Crucial Exams

Microsoft Azure Solutions Architect Expert AZ-305 Practice Question

Your company runs several Azure Kubernetes Service (AKS) clusters, multiple Azure App Service web apps, and serverless Azure Functions in three subscriptions. Operations needs to do the following:

  • Run cross-resource queries and dashboards that correlate platform and application logs from every environment.
  • Keep all collected logs for at least two years without exporting raw files.
  • Forward only high-severity error events to an on-premises SIEM that accepts Syslog over a VPN connection. Which Azure logging design meets these requirements with the least operational overhead?

  • Configure Diagnostic settings on every resource to send logs to a central Log Analytics workspace and to an Azure Event Hubs namespace that your SIEM reads via Syslog.

  • Create a separate Application Insights instance for each workload and use Azure Monitor workbooks to visualize data; export interesting logs manually to the SIEM.

  • Enable Microsoft Defender for Cloud and use its continuous export feature to send all logs to an Azure Storage account with a two-year lifecycle policy.

  • Send diagnostic logs from every resource directly to a dedicated Azure Storage account with immutable blobs and query them with Azure Data Lake analytics when needed.

Microsoft Azure Solutions Architect Expert AZ-305
Design identity, governance, and monitoring solutions
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot