Add to collection(s) Add to saved
  1. No category
Uploaded by nick rose

AZ-900 Exam Cram FULL COURSE handout

advertisement 
COVERS FULL EXAM!
AZ-900
EXAM
CRAM
Exam DOMAINS for az-900
01
02
03
04
05
06
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
01
02
03
04
05
06
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
01
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
1. Identify the benefits and
considerations of using cloud services
2. Describe the differences between
categories of cloud services
3. Describe the differences between types
of cloud computing
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
❖ Identify the benefits of cloud computing, such as
High Availability, Scalability, Elasticity, Agility,
and Disaster Recovery
❖ Identify the differences between Capital
Expenditure (CapEx) and Operational
Expenditure (OpEx)
❖ Describe the consumption-based model
1. Identify the benefits and considerations
of using cloud services
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
❖
❖
❖
❖
❖
❖
Describe the shared responsibility model
Describe Infrastructure-as-a-Service (IaaS),
Describe Platform-as-a-Service (PaaS)
Describe serverless computing
Describe Software-as-a-Service (SaaS)
Identify a service type based on a use case
2. Describe the differences between
categories of cloud services
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
❖
❖
❖
❖
❖
Define cloud computing
Describe Public cloud
Describe Private cloud
Describe Hybrid cloud
Compare and contrast the three types
of cloud computing
3. Describe the differences between types
of cloud computing
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
COMPARE CLOUD
MODELS & SERVICES
COMPARE CLOUD
MODELS & SERVICES
PRIVATE
HYBRID
pUBLIC
IAAS
PAAS
SAAS
COMPARE CLOUD
MODELS & SERVICES
SHARED RESPONSIBILITY MODEL
shared responsibility model
100% YOURS
Applications
Applications
Applications
Applications
Data
Data
Data
Data
Runtime
Runtime
Runtime
Runtime
Responsible
Middleware
Middleware
Middleware
Middleware
CSP
Customer
OS
OS
OS
OS
Virtualization
Virtualization
Virtualization
Virtualization
Servers
Servers
Servers
Servers
Storage
Storage
Storage
Storage
Networking
Networking
Networking
Networking
On-premises
IaaS
PaaS
SaaS
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - IAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
IaaS
CSP provides building blocks, like
networking, storage and compute
CSP manages staff, HW, and
datacenter
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - IAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
IaaS
Azure Virtual
Machines
Amazon EC2
GCP Compute
Engine
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - PAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
PaaS
Customer is responsible for
deployment and management of apps
CSP manages provisioning,
configuration, hardware, and OS
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - PAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
PaaS
Azure SQL
Database
API
Management
Azure App
Service
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - SAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
SaaS
Customer just configures features.
CSP is responsible for management,
operation, and service availability.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
CLOUD MODELS & SERVICES - SAAS
Applications
Applications
Data
Data
Runtime
Runtime
Middleware
Middleware
OS
OS
Virtualization
Virtualization
Servers
Servers
Storage
Storage
Networking
Networking
On-premises
SaaS
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the differences between Public, Private
and Hybrid cloud models
Benefits of
Cloud
Computing
Cloud is cost-effective,
global, secure, scalable,
elastic, and always current
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Public Cloud
Everything runs on your
cloud provider's hardware.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Public Cloud
Advantages include
scalability, agility, PAGY, no
maintenance, and low skills
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Private Cloud
A cloud environment in your
own datacenter
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 1: Describe cloud concepts
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Private Cloud
Advantages include legacy
support, control, and compliance
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Hybrid Cloud
Combines public and private
clouds, allowing you to run your
apps in the right location
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the differences between Public, Private
and Hybrid cloud models
Describe
Hybrid Cloud
Advantages include flexibility in
legacy, compliance, and
scalability scenarios
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
KNOW THESE CLOUD
CONCEPts
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Scalability
The ability of a system to
handle growth of users or work
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Elasticity
The ability of a system to automatically
grow and shrink based on app demand
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Agility
The ability to react quickly to changes in
demand, without manual intervention
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Economies
of Scale
The ability to do things more efficiently
or at a lower-cost per unit when
operating at a larger scale.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Capital
Expenditure
Capital Expenditure (CapEx) is the spending
of money on physical infrastructure up front
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Operational
Expenditure
Operational Expenditure (OpEx) is
spending money on services or products
now and being billed as you go
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Operational
Expenditure
The cloud increases OpEx spending
and reduces CapEx spending
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Consumptionbased model
Pay for what you use, typically per unit
of time or capacity (min/gb/execution).
