What is Azure and what are its main components?

Azure is a cloud computing platform provided by Microsoft. Its main components include
compute, storage, networking, database, and security services. These services can be used to
build, deploy, and manage various types of applications and workloads in the cloud.

What is Azure Resource Manager (ARM) and how does it differ from classic
deployment model?

Azure Resource Manager (ARM) is a deployment model in Azure that enables you to manage
resources as a group, known as a resource group. ARM allows you to deploy, update, and
delete resources in a coordinated and predictable manner, whereas the classic deployment
model is an older deployment model in Azure that does not have these capabilities.

What is a virtual network in Azure and what are its main components?

A virtual network in Azure is a representation of a network in the cloud. Its main components
include subnets, network security groups, routes, and virtual network gateways. A virtual
network enables you to create a secure and isolated network environment in the cloud to host
your virtual machines and other resources.

What is Azure Active Directory (AD) and what are its main features?

Azure Active Directory (AD) is a cloud-based directory and identity management service
provided by Microsoft. Its main features include user and group management, single sign-on
(SSO), multi-factor authentication (MFA), and identity protection. Azure AD enables you to
manage and secure your users, devices, and applications in the cloud.

What is the difference between an Azure storage account and an Azure file share?

An Azure storage account is a cloud-based storage solution that provides scalable and durable
storage for various types of data, such as blobs, tables, queues, and files. Further, an Azure
file share is a network file share that is hosted in Azure and is accessible via the Server
Message Block (SMB) protocol. An Azure file share is stored in an Azure storage account,
but it is a separate service from other storage services in the same account.

How can you secure data in Azure storage accounts?

You can secure data in Azure storage accounts by using encryption, access control, and
monitoring. You can encrypt data at rest using Azure Storage Service Encryption (SSE) or
client-side encryption. Also, you can control access to data using shared access signatures
(SAS) or Azure Active Directory (AD) authentication. You can monitor access to data using
Azure Storage Analytics.

These are some common interview questions and answers for the Microsoft Azure
Administrator Associate (AZ-104) certification. It is always recommended to study the
official Microsoft Azure documentation and practice hands-on labs to fully prepare for the
certification exam.

How can you configure and manage storage in Azure?

To configure and manage storage in Azure, you can follow these steps:

1. Create a storage account: A storage account is a logical container for storing data in
Azure. You can create a storage account using the Azure portal, Azure CLI, or Azure
Powershell.
2. Choose a storage account type: Azure offers two types of storage accounts: Blob
storage and File storage. You should choose a storage account type based on your
specific data and performance requirements.
3. Set up data replication: Azure provides multiple options for replicating data across
multiple regions, such as Geo-redundant storage and Zone-redundant storage. This
will help you to protect your data against data loss or unavailability due to a disaster
or other service disruption.
4. Manage access to storage: You can use Azure Active Directory (AD) to manage
access to storage, and also configure Role-based Access Control (RBAC) to provide
fine-grained control over access to your storage accounts and data.
5. Monitor storage performance and usage: Azure provides various tools and services,
such as Azure Monitor and Azure Log Analytics, to help you monitor performance
and usage of your storage accounts, and ensure that you are using the most cost-
effective storage solutions.
6. Scale storage as needed: Azure provides the ability to scale storage up or down as
needed, based on changes in your data and performance requirements.

By following these steps, you can effectively configure and manage storage in Azure, and
ensure that your data is secure, available, and performant.

Can you describe the process of deploying and managing virtual machines in Azure?

