00:15:00

Free Microsoft Azure Administrator Associate AZ-104 Practice Test

Prepare for the Microsoft Azure Administrator Associate AZ-104 exam with this free practice test. Randomly generated and customizable, this test allows you to choose the number of questions.

  • Questions: 15
  • Time: 15 minutes (60 seconds per question)
  • Included Objectives:
    Manage Azure identities and governance
    Implement and manage storage
    Deploy and manage Azure compute resources
    Configure and manage virtual networking
    Monitor and maintain Azure resources
Change
Question 1 of 15

Which Azure feature allows you to expand the capabilities of an existing virtual machine by adding additional functionality after deployment?

  • Network Security Groups

  • Availability Sets

  • Resource Groups

  • Virtual Machine Extensions

Question 2 of 15

In Azure Entra ID, you need to set up a sign-in identifier for users that is in the format of an email address. Which user property should you configure?

  • Object ID

  • Employee ID

  • Display Name

  • User Principal Name

Question 3 of 15

You are an Azure administrator at Contoso Ltd. The company has purchased Microsoft 365 E5 licenses and needs to assign them to users based on their department memberships. Users may belong to multiple departments due to cross-functional roles. What is the most efficient method to assign licenses to users while preventing duplicate license assignments and staying within the license quota?

  • Use a PowerShell script to assign licenses based on department.

  • Assign licenses to users using group-based license assignment.

  • Create a custom role to manage license assignments per department.

  • Assign licenses directly to each user individually.

Question 4 of 15

You are an Azure Administrator at Contoso Ltd. The company needs to add a new user who does not have an existing Microsoft account or email address. The user should be able to sign in and access resources assigned to them in the company's Azure environment. Which of the following actions should you take to create this user account?

  • Invite the user as a guest to the directory.

  • Use a synchronization tool to sync their account from on-premises.

  • Create an application registration for the user.

  • Create a new cloud user with a username and password.

Question 5 of 15

You are an Azure administrator responsible for a hybrid cloud environment. Users in the on-premises network are experiencing intermittent connectivity issues when accessing resources in Azure. You need to monitor and diagnose these connectivity issues by analyzing communication between the on-premises network and Azure resources. Which tool should you use to achieve this?

  • Azure Network Watcher Connection Monitor

  • Azure Log Analytics

  • Azure Advisor

  • Azure Monitor Metrics

Question 6 of 15

A company wants to protect important Azure resources from accidental modification or deletion by users. Which feature should they use to set such protection on these resources?

  • Azure Blueprints

  • Azure Policies

  • Role-Based Access Control (RBAC)

  • Resource Locks

Question 7 of 15

You are an Azure administrator for Contoso Ltd. The company requires that they manage the encryption keys used for data at rest in their Azure storage account named 'contosodata'. They have a key vault named 'contosokeyvault' with their keys. You need to configure 'contosodata' to meet the company's requirements.

What should you do?

  • Disable default encryption on 'contosodata' and re-enable it using keys from 'contosokeyvault'.

  • Enable Infrastructure Encryption on 'contosodata' and specify 'contosokeyvault' as the key provider.

  • Configure 'contosodata' to use a key from 'contosokeyvault' for encryption.

  • Implement client-side encryption using keys from 'contosokeyvault'.

Question 8 of 15

You are an Azure administrator managing several virtual machines running Windows Server 2019 in your Azure environment. Your company wants to collect and analyze event logs from these virtual machines using Azure Monitor Logs. What should you do first to enable log collection from the virtual machines into Azure Monitor Logs?

  • Install the Azure Monitor agent on the virtual machines.

  • Create a Log Analytics workspace in your Azure subscription.

  • Enable diagnostic settings on the virtual machines to send logs to Azure Monitor Logs.

  • Configure an Azure Storage account to store the logs.

Question 9 of 15

You need to visualize the processor usage of an Azure virtual machine over the past week to identify trends and spikes. Which Azure Monitor tool should you use?

  • Metrics Explorer

  • Application Insights

  • Log Analytics

  • Azure Advisor

Question 10 of 15

Your company uses a custom monitoring system that needs to receive notifications when specific Azure metrics exceed their thresholds. You need to configure Azure alerts to send notifications to this system. Which action type should you choose to integrate with the custom monitoring system?

  • Webhook action

  • Email/SMS action

  • Logic App action

  • Automation Runbook action

Question 11 of 15

A company wants to assign permissions to users for accessing data in a storage account without sharing account keys. Which method should they use to achieve this?

  • Integrate the storage account with Azure Active Directory

  • Use Shared Access Signatures

  • Distribute the storage account access keys to users

  • Use connection strings in application code

Question 12 of 15

Which action allows you to capture the configuration of existing Azure resources for redeployment?

  • Enable resource auditing in Azure Policy

  • Export the deployment as an ARM template

  • Record the deployment steps in Azure Monitor

  • Create a backup of the resource group

Question 13 of 15

An Azure administrator needs to add 500 new users to Azure Entra ID quickly and efficiently. The user data has been provided by the HR department. Which method should the administrator use to accomplish this task?

  • Use the bulk create users feature in Azure Active Directory.

  • Create the user accounts manually through the Azure portal.

  • Use PowerShell to script the creation of user accounts.

  • Set up Azure AD Connect to sync the accounts from an on-premises Active Directory.

Question 14 of 15

An Azure administrator needs to deploy an ARM template that creates multiple resources, including a virtual network, storage account, and several virtual machines. The template includes parameters and variables. The administrator wants to deploy the template using a script that can be easily integrated into existing CI/CD pipelines and run on Windows, Linux, or macOS.

Which command-line tool should the administrator use to deploy the template?

  • Azure Cloud Shell

  • Azure PowerShell

  • Azure CLI

  • Azure Portal

Question 15 of 15

To enable disaster recovery of Azure virtual machines to a different region, which Azure resource must you configure?

  • Azure Recovery Services Vault

  • Azure Load Balancer

  • Azure Traffic Manager

  • Azure Virtual Network Peering