Exam AZ-300: Microsoft Azure Architect Technologies
Microsoft is considered amongst the top cloud platform offering certifications as well as popular for delivering managed services, infrastructure guidance and every other requirement which a business application has. So when we talk about the certifications vertical, Microsoft has introduced numerous certifications amongst which Microsoft Azure Architect Technologies AZ-300 is currently in trend for candidates planning to build a career in Azure Architect Technologies. Therefore, this piece of writing guides you to prepare with expert learning resources and master the skills which are required for this particular certification.
Microsoft AZ-300 is retired. A new replacement exam Microsoft Azure Architect Technologies (AZ-303) is available.
Why choose Microsoft Azure Architect Technologies (AZ-300)?
Microsoft certifications have been top of the list and keen interest to employers. Thereby, helping technology architects more likely to get hired, as well as advance their careers, and demonstrate a clear business impact. Also, the exam has been built to test your knowledge of particular subject areas and make you learn more while stepping out of your comfort zone.
Microsoft Azure Architect Technologies (AZ-300) is a part of Microsoft Certification on the list of Azure Solutions Expert list. Since AZ-300 exam is an expert level exam built with an objective to examine the candidates working experience and advanced functional knowledge of Microsoft Azure. In other words, passing this exam will help you to get recognized as a Microsoft Azure Solution Expert. However, this examination measures the candidate’s ability to accomplish the various technical tasks that include,
- Implementing workloads and security
- Securing authentication data
- Configure infrastructure
- Developing for the cloud and Azure storage.
However, the targeted ones are experienced in Information Technology (IT) experts.
Eligibility Requirements
- Candidate must have the required experience with Azure Solution Architect skills. Moreover, they should have prior knowledge in the area of budgeting, identity, networking, visualization, business continuity, data management, disaster recovery, and governance.
- Certification is for those who have advance decision-making skills in Azure administration, Azure development, and DevOps.
Basic Exam Details
- Just like any other Microsoft exams, this will also comprise of 40-60 number of questions. You will be given 150 minutes to complete your exam. There will be numerous types of questions which include review screen, active screen, mark review, multiple-choice, build a list, case studies, drag & drop, repeated answer choices, etc. You have to face these different types of questions in the examination. And if you prepare these then it will become easy for you to attempt the all.
- There will be no negative marking on any incorrect answer. In addition, here is a tip- don’t leave the exam hall without reviewing your answer.
- Further, the exam will cost you $165 (USD). However, if you are a Microsoft certified trainer, Partner Network program member, or Imagine Academy program member, then you are eligible for a fee reduction.
- You will have to secure 700 marks in order to get the certification. Subsequently, you will get the result of your exam that whether you are pass or fail within a few minutes after completing your exam.
AZ-300 Learning Path
Course Outline
The course outline will give you a brief on what areas and concepts it covers. The followings are the areas which you should be well-versed with to prepare for the exam. It will help you to make strategies and arrange them accordingly.
Domain 1 – Deploy and configure infrastructure (40-45%)
Microsoft Documentation: Architect network infrastructure in Azure
1.1 Analyze resource utilization and consumption
- Configure diagnostic settings on resources
- Create baseline for resources
- Create and test alerts (Microsoft Documentation:Create, view, and manage metric alerts using Azure Monitor)
- Analyze alerts across subscription (Microsoft Documentation: Manage alert instances with unified alerts)
- Analyze metrics across subscription (Microsoft Documentation: Advanced features of Azure Metrics Explorer)
- Create action groups (Microsoft Documentation: Create and manage action groups in the Azure portal)
1.2 Monitor for unused resources
- Monitor spend (Microsoft Documentation: Use cost alerts to monitor usage and spending)
- Report on spend (Microsoft Documentation: Download or view your Azure billing invoice and daily usage data)
- Utilize Log Search query functions (Microsoft Documentation: Search queries in Azure Monitor logs
- View Alerts in Azure Monitor logs (Microsoft Documentation: Create, view, and manage activity log alerts by using Azure Monitor)