Here’s the process of deploying and managing virtual machines in Azure:

1. Plan your virtual machine: Before deploying a virtual machine, you should plan the
size and configuration of the virtual machine, as well as the storage, network, and
security requirements for your workload.
2. Create a virtual machine: You can create a virtual machine using the Azure portal,
Azure CLI, or Azure Powershell. During the creation process, you will need to
specify the operating system, size, and storage options for your virtual machine.
3. Configure network settings: You will need to configure network settings for your
virtual machine, including assigning a virtual IP address, creating a network security
group, and configuring inbound and outbound firewall rules.
4. Manage access to the virtual machine: You can manage access to the virtual machine
using Azure Active Directory (AD) or by creating and managing a custom username
and password.
5. Monitor performance and usage: Azure provides tools such as Azure Monitor and
Azure Log Analytics to help you monitor the performance and usage of your virtual
machine, and identify any potential performance or resource utilization issues.
6. Scale the virtual machine: Azure provides the ability to scale up or down the size of a
virtual machine, based on changes in your workload or performance requirements.
7. Update and maintain the virtual machine: You should regularly update and maintain
the virtual machine, including applying security updates, patches, and configuration
changes, to keep it secure and running optimally.
By following these steps, you can effectively deploy and manage virtual machines in Azure,
and ensure that your workloads are highly available, scalable, and secure.

What is Azure Backup and how does it work?

Azure Backup is a cloud-based backup solution provided by Microsoft Azure. It helps you
protect your data and applications by creating backups and storing them in the Azure cloud.
Here’s how it works:

1. Data backup: Azure Backup can be used to backup various types of data, including
on-premises servers, virtual machines in Azure, and files and folders from various
sources.
2. Backup schedule: You can set a backup schedule for your data, specifying how often
backups should be taken, and for how long the backup data should be retained.
3. Backup storage: The backup data is stored in the Azure cloud, in a secure and
encrypted form. You can choose to store the backup data in a dedicated Azure Backup
Vault, or in a Recovery Services Vault.
4. Backup retrieval: If you need to restore data from a backup, you can easily retrieve
the data from the Azure Backup Vault. You can restore the data to its original
location, or to a new location, and you can choose to restore the entire backup, or just
specific files and folders.
5. Management and monitoring: Azure Backup provides a centralized management
console, where you can view and manage all your backups, set backup policies, and
monitor the status of backups.

By using Azure Backup, you can ensure that your data and applications are protected against
data loss, and you can quickly restore data in the event of a disaster or data loss scenario.
Azure Backup provides a secure and scalable backup solution, with the added benefit of
being fully managed by Microsoft Azure.

Can you discuss the different types of disaster recovery solutions available in Azure?

Azure provides several disaster recovery solutions to help organizations protect their
applications and data in the event of a disaster. Here are some of the most commonly used
disaster recovery solutions in Azure:

1. Azure Site Recovery (ASR): ASR is a disaster recovery solution that helps you
replicate and recover your on-premises and Azure virtual machines (VMs) in the
event of a disaster. It provides a streamlined process for replicating VMs to Azure,
and enables you to test and perform disaster recovery drills without affecting
production workloads.
2. Azure Backup: Azure Backup is a cloud-based backup solution that helps you protect
your data and applications by creating backups and storing them in the Azure cloud.
You can use Azure Backup to protect your on-premises servers, Azure VMs, and
other workloads.
3. Azure Storage Replication: Azure Storage Replication is a feature of Azure storage
that provides options for replicating data within the same region, or between regions,
to protect against data loss in the event of a disaster.
 4. Azure SQL Database Geo-Replication: Azure SQL Database Geo-Replication is a
disaster recovery solution that provides asynchronous replication of data between two
or more Azure SQL Database instances in different regions.
5. Azure ExpressRoute Disaster Recovery (DR): Azure ExpressRoute DR provides a
secondary ExpressRoute connection to a disaster recovery site, enabling you to
protect your workloads in the event of a disaster or network outage.

These are just a few of the disaster recovery solutions available in Azure. Organizations can
choose the solution that best fits their specific requirements, and can use a combination of
solutions to create a comprehensive disaster recovery strategy.

What is Microsoft Azure?

Azure is a cloud computing platform that was launched by Microsoft in Feb 2010. It’s a
cloud platform that helps in development, data storage, service hosting, and management.

What is Cloud Computing?