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
HIGH AVAILABILITY &
DISASTER RECOVERY
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Fault
Tolerance
The ability of a system to handle
faults in a service like power,
network, or hardware failures
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Fault
Tolerance
Generally refers to componentlevel failures
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
High
Availability
The ability to keep services up and
running for long periods of time.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
High
Availability
Generally refers to service-level
failures
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Disaster
Recovery
The ability to recover from an event
which has taken down a cloud service
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe CLOUD CONCEPTS
Describe the benefits and considerations of using cloud services
Disaster
Recovery
Generally refers to recovery in the
event of a service or site failure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
01
02
03
04
05
06
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
02
©2021 INSIDE CLOUD & Security
Describe Core Azure Services
1. Describe the core architectural components
2. Describe some of the core resources available
in Azure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 2: Describe core architecture comp
Describe the benefits and usage of Regions and Region Pairs
❖ …Availability Zones
❖ …Resource Groups
❖ …Subscriptions
❖ …Management Groups
❖ …Azure Resource Manager
❖ Explain Azure resources
1. Describe the core architectural components
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe core architecture components
Azure
Geography
A discrete market, typically containing
two or more regions, that preserves data
residency and compliance boundaries
Describe core architecture components
GEOGRAPHIES
Describe core architecture components
Azure
Regions
A set of datacenters deployed within a
latency-defined perimeter and connected
through a dedicated regional low-latency
network.
Describe core architecture components
REGIONS
Describe core architecture components
Region Pairs
A relationship between 2 Azure Regions
within the same geographic region for
disaster recovery purposes.
Describe core architecture components
REGION PAIRS
chosen by Microsoft
300+ miles
Describe core architecture components
Zone redundant
Availability Zones
Unique physical locations within
a region with independent
power, network, and cooling
Comprised of one or more
datacenters
Tolerant to datacenter failures
via redundancy and isolation
Describe core architecture components
Management
Groups
Subscriptions
Resource
Groups
Resources
Describe core architecture components
Management
Groups
Subscriptions
Resource
Groups
Resources
Describe core architecture components
Management
Groups
Subscriptions
Resource
Groups
Resources
Describe core architecture components
Management groups provide a level of
scope above subscriptions
Management
Groups
Each directory is given a single top-level
management group called the "Root"
Describe core architecture components
Subscriptions
✓ when subscription limits are
reached
✓ to use different payment methods
Describe core architecture components
Why would I create multiple
subscriptions?
✓ when subscription limits are
reached
Subscriptions
✓ to use different payment methods
✓ to isolate resources between
departments, projects, etc
Describe core architecture components
A container that holds related
resources for an Azure solution.
Resource
Groups
Used to group resources that share
a common resource lifecycle.
Describe core architecture components
Resources
An entity managed by Azure, like
a virtual machine, virtual network, or
storage account.
Describe core architecture components
Management Group
Can be used to aggregate policy and
initiative assignments via Azure Policy
Can contain multiple subscriptions
All new subscription will be placed under
the root management group by default
Describe core architecture components
Management Group
Subscriptions
Are a unit of management, billing, and scale
within Azure.
Serve as a management boundary for assigning
Azure policies, governance, and isolation
Describe core architecture components
Management Group
Subscriptions
Resource Groups
A container that holds for
resources with a common lifecycle
Describe core architecture components
Management Group
Subscriptions
Resource Groups
Resources
Exam DOMAINS for az-900
02
Describe Core Azure Services
1. Describe the core architectural components
2. Describe some of the core resources available
in Azure
compute, network, storage, and database
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 2: Describe core azure services
❖ Describe the benefits and usage of Virtual Machines,
Azure App Services, Azure Container Instances (ACI),
Azure Kubernetes Service (AKS), and Windows
Virtual Desktop
❖ Describe the benefits and usage of Virtual Networks,
VPN Gateway, Virtual Network peering, and
ExpressRoute
COMPUTE AND NETWORK
2. Describe the core resources available in Azure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe core services in azure
Azure VMs
App Service
Azure Kubernetes
Services (AKS)
- COMPUTE
Azure Container
Instance (ACI)
Windows Virtual
Desktop
describe core services in azure
Azure VMs
Server virtualization (compute)
on-demand without need for
hardware purchase
describe core services in azure
App Service
An HTTP-based service for hosting
web applications, REST APIs, and
mobile back ends.
describe core services in azure
Azure Container
Instance (ACI)
Runs Docker containers on-demand in a
managed, serverless Azure environment.
describe core services in azure
Runs Docker containers on-demand in a
managed, serverless Azure environment.
Azure Container
Instance (ACI)
A solution for any scenario that can operate
in isolated containers, without orchestration.
describe core services in azure
Azure Kubernetes
Services (AKS)
A hosted Kubernetes service, Azure
handles critical tasks like health
monitoring and maintenance for you.
describe core services in azure
A hosted Kubernetes service, Azure
handles critical tasks like health
monitoring and maintenance for you.
