AZ-400試験無料問題集「Microsoft Designing and Implementing Microsoft DevOps Solutions 認定」
Your company develops a client banking application that processes a large volume of data.
Code quality is an ongoing issue for the company. Recently, the code quality has deteriorated because of an increase in time pressure on the development team.
You need to implement static code analysis.
During which phase should you use static code analysis?
Code quality is an ongoing issue for the company. Recently, the code quality has deteriorated because of an increase in time pressure on the development team.
You need to implement static code analysis.
During which phase should you use static code analysis?
正解:C
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
You have an Azure DevOps subscription that contains the projects shown in the following table

You build apps for the projects by using Azure Pipelines.
Which two projects meet the criteria for granting free paralleljobs? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

You build apps for the projects by using Azure Pipelines.
Which two projects meet the criteria for granting free paralleljobs? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
正解:B,D
解答を投票する
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure pipeline that is used to deploy a web app. The pipeline includes a test suite named TestSuite1. TestSuite1 is used to validate the operations of the web app.
TestSuite1 fails intermittently.
You identify that the failures are unrelated to changes in the source code and execution environment.
You need to minimize troubleshooting effort for the TestSuite1 failures.
Solution: You increase code coverage.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure pipeline that is used to deploy a web app. The pipeline includes a test suite named TestSuite1. TestSuite1 is used to validate the operations of the web app.
TestSuite1 fails intermittently.
You identify that the failures are unrelated to changes in the source code and execution environment.
You need to minimize troubleshooting effort for the TestSuite1 failures.
Solution: You increase code coverage.
Does this meet the goal?
正解:A
解答を投票する
You haw an Azure subscription that contains multiple Azure services. You need to send an SMS alert when scheduled maintenance is planned for the Azure services. Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
正解:A,D
解答を投票する
You manage the Git repository for a largeenterprise application.
You need to minimize the data size of the repository.
How should you complete the commands? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You need to minimize the data size of the repository.
How should you complete the commands? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

Explanation:

Box 1: --aggressive
Cleanup unnecessary files and optimize the local repository:
get gc --aggressive
Box 2: prune
Prune all unreachableobjects from the object database:
git prune
Reference:
https://gist.github.com/Zoramite/2039636
How should you configure the filters for the Project5 trigger? To answer, select the appropriate option in the answer area.
NOTE: Each correct selectionis worth one point.

NOTE: Each correct selectionis worth one point.

正解:

Explanation:

Scenario:

References:https://docs.microsoft.com/en-us/azure/devops/pipelines/build/triggers
Topic 3, Woodgrove bank
This is a case study.Case studies are not timed separately. You can use as much exam time as you would like to complete each case.However, there may be additional case studies and sections on this exam. You must manage yourtime to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might containexhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click theNextbutton. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has anAll Informationtab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click theQuestionbutton to return to the question.
Overview
General Overview
Woodgrove Bank is a financial services company that has a main office in the United Kingdom.
Technical Requirements and Planned Changes
Planned Changes
Woodgrove Bank plans to implement the following project management changes:
* Implement Azure DevOpsfor project tracking.
* Centralize source code control in private GitHub repositories.
* Implement Azure Pipelines for build pipelines and release pipelines.
Woodgrove Bank plans to implement the following changes to the identity environment:
* Deploy an Azure AD tenant named woodgrovebank.com.
* Sync the Active Directory domain to Azure AD.
* Configure App1 to use a service principal.
* Integrate GitHub with Azure AD.
Woodgrove Bank plans to implement the following changes to the core apps:
* Migrate App1 to ASP.NET Core.
* Integrate Azure Pipelines and the third-party build tool used to develop App2.
Woodgrove Bank plans to implement the following changes to the DevOps environment:
* Deploy App1 to Azure App Service.
* Implement source control for the DB1 schema.
* Migrate all the source code from TFS1 to GitHub.
* Deploy App2 to an Azure virtual machine named VM1.
* Merge the POC branch into the GitHub default branch.
* Implement an Azure DevOps dashboard for stakeholders to monitor development progress.
Technical Requirements
Woodgrove Bank identifies the following technical requirements:
* The initial databases for new environments must contain both schema and reference data.
* An Azure Monitor alert for VM1 must be configured to meet the following requirements:
* Be triggered when average CPU usage exceeds 80 percent for 15 minutes.
* Calculate CPU usage averages once every minute.
* The commit history of the POC branch must replace the history of the default branch.
* The Azure DevOps dashboard must display the metrics shown inthe following table.