The term “cloud computing” refers to the process of storing and accessing data over the
internet. However, it does not save any data on your computer’s hard drive and only allows
you to retrieve data from a remote server.

Explain the Importance of the role and how many types of roles are available in
Windows Azure?

Roles are a very important concept in Windows Azure, and learning them is the base for
further programming. Three types of roles in Windows Azure are:

 Web Role: It deploys a website by using langue that has support of the IIS platform
for running the web apps.
 Worker Role: It helps you to execute the process that runs in the background by
 VM Role: It helps you to schedule the windows services and task.

Explain command task in Microsoft Azure

When the system is running, a command task is an operational window that starts the flow of
one or more common whiles.

What are unconnected lookups?

The input ins taken by the LKP procedure are unconnectedly looked up. User-defined values
are ignored in unconnected lookups in this type of lookup procedure.

Explain Cmdlet command of Microsoft Azure

A cmdlet is a command that can be used in the Microsoft PowerShell environment. Windows
PowerShell uses the cmdlet to automate programs that run from the command line.

What is the use of the Migration Assistant tool in Azure Websites?

You can use the Migration Assistant programme to analyse your IIS installation. It assists
you in determining which sites can move to the cloud. It also includes components that does
not move or do not have support on the Azure platform.

What is Network virtual appliance?

Network virtual appliances or NVAs are virtual machines that control the flow of network
traffic by controlling routing. A WAN optimizer, application-delivery controllers, routers,
load balancers, proxies, and an SD-WAN edge are common components of an NVA. They
commonly control traffic flowing from a perimeter network to other networks or subnets.

When to choose Virtual Network Peering?

Network communication between services in various virtual networks can be made possible
by virtual network peering. When you need to integrate Azure virtual networks, virtual
network peering should be your first choice because it’s simple to set up and deploy, and it
works across regions and subscriptions.

What are alias record?

Azure alias records enable a zone apex domain to reference other Azure resources from the
DNS zone. You don’t need to create complex redirection policies and an alias can also route
all traffic through Traffic Manager.

The Azure alias record can point to the following Azure resources:

 A Traffic Manager profile

 Azure Content Delivery Network endpoints
 A public IP resource
 A front door profile

What is Azure DNS

Using a globally distributed name server architecture, Azure DNS allows you to host and
administer your domains. Using your existing Azure credentials, you may manage all of your
domains. Azure DNS serves as the domain’s SOA. However, you cannot register a domain
name using Azure DNS. To register your domain, you’ll need to go through a third-party
registrar.

How do you connect Virtual Network?

Virtual network peering is a technique for connecting virtual networks. Peering allows virtual
network resources to communicate with one another. These virtual networks can be in
different zones, allowing you to use Azure to build a global interconnected network.

I have some private servers on my premises, also I have distributed some of my

workloads on the public cloud, what is this architecture called?

This type of architecture would be a hybrid cloud because we are using both, the public
cloud, and on-premises servers i.e the private cloud.
What are the three main components of the Windows Azure platform?

Three most important components of the Windows Azure platform are:

 Compute
 Storage
 AppFabric

What is an Availability Set?

An availability set is a logical grouping of virtual machines that helps Azure understand how
your application can constructed for redundancy and availability. When using Azure
Premium Storage with a single VM, the Azure SLA applies to unscheduled maintenance
events. To provide a highly available application and to achieve the 99.95 percent Azure
SLA, it is suggested that two or more VMs be established inside an availability set.

What are Fault Domains and Update Domains?

 A fault domain, like a rack in an on-premise data centre, is a logical grouping of the
underlying hardware that shares a common power source and network switch. The
Azure platform distributes your VMs among various fault domains as you construct
them inside an availability set. This method reduces the impact of physical hardware
failures, network outages, and power outages.
 An update domain is a logical collection of the underlying hardware that can offer
service or reboot at the same time. The Azure platform distributes your VMs among
various update domains as you build VMs inside an availability set. As the Azure
platform undergoes periodic maintenance, this strategy ensures that at least one
instance of your application is always running, but only one update domain restarts at
a time.

