Crucial Exams

Microsoft Azure Solutions Architect Expert AZ-305 Practice Question

You are designing a centralized logging solution for a company that runs several hundred Azure virtual machines, Azure Kubernetes Service clusters, and Azure SQL databases distributed across 20 subscriptions. Security policy requires that:

  • All platform and workload logs are queryable within five minutes of creation.
  • Log data must be retained for at least seven years to satisfy regulatory audits.
  • Administrators will use Kusto Query Language (KQL) to troubleshoot and create alert rules. Which approach meets the requirements while keeping administrative overhead low?

  • Deploy an Azure HDInsight cluster with Kafka to collect logs and store them in Azure Data Lake Storage, using Hive queries for reporting.

  • Send all diagnostic and activity logs to a single Log Analytics workspace configured for short-term retention, and enable Azure Monitor data export to an Azure Storage account that uses lifecycle policies for seven-year archival.

  • Write logs directly to an Azure Storage account in the Cool tier and use Azure Synapse serverless SQL pool to query the data when needed.

  • Create diagnostic settings on every resource to stream logs to Azure Event Hubs, then ingest the data into a third-party SIEM for storage and analysis.

Microsoft Azure Solutions Architect Expert AZ-305
Design identity, governance, and monitoring solutions
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot