1) What are management groups in Azure?
Azure management groups reside above subscriptions. You organize subscriptions into containers called “management groups” and apply conditions to the management groups. For example, you can apply policies to a management group that limits the regions available for virtual machine (VM) creation. This policy would be applied to all management groups, subscriptions, and resources under that management group by only allowing VMs to be created in that region.
2) What is an Azure Subscription?
Subscriptions help you organize access to cloud service resources. They also help you control how resource usage is reported, billed, and paid for. Each subscription can have a different billing and payment setup, so you can have different subscriptions and different plans by department, project, regional office, and so on. Every cloud service belongs to a subscription, and the subscription ID may be required for programmatic operations.
3) What are the different ways to get an Azure subscription?
You can get an Azure Subscription using the following:
a) Enterprise Agreement
b) Reseller (Open Licensing Program)
c) Microsoft Partners
d) Personal Free Trial Account
4) What is an Azure Enterprise Agreement?
Any Enterprise Agreement1 customer can add Azure to their agreement by making an upfront monetary commitment to Azure. That commitment is consumed throughout the year by using any combination of the wide variety of cloud services Azure offers from its global datacenters. Enterprise agreements have a 99.95% monthly SLA.
5) What are three roles related to Azure accounts and subscriptions?
a) Account Administrator
b) Service Administrator
c) Co-administrator
(Please note the above roles were available in the initial release of Azure, you are now required to use RBAC)
6) What is an Azure policy?
Azure policies are used to define rules over your resources, for example you can define a policy that states that VM’s can only be deployed in South East Asia region or ensure that VM’s with public IP cannot be created and many more.
7) I have VM’s in spread out in 2 resource groups, can I add them to the same availability set?
No, the VM’s should be in the same resource group.
8) In what format are Azure policy definitions created and how can I get more information about them?
Azure policy definitions are created in JSON template format, if you require more information, refer to Azure Policy Definitions Structure
https://docs.microsoft.com/en-us/azure/governance/policy/concepts/definition-structure
9) What is a policy definition initiative?
A policy definition initiative is used to group policies into a single unit.
10) Your organization has defined a Azure policy to ensure compliance. How often will the resources be scanned for policy compliance?
The resources will be scanned every 1 hour for policy compliance.
10) What is VNET peering?
Using VNET peering we can two VNET’s together without using the public internet or any type of gateways.
11) What are the benefits of VNET peering
a) The ability to communicate between 2 different VNET’s
b) Vnet peering enables high bandwidth, low latency connectivity between two VNET’s
12) What are the pre-requisites for VNET peering?
The IP address space on both the peered networks should be unique.
13) Can I join my client computer to Azure AD as well as On-premises Active Directory?
Yes, it is possible and this functionality is known as a hybrid join.
14) I require to sync my on-premises Active Directory users to Azure AD. Which tool can I use for the same?
Azure AD connect
15) Your organization mandates that the custom domain name used in Azure Ad and on-premises should be the same, what will you configure on the on-premises Domain Controller to facilitate the same?
Configure an UPN suffix in the on-premises domain using the same name as the Azure AD custom domain.
16) What is the standard policy for account lockout in AD azure?
The account will lockout after 10 invalid attempts by default
17) Can we have multiple Azure AD sync Servers connecting to the Azure AD on the cloud?
No, this is a one-to-one ratio. A single user on-premises cannot sync to multiple Azure Ad directories. Same is vice-versa, one Azure AD connect cannot connect to multiple directories on premises.
18) Can users in an Azure AD appear as contacts in another Azure AD?
No
19) Can we have a single forest with multiple domain using AD connect to the Cloud Azure AD?
Yes, this is a supported scenario.
20) You want to manage the Azure AD connect sync process, which tool will you use for the same?
Synchronization service manager and get-ADsynscheduler, set-adsyncscheduler and start-adsynccycle from Powershell
21) What are the types of storage available in Azure?
Azure types of storage are Standard which includes BLOB, Table, queue and files and Premium storage which is used for Virtual machine disks only.
22) You have created a BLOB with the type-Append, can it now be changed to page BLOB ?
Hot, Cool and Archive
22) You have created a BLOB with the type-Append, can it now be changed to page BLOB ?
No, once a BLOB type has been defined , it cannot be changed.
23) What are the 3 BLOB types supported by Azure?
Block, Page and Append BLOB.
(Page BLOB are used for Virtual Machine Disks , they are 512 byte pages , optimized for read/write access.
24) What is the use of selecting Block size in a BLOCK BLOB?
It is useful for tools like AZCOPY wherein a large amount of data has to be transported in parallel over low bandwidth. Data will be sent in blocks simultaneously and assembled back at the Azure cloud.
25) Can we read/write/delete as we do in normal data operations in the case of Append BLOB?
No, append blob only supported adding blocks, updating and deleting of existing blocks cannot be done.
26) Explain premium storage in Azure
Premium storage uses SSD disks and can be used only for Page Blobs.
27) What are the different types of storage tiers in Azure?
28) What is the basis on which pricing can be calculated with reference to Azure Storage?
Azure Data storage pricing is calculated on the following factors
a) Data Storage which means actual
capacity, data at rest.
b) Cost of
reading/writing/modifying/retrieving data.
c) Egress charges ie Outbound data, data
being downloaded from Azure
d) Geo-replication options
No comments:
Post a Comment