Azure Kubernetes
Services (AKS)
AKS is free - you pay only for the agent
nodes within your clusters, not for the
masters.
describe core services in azure
Windows Virtual
Desktop
A desktop and app virtualization
service that runs in Microsoft Azure
describe core services in azure
A desktop and app virtualization
service that runs in Microsoft Azure
Windows Virtual
Desktop
It enables IT Pros and MSPs to create
Windows 10 virtual desktops in Azure
describe core services in azure
Virtual Network
- NETWORK
VPN Gateway
VNET Peering
ExpressRoute
describe core services in azure
Virtual Network
VNET
A logical representation of
your network in Azure.
A VNET contains one or more SUBNETS
describe core services in azure
A logical representation of
your network in Azure.
Virtual Network
VNET
VNETs provide logical isolation in
Azure dedicated to your subscription.
describe core services in azure
Virtual Network
VNET
✓ Create a dedicated private
cloud-only network
describe core services in azure
✓ Create a dedicated private
cloud-only network
Virtual Network
VNET
✓ Securely extend your data
center (Site-to-Site VPN)
describe core services in azure
VMs in different VNETS cannot communicate by default!
✓ Create a dedicated private
cloud-only network
Virtual Network
VNET
✓ Securely extend your data
center (Site-to-Site VPN)
✓ Enable hybrid cloud scenarios
describe core services in azure
site-to-site VPN traffic traverses the Internet
VPN Gateway
A virtual network gateway that sends
encrypted traffic between an Azure VNET and
an on-premises location over the Internet
Core component of “hybrid cloud”
describe core services in azure
VNET Peering
Enables seamless connection of two
or more Virtual Networks in Azure
describe core services in azure
Enables seamless connection of two
or more Virtual Networks in Azure
VNET Peering
The two networks function as one
in terms of connectivity
describe core services in azure
ExpressRoute
Extends your on-premises networks into
Azure over a private connection with
the help of a connectivity provider
traffic does NOT traverse the Internet
DOMAIN 2: Describe core azure services
❖ Describe the benefits and usage of Container (Blob)
Storage, Disk Storage, File Storage, and storage tiers
❖ Describe the benefits and usage of Cosmos DB, Azure
SQL Database, Azure Database for MySQL, Azure
Database for PostgreSQL, and SQL Managed Instance
STORAGE AND DATABASE
2. Describe the core services available in Azure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe core azure services
Blob Storage
- STORAGE
Disk Storage
File Storage
Storage Tiers
describe core services in azure
Blob Storage
Storage optimized for storing massive
amounts of unstructured data
describe core services in azure
File Storage
Fully managed file shares in
Azure accessible via SMB or NFS
describe core services in azure
Disk Storage
Azure managed disks are block-level
storage volumes that are managed
by Azure and used with Azure VMs
describe core services in azure
use lifecycle management policies to automate tiers
Storage Tiers
Azure storage hot, cool, and archive
access tiers to store blob object
data in a cost-effective manner
DOMAIN 2: Describe core azure services
Table Storage
Queue Storage
describe core services in azure
Table Storage
A service that stores structured
NoSQL data in Azure, including a
schemaless key/attribute store
describe core services in azure
Queue Storage
A service for storing large numbers of
messages, accessible from anywhere
via authenticated HTTP or HTTPS calls
Describe core azure services
Cosmos DB
- DATABASES
MySQL
MS SQL
PostgreSQL
SQL Managed
Instance
describe core services in azure
Cosmos DB
A fully managed NoSQL database
for modern app development.
describe core services in azure
table – sql – JavaScript – API for MongoDB
– Gremlin – Cassandra – Spark – ETCD
Cosmos DB
It features ultra-low response
latency, and APIs for several popular
languages and DB platforms.
fast global access and data convergence
describe core services in azure
MS SQL
A fully managed PaaS database engine that
handles most management functions such as
upgrading, patching, backups, and monitoring
describe core services in azure
PostgreSQL
A relational database service in the
Microsoft cloud based on
the PostgreSQL Community Edition
describe core services in azure
MySQL
A relational database service in the
Microsoft cloud based on the MySQL
Community Edition
Describe core azure services
Cosmos DB
- DATABASES
MySQL
MS SQL
PostgreSQL
SQL Managed
Instance
describe core services in azure
“migrate on-premises DBs” and “compatibility”
SQL Managed
Instance
Cloud database service that combines the
broadest SQL Server database engine
compatibility with all the benefits of a PaaS
describe core services in azure
Azure
Marketplace
Catalog of more than 17,000 certified apps
and services
describe core services in azure
Catalog of more than 17,000 certified apps
and services
Azure
Marketplace
Deploy seamlessly, and simplify billing with a
single bill for all Microsoft and third-party solutions
Exam DOMAINS for az-900
01
02
03
04
05
06
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
03
Describe core solutions and management tools on Azure
1. Describe core solutions available in Azure
2. Describe Azure management tools
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 3: Describe core solutions & TooLS
Describe the benefits and usage of:
❖ Internet of Things (IoT) Hub, IoT Central, and Azure Sphere
❖ Azure Synapse Analytics, HDInsight, and Azure Databricks
❖ Azure Machine Learning, Cognitive Services and Azure Bot
Service
❖ Serverless computing solutions that include Azure Functions
and Logic Apps
❖ Azure DevOps, GitHub, GitHub Actions, and Azure DevTest Labs
1. Describe core solutions available in Azure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe core solutions available in azure
IoT Hub
IoT Central
Azure Sphere
describe core services in azure
IoT Hub
A central message hub for bi-directional
communication between your IoT app and
the devices it manages
describe core services in azure
IoT Central
An IoT application platform that
simplifies the creation of IoT solutions.
