Contents

Introduction

Organization of this book

Microsoft certifications

Quick access to online references

Errata, updates, & book support

Stay in touch

Important: How to use this book to study for the exam

Chapter 1 Manage Azure subscriptions and resources

Skill 1.1: Manage Azure Subscriptions

Assigning administrator permissions

Configure cost center quotas and tagging

Configure Azure subscription policies

Skill 1.2: Analyze resource utilization and consumption

Configure diagnostic settings on resources

Create and test alerts

Analyze alerts across subscriptions

Analyze metrics across subscriptions

Utilize log search query functions

Monitor for unused resources

Monitor and report spend

Skill 1.3: Manage resource groups

Use Azure policies for resource groups

Configure resource locks

Implement and set tagging on resource groups

Move resources across resource groups

Remove resource groups

Skill 1.4: Manage role-based access control (RBAC)

Role-Based Access Control

How RBAC works

Implementing RBAC using the portal

Thought experiment

Thought experiment answers

Chapter summary

Chapter 2 Implement and manage storage

Skill 2.1: Create and configure storage accounts

Create and configure a storage account

Configure network access to the storage account

Manage access keys

Generate a shared access signature

Monitor activity log by using Log Analytics

Implement Azure storage replication

Skill 2.2: Import and export data to Azure

Configure and use Azure blob storage

Create export from Azure job

Create import into Azure job

Use Azure Data Box

Configure Azure content delivery network (CDN) endpoints

Skill 2.3: Configure Azure files

Using the Azure File Service

Create Azure File Sync service

Create Azure sync group

Troubleshoot Azure File Sync

Skill 2.4: Implement Azure Backup

Create Recovery Services Vault

Backup and restore data

Configure and review backup reports

Create and configure backup policy

Thought experiment

Thought experiment answers

Chapter summary

Chapter 3 Deploy and manage virtual machines (VMs)

Skill 3.1: Create and configure a VM for Windows and Linux

Creating virtual machines

Configuring high availability

Configure virtual machine size

Authentication options

Configure storage

Configure networking

Configure monitoring

Deploy and configure scale sets

Skill 3.2: Automate deployment of VMs

Deploy Windows and Linux VMs

Configure VHD template

Deploy from template

Modify Azure Resource Manager (ARM) template

Save a deployment as an ARM Template

Configure location of new VMs

Skill 3.3: Manage Azure VM

Add data disks

Add network interfaces

Manage VM sizes

Move VMs from one resource group to another

Redeploy VMs

Automate configuration management

Skill 3.4: Manage VM Backups

Configure VM backup

Define backup policies

Implement backup policies

Perform VM restore

Thought experiment

Thought experiment answers

Chapter summary

Chapter 4 Configure and manage virtual networks

Skill 4.1: Implement and manage virtual networking

Create and configure a virtual networks and subnets

Configure private IP addresses and network interfaces

Create and configure public IP addresses

Configure network routes

Skill 4.2: Create connectivity between virtual networks

Create and configure VNet peering

Create a virtual network gateway and configure VNET to VNET connectivity

Verify virtual network connectivity

Skill 4.3: Configure name resolution

Configure Azure DNS

Configure custom DNS settings

Configure private DNS zones

Skill 4.4: Create and configure a network security group (NSG)

Create security rules

Associate NSG to a subnet or network interface

Identify required ports

Evaluate effective security rules

Skill 4.5: Implement Azure load balancer

Configure internal load balancer, load balancing rules, and public load balancer

Troubleshoot load balancing

Skill 4.6: Monitor and troubleshoot virtual networking

Monitor on-premises connectivity

Use network resource monitoring

Use Network Watcher

Troubleshoot external networking

Troubleshoot virtual network connectivity

Skill 4.7: Integrate on-premises network with Azure virtual network

Create and configure Azure VPN Gateway

Create and configure site-to-site VPN

Configure ExpressRoute

Verify and troubleshoot on-premises connectivity

Thought experiment

Thought experiment answers

Chapter summary

Chapter 5 Manage identities

Skill 5.1: Manage Azure Active Directory (AD)

Add custom domains

Configure Azure AD Identity Protection, Azure AD Join, and Enterprise State Roaming

Configure self-service password reset

Implement conditional access policies

Manage multiple directories

Perform an access review

Skill 5.2: Manage Azure AD Objects

Create users and groups

Manage user and group properties

Manage device settings

Perform bulk user updates

Skill 5.3: Implement and manage hybrid identities

Install and configure Azure AD Connect

Configure federation and single sign-on

Manage password sync and writeback

Skill 5.4: Implementing multi-factor authentication (MFA)

Multi-Factor Authentication

Azure MFA advanced features

Thought experiment

Thought experiment answers

Chapter summary

Index

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
3.236.219.157