What is autoscaling in Azure?

Auto-scaling is a method of automatically increasing or decreasing the number of computer

resources allocated to your program based on its current needs. The important aspect is that
you can now create a scalable architecture that can automatically scale up or down to meet
your demands over the lifespan of your setup, regardless of how fast or slow your site grows.

Here are the most popular ways of autoscaling:

 Horizontal Scaling
 Vertical Scaling

What happens when you exhaust the maximum failed attempts for authenticating
yourself via Azure AD?

To lock accounts, we employ a more advanced technique. This is determined by the request’s
IP address and the passwords submitted. The length of the lockout is also determined by the
likelihood of an attack.

What is the difference between Service Bus Queues and Storage Queues?
  The Azure Storage Queue is easy to use and has a nice developer experience. It makes
use of the local Azure Storage Emulator, which makes debugging a breeze. You can
quickly peek at the top 32 messages using the Azure Storage Queues tools, and if the
messages are in XML or JSON, you can visualise their contents right from Visual
Studio. Furthermore, the contents of these queues can cleanse, which is particularly
valuable during development and quality assurance operations.
 The Azure Service Bus Queues, on the other hand, have a number of beneficial
processes that make them enterprise-worthy! They’re part of the Service Bus and can
pass messages through to other Queues and Topics. They feature a built-in dead-letter
queue, and messages have a time limit that you choose, so messages don’t vanish after
seven days.

My web app still uses an old Docker container image after I’ve updated the image on
Docker Hub. Does Azure support continuous integration/deployment of custom
containers?

It certainly does. You can update the container for private registries by stopping and
restarting your web app. You can also force an update of your container by changing or
adding a mock application option.

What are the three types of RBAC controls in Microsoft Azure?

The three different types of roles are :

 Owner: It has full access to all resources including the right to delegate access to
others.
 Contributor: It can create and manage all types of Azure resources but can’t grant
access to others.
 Reader: It can view existing Azure resources.

What should you do if your Azure Virtual Machine encounters issues caused by user
configurations or host infrastructure?

You can try to move the virtual machine to a different host using Virtual
Machine – Redeploy blade

What are the steps to move an Azure Virtual Machine from one virtual network to
another virtual network?

 Delete a virtual machine in VNET1

 Create a virtual machine in VNET2
 Attach an existing disk to the newly created VM

Define Windows Azure AppFabric.

You can use Windows Azure Diagnostics to collect diagnostic data from a Windows Azure
application and use it for capacity planning and evaluation. Windows Azure AppFabric is the
name of the procedure.
What is the distinction between Windows Azure Queues and Windows Azure Service
Bus Queues?

Azure Queues are responsible for solid and particular messaging between and within the
services. They emphasize on a very straightforward rest-based get/put/peek interface as
well. Bus Queues are for a more extensive Windows Azure messaging framework to support
queuing.

1) What is the function of an Azure Administrator?

The Azure Administrator is responsible for configuring, managing, and monitoring

the cloud platform's virtual networks, storage, computing resources, and identity
systems. The Azure Administrator is in charge of resource provisioning, scaling,
monitoring, and changes.

If you would like to enrich your career in Microsoft Azure, then visit Mindmajix - A global Onlin
training platform “Microsoft Azure training course.”This course will help you to achieve excellence
domain.

2) How can you become an Azure Administrator?

Learning cloud computing skills from a reliable source and earning Microsoft's
certification qualify anyone to work as an Azure Admin.

3) What are the administrative responsibilities?

Administrators are important to the smooth running of a business because they

help people or teams with administrative tasks. They might answer the phone, show
guests where to go, greet them, process words, and make spreadsheets,
presentations, and files.

4) What topics does Azure Administrator cover?

 Practical knowledge of Kubernetes and Docker for virtualization.

 Knowledge of Azure Administrator based on roles.
 Options for storing hard drives, virtual database files, application data, Etc.
 Preventing unauthorized data access. Ensure that data backups can be
restored.