describe core services in azure
An IoT application platform that
simplifies the creation of IoT solutions.
IoT Central
Helps to reduce the burden and cost of IoT
management operations, and development.
A fully managed SaaS solution
describe core services in azure
Azure Sphere
A secure, high-level application platform
with built-in communication and security
features for internet-connected devices.
describe core services in azure
A secure, high-level application platform
with built-in communication and security
features for internet-connected devices.
Azure Sphere
Basically, a Linux-based operating system
(OS), and a cloud-based security service that
provides continuous, renewable security
describe core services in azure
Azure Sphere
Created by Microsoft to run on an Azure
Sphere-certified chip and to connect to the
Azure Sphere Security Service.
WORD ASSOCIATION:
DATA WAREHOUSE
Data Lake
Synapse Analytics
HDInsight
Databricks
describe core services in azure
A technology that enables big data analytics
and artificial intelligence.
Data Lake
describe core services in azure
A technology that enables big data analytics
and artificial intelligence.
Data Lake
Provides cloud storage that is less expensive
than relational databases cloud storage
describe core services in azure
A technology that enables big data analytics
and artificial intelligence.
Data Lake
Provides cloud storage that is less expensive
than relational databases cloud storage
Stores data from business systems and data
warehouses, as well as device and sensor data
describe core services in azure
Data Lake
A place to store, organize, and analyze
large volumes structured and unstructured
data of diverse data from diverse sources.
describe core services in azure
Synapse
Analytics
An integrated analytics service that
accelerates time to insight across data
warehouses and big data systems.
describe core services in azure
An integrated analytics service that
accelerates time to insight across data
warehouses and big data systems.
Synapse
Analytics
Was formerly known as Azure SQL Data
Warehouse
describe core services in azure
HDInsight
A cloud distribution of Hadoop components
that makes it easy, fast, and cost-effective to
process massive amounts of data
describe core services in azure
A cloud distribution of Hadoop components
that makes it easy, fast, and cost-effective to
process massive amounts of data
HDInsight
Supports popular open-source frameworks
such as Hadoop, Spark, Hive, LLAP, Kafka,
Storm, R, and more.
describe core services in azure
A data analytics platform optimized for the
Microsoft Azure cloud services platform
Databricks
describe core services in azure
A data analytics platform optimized for the
Microsoft Azure cloud services platform
Databricks
Offers two environments for developing data
intensive applications: Azure Databricks SQL
Analytics and Azure Databricks Workspace.
Describe core solutions available in azure
Azure Machine
Learning
Cognitive
Services
Azure Bot
Service
describe core services in azure
Azure Machine
Learning
A cloud-based environment you can
use to train, deploy, automate, manage,
and track ML models.
describe core services in azure
Cognitive
Services
Cloud-based services with REST APIs and
client library SDKs available to help you build
cognitive intelligence into your applications.
describe core services in azure
Cognitive
Services
Provides cognitive understanding categorized
into five main pillars: vision, speech,
language, decision, and search
describe core services in azure
Azure Bot
Service
A managed bot development service that
helps you easily connect to your users via
popular channels
describe core services in azure
A managed bot development service that
helps you easily connect to your users via
popular channels
Azure Bot
Service
Provides an integrated environment that is
purpose-built for bot development.
WORD ASSOCIATION:
serverless
Logic App
Functions
Event Grid
serverless computing solutions
Logic App
A cloud service that helps you schedule,
automate, and orchestrate tasks, business
processes, and workflows
serverless computing solutions
A cloud service that helps you schedule,
automate, and orchestrate tasks, business
processes, and workflows
Logic App
You can choose from a gallery of hundreds of prebuilt connectors for MSFT & 3rd party services
serverless computing solutions
Functions
An event driven, compute-on-demand
experience that extends the
existing Azure application platform…
serverless computing solutions
Functions
…with capabilities to implement code
triggered by events occurring in Azure as
well as on-premises systems.
serverless computing solutions
Event Grid
Enables you to easily manage events across
many different Azure services and applications
Pub/Sub
model
image credit: Microsoft
app or service “reacting” to an event
serverless computing solutions
Enables you to easily manage events across
many different Azure services and applications
Event Grid
Once a subscription is created, Event Grid will
push events to the configured destination
serverless computing solutions
Event Grid
Makes it easy for any developer to utilize the
“push” model instead of the inefficient “pull”
across their Serverless architecture.
