Monitor and maintain Azure resources for Microsoft Azure Administrator (AZ-104)

Sample Practice Questions

1. Question 1

   DRAG DROP - Your company has an Azure subscription that includes a number of Azure virtual machines (VMs), which are all part of the same virtual network. Your company also has an on-premises Hyper-V server that hosts a VM, named VM1, which must be replicated to Azure. Which of the following objects that must be created to achieve this goal? Answer by dragging the correct option from the list to the answer area. Select and Place:

2. Question 2

   Your company's Azure subscription includes Azure virtual machines (VMs) that run Windows Server 2016. One of the VMs is backed up every day using Azure Backup Instant Restore. When the VM becomes infected with data encrypting ransomware, you decide to recover the VM's files. Which of the following is TRUE in this scenario?
   1. A. You can only recover the files to the infected VM.
   2. B. You can recover the files to any VM within the company's subscription.
   3. C. You can only recover the files to a new VM.
   4. D. You will not be able to recover the files.
   Explanation

   The correct answer is: B. You can recover the files to any VM within the company's subscription..

   Azure Backup Instant Restore exposes the snapshot tier directly and supports item-level recovery (file recovery), which lets you mount the recovery point as an iSCSI target on any VM in the same subscription that meets the OS compatibility requirements (Windows-from-Windows or Linux-from-Linux). That means files from a compromised VM can be recovered to any compatible VM in the subscription, which is essential when the original VM cannot be trusted. Recovering only to the infected VM would defeat the purpose, recovering only to a new VM is more restrictive than what file recovery actually allows, and being unable to recover at all is wrong because the recovery points still exist in the vault. Recovery to any VM in the subscription is correct.

3. Question 3

   Your company's Azure subscription includes Azure virtual machines (VMs) that run Windows Server 2016. One of the VMs is backed up every day using Azure Backup Instant Restore. When the VM becomes infected with data encrypting ransomware, you are required to restore the VM. Which of the following actions should you take?
   1. A. You should restore the VM after deleting the infected VM.
   2. B. You should restore the VM to any VM within the company's subscription.
   3. C. You should restore the VM to a new Azure VM.
   4. D. You should restore the VM to an on-premise Windows device.
   Explanation

   The correct answer is: C. You should restore the VM to a new Azure VM..

   When a VM is hit by encrypting ransomware, restoring on top of the infected disks risks reinfection because malware may persist in memory, in scheduled tasks, or on attached disks. The safe pattern is to restore the backup to a brand-new Azure VM using the Create new option, then validate it in isolation before reconnecting it to production. Restoring after deleting the infected VM still uses the same VM identity and may carry over compromised disks or settings. Restoring to any VM within the subscription is not what the Replace-existing or Create-new restore flow exposes; you choose a new VM, not an arbitrary existing one. Restoring to an on-premises Windows device is not supported by Azure VM backup's Create-new flow. Creating a fresh Azure VM is the recommended ransomware recovery action.

4. Question 4

   You administer a solution in Azure that is currently having performance issues. You need to find the cause of the performance issues pertaining to metrics on the Azure infrastructure. Which of the following is the tool you should use?
   1. A. Azure Traffic Analytics
   2. B. Azure Monitor
   3. C. Azure Activity Log
   4. D. Azure Advisor
   Explanation

   The correct answer is: B. Azure Monitor.

   Azure Monitor is the unified platform that ingests metrics, logs, traces, and activity events from Azure resources and lets you chart, alert on, and query them, so it is the right starting point for diagnosing performance issues against infrastructure metrics such as CPU, memory, disk IOPS, and network throughput. Azure Traffic Analytics is a higher-level view built on NSG flow logs and focuses on network conversations rather than resource performance. Azure Activity Log records control-plane operations such as resource creation, deletion, and role assignments; it tells you who did what, not how a workload is performing. Azure Advisor provides best-practice recommendations across cost, security, reliability, and performance categories, but it does not surface live metrics or let you drill into a performance incident. Only Azure Monitor offers metric exploration at the depth needed.

5. Question 5

   Your company has an Azure subscription that includes a Recovery Services vault. You want to use Azure Backup to schedule a backup of your company's virtual machines (VMs) to the Recovery Services vault. Which of the following VMs can you back up? Choose all that apply.
   1. A. VMs that run Windows 10.
   2. B. VMs that run Windows Server 2012 or higher.
   3. C. VMs that have NOT been shut down.
   4. D. VMs that run Debian 8.2+.
   5. E. VMs that have been shut down.
   Explanation

   The correct answers are: B. VMs that run Windows Server 2012 or higher., D. VMs that run Debian 8.2+., E. VMs that have been shut down..

   Azure Backup for Azure VMs supports 64-bit Windows Server 2008 R2 SP1 and later (so Windows Server 2012 and higher are in scope), supports a wide range of Linux distributions including Debian 8.2 and later, and backs up VMs regardless of whether they are running or stopped (deallocated VMs are also supported, though the recovery point may use crash-consistent rather than application-consistent semantics). Client OS images such as Windows 10 are not supported by Azure VM backup, so that option is out. The supported set is therefore Windows Server 2012+, Debian 8.2+, and VMs that have been shut down. The option that all VMs must be running is wrong because backup also works on stopped VMs.

Other Microsoft Azure Administrator (AZ-104) domains

• Deploy and manage Azure compute resources (123 questions)
• Implement and manage storage (105 questions)
• Implement and manage virtual networking (157 questions)
• Manage Azure identities and governance (127 questions)