* Access to Azure DevOps must be restricted to specific IP addresses.
* Page load times for App1 must be captured and monitored.
* Administrative effort must be minimized.
You have a project in Azure DevOps named Project1. Project1 contains a build pipeline named Pipe1 that builds an application namedAppl.
You have an agent pool named Pool1 that contains a Windows Server 2019-based self-hosted agent. Pipe1 uses Pool1.
You plan to implement another project named Project2. Project2 will have a build pipeline named Pipe2 that builds an application namedApp2.
App1 and App2 have conflicting dependencies.
You need to minimize the possibility that the two build pipelines will conflict with each other. The solution must minimize infrastructure costs.
What should you do?
You have an agent pool named Pool1 that contains a Windows Server 2019-based self-hosted agent. Pipe1 uses Pool1.
You plan to implement another project named Project2. Project2 will have a build pipeline named Pipe2 that builds an application namedApp2.
App1 and App2 have conflicting dependencies.
You need to minimize the possibility that the two build pipelines will conflict with each other. The solution must minimize infrastructure costs.
What should you do?
正解:C
解答を投票する
You need to prepare a network security group (NSG) named az400-9940427-nsg1 to host an Azure DevOps pipeline agent. The solution must allow only the required outbound port for Azure DevOps and deny all other inbound and outbound access to the Internet.
To complete this task, sign in to the Microsoft Azure portal.
To complete this task, sign in to the Microsoft Azure portal.
正解:
See solution below.
Explanation:
1. Open Microsoft Azure Portal and Log into your Azure account.
2. Select network security group (NSG) named az400-9940427-nsg1
3. Select Settings, Outbound security rules, and click Add
4. Click Advanced

5. Change the following settings:
* Destination Port range: 8080
* Protocol. TCP
* Action: Allow
Note: Bydefault, Azure DevOps Server uses TCP Port 8080.
References:
https://robertsmit.wordpress.com/2017/09/11/step-by-step-azure-network-security-groups-nsg-security-center- azure-nsg-network/
https://docs.microsoft.com/en-us/azure/devops/server/architecture/required-ports?view=azure-devops
Explanation:
1. Open Microsoft Azure Portal and Log into your Azure account.
2. Select network security group (NSG) named az400-9940427-nsg1
3. Select Settings, Outbound security rules, and click Add
4. Click Advanced

5. Change the following settings:
* Destination Port range: 8080
* Protocol. TCP
* Action: Allow
Note: Bydefault, Azure DevOps Server uses TCP Port 8080.
References:
https://robertsmit.wordpress.com/2017/09/11/step-by-step-azure-network-security-groups-nsg-security-center- azure-nsg-network/
https://docs.microsoft.com/en-us/azure/devops/server/architecture/required-ports?view=azure-devops
You plan to publish build artifacts by using an Azure pipeline.
You need to create an. artifactignore file that meets the following requirements:
* Includes all files in the build output folder and all subfolders
* Excludesfiles that have the .dll extension
What should you include in the file?

You need to create an. artifactignore file that meets the following requirements:
* Includes all files in the build output folder and all subfolders
* Excludesfiles that have the .dll extension
What should you include in the file?