HOW
is SERVERLESS
Different
from PAAS in terms of
responsibility?
HOW
is SERVERLESS
Different
from PAAS in terms of
functionality?
PaaS
More control over
deployment environment
Application has to be
configured to auto-scale
Application takes
a while to spin up
Serverless
Devs have to
write code
No server
management
Less control over
deployment environment
Application scales
automatically
Application code only
executes when invoked
Describe core solutions available in azure
Azure
DevOps
GitHub
Actions
GitHub
Azure
DevTest Labs
describe core services in azure
Azure
DevOps
A single platform for implementing DevOps,
deploying code using the CI/CD framework,
facilitating Agile software development
describe core services in azure
GitHub
GitHub is a web-based Git repository hosting
service for source code management (SCM)
and distributed revision control
describe core services in azure
GitHub is a web-based Git repository hosting
service for source code management (SCM)
and distributed revision control
GitHub
It offers the functionality of Git as well as
adding its own features.
describe core services in azure
Helps you automate software development
workflows from within GitHub.
GitHub
Actions
You can build, test, package, release, or
deploy any project on GitHub with a workflow.
CI/CD = continuous integration / continuous deployment
describe core services in azure
Azure
DevTest Labs
Provides a self-service sandbox environment
to quickly create Dev/Test environments while
minimizing waste and controlling costs.
DOMAIN 3: Describe core solutions & TooLS
Describe the functionality and usage of:
❖ Azure Portal, Azure PowerShell, Azure CLI, Cloud
Shell, and Azure Mobile App
❖ Azure Advisor
❖ Azure Resource Manager (ARM) templates
❖ Azure Monitor
❖ Azure Service Health
2. Describe Azure management tools
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe azure management tools
Azure
Portal
Azure
PowerShell
Azure Cloud
Shell
©2021 INSIDE CLOUD & Security
Azure CLI
Azure Mobile
App
describe core SOLUTIONS in azure
Azure
Portal
A web-based, unified console where you
can manage your Azure subscription using a
graphical user interface.
describe core SOLUTIONS in azure
Azure Cloud
Shell
An interactive, authenticated, browseraccessible shell for managing Azure resources.
describe core SOLUTIONS in azure
An interactive, authenticated, browseraccessible shell for managing Azure resources.
Azure Cloud
Shell
It includes both Bash and PowerShell options
describe core SOLUTIONS in azure
Azure
PowerShell
A set of cmdlets for managing Azure
resources directly from the PowerShell
command line.
describe core SOLUTIONS in azure
Azure Mobile
App
App for iOS and Android that enables
managing, tracking health and status, and
troubleshooting your Azure resources
describe core SOLUTIONS in azure
The Azure command-line interface (Azure
CLI) is a set of commands used to create and
manage Azure resources.
Azure CLI
Available on Windows, macOS, and Linux,
Docker, and Azure Cloud Shell.
Describe azure management tools
Azure Advisor
Scans your Azure configuration and
recommends changes to optimize deployments,
increase security, and save you money.
Describe azure management tools
Scans your Azure configuration and
recommends changes to optimize deployments,
increase security, and save you money.
Azure Advisor
Analyzes the configuration of the resources
present in the Azure subscriptions
high availability, security, performance, costs
Describe azure management tools
ARM
Templates
A JavaScript Object Notation (JSON) file that
defines the infrastructure and configuration for
your project.
Describe azure management tools
A JavaScript Object Notation (JSON) file that
defines the infrastructure and configuration for
your project.
ARM
Templates
Templates use declarative syntax and are
idempotent, which means you can deploy
many times and get same resources and state
infrastructure as code
Describe azure management tools
A service that collects monitoring telemetry
from a variety of on-premises and Azure sources.
Azure Monitor
Describe azure management tools
A service that collects monitoring telemetry
from a variety of on-premises and Azure sources.
Azure Monitor
Management tools, like Azure Security Center,
push log data to Azure Monitor.
Describe azure management tools
A service that collects monitoring telemetry
from a variety of on-premises and Azure sources.
Management tools, like Azure Security Center,
push log data to Azure Monitor.
Azure Monitor
Azure Monitor aggregates and stores this
telemetry in an Azure Log Analytics instance
backend data store
Describe azure management tools
Azure Service
Health
Notifies you about Azure service incidents
and planned maintenance so you can take
action to mitigate downtime.