- visualize diagnostics data using Azure Monitor Workbooks (Microsoft Documentation: Azure Monitor Workbooks)
Create and configure storage accounts
- Configure network access to the storage account (Microsoft Documentation: Configure Azure Storage firewalls and virtual networks)
- Create and configure storage account (Microsoft Documentation: Create an Azure Storage account)
- Generate Shared access signature (Microsoft Documentation: Grant limited access to Azure Storage resources using shared access signatures (SAS)
- Implement Azure AD authentication for storage (Microsoft Documentation: Authorize access to blobs and queues using Azure Active Directory)
- Install and use Azure Storage Explorer (Microsoft Documentation: Get started with Storage Explorer)
- Manage access keys (Microsoft Documentation: Manage storage account access keys)
- Monitor Activity log by using Azure Monitor logs (Microsoft Documentation: View activity logs to monitor actions on resources)
- Implement Azure storage replication
- Implement Azure storage account failover (Microsoft Documentation: Initiate a storage account failover)
Create and configure a VM for Windows and Linux
- Configure High Availability (Microsoft Documentation: Create and deploy highly available virtual machines with Azure PowerShell)
- Configure Monitoring (Microsoft Documentation: Monitor a Windows virtual machine in Azure)
- Configure Networking (Microsoft Documentation: Create and manage Azure virtual networks for Windows virtual machines with Azure PowerShell)
- Configure Storage (Microsoft Documentation: Introduction to Azure managed disks)
- Configure Virtual Machine Size (Microsoft Documentation: Sizes for Windows virtual machines in Azure)
- Implement dedicated hosts
- Deploy and configure scale sets (Microsoft Documentation: Create a virtual machine scale set in the Azure portal)
Automate deployment of VMs
- Modify Azure Resource Manager template (Microsoft Documentation: Update a resource in an Azure Resource Manager template)
- Configure Location of new VMs (Microsoft Documentation: Move Azure VMs to another region)
- Configure VHD template (Microsoft Documentation: Create a Windows VM from a specialized disk by using PowerShell)
- Deploy from template (Microsoft Documentation: Create a Windows virtual machine from a Resource Manager template)
- Save a deployment as an Azure Resource Manager template (Microsoft Documentation: Download the template for a VM)
- Deploy Windows and Linux VMs (Microsoft Documentation: Create a Windows virtual machine from a Resource Manager template)
Create connectivity between virtual networks
- Create and configure Vnet peering
- Create and configure Vnet to Vnet connections (Microsoft Documentation: Configure a VNet-to-VNet VPN gateway connection using PowerShell)
- Verify virtual network connectivity (Microsoft Documentation: Verify a VPN Gateway connection)
- Create virtual network gateway (Microsoft Documentation: Create a route-based VPN gateway using the Azure portal
Implement and manage virtual networking
- Configure private IP addressing (Microsoft Documentation: Configure a private IP address for a VM using the Azure portal)
- Configure public IP addresses (Microsoft Documentation: Create, change, or delete a public IP address)
- Create and configure network routes (Microsoft Documentation: Route network traffic with a route table using the Azure portal)
- Create and configure network interface (Microsoft Documentation: Create, change, or delete a network interface)
- Create and configure subnets (Microsoft Documentation: Add, change, or delete a virtual network subnet)
- Create and configure virtual network (Microsoft Documentation: Create, change, or delete a virtual network)
- Create and configure Network Security Groups and Application Security Groups (Microsoft Documentation: Filter network traffic with a network security group using the Azure portal)
Manage Azure Active Directory
- Add custom domains (Microsoft Documentation: Add your custom domain name using the Azure Active Directory portal)
- Configure Azure AD Identity Protection
- Configure Azure AD Join (Microsoft Documentation: Configure hybrid Azure Active Directory join for managed domains)
- Configure self-service password reset (Microsoft Documentation: Enable users to unlock their account or reset passwords using Azure Active Directory self-service password reset)
- Implement conditional access policies (Microsoft Documentation: Secure user sign-in events with Azure Multi-Factor Authentication)
- Manage multiple directories (Microsoft Documentation: Understand how multiple Azure Active Directory organizations interact)
- Perform an access review (Microsoft Documentation: What are Azure AD access reviews?)
