70-533 | The Secret of Microsoft 70-533 dumps


Q11. DRAG DROP 

You manage an application hosted on cloud services. The development team creates a new version of the application. The updated application has been packaged and stored in an Azure Storage account. 

You have the following requirements: 

. Deploy the latest version of the application to production with the least amount of downtime. . Ensure that the updated application can be tested prior to deploying to the Production site. . Ensure that the original version of the application can be restored until the new version is verified. 

Which four steps should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. 

Answer: 

Q12. Your company is launching a public website that allows users to stream videos. 

You upload multiple video files to an Azure storage container. 

You need to give anonymous users read access to all of the video files in the storage container. 

What should you do? 

A. Edit each blob's metadata and set the access policy to Public Blob. 

B. Edit the container metadata and set the access policy to Public Container. 

C. Move the files into a container sub-directory and set the directory access level to Public Blob. 

D. Edit the container metadata and set the access policy to Public Blob. 

Answer:

Explanation: 

By default, the container is private and can be accessed only by the account owner. To allow public read access to the blobs in the container, but not the container properties and metadata, use the "Public Blob" option. To allow full public read access for the container and blobs, use the "Public Container" option. 

Q13. DRAG DROP 

You manage an Azure Web Site named contososite. 

You download the subscription publishing credentials named Contoso-Enterprise.publishsettings. 

You need to use Azure Power Shell to achieve the following: 

Connect to the Contoso-Enterprise subscription. 

Create a new App Setting named CustomSetting with a value of True. 

Restart the website. 

Which commands should you use? To answer, drag the appropriate Azure PowerShell command to the correct location in the solution. Each command may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. 

Answer: 

Q14. You manage a software-as-a-service application named SaasApp1 that provides user management features in a multi-directory environment. 

You plan to offer SaasApp1 to other organizations that use Azure Active Directory. 

You need to ensure that SaasApp1 can access directory objects. 

What should you do? 

A. Configure the Federation Metadata URL 

B. Register SaasApp1 as a native client application. 

C. Register SaasApp1 as a web application. 

D. Configure the Graph API. 

Answer:

Explanation: The Azure Active Directory Graph API provides programmatic access to Azure AD through REST API endpoints. Applications can use the Graph API to perform create, read, update, and delete (CRUD) operations on directory data and objects. For example, the Graph API supports the following common operations for a user object: / Create a new user in a directory / Get a user’s detailed properties, such as their groups / Update a user’s properties, such as their location and phone number, or change their password / Check a user’s group membership for role-based access / Disable a user’s account or delete it entirely 

Reference: Azure AD Graph API 

URL: http://msdn.microsoft.com/en-us/library/azure/hh974476.aspx 

Q15. You manage an Azure Active Directory (AD) tenant 

You plan to allow users to log in to a third-party application by using their Azure AD credentials. 

To access the application, users will be prompted for their existing third-party user names and passwords. 

You need to add the application to Azure AD. 

Which type of application should you add? 

A. Existing Single Sign-On with identity provisioning 

B. Password Single Sign-On with identity provisioning 

C. Existing Single Sign-On without identity provisioning 

D. Password Single Sign-On without identity provisioning 

Answer:

Explanation: * Azure AD supports two different modes for single sign-on: / Federation using standard protocols Configuring Federation-based single sign-on enables the users in your organization to be automatically signed in to a third-party SaaS application by Azure AD using the user account information from Azure AD. / Password-based single sign-on * Support for user provisioning 

User provisioning enables automated user provisioning and deprovisioning of accounts in third-party SaaS applications from within the Azure Management Portal, using your Windows Server Active Directory or Azure AD identity information. When a user is given permissions in Azure AD for one of these applications, an account can be automatically created (provisioned) in the target SaaS application. 

Reference: Application access enhancements for Azure AD 

URL: http://msdn.microsoft.com/en-us/library/azure/dn308588.aspx 

Q16. Your company has a subscription to Azure. You plan to deploy 10 websites. You have the following requirements: 

. Each website has at least 15 GB of storage. 

. All websites can use azurewebsite.net. 

You need to deploy the 10 websites while minimizing costs. 

Which web tier plan should you recommend? 

A. Free 

B. Small Business 

C. Standard 

D. Basic 

Answer:

Explanation: Standard offers 50 GB of storage space, while Basic only gives 10 GB: 

Reference: Websites Pricing Details 

URL: http://azure.microsoft.com/en-us/pricing/details/websites/ 

http://azure.microsoft.com/en-us/documentation/articles/azure-subscription-service-limits/ 

Q17. You administer an Azure Storage account named contoso storage. The account has queue containers with logging enabled. 

You need to view all log files generated during the month of July 2014. 

Which URL should you use to access the list? 

A. 

http://contosostorage.queue.core.windows.net/$logs? restype=container&comp=list&prefix=queue/2014/07 

B. 

http://contosostorage.queue.core.windows.net/$files? restype=container&comp=list&prefix=queue/2014/07 

C. http://contosostorage.blob.core.windows.net/$files? 

restype=container&comp=list&prefix=blob/2014/07 

D. http://contosostorage.blob.core.windows.net/$logs? restype=container&comp=list&prefix=blob/2014/07 

Answer:

Explanation: http://msdn.microsoft.com/library/azure/hh343262.aspx 

Q18. You manage an application running on Azure Web Sites Standard tier. The application uses a substantial amount of large image files and is used by people around the world. 

Users from Europe report that the load time of the site is slow. 

You need to implement a solution by using Azure services. 

What should you do? 

A. Configure Azure blob storage with a custom domain. 

B. Configure Azure CDN to cache all responses from the application web endpoint. 

C. Configure Azure Web Site auto-scaling to increase instances at high load. 

D. Configure Azure CDN to cache site images and content stored in Azure blob storage. 

Answer:

Explanation: You can configure a custom domain for accessing blob data in your Azure storage account. The default endpoint for the Blob service is https://<mystorageaccount>.blob.core.windows.net. If you map a custom domain and subdomain such as www.contoso.com to the blob endpoint for your storage account, then your users can also access blob data in your storage account using that domain. 

Reference: Configure a custom domain name for blob data in an Azure storage account 

URL: http://azure.microsoft.com/en-us/documentation/articles/storage-custom-domain-name/ 

Q19. HOTSPOT 

You manage an Azure Web Site named contosoweb. 

Some users report that they receive the following error when they access contosoweb: 

"http Status 500.0 - Internal Server Error." 

You need to view detailed diagnostic information in XML format. 

Which option should you enable? To answer, select the appropriate option in the answer 

area. 

Answer: 

Q20. You plan to use Password Sync on your DirSync Server with Azure Active Directory {Azure AD) on your company network. You configure the DirSync server and complete an initial synchronization of the users. 

Several remote users are unable to log in to Office 365. You discover multiple event log entries for "Event ID 611 Password synchronization failed for domain." 

You need to resolve the password synchronization issue. 

Which two actions should you perform? Each correct answer presents part of the solution. 

A. Restart Azure AD Sync Service. 

B. Run the Set-FullPasswordSync Power Shell cmdlet. 

C. Force a manual synchronization on the DirSync server. 

D. Add the DirSync service account to the Schema Admins domain group. 

Answer: A,B 

Explanation: On the computer that has the Azure Active Directory Sync tool installed, follow these steps: . Perform.a full password sync for all users who are synced through directory synchronization. To do this, follow these steps: Set-FullPasswordSync . Restart the Forefront Identity Manager Synchronization Service. To do this, follow 

these steps: Reference: User passwords don't sync if your organization is using Azure Active Directory synchronization 

http://support2.microsoft.com/kb/2915221