Win IT Exam with Last Dumps 2025

Microsoft AZ-400 Exam

Page 47/54
Viewing Questions 461 470 out of 535 Questions
87.04%

Question 461
HOTSPOT -
You have a project in Azure DevOps.
You plan to create a build pipeline that will deploy resources by using Azure Resource Manager templates. The templates will reference secrets stored in Azure
Key Vault.
You need to ensure that you can dynamically generate the resource ID of the key vault during template deployment.
What should you include in the template? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
AZ-400_461Q.png related to the Microsoft AZ-400 Exam
Image AZ-400_461R.png related to the Microsoft AZ-400 Exam



Box 1: "Microsoft.Resources/deployments"
Reference a secret with dynamic ID. You need to reference a key vault secret that varies based on the current deployment.
Example:
"resources": [
{
"apiVersion": "2018-05-01",
"name": "dynamicSecret",
"type": "Microsoft.Resources/deployments",
"properties": {
"mode": "Incremental",
"templateLink": {
Box 2: "templateLink"
In your parent template, you add the linked template and pass in a parameter that contains the dynamically generated resource ID.
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-keyvault-parameter

Question 462
Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.
Your company has an Azure DevOps project that includes a release pipeline.
You want to make use of the Helm package and deploy task to deploy to an Azure Kubernetes Services (AKS) cluster.
To make sure that the intended deployment is successful, you are required to install the necessary service in the AKS namespace.
Solution: You install the Tiller service.
Does the solution meet the goal?



Before you can deploy Helm in an RBAC-enabled AKS cluster, you need a service account and role binding for the Tiller service.
References:
https://docs.microsoft.com/en-us/azure/aks/kubernetes-helm

Question 463
DRAG DROP -
You need to implement Project6.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Select and Place:
AZ-400_463Q.png related to the Microsoft AZ-400 Exam
Image AZ-400_463R.png related to the Microsoft AZ-400 Exam



Scenario: Implement Project3, Project5, Project6, and Project7 based on the planned changes
AZ-400_463E_1.png related to the Microsoft AZ-400 Exam
Step 1: Open the release pipeline editor.
In the Releases tab of Azure Pipelines, select your release pipeline and choose Edit to open the pipeline editor.
Step 2: Enable Gates.
Choose the pre-deployment conditions icon for the Production stage to open the conditions panel. Enable gates by using the switch control in the Gates section.
Step 3: Add Query Work items.
Choose + Add and select the Query Work Items gate.
Configure the gate by selecting an existing work item query.
AZ-400_463E_2.png related to the Microsoft AZ-400 Exam
Note: A case for release gate is:
Incident and issues management. Ensure the required status for work items, incidents, and issues. For example, ensure deployment occurs only if no priority zero bugs exist, and validation that there are no active incidents takes place after deployment.
Reference:
https://docs.microsoft.com/en-us/azure/devops/pipelines/release/deploy-using-approvals?view=azure-devops#configure-gate

Question 464
You have developed an app for iOS. The devices of all the app users belong to a private distribution group in Microsoft Visual Studio App Center.
You are tasked with distributing a new release of the app from App Center.
You require a specific certificate file to achieve your goal.
Which of the following is the file extension of the certificate file?



A successful IOS device build will produce an ipa file. In order to install the build on a device, it needs to be signed with a valid provisioning profile and certificate.
To sign the builds produced from a branch, enable code signing in the configuration pane and upload a provisioning profile (.mobileprovision) and a valid certificate (.p12), along with the password for the certificate.
References:
https://docs.microsoft.com/en-us/appcenter/build/xamarin/ios/

Question 465
Your company develops an application named App1 that is deployed in production.
As part of an application update, a new service is being added to App1. The new service requires access to an application named App2 that is currently in development.
You need to ensure that you can deploy the update to App1 before App2 becomes available. You must be able to enable the service in App1 once App2 is deployed.
What should you do?



Feature flags support a customer-first DevOps mindset, to enable (expose) and disable (hide) features in a solution, even before they are complete and ready for release.
Incorrect Answers:
C: Branch policies are an important part of the Git workflow and enable you to:
- Isolate work in progress from the completed work in your master branch
- Guarantee changes build before they get to master
Reference:
https://docs.microsoft.com/en-us/azure/devops/migrate/phase-features-with-feature-flags


Question 466
You have a private distribution group that contains provisioned and unprovisioned devices.
You need to distribute a new iOS application to the distribution group by using Microsoft Visual Studio App Center.
What should you do?