Implement and manage hybrid identities
- Install and configure Azure AD Connect (Microsoft Documentation: Getting started with Azure AD Connect using express settings)
- Configure federation (Microsoft Documentation: Federate multiple instances of Azure AD with single instance of AD FS)
- Configure single sign-on (Microsoft Documentation: Configure SAML-based single sign-on to non-gallery applications)
- Manage and troubleshoot Azure AD Connect (Microsoft Documentation: Next steps and how to manage Azure AD Connect)
- Troubleshoot password sync and writeback (Microsoft Documentation: Troubleshoot password hash synchronization with Azure AD Connect sync)
Implement solutions that use virtual machines (VM)
- Provision VMs (Microsoft Documentation: Create a Windows virtual machine in the Azure portal)
- Create Azure Resource Manager templates (Microsoft Documentation: Create and deploy your first ARM template)
- Configure Azure Disk Encryption for VMs (Microsoft Documentation: Create and encrypt a Windows virtual machine with the Azure portal)
- Implement Azure Backup for VMs (Microsoft Documentation: Back up an Azure VM from the VM settings)
Domain 2 – Implement workloads and security (25-30%)
Migrate servers to Azure
- Migrate servers using Azure Migrate (Microsoft Documentation: Migrate Hyper-V VMs to Azure)
- Backup and restore data (Microsoft Documentation: Back up a virtual machine in Azure)
Configure serverless computing
- Create and manage objects (Microsoft Documentation: Create your first function in Azure using Visual Studio)
- Manage a Logic App Resource (Microsoft Documentation: What is Azure Logic Apps?)
- Manage Azure Function app settings (Microsoft Documentation: Manage your function app)
- Manage Event Grid (Microsoft Documentation: What is Azure Event Grid?)
- Manage Service Bus (Microsoft Documentation: What is Azure Service Bus?)
Implement application load balancing
- Configure application gateway (Microsoft Documentation: Direct web traffic with Azure Application Gateway using Azure PowerShell)
- Configure Azure Front Door service (Microsoft Documentation: Create a Front Door for a highly available global web application
- Configure Azure Traffic Manager (Microsoft Documentation: Create a Traffic Manager profile using the Azure portal)
Integrate on premises network with Azure virtual network
- Create and configure Azure VPN Gateway (Microsoft Documentation: Create and manage a VPN gateway using PowerShell)
- Create and configure site to site VPN (Microsoft Documentation: Create a Site-to-Site connection in the Azure portal)
- Configure ExpressRoute (Microsoft Documentation: Create and modify an ExpressRoute circuit)
- Configure Virtual WAN (Microsoft Documentation: Connect a VPN Gateway (virtual network gateway) to Virtual WAN)
- Verify on premises connectivity (Microsoft Documentation: Verify a VPN Gateway connection
- Troubleshoot on premises connectivity with Azure (Microsoft Documentation: An Azure site-to-site VPN connection cannot connect and stops working)
Implement multi factor authentication
- Configure user accounts for MFA (Microsoft Documentation: Enable per-user Azure Multi-Factor Authentication to secure sign-in events)
- Configure fraud alerts (Microsoft Documentation: Fraud alert)
- Configure bypass options (Microsoft Documentation: One-time bypass)
- Configure Trusted IPs (Microsoft Documentation: Trusted IPs)
- Configure verification methods (Microsoft Documentation: Verification methods)
Manage role-based access control
- Create a custom role (Microsoft Documentation: Create an Azure custom role using Azure PowerShell)
- Configure access to Azure resources by assigning roles (Microsoft Documentation: Add a role assignment)
- Configure management access to Azure (Microsoft Documentation: Add or remove Azure role assignments using the Azure portal
- Troubleshoot RBAC (Microsoft Documentation: Troubleshoot Azure RBAC)
- Implement Azure Policies (Microsoft Documentation: Create and manage policies to enforce compliance)
- Assign RBAC Roles (Microsoft Documentation: Grant a user access to Azure resources using the Azure portal)
Domain 3 – Create and deploy apps (5-10%)
Create web apps by using PaaS
- Create an Azure app service Web App (Microsoft Documentation: Create an ASP.NET Core web app in Azure)
- Create documentation for the API
- Create an App Service Web App for Containers (Microsoft Documentation: Run a custom Windows container in Azure (Preview)
- Create an App Service background task by using WebJobs (Microsoft Documentation: Run background tasks with WebJobs in Azure App Service
- Enable diagnostics logging (Microsoft Documentation: Enable diagnostics logging for apps in Azure App Service)
Design and develop apps that run in containers
- Configure diagnostic settings on resources (Microsoft Documentation: Retrieve container logs and events in Azure Container Instances)
- Create a container image by using a Dockerfile (Microsoft Documentation: Build an image from a Dockerfile)
