Microsoft Azure Architect Design (AZ-304) Practice Exam
Microsoft Azure Architect Design (AZ-304)
About Microsoft Azure Architect Design (AZ-304)
Microsoft Azure Architect Design (AZ-304) exam measures your ability to accomplish the following technical tasks: design monitoring; design identity and security; design data storage; design business continuity; and design infrastructure.
Who should take this exam?
Candidates for this exam should have subject matter expertise in designing and implementing solutions that run on Microsoft Azure, including aspects like compute, network, storage, and security. Responsibilities for an Azure Solution Architect include advising stakeholders and translating business requirements into secure, scalable, and reliable cloud solutions. An Azure Solution Architect partners with cloud administrators, cloud DBAs, and clients to implement solutions.
Skills Required
A candidate for this exam should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance–this role should manage how decisions in each area affect an overall solution. In addition, this role should have expert-level skills in Azure administration and have experience with Azure development and DevOps processes.
Course Outline
The Microsoft Azure Architect Design (AZ-304) covers the latest exam updates and topics -
1. Design Monitoring (10-15%)
1.1 Design for cost optimization
recommend a solution for cost management and cost reporting
recommend solutions to minimize costs
1.2 Design a solution for logging and monitoring
determine levels and storage locations for logs
plan for integration with monitoring tools including Azure Monitor and Azure Sentinel
recommend appropriate monitoring tool(s) for a solution
choose a mechanism for event routing and escalation
recommend a logging solution for compliance requirements
2. Design Identity and Security (25-30%)
2.1 Design authentication
recommend a solution for single-sign on
recommend a solution for authentication
recommend a solution for Conditional Access, including multi-factor authentication
recommend a solution for network access authentication
recommend a solution for a hybrid identity including Azure AD Connect and Azure AD
2.2 Connect Health
recommend a solution for user self-service
recommend and implement a solution for B2B integration
NOT: federation with ADFS or PingFederate
2.3 Design authorization
choose an authorization approach
recommend a hierarchical structure that includes management groups, subscriptions and resource groups
recommend an access management solution including RBAC policies, access reviews, role assignments, Privileged Identity Management (PIM), Azure AD Identity Protection, Just In Time (JIT) access
2.4 Design governance
recommend a strategy for tagging
recommend a solution for using Azure Policy
recommend a solution for using Azure Blueprint
recommend a solution that leverages Azure Resource Graph
2.5 Design security for applications
recommend a solution that includes KeyVault
o What can be stored in KeyVault
o KeyVault operations
o KeyVault regions
recommend a solution that includes Managed Identities
recommend a solution for integrating applications into Azure AD
3. Design Data Storage (15-20%)
3.1 Design a solution for databases
select an appropriate data platform based on requirements
recommend database service tier sizing
recommend a solution for database scalability
recommend a solution for encrypting data at rest, data in transmission, and data in use
3.2 Design data integration
recommend a data flow to meet business requirements
recommend a solution for data integration, including Azure Data Factory, Azure Data Bricks, Azure Data Lake, Azure Synapse Analytics
3.3 Select an appropriate storage account
choose between storage tiers
recommend a storage access solution
recommend storage management tools
4. Design Business Continuity (10-15%)
4.1 Design a solution for backup and recovery
recommend a recovery solution for Azure hybrid and on-premises workloads that meets recovery objectives (RTO, RLO, RPO)
design and Azure Site Recovery solution
o recommend a site recovery replication policy
o recommend a solution for site recovery capacity
o recommend a solution for site failover and failback (planned/unplanned)
o recommend a solution for the site recovery network
recommend a solution for recovery in different regions
recommend a solution for geo-redundancy of workloads
recommend a solution for Azure Backup management
design a solution for data archiving and retention
o recommend storage types and methodology for data archiving
o identify business compliance requirements for data archiving
o identify requirements for data archiving
o identify SLA(s) for data archiving
o recommend a data retention policy
4.2 Design for high availability
recommend a solution for application and workload redundancy, including compute,
database, and storage
recommend a solution for autoscaling
identify resources that require high availability
identify storage types for high availability
5. Design Infrastructure (25-30%)
5.1 Design a compute solution
recommend a solution for compute provisioning
determine appropriate compute technologies, including virtual machines, App Services, Service Fabric, Azure Functions, Windows Virtual Desktop, Batch, HPC and containers
recommend a solution for containers
o AKS versus ACI and the configuration of each one
recommend a solution for automating compute management
5.2 Design a network solution
recommend a network architecture (hub and spoke, Virtual WAN)
recommend a solution for network addressing and name resolution
recommend a solution for network provisioning
recommend a solution for network security including
o private link
o firewalls
o gateways
o network segmentation
(perimeter networks?DMZs/NVAs
recommend a solution for network connectivity to the Internet, on-premises networks, and other Azure virtual networks
recommend a solution for automating network management
recommend a solution for load balancing and traffic routing
5.3 Design an application architecture
recommend a microservices architecture including Event Grid, Event Hubs, Service Bus, Storage Queues, Logic Apps, Azure Functions, Service Fabric, AKS, Azure App Configuration and webhooks
recommend an orchestration solution for deployment and maintenance of applications including ARM templates, Azure Automation, Azure Pipelines, Logic Apps, or Azure Functions
o select an automation method
o choose which resources or lifecycle steps will be automated
o design integration with other sources such as an ITSM solution
o recommend a solution for monitoring automation
recommend a solution for API integration
o design an API gateway strategy
o determine policies for internal and external consumption of APIs
o recommend a hosting structure for API management
o recommend when and how to use API Keys
5.4 Design migrations
assess and interpret on-premises servers, data, and applications for migration
recommend a solution for migrating applications and VMs
recommend a solution for migration of databases
o determine migration scope, including redundant, related, trivial, and outdated data
o recommend a solution for migrating data (Storage Migration Service, Azure Data Box,
Azure File Sync-based migration to hybrid file server)
What do we offer?
- Full-Length Mock Test with unique questions in each test set
- Practice objective questions with section-wise scores
- In-depth and exhaustive explanation for every question
- Reliable exam reports evaluating strengths and weaknesses
- Latest Questions with an updated version
- Tips & Tricks to crack the test
- Unlimited access
What are our Practice Exams?
- Practice exams have been designed by professionals and domain experts that simulate real time exam scenario.
- Practice exam questions have been created on the basis of content outlined in the official documentation.
- Each set in the practice exam contains unique questions built with the intent to provide real-time experience to the candidates as well as gain more confidence during exam preparation.
- Practice exams help to self-evaluate against the exam content and work towards building strength to clear the exam.
- You can also create your own practice exam based on your choice and preference