5) What is Microsoft Azure, and how is it used?

Cloud providers are businesses that provide cloud services. Microsoft Azure is only
one of several companies that provide cloud services. It serves as a gateway to
Microsoft's cloud computing infrastructure.
 Related Blog: Microsoft Azure Portal Pro-Tips

6) Can you describe the Microsoft Azure Cloud Service?

Azure Cloud Service is a typical example of a platform as a service (PaaS). It was

created to support applications that require high dependability, scalability, and
availability while remaining cost-effective. These are hosted on virtual machines
(VMs), and Azure gives developers greater control by allowing remote software
installation and management.

7) What is Azure Active Directory? What is its relationship to subscriptions?

Managing the Azure resources will be easier with the help of azure active directory,
or Azure AD for short.

The relationship between subscriptions and an azure active directory is one of many
to one. Multiple azure subscriptions can trust a single azure active directory
instance.

8) Define Azure Subscriptions.

An Azure subscription is a way to access Azure resources logically. It holds

information about your resources, such as databases, virtual machines (VMs), and
more. When you make an Azure resource, like a virtual machine, you set it apart
from the subscription it is part of.
Azure subscription denotes

 Entity for billing and the security boundary.

 A place where users can go.
 How much do Azure services cost each month?

9) Which is better, Google Cloud Platform Cloud AutoML or Microsoft Azure ML Studio?

When contrasting the two, Azure ML Studio comes out on top due to its
comprehensive features, including classification, regression, anomaly detection,
clustering, recommendation, and ranking.

However, GCP Cloud AutoML has built-in support for clustering, regression, and
recommendation. Azure also has convenient drag-and-drop features that save time
and effort.

10) Explain in detail the Azure Machine Learning Text Analysis API.

The Text Analysis API is a collection of web services for analyzing text. Extracting
relevant information and analyzing sentiment from the unstructured text are two of
its primary functions. It gives out numbers between 0 and 1, which can be
interpreted as positive or negative feelings.

11) Which Azure service manages Azure resources?

Some of the azure services that manage resources are

 Application Insights
 Azure Resource Manager
 Azure Portal
 Log Analytics

12) What is Azure AD Multi-Factor Authentication?

During multi-factor authentication, a user must provide multiple forms of

identification during sign-in. For example, they might be asked to enter a code on
their phone or scan their fingerprint.

When using azure active directory multi-factor authentication, two or more of the
following forms of authentication are needed:

 Usually, this is a password that you know.

 Something you have, like a phone or hardware key, that you trust and can't
easily copy.
13) How does Azure CLI create a virtual machine (VM)?

az VM creates

--resource-group myResourceGroupName `
--name myVM --image win 2016 datacenter `
--admin-username AzureuserNAME `
--admin-password AzurePASSWORD

1) How many cloud service roles does Azure offer?

Cloud service roles comprise a collection of configuration and application files.

Azure provides two distinct types of roles:

 Worker role: These roles enable the applications they host to run
asynchronously for long periods, unaffected by user interactions, and
 frequently not use IIS. They're also useful for background tasks. The
programs operate independently of one another.
 Web role: This provides an IIS (Internet Information Services) dedicated web
server to automatically deploy and host front-end websites.

2) Why do we need the Azure Diagnostics API?

 We can collect diagnostic data from Azure applications such as performance

monitoring, system event logs, and so on.
 To monitor data verbosely for cloud service roles, Azure Diagnostics must be
enabled.
 Diagnostics data can be used to create visual chart representations for better
monitoring and performance metric alerts.

“Attending an interview for Windows Admin Jobs, then preparing well using Windows Administrator
Questions.”

3) What kinds of cloud deployment models exist?

Below are the three cloud deployment models.