- Create an Azure Kubernetes Service (Microsoft Documentation: Deploy an Azure Kubernetes Service (AKS) cluster using the Azure portal)
- Publish an image to the Azure Container Registry (Microsoft Documentation: Push your first image to a private Docker container registry using the Docker CLI)
- Implement an application that runs on an Azure Container Instance (Microsoft Documentation: Deploy a container instance in Azure using the Azure portal)
- Manage container settings by using code
Domain 5 – Implement authentication and secure data (5-10%)
Implement authentication
- Implement authentication by using certificates, forms-based authentication, tokens, or Windows-integrated authentication (Microsoft Documentation: Authentication and authorization in Azure App Service and Azure Functions, Integrated Windows Authentication and Forms Authentication in ASP.NET Web API)
- Implement multi-factor authentication by using Azure AD (Microsoft Documentation: Secure user sign-in events with Azure Multi-Factor Authentication)
- implement OAuth2 authentication (Microsoft Documentation: Add sign-in to Microsoft to an ASP.NET web app)
- implement Managed Identities for Azure resources Service Principal authentication (Microsoft Documentation: Use a Windows VM system-assigned managed identity to access Resource Manager)
Implement secure data solutions
- Encrypt and decrypt data at rest and in transit
- Encrypt data with Always Encrypted (Microsoft Documentation: Configure Always Encrypted by using Azure Key Vault)
- Implement Azure Confidential Compute (Microsoft Documentation: Azure confidential computing)
- Implement SSL/TLS communications (Microsoft Documentation: Enable secure TLS for Azure Storage client)
- Create, read, update, and delete keys, secrets, and certificates by using the KeyVault API (Microsoft Documentation: Create Key, Get Key, Update Key, Delete Key, Set Secret, Get Secret, Update Secret, Delete Secret, Create Certificate, Get Certificate, Update Certificate, Delete Certificate)
Domain 6- Develop for the cloud and for Azure storage (15-20%)
6.1 Configure a message-based integration architecture
- Configure an app or service to send emails (Microsoft Documentation: How to Send Email Using SendGrid with Azure)
- Configure Event Grid (Microsoft Documentation: Route storage events to web endpoint with PowerShell)
- Configure the Azure Relay service (Microsoft Documentation: Get started with Relay Hybrid Connections WebSockets in .NET)
- Create and configure a Notification Hub (Microsoft Documentation: Create an Azure notification hub in the Azure portal)
- Create and configure an Event Hub (Microsoft Documentation: Create an event hub using Azure portal)
- Create and configure a Service Bus (Microsoft Documentation: Use Azure portal to create a Service Bus queue)
6.2 Develop for Autoscaling
- Implement autoscaling rules and patterns (schedule, operational/system metrics) (Microsoft Documentation: Get started with Autoscale in Azure)
- Implement code that addresses singleton application instances
- Implement code that addresses the transient state (Microsoft Documentation: Retry mechanism)
6.3 Develop solutions that use Cosmos DB storage
- Create, read, update, and delete data by using appropriate APIs (Microsoft Documentation: Documents)
- Implement partitioning schemes (Microsoft Documentation: Model and partition data on Azure Cosmos DB using a real-world example)
- Set the appropriate consistency level for operations (Microsoft Documentation: Choose the right consistency level)
6.4 Develop solutions that use a relational database
- Provision and configure relational databases (Microsoft Documentation: Create an Azure SQL Database single database and Create a server-level firewall rule using the Azure portal)
- Configure elastic pools for Azure SQL Database (Microsoft Documentation: Creating a new SQL Database elastic pool using the Azure portal)
- Implement Azure SQL Database managed instances (Microsoft Documentation: Create an Azure SQL Managed Instance)
- Create, read, update, and delete data tables by using code (Microsoft Documentation: Use .NET Core (C#) to query a database in Azure SQL Database or Azure SQL Managed Instance)
To clarify, the above-mentioned topics are very important for the preparation of the AZ-300 exam. You will have to cover all the topics significantly.
Preparatory Guide for Microsoft Azure Technologies (AZ-300)
Indeed Microsoft Azure (AZ-300) requires more effort and efficient utilization of time. For passing this exam, you will require to have Architect Technologies exam preparation guides with good study materials. As with the best exam resources and material, it will become easy to understand the various concepts of the AZ-300 exam.
In addition, you can also visit the official page and note the details such as registration date and fee, duration, the language of the exam, etc. Now, coming onto the exam preparation, below we will talk about the various steps and methods that will help you during studying.