Exam DOMAINS for az-900
01
02
03
04
05
06
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
04
©2021 INSIDE CLOUD & Security
Describe general security and network security features
1. Describe Azure security features
2. Describe Azure network security
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 4: Describe general & network security
❖ Describe basic features of Azure Security Center,
including policy compliance, security alerts, secure
score, and resource hygiene
❖ Describe the functionality and usage of Key Vault
❖ Describe the functionality and usage of Azure Sentinel
❖ Describe the functionality and usage of Azure
Dedicated Hosts
1. Describe Azure security features
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe azure security features
©2021 INSIDE CLOUD & Security
Azure
Sentinel
Azure Security
Center
Key Vault
Dedicated
Hosts
Describe azure security features
Azure Security
Center
©2021 INSIDE CLOUD & Security
A unified infrastructure security management
system that strengthens the security posture
of your data centers (cloud and on-premises)
Describe azure security features
©2021 INSIDE CLOUD & Security
A unified infrastructure security management
system that strengthens the security posture
of your data centers (cloud and on-premises)
Azure Security
Center
Provides security guidance for compute, data,
network, storage, app, and other services
Describe azure security features
©2021 INSIDE CLOUD & Security
A cloud service for securely storing and
accessing secrets
Key Vault
Describe azure security features
©2021 INSIDE CLOUD & Security
A cloud service for securely storing and
accessing secrets
Key Vault
A secret is anything that you want to tightly
control access to, such as API keys, passwords,
certificates, or cryptographic keys
Describe azure security features
Azure
Sentinel
©2021 INSIDE CLOUD & Security
A cloud-native, security information event
management (SIEM) and security orchestration
automated response (SOAR) solution.
Describe azure security features
Dedicated
Hosts
©2021 INSIDE CLOUD & Security
A service that provides dedicated physical
servers able to host one or more virtual
machines in one Azure subscription
DOMAIN 4: Describe general & network security
❖ Describe the concept of defense in depth
❖ Describe the functionality and usage of
Network Security Groups (NSG)
❖ Describe the functionality and usage of
Azure Firewall
❖ Describe the functionality and usage of
Azure DDoS protection
2. Describe Azure network security
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe azure network security
Defense
in-Depth
©2021 INSIDE CLOUD & Security
Azure
Firewall
Network
Security Group
Azure
DDoS
Describe azure network security
Defense
in-Depth
©2021 INSIDE CLOUD & Security
A layered (defense in depth) approach that
does not rely on one method to completely
protect your environment.
Describe azure network security
Network
Security Group
Contains security rules that allow or deny
inbound network traffic to, or outbound network
traffic from, several types of Azure resources.
Describe azure network security
Contains security rules that allow or deny
inbound network traffic to, or outbound network
traffic from, several types of Azure resources.
Network
Security Group
For each rule, you can specify source and
destination, port, and protocol.
Describe azure network security
Contains security rules that allow or deny
inbound network traffic to, or outbound network
traffic from, several types of Azure resources.
Network
Security Group
For each rule, you can specify source and
destination port and protocol.
Can be applied to a subnet or network adapter
NIC
Describe azure network security
A managed, cloud-based network security
service that protects your Azure Virtual
Network resources.
Azure
Firewall
It's a fully stateful firewall as a service with
built-in high availability and unrestricted
cloud scalability.
Describe azure network security
Standard tier provides enhanced DDoS mitigation
features to defend against DDoS attacks.
Azure DDoS
Also includes logging, alerting, and telemetry not
included in the free Basic tier present by default.
Exam DOMAINS for az-900
01
02
03
04
05
06
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
05
©2021 INSIDE CLOUD & Security
Describe identity, governance, privacy, and compliance features
1. Describe core Azure identity services
2. Describe Azure governance features
3. Describe privacy and compliance resources
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 5: Describe identity, governance…
❖ Explain the difference between authentication and
authorization
❖ Define Azure Active Directory
❖ Describe the functionality and usage of Azure Active
Directory
❖ Describe the functionality and usage of Conditional
Access, Multi-Factor Authentication (MFA), and
Single Sign-On (SSO)
1. Identify core Azure identity services
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
identify core azure identity services
Identity
Authentication (AuthN) is the process of
proving that you are who you say you are.
AuthN and
AuthZ
Authorization (AuthZ) is the act of granting an
authenticated party permission to do something.
Access
identify core azure identity services
Azure AD
Azure Active Directory (Azure AD) is
Microsoft’s cloud-based identity and
access management service….
identify core azure identity services
Azure AD
…which helps your employees sign in and
access resources in:
identify core azure identity services
…which helps your employees sign in and
access resources in:
Azure AD
Internal resources, such as apps on your
corporate network or custom cloud apps
External resources, such as Microsoft 365,
the Azure portal, and many SaaS apps
identify core azure identity services
Single Signon (SSO)
MFA
Conditional
Access
identify core azure identity services
Single sign-on means a user doesn't have
to sign into every application they use.
Single Signon (SSO)
The user logs in once and that credential is
used for multiple apps.