正解:D
解答を投票する
You have an Azure DevOps project that contains a build pipeline. The build pipeline uses approximately 50 open source libraries.
You need to ensure that all the open source libraries comply with your company's licensing standards.
Which service should you use?
You need to ensure that all the open source libraries comply with your company's licensing standards.
Which service should you use?
正解:C
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
You are designing a configuration management solution to support five apps hosted on Azure App Service.
Each app is available inthe following three environments: development, test, and production.
You need to recommend a configuration management solution that meets the following requirements:
* Supports feature flags
* Tracks configuration changes from the past 30 days
* Stores hierarchically structured configuration values
* Controls access to the configurations by using role-based access control (RBAC) permission
* Stores shared values as key/value pairs that can be used by all the apps Which Azure service should you recommend as the configuration management solution?
Each app is available inthe following three environments: development, test, and production.
You need to recommend a configuration management solution that meets the following requirements:
* Supports feature flags
* Tracks configuration changes from the past 30 days
* Stores hierarchically structured configuration values
* Controls access to the configurations by using role-based access control (RBAC) permission
* Stores shared values as key/value pairs that can be used by all the apps Which Azure service should you recommend as the configuration management solution?
正解:C
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
Your company plans to deploy an application to the following endpoints:
* Ten virtual machines hosted in Azure.
* Ten virtual machines hosted in an on-premises data center environment All the virtual machines have the- Azure Pipelines agent.
You need to implement a release strategy for deploying the application to the endpoints.
What should you recommend using to deploy the application to the endpoints? To answer, drag the appropriate components to the correct endpoint.
Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or soon to view content NOTE: Each correct selection n worth one point.

* Ten virtual machines hosted in Azure.
* Ten virtual machines hosted in an on-premises data center environment All the virtual machines have the- Azure Pipelines agent.
You need to implement a release strategy for deploying the application to the endpoints.
What should you recommend using to deploy the application to the endpoints? To answer, drag the appropriate components to the correct endpoint.
Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or soon to view content NOTE: Each correct selection n worth one point.

正解:

Explanation:

Box 1: A deployment group
When authoring an Azure Pipelines or TFS Release pipeline, you can specify the deployment targets for a job using a deployment group.
If the target machines are Azure VMs,you can quickly and easily prepare them by installing the Azure Pipelines Agent Azure VM extension on each of the VMs, or by using the Azure Resource Group Deployment task in your release pipeline to create a deployment group dynamically.
Box 2: A deployment group
References:https://docs.microsoft.com/en-us/azure/devops/pipelines/release/deployment-groups
Your company is building a new web application.
You plan to collect feedback from pilot users on the features being delivered.
All the pilot users have a corporate computer that has Google Chrome and the Microsoft Test & Feedback extension installed. Thepilot users will test the application by using Chrome.
You need to identify which access levels are required to ensure that developers can request and gather feedback from the pilot users. The solution must use the principle of least privilege.
Which access levels m Azure DevOps should you identify? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point.

You plan to collect feedback from pilot users on the features being delivered.
All the pilot users have a corporate computer that has Google Chrome and the Microsoft Test & Feedback extension installed. Thepilot users will test the application by using Chrome.
You need to identify which access levels are required to ensure that developers can request and gather feedback from the pilot users. The solution must use the principle of least privilege.
Which access levels m Azure DevOps should you identify? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point.

正解:

Explanation:

Box 1: Basic
Assign Basic to users with a TFS CAL, with a Visual Studio Professional subscription, and to users for whom you are paying for Azure Boards & Repos in an organization.
Box 2: Stakeholder
AssignStakeholders to users with no license or subscriptions who need access to a limited set of features.
Note:
You assign users or groups of users to one of the following access levels:
Basic: provides access to most features
VS Enterprise: provides access to premium features
Stakeholders: provides partial access, can be assigned to unlimited users for free References:https://docs.microsoft.com/en-us/azure/devops/organizations/security/access-levels?view=vsts
You use GitHubfor source control.
A file that contains sensitive data is committed accidentally to the Get repository of a project.
You need to delete the file and its history form the repository.
Which two tools can you use? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
A file that contains sensitive data is committed accidentally to the Get repository of a project.
You need to delete the file and its history form the repository.
Which two tools can you use? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
正解:A,B
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)