Get Up to 20% OFF - Coupon code: 2024

Best Exam Practice Material for Microsoft AZ-104 Exam Q&A

If you want to reduce your chances of failure and increase your chances of success, consider using Microsoft AZ-104 exam Q&A to prepare for your Microsoft Azure Administrator exam. Certspots Microsoft AZ-104 exam Q&As are created by industry experts who have years of experience in the field of Microsoft. The questions are updated regularly to ensure that they reflect the most current trends and technologies in the industry, and to keep up with any changes to the exam format or content. These study materials can help candidates build a solid foundation of knowledge and can help you feel more confident and prepared on the day of the exam.

Page 1 of 15

1. You have an Azure subscription.

Users access the resources in the subscription from either home or from customer sites. From home, users must establish a point-to-site VPN to access the Azure resources. The users on the customer sites access the Azure resources by using site-to-site VPNs.

You have a line-of-business app named App1 that runs on several Azure virtual machine.

The virtual machines run Windows Server 2016.

You need to ensure that the connections to App1 are spread across all the virtual machines.

What are two possible Azure services that you can use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

2. You have an Azure subscription named Subscription1 that contains a virtual network named VNet 1. VNet1 is in a resource group named RG 1.

Subscription1 has a user named User 1. User1 has the following roles:

- Reader

- Security Admin

- Security Reader

You need to ensure that User1 can assign the Reader role for VNet1 to other users.

What should you do?

3. Case Study 4 - ADatum


ADatum Corporation is a financial company that has two main offices in New York and Los Angeles. ADatum has a subsidiary named Fabrikam, Inc. that shares the Los Angeles office.

ADatum is conducting an initial deployment of Azure services to host new line-of-business applications and is preparing to migrate its existing on-premises workloads to Azure.

ADatum uses Microsoft Exchange Online for email.

Existing Environment

On-Premises Environment

The on-premises workloads run on virtual machines hosted in a VMware vSphere 6 infrastructure. All the virtual machines are members of an Active Directory forest named and run Windows Server 2016.

The New York office uses an IP address space of The Los Angeles office uses an IP address space of

The offices connect by using a VPN provided by an ISP. Each office has one Azure ExpressRoute circuit that provides access to Azure services and Microsoft Online Services. Routing is implemented by using Microsoft peering.

The New York office has a virtual machine named VM1 that has the vSphere console installed.

Azure Environment

You provision the Azure infrastructure by using the Azure portal.

The infrastructure contains the resources shown in the following table.

AG1 has two backend pools named Pool11 and Pool12. AG2 has two backend pools named Pool21 and Pool22.


Planned Changes

ADatum plans to migrate the virtual machines from the New York office to the East US Azure region by using Azure Site Recovery.

Infrastructure Requirements

ADatum identifies the following infrastructure requirements:

✑ A new web app named App1 that will access third-parties for credit card processing must be deployed.

✑ A newly developed API must be implemented as an Azure function named App2. App2 will use a blob storage trigger. App2 must process new blobs immediately.

✑ The Azure infrastructure and the on-premises infrastructure must be prepared for the migration of the VMware virtual machines to Azure.

✑ The sizes of the Azure virtual machines that will be used to migrate the on-premises workloads must be identified.

✑ All migrated and newly deployed Azure virtual machines must be joined to the domain.

✑ AG1 must load balance incoming traffic in the following manner:

-* will be load balanced across Pool1 1.

-* will be load balanced across Pool12.

✑ AG2 must load balance incoming traffic in the following manner:

- will be load balanced across Pool2 1.

- will be load balanced across Pool22.

✑ ER1 must route traffic between the New York office and platform as a service (PaaS) services in the East US Azure region, as long as ER1 is available.

✑ ER1 must route traffic between the Los Angeles office and the PaaS services in the West US region, as long as ER2 is available.

✑ ER1 and ER2 must be configured to fail over automatically.

Application Requirements

App2 must be available to connect directly to the private IP addresses of the Azure virtual machines. App2 will be deployed directly to an Azure virtual network.

Inbound and outbound communications to App1 must be controlled by using NSGs.