Single sign-on based authentication systems
are often called "modern authentication".
identify core azure identity services
MFA
Azure AD MFA works by requiring
two or more of the following
authentication methods:
identify core azure identity services
Something you know (pin or password)
Something you have (trusted device)
MFA
Something you are (biometric)
identify core azure identity services
Conditional
Access
Used by Azure Active Directory to bring
signals together, to make decisions, and
enforce organizational policies
azure ad conditional access
image credit: Microsoft
DOMAIN 5: Describe identity, governance…
❖ Describe the functionality and usage of Role-Based
Access Control (RBAC)
❖ Describe the functionality and usage of resource locks
❖ Describe the functionality and usage of tags
❖ describe the functionality and usage of Azure Policy
❖ Describe the functionality and usage of Azure Blueprints
❖ Describe the Cloud Adoption Framework for Azure
2. Describe Azure governance features
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe azure governance features
RBAC
Azure RBAC helps you manage who has
access to Azure resources, what they
can do with those resources, and which
resources/areas they have access to.
describe azure governance features
Azure RBAC
Built on Azure Resource Manager that
provides fine-grained access
management of Azure resources.
describe azure governance features
Resource
Locks
Prevent other users in your organization
from accidentally deleting or modifying
critical resources.
describe azure governance features
Prevent other users in your organization
from accidentally deleting or modifying
critical resources.
Resource
Locks
The lock overrides any permissions the
user might have.
BASICS OF AZURE
GOVERNANCE
cloud governance
Policy
Initiative
Blueprint
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
cloud governance
Policy
Initiative
Blueprint
The definition of the conditions which you
want to control/govern.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
cloud governance
Policy
Initiative
Blueprint
A collection of Azure policy definitions that
are grouped together towards a specific goal
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
cloud governance
Policy
Initiative
Blueprint
A container for composing sets of standards,
patterns, and requirements for implementation
of Azure cloud services, security, and design
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
cloud governance
Policy
Initiative
Blueprint
Often used in the same sentence as the
phrase “new environments”
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
describe azure governance features
Tags
A name and a value pair used to to
logically organize Azure resources,
resource groups, and subscriptions into
a logical taxonomy
describe azure governance features
Tags can be the basis for applying
business policies or tracking costs
Tags
You can also enforce tagging rules
with Azure policies
Guidance designed to help you create and
implement the business and technology
strategies to succeed in Azure
DOMAIN 5: Describe identity, governance…
❖ Describe the Microsoft core tenets of Security, Privacy, and
Compliance
❖ Describe the purpose of the Microsoft Privacy Statement, Online
Services Terms (OST) and Data Protection Amendment (DPA)
❖ Describe the purpose of the Trust Center
❖ Describe the purpose of the Azure compliance documentation
❖ Describe the purpose of Azure Sovereign Regions (Azure
Government cloud services and Azure China cloud services)
3. Describe privacy and compliance resources
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the Microsoft core tenets of Security,
Privacy, and Compliance
Security,
Privacy and
Compliance
Protecting the data that's entrusted
to Microsoft by using strong
encryption and access controls.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the Microsoft core tenets of Security,
Privacy, and Compliance
Security,
Privacy and
Compliance
Privacy is about making meaningful
choices for how and why data is
collected and used.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the Microsoft core tenets of Security,
Privacy, and Compliance
Security,
Privacy and
Compliance
Compliance with regulations is
critical, and Microsoft aims to ease
this task for Azure customers
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the purpose of the Azure compliance
documentation
Azure
Compliance
Documentation
To make it easier to find, compliance
documentation is grouped
geographically, and by industry
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the purpose of the Azure compliance
documentation
Azure
Compliance
Documentation
You'll also find template audit
documents that you can tailor to
your or your customers needs.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the purpose of the
Microsoft Privacy Statement
Microsoft
Privacy
Statement
Microsoft Privacy Statement Explains:
✓ What data Microsoft processes
✓ How Microsoft processes it
✓ For what purpose data is utilized
WHY
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the purpose of the
Online Service Terms (OST)
Online Service
Terms (OST)
Contains all the terms and
conditions for software and online
services through Microsoft
Commercial Licensing programs.
