Test and Production. They all have triggers.
Box 2: The Internal Review stage References: https://docs.microsoft.com/enus/ azure/devops/pipelines/release/triggers
Does this meet the goal?
You are configuring a release pipeline in Azure DevOps as shown in the exhibit.
Use the drop-down menus to select the answer choice that answers each question based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Solution:
Box 1: 5
There are five stages: Development, QA, Pre-production, Load Test and Production. They all have triggers.
Box 2: The Internal Review stage References: https://docs.microsoft.com/enus/ azure/devops/pipelines/release/triggers
Does this meet the goal?
Question 14
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen
Your company has a project in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: From the Continuous deployment trigger settings of the release pipeline, you enable the Pull request trigger setting.
Does the meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen
Your company has a project in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: From the Continuous deployment trigger settings of the release pipeline, you enable the Pull request trigger setting.
Does the meet the goal?
Question 15
Your company plans to use an agile approach to software development You need to recommend an application to provide communication between
members of the development team who work in locations around the world. The
application must meet the following requirements:
¡E Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
¡E Be available on Windows 10, Mac OS, iOS, and Android operating systems.
¡E Provide the ability to add external contractors and suppliers to projects.
¡E Integrate directly with Azure DevOps. What should you recommend?
members of the development team who work in locations around the world. The
application must meet the following requirements:
¡E Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
¡E Be available on Windows 10, Mac OS, iOS, and Android operating systems.
¡E Provide the ability to add external contractors and suppliers to projects.
¡E Integrate directly with Azure DevOps. What should you recommend?
Question 16
You have a GitHub repository.
You create a new repository in Azure DevOps.
You need to recommend a procedure to clone the repository from GitHub to Azure DevOps.
What should you recommend?
You create a new repository in Azure DevOps.
You need to recommend a procedure to clone the repository from GitHub to Azure DevOps.
What should you recommend?
Question 17
Your company has a project in Azure DevOps.
You need to ensure that when there are multiple builds pending deployment only the most recent build is deployed.
What should you use?
You need to ensure that when there are multiple builds pending deployment only the most recent build is deployed.
What should you use?
Question 18
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The applications must meet the following requirements:
„hProvide the ability to isolate the members of different project teams into separate
communication channels and to keep a history of the chats within those channels.
„hBe available on Windows 10, Mac OS, iOS, and Android operating systems.
„hProvide the ability to add external contractors and suppliers to projects.
„hIntegrate directly with Azure DevOps. What should you recommend?
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The applications must meet the following requirements:
„hProvide the ability to isolate the members of different project teams into separate
communication channels and to keep a history of the chats within those channels.
„hBe available on Windows 10, Mac OS, iOS, and Android operating systems.
„hProvide the ability to add external contractors and suppliers to projects.
„hIntegrate directly with Azure DevOps. What should you recommend?
Question 19
You have 50 Node.js-based projects that you scan by using WhiteSource. Each project includes Package.json, Package-lock.json, and Npm-shrinkwrap.json files. You need to minimize the number of libraries reports by WhiteSource to only the libraries that you explicitly reference.
What should you do?
What should you do?
Question 20
Where should the build and release agents for the investment planning applications suite run? To answer, select the appropriate options in the answer area
NOTE: Each correct selection is worth one point.
Solution:
Case Study: 2 Overview
Existing Environment
This is a case study Case studies are not limed separately. You can use as much exam time at you would like to complete each case. However there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided m the case study Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of the case study, a review screen will appear. This screen allows you to review your answers and to mate changes before you move to the next section of the exam, After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttions in the left pane to explore the content of the case study before you answer the questions. Clicking these buttions displays information such as business requirements, existing environment and problem statements. If the case study has
an All Information tab, note that the information displayed on identical to the Information displayed on the subsequent tabs. When you are ready to answer a question, click the question button to return to the question.
Requirements
Contoso plans to improve its IT development and operations processes implementing Azue DevOps principles. Contoso has an Azure subscription and creates an Azure DevOPs organization.
The Azure DevOps organization includes:
„hThe Docker extension
„hA deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2016.
The Azure subscription contains an Azure Automation account. Planned Changes
Contoso plans to create projects in Azure DevOps as shown in the following table.
Technical Requirements
Contoso identities the following technical requirements:
¡E Implement build agents rot Project 1.
¡E Whenever possible, use Azure resources
¡EAvoid using deprecated technologies
¡E Implement a code flow strategy for Project2 that will:
¡EEnable Team 2 to submit pull requests for Project2.
¡E Enable Team 2 to work independently on changes to a copy of Project?
¡E Ensure that any intermediary changes performed by Tram2 on a copy of Project2 will be subject to the same restrictions as the ones defied in the build policy of Project2.
¡E Whenever possible. Implement automation and minimize administrative effort.
¡E Implement Protect3, Project5, Project6, and Project7 based on the planned changes.
¡E Implement Project4 and configure the project to push Docker images to Azure Container Reentry.
Does this meet the goal?
NOTE: Each correct selection is worth one point.
Solution:
Case Study: 2 Overview
Existing Environment
This is a case study Case studies are not limed separately. You can use as much exam time at you would like to complete each case. However there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided m the case study Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of the case study, a review screen will appear. This screen allows you to review your answers and to mate changes before you move to the next section of the exam, After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttions in the left pane to explore the content of the case study before you answer the questions. Clicking these buttions displays information such as business requirements, existing environment and problem statements. If the case study has
an All Information tab, note that the information displayed on identical to the Information displayed on the subsequent tabs. When you are ready to answer a question, click the question button to return to the question.
Requirements
Contoso plans to improve its IT development and operations processes implementing Azue DevOps principles. Contoso has an Azure subscription and creates an Azure DevOPs organization.
The Azure DevOps organization includes:
„hThe Docker extension
„hA deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2016.
The Azure subscription contains an Azure Automation account. Planned Changes
Contoso plans to create projects in Azure DevOps as shown in the following table.
Technical Requirements
Contoso identities the following technical requirements:
¡E Implement build agents rot Project 1.
¡E Whenever possible, use Azure resources
¡EAvoid using deprecated technologies
¡E Implement a code flow strategy for Project2 that will:
¡EEnable Team 2 to submit pull requests for Project2.
¡E Enable Team 2 to work independently on changes to a copy of Project?
¡E Ensure that any intermediary changes performed by Tram2 on a copy of Project2 will be subject to the same restrictions as the ones defied in the build policy of Project2.
¡E Whenever possible. Implement automation and minimize administrative effort.
¡E Implement Protect3, Project5, Project6, and Project7 based on the planned changes.
¡E Implement Project4 and configure the project to push Docker images to Azure Container Reentry.
Does this meet the goal?
Question 21
Note: This question part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the staled goals. Some question sets might have more than one correct solution, whale others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to It. As a result, these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps depsoyment. You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure Repos.
Solution: You add a trigger to the build pipeline. Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to It. As a result, these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps depsoyment. You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure Repos.
Solution: You add a trigger to the build pipeline. Does this meet the goal?
Question 22
Your company develops an app for OS. All users of the app have devices that are members of a private distribution group in Microsoft Visual Studio App Center. You plan to distribute a new release of the app.
You need to identify which certificate file you require to distribute the new release from App Center.
Which file type should you upload to App Center?
You need to identify which certificate file you require to distribute the new release from App Center.
Which file type should you upload to App Center?