Be Clear about the Exam objectives
That is to say, you need to understand the important concepts related to the exam. Moreover, you need to work on your skills and knowledge in performing the operations like –
- Arranging azure infrastructure
- Creating apps on the Azure
- Implementing security and workloads on Azure
- Authenticating Azure and data security on the cloud.
Refer the Exam Guide
Exam Guide contains all the required topics and domains of the exam. With the help of the exam guide, you will be able to understand every topic in detail. Moreover, this will help you prepare each topic with in-depth detail in accordance with the exam. No matter for which Azure certification examination you’re going to prepare or take, consider it necessary to go through exam blueprint to understand the exam objectives well. Microsoft Azure AZ-300 Official Exam Guide
Understand the topics and Exam Skills outline
The main work of the preparatory guide is to make you understand the topics. As there is a need to get clarity for the topics that will be covered in the exam. However, in this article, we have already talked about the course outline. The more given topics you cover, the more close you get to pass the exam. Once you sort out the topics, after that, the important work is to create a well-planned time table. This will make things easy for you thus, you will be able to study in a good format. Refer Official Microsoft Azure AZ-300 Offical Guide
Instructor-led training
The Instructor-led training course is designed to gain the knowledge and skills which requires to get certified. This includes the courses that are going to help you to understand each and every aspect of AZ-300. Refer Microsoft AZ-300 Official Instructor-Led Training
Deploy and configure infrastructure
This course teaches Information Technology (IT) Professionals to manage and arrange their Azure resources, deployment, arrangement, and configuration of virtual machines, storage accounts, data, virtual networks and Azure AD that comprises implementing and arranging hybrid identities. The candidates will also get knowledge on how cloud resources are managed, and how to provide access to Azure AD users, or groups.
Workloads and Security
This course teaches the candidate how to plan, assess, discover, understand, arrange, and implementing the migration of on-premises infrastructure, data, and resources to Azure. Also, you will get knowledge of how Azure Multi-Factor Authentication will provide help for safeguard access to applications and their data. Further, helping to meet the demands of customers for a smooth and simple sign-in process.
Creating and deploying apps
Firstly, this helps you to do operations in a parallel manner. This particular course includes a discussion of hybrid networking which gives an overview of point-to-site connectivity, site-to-site connectivity, and the combination of both.
Implementing authentication and secure data
This course will teach you about building Logic App solutions that integrate, data, systems, applications and services across businesses, enterprises or organizations by automating and tasks, processes and workflows.
Developing for the cloud and for Azure storage
This will give you the knowledge on configuring a message-based integration architecture, creating apps for auto-scaling, developing for asynchronous processing, and a better understanding of Azure Cognitive Services solutions.
All of the above-mentioned courses will help you throughout your preparation for the AZ-300 exam. It will provide a platform for you on which you can rely.
Collect Study Material
To prepare for the examination, it is important to choose the resources which are perfect and reliable. With proper course material and books, the candidate will be able to learn the required skills.
Following are the few books that you can refer-
- Exam Ref AZ-300 Microsoft Azure Architect Technologies by Mike Pfeiffer
- AZ-300 & AZ-301 Exam Study and Lab Guide Part-1: Microsoft Certified Azure Solutions Architect Expert by Harinder Kohli
- Exam AZ-300 & AZ-301 Study and Lab Guide Part-2: Microsoft Certified Azure Solutions Architect Expert by Harinder Kohli
- Microsoft Azure Architect Technologies: Exam Guide AZ-300: A guide to preparing for the AZ-300 Microsoft Azure Architect Technologies certification exam by Sjoukje Zaal
Enroll for Practice Test
Nowadays many sites provide practice tests, some of them are free of cost while some of them are not. You have to choose accordingly. The questions in the practice tests are designed in such a way that it provides the idea on each question type that can appear in the exam.
Exam Tips
Firstly, you should understand the basic concepts of Azure and cloud computing. As it will help you during preparation. However, you also need to get the following concepts clear in your head that includes,
- Microsoft Azure
- Use of Azure
- Services offered by Azure
- Working of Azure
Secondly, you can also go to the Microsoft official website to get the exam details, overview, and objectives.
Lastly, Choosing a good preparation guide or resources is very important to pass or clear any certification exam. If required, go for the training program for the Azure exam. In addition, find good books, documentation, and blogs, etc. to groom your knowledge.