When releasing an iOS app signed with an ad-hoc or development provisioning profile, you must obtain tester's device IDs (UDIDs), and add them to the provisioning profile before compiling a release. When you enable the distribution group's Automatically manage devices setting, App Center automates the before mentioned operations and removes the constraint for you to perform any manual tasks. As part of automating the workflow, you must provide the user name and password for your Apple ID and your production certificate in a .p12 format.
App Center starts the automated tasks when you distribute a new release or one of your testers registers a new device. First, all devices from the target distribution group will be registered, using your Apple ID, in your developer portal and all provisioning profiles used in the app will be generated with both new and existing device ID. Afterward, the newly generated provisioning profiles are downloaded to App Center servers.
Reference:
https://docs.microsoft.com/en-us/appcenter/distribution/groups

Question 467
You are developing an iOS application by using Azure DevOps.
You need to test the application manually on 10 devices without releasing the application to the public.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.



B: Follow these steps to register the devices:
Select the Register devices button.
A dialog prompts for your username and password used in the Apple Developer portal.
Once you sign in with your Apple username and password, App Center adds the unprovisioned devices to both your Apple developer account and the releases provisioning profile.
Optionally you can upload a .p12 file to re-sign the app and distribute it to the newly added devices. Read more on how to generate a .p12 file.
F: Registering a device means making it part of the list of devices on the Apple Developer portal that can then be included in a provisioning profile.
Incorrect Answers:
C: Only register the application in the iTunes store when it is ready for public release.
Reference:
https://docs.microsoft.com/en-us/appcenter/distribution/auto-provisioning

Question 468
You have a private distribution group that contains provisioned and unprovisioned devices.
You need to distribute a new iOS application to the distribution group by using Microsoft Visual Studio App Center.
What should you do?



The following diagram displays the entire app re-signing flow in App Center.
AZ-400_468E.png related to the Microsoft AZ-400 Exam
Incorrect Answers:
C: The application build must be signed.
D: The device owner does not need to be added.
Reference:
https://docs.microsoft.com/hu-hu/appcenter/distribution/auto-provisioning

Question 469
Your company manages incidents via ServiceNow.
You have recently created an application that runs on Azure.
You have to make sure that application authentication failure produces a ticket in ServiceNow.
Which Azure Log Analytics solution should you use?



The IT Service Management Connector (ITSMC) allows you to connect Azure and a supported IT Service Management (ITSM) product/service.
ITSMC supports connections with the following ITSM tools:
ServiceNow -
System Center Service Manager -
Provance -
Cherwell -
With ITSMC, you can -
Create work items in ITSM tool, based on your Azure alerts (metric alerts, Activity Log alerts and Log Analytics alerts).
Optionally, you can sync your incident and change request data from your ITSM tool to an Azure Log Analytics workspace.
References:
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/itsmc-overview

Question 470
SIMULATION -
You plan to deploy a website that will be hosted in two Azure regions.
You need to create an Azure Traffic Manager profile named az400123456789n1-tm in a resource group named RG1lod123456789. The solution must ensure that users will always connect to a copy of the website that is in the same country.
To complete this task, sign in to the Microsoft Azure portal.



1. Go to the Azure portal, navigate to Traffic Manager profiles and click on the Add button to create a routing profile.
AZ-400_470E_1.jpg related to the Microsoft AZ-400 Exam
2, In the Create Traffic Manager profile, enter, or select these settings:
Name: az400123456789n1-tm -
Routing method: Geographic -
Resource group: RG1lod123456789 -
AZ-400_470E_2.jpg related to the Microsoft AZ-400 Exam
Note: Traffic Manager profiles can be configured to use the Geographic routing method so that users are directed to specific endpoints (Azure, External or Nested) based on which geographic location their DNS query originates from. This empowers Traffic Manager customers to enable scenarios where knowing a user's geographic region and routing them based on that is important.
Reference:
https://azure.microsoft.com/en-us/blog/announcing-the-general-availability-of-geographic-routing-capability-in-azure-traffic-manager/