Pricing Requirements

ADatum identifies the following pricing requirements:

✑ The cost of App1 and App2 must be minimized

✑ The transactional charges of Azure Storage accounts must be minimized

You need to configure AG 1.

What should you create?

4. Case Study 1 - Humongous Insurance


Existing Environment

Humongous Insurance is an insurance company that has three offices in Miami, Tokoyo, and Bankok.

Each has 5000 users.

Active Directory Environment

Humongous Insurance has a single-domain Active Directory forest named

The functional level of the forest is Windows Server 2012.

You recently provisioned an Azure Active Directory (Azure AD) tenant.

Network Infrastructure

Each office has a local data center that contains all the servers for that office. Each office has a dedicated connection to the Internet.

Each office has several link load balancers that provide access to the servers.

Active Directory Issue

Several users in have UPNs that contain special characters.

You suspect that some of the characters are unsupported in Azure AD.

Licensing Issue

You attempt to assign a license in Azure to several users and receive the following error message: "Licenses not assigned. License agreement failed for one user." You verify that the Azure subscription has the available licenses.


Planned Changes

Humongous Insurance plans to open a new office in Paris. The Paris office will contain 1,000 users who will be hired during the next 12 months. All the resources used by the Paris office users will be hosted in Azure.

Planned Azure AD Infrastructure

The on-premises Active Directory domain will be synchronized to Azure AD.

All client computers in the Paris office will be joined to an Azure AD domain.

Planned Azure Networking Infrastructure

You plan to create the following networking resources in a resource group named All_Resources:

✑ Default Azure system routes that will be the only routes used to route traffic

✑ A virtual network named Paris-VNet that will contain two subnets named Subnet1 and Subnet2

✑ A virtual network named ClientResources-VNet that will contain one subnet named ClientSubnet

✑ A virtual network named AllOffices-VNet that will contain two subnets named Subnet3 and Subnet4

You plan to enable peering between Paris-VNet and AllOffices-VNet. You will enable the Use remote gateways setting for the Paris-VNet peerings.

You plan to create a private DNS zone named humongousinsurance.local and set the registration network to the ClientResources-VNet virtual network.

Planned Azure Computer Infrastructure

Each subnet will contain several virtual machines that will run either Windows Server 2012 R2, Windows Server 2016, or Red Hat Linux.

Department Requirements

Humongous Insurance identifies the following requirements for the company's departments:

✑ Web administrators will deploy Azure web apps for the marketing department. Each web app will be added to a separate resource group. The initial configuration of the web apps will be identical. The web administrators have permission to deploy web apps to resource groups.

✑ During the testing phase, auditors in the finance department must be able to review all Azure costs from the past week.

Authentication Requirements

Users in the Miami office must use Azure Active Directory Seamless Single Sign-on (Azure AD Seamless SSO) when accessing resources in Azure.

You need to resolve the Active Directory issue.

What should you do?

5. You have an Azure subscription named Subscription 1.

You have a virtualization environment that contains the virtualization servers in the following table.

The virtual machines are configured as shown in the following table.

All the virtual machines use basic disks. VM1 is protected by using BitLocker Drive Encryption (BitLocker).

You plan to use Azure Site Recovery to migrate the virtual machines to Azure .

Which virtual machines can you migrate? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

6. You have the Azure resources shown on the following exhibit.

You plan to track resource usage and prevent the deletion of resources.

To which resources can you apply locks and tags? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

7. From the MFA Server blade, you open the Block/unblock users blade as shown in the exhibit.

What caused AlexW to be blocked?

8. You have an Azure subscription that contains two resource groups named RG1 and RG2. RG2 does not contain any resources.

RG1 contains the resources in the following table.

Which resource can you move to RG2?

9. Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company has a Microsoft SQL Server Always On availability group configured on their Azure virtual machines (VMs).

You need to configure an Azure internal load balancer as a listener for the availability group.

Solution: You create an HTTP health probe on port 1433.

Does the solution meet the goal?

10. You have an Azure subscription named Subscription1 that contains the resources shown in the following table.

You create virtual machines in Subscription1 as shown in the following table.

You plan to use Vault1 for the backup of as many virtual machines as possible.

Which virtual machines can be backed up to Vault1?



Your email address will not be published. Required fields are marked *