Product Terms site
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Describe the purpose of the Azure
Data Amendment (DPA)
Data Protection
Amendment
(DPA)
Further defines the data processing and
security terms for online services,
including data compliance, disclosure,
security, transfer and retention
Data Protection Addendum
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
Trust
Center
Where you can learn about the four
foundational principles of trust: security,
privacy, compliance, and transparency
https://microsoft.com/trust
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe privacy and compliance resources
operated by special trustees
Azure
Sovereign
Regions
Special regions that you might need to
for compliance or legal purposes:
Government, China, Germany
physical and logical isolation
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
01
02
03
04
05
06
©2021 INSIDE CLOUD & Security
Describe Cloud Concepts
Describe Core Azure Services
Describe core solutions and management tools on Azure
Describe general security and network security features
Describe identity, governance, privacy, and compliance features
Describe Azure cost management and Service Level Agreements
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Exam DOMAINS for az-900
06
©2021 INSIDE CLOUD & Security
Describe Azure cost management and Service Level Agreements
1. Describe methods for planning and
managing costs
2. Describe Azure Service Level Agreements
(SLAs) and service lifecycles
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
DOMAIN 6: Describe azure cost mgmt & SLAs
❖ Identify factors that can affect costs (resource types, services,
locations, ingress and egress traffic)
❖ Identify factors that can reduce costs (reserved instances,
reserved capacity, hybrid use benefit, spot pricing)
❖ Describe the functionality and usage of the Pricing calculator
and the Total Cost of Ownership (TCO) calculator
❖ Describe the functionality and usage of Azure Cost Management
1. Describe methods for planning and
managing costs
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Cost
Impacts
Factors that can affect Azure resource
costs include resource types, services,
locations, ingress and egress traffic
Describe methods for planning and managing costs
Reducing
Costs
Factors that can reduce costs include
reserved instances, reserved capacity,
hybrid use benefit, spot pricing
Describe methods for planning and managing costs
Reserved
Instances
Reserve virtual machines in advance and
save up to 72 percent compared to PAYG
pricing with 1-yr or 3-yr commitment
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
discount is product-specific!
Reserved
Capacity
Achieve significant savings on Azure SQL
Database, Azure Cosmos DB and Azure
Synapse Analytics and Azure Cache for Redis
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Reserved
Capacity
Enables you to more easily manage costs across
predictable and variable workloads and help
optimize budgeting and forecasting.
also includes 1-year and 3-year options
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Hybrid Use
Benefit
A licensing benefit that helps you to
significantly reduce the costs of running
your workloads in the cloud.
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Windows Server, SQL Server, Redhat and Suse Linux
Hybrid Use
Benefit
Let’s you use your on-premises
Software Assurance-enabled Windows
Server and SQL Server licenses on Azure
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Spot
Pricing
Access unused Azure compute capacity
at deep discounts—up to 90 percent
compared to pay-as-you-go prices
applies to Azure VMs only!
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe methods for planning and managing costs
Pricing
Calculator
Interactive calculator that allows you to
estimate Azure resource costs.
Describe methods for planning and managing costs
BEFORE you deploy
Interactive calculator that allows you to
estimate Azure resource costs.
Pricing
Calculator
Enables you to choose region, instance, tiers,
etc., to match functionality and budget needs.
Describe methods for planning and managing costs
AFTER you deploy
Azure Cost
Management
A suite of tools provided by Microsoft
that help you analyze, manage, and
optimize the costs of your workloads.
DOMAIN 6: Describe azure cost mgmt & SLAs
❖ Describe the purpose of an Azure Service Level
Agreement (SLA)
❖ Identify actions that can impact an SLA (i.e.
Availability Zones)
❖ Describe the service lifecycle in Azure (Public
Preview and General Availability)
2. Describe Azure SLAs and service lifecycles
For more exam prep and Azure tutorials, follow us on Youtube at https://bit.ly/azurevideos
Describe Azure SLAs and service lifecycles
PURPOSE of an Azure SLA?
Azure
SLAs
To provide a clear explanation of
availability (and sometimes performance)
of an Azure service
Describe Azure SLAs and service lifecycles
ACTIONS that can affect an SLA?
Azure
SLAs
Failing to deploy a service in a manner
that meets the SLA requirements
Describe Azure SLAs and service lifecycles
for evaluation only!
Service
Lifecycle
Private Preview
open only to companies or users invited
Describe Azure SLAs and service lifecycles
Private Preview
Service
Lifecycle
Public Preview
open to public, but Preview limitations apply!
Describe Azure SLAs and service lifecycles
Private Preview
Service
Lifecycle
Public Preview
General Availability (GA)
BONUS
to assess your readiness
FREE PRACTICE
questions
for the AZ-900 exam
INSIDE CLOUD
THANKS
F O R W A T C H I N G!
Related documents
Windows Azure Active Directory Overview
Windows Azure Active Directory Overview
Getting Started - Microsoft Azure Platform Academic 150 day Pass.ppt
Getting Started - Microsoft Azure Platform Academic 150 day Pass.ppt
3 Pillars of Azure
3 Pillars of Azure
Features of Microsoft Azure
Features of Microsoft Azure
Features of Microsoft Azure (1)
Features of Microsoft Azure (1)
Document
Document
PowerPoint Presentation - Microsoft Center
PowerPoint Presentation - Microsoft Center
Skills Audit(NETWORK ENGINEER)
Skills Audit(NETWORK ENGINEER)
CloudBrew 2013- Connecting IoT
CloudBrew 2013- Connecting IoT
Download
advertisement