Pass Your AZ-801 Dumps as PDF Updated on 2024 With 143 Questions [Q69-Q89]

5/5 - (2 votes)

Pass Your AZ-801 Dumps as PDF Updated on 2024 With 143 Questions

Microsoft AZ-801 Real Exam Questions and Answers FREE

The Microsoft AZ-801 exam covers a wide range of topics and skills, including configuring Azure Active Directory, managing hybrid identities, implementing and managing virtual machines in Azure, and configuring hybrid networking. AZ-801 exam also covers advanced topics such as implementing and managing advanced Azure storage solutions, implementing and managing Azure backup and disaster recovery, and implementing and managing Azure resource management.

Microsoft AZ-801: Configuring Windows Server Hybrid Advanced Services is a certification exam designed for IT professionals who have expertise in implementing and managing Windows Server Hybrid infrastructure solutions. AZ-801 exam is intended for candidates who have experience with various technologies and services in hybrid scenarios, including Azure, Windows Server, and Microsoft 365.

NO.69 You need to implement a security policy solution to authorize the applications. The solution must meet the security requirements.
Which service should you use to enforce the security policy, and what should you use to manage the policy settings? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.70 You are evaluating the technical requirements tor Cluster2.
What is the minimum number of Azure Site Recovery Providers that you should install?

NO.71 You have two physical servers named AppSrv1 and AppSrv2 and an unconfigured server named Server1. All the servers run Windows Server. Only Server1 can access the internet.
You plan to use Azure Site Recovery to replicate AppSrv1 and AppSrv2 to Azure.
You need to deploy the required components to AppSrv1, AppSrv2, and Server1.
Which components should you deploy? To answer, drag the appropriate components to the correct servers. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

NO.72 For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

NO.73 You have two physical servers named AppSrv1 and AppSrv2 and an unconfigured server named Server1. All the servers run Windows Server. Only Server1 can access the internet.
You plan to use Azure Site Recovery to replicate AppSrv1 and AppSrv2 to Azure.
You need to deploy the required components to AppSrv1, AppSrv2, and Server1.
Which components should you deploy? To answer, drag the appropriate components to the correct servers.
Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

NO.74 You have a failover cluster named Cluster1 that contains the nodes shown in the following table.

A File Server for general use cluster role named HAFS is configured as shown in the General exhibit (Click the General tab.)

NO.75 You have five Azure virtual machines.
You need to collect performance data and Windows Event logs from the virtual machines. The data collected must be sent to an Azure Storage account.
What should you install on the virtual machines?

the Azure Connected Machine agent

the Azure Monitor agent

the Dependency agent

the Telegraf agent

the Azure Diagnostics extension

NO.76 You manage 200 physical servers that run Windows Server.
You plan to migrate the servers to Azure.
You need to prepare for discovery of the servers by using Azure Migrate.
Which three actions should you perform in sequence on a physical server? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

NO.77 Which domain controller should be online to meet the technical requirements for DC4?

DC1

DC2

DC3

NO.78 You have a server named Server1 that runs Windows Server and has the Web Server (IIS) server role installed. Server1 hosts an ASP.NET Core web app named WebApp1 and the app’s source files.
You install Docker on Server1.
You need to ensure that you can deploy WebApp1 to an Azure App Service web app from the Azure Container Registry.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

NO.79 You have an Azure virtual machine named VM1 that runs Windows Server.
You plan to deploy a new line-of-business (LOB) application to VM1.
You need to ensure that the application can create child processes.
What should you configure on VM1?

Microsoft Defender Credential Guard

Microsoft Defender Application Control

Microsoft Defender SmartScreen

Exploit protection

NO.80 You have an on-premises server named Server1 and Microsoft Sentinel instance.
You plan to collect windows Defender Firewall events from Sever1 and analyze the event data by using Microsoft Sentinel.
What should you install on Server1, and which information should you provide during the instance? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.81 You are planning the www.fabrikam.com website migration to support the Azure migration plan.
How should you configure WebApp1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.82 You have an Azure virtual machine named VM1 that runs Windows Server.
When you attempt to install the Azure Performance Diagnostics extension on VM I, the installation fails.
You need to identify the cause of the installation failure.
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

From the Azure portal, view the alerts for VM1.

From the Azure portal, view the activity log for VM1.

Sign into VM1 and verify the MonitoringAgentlog file.

NO.83 You are planning the europe.fabrikam.com migration to support the on-premises migration plan-Where should you install the Password Export Server (PES) service, where should you generate the encryption key? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.84 You need to implement alerts for the domain controllers. The solution must meet the technical requirements.
What should you do on the domain controllers, and what should you create on Azure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.85 You have two Azure virtual machines named VM1 and VM2. VM1 is backed up to an Azure Recovery Services vault daily and retains backups for 30 days.
You need to restore an individual file named C:DataImportant.docx from VM1 to VM2. The solution must minimize administrative effort.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

NO.86 You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with an Azure Active Directory (Azure AD) tenant by using password hash synchronization.
You have a Microsoft 365 subscription.
All devices are hybrid Azure AD-joined.
Users report that they must enter their password manually when accessing Microsoft 365 applications.
You need to reduce the number of times the users are prompted for their password when they access Microsoft
365 and Azure services.
What should you do?

In Azure AD. configure a Conditional Access policy for the Microsoft Office 365 applications.

In the DNS zone of the AD DS domain, create an autodiscover record.

From Azure AD Connect, enable single sign-on (SSO).

From Azure AD Connect, configure pass-through authentication.

NO.87 You are planning the europe.fabrikam.com migration to support the on-premises migration plan-Where should you install the Password Export Server (PES) service, where should you generate the encryption key? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

NO.88 For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

NO.89 You have a server that runs Windows Server. The server is configured to encrypt all incoming traffic by using a connection security rule.
You need to ensure that Server1 can respond to the unencrypted tracert commands initiated from computers on the same network.
What should you do from Windows Defender Firewall with Advanced Security?

From the IPsec Settings, configure IPsec defaults.

Create a new custom outbound rule that allows ICMPv4 protocol connections for all profiles.

Change the Firewall state of the Private profile to Off.

From the IPsec Settings, configure IPsec exemptions.