 Public Cloud: Your cloud provider owns the infrastructure, and your server
might be shared with others.
  Private Cloud: You manage the infrastructure, or your cloud provider offers
only that service. You could host your website on a cloud service provider's
dedicated server or your servers.
 Hybrid Cloud: Hybrid Cloud refers to a setup in which both public and private
cloud services are used. Host your company's website in the cloud but keep
sensitive information on your own servers. A hybrid cloud would describe
this setup.

4) Why does Azure Websites have a "Migration Assistant" tool?

Using the Migration Assistant, you can check out your IIS configuration. Assists in
determining which server can be moved to the cloud. There are parts of it that still
need to be migrated to Azure or need to be supported there.

5) How can Azure deploy web applications?

Applications that are deployable use either ASP.NET, PHP, or WCF.

6) What is the best way to run the code without a server in Azure?

 Without a server, code can be executed using the Azure Functions service.
 Azure Functions without a server simplify complex orchestration and
challenging resolutions. They are intended to be stateless and transient.
 They facilitate integration with other services without requiring manual
coding, accelerating the development process.
 It allows the developer to focus on writing and implementing business logic
code, saving time and effort.
 Azure Application Insights also provides monitoring and analysis of code
performance, enabling the identification of bottlenecks and failure points
across the application's components.

7) How is AWS different from Microsoft Azure?

Depending on your perspective, the answer will be either yes or no.

It is commonly agreed that Azure is preferable because it is a Microsoft product and

thus makes it simpler for businesses to migrate to the cloud if they already use
Windows Server, SQL Server, and Exchange. In addition, Azure stands out compared
to AWS because Microsoft has a comprehensive understanding of developer tools.

8) What does it mean to have an availability set?

Azure can understand the redundancy and availability features your application is
designed to provide by using availability sets, which are logical groups of virtual
machines (VMs).
It is advised that two or more virtual machines be created within an availability set
to create a highly available application and guarantee compliance with Azure's
99.95% SLA. The Azure SLA protects against unplanned downtime when used with a
single VM in Azure Premium Storage.

9) How do Fault Domains work?

A logical grouping of hardware that shares a network switch and power supply is
referred to as a fault domain. The virtual machines (VM) you create as part of an
availability set are automatically distributed across these fault domains by the Azure
platform. This tactic mitigates the impact of potential hardware and network
failures.

10) What are Update Domains?

A logical collection of the underlying hardware that can be maintained or restarted

simultaneously is known as an update domain. The Azure platform automatically
distributes the virtual machines you create within an availability set across these
update domains.

11) What are Network Security Groups, and what do they do?

A network security group (NSG) is a group of Access Control List (ACL) rules that
control whether network traffic can reach specific NICs (network interface cards),
subnets, or both. NSGs can be linked to specific NICs connected to one or more
subnets. ACL restrictions apply to all VMs in a subnet with an NSG connection.

12) Do Azure availability and scale sets work together?

Yes. The five fault domains and five update domains that make up a scale set
constitute an implicit availability set. Scale sets with more than 100 virtual machines
(VMs) are distributed across several placement groups, representing several
availability sets.

A scale set of VMs and an availability set of VMs can coexist in the same virtual
network. A standard configuration is to place control node virtual machines (VMs) in
an availability set and data nodes in a scale set.

13) What is the use of Azure Active Directory?

Azure Active Directory (Azure AD) is a cloud-based identity and access

management service provided by Microsoft that allows your employees to sign in
and access resources in the cloud.

 External resources like the Azure portal, Microsoft 365, and other SaaS apps.
 Internal resources include apps on your company's intranet and network and
any cloud apps that your company made.

Most Common Azure Administrator FAQs

1) What is Azure Service Fabric?

Microsoft's Azure Service Fabric is a distributed-systems platform that makes it

easier to package, deploy, and manage highly available, scalable microservices.

Service Fabric also addresses key difficulties associated with developing and
maintaining cloud-based applications. By avoiding complicated infrastructure
concerns, administrators and developers may create scalable, dependable, and
manageable mission-critical and demanding workloads. Service Fabric is the next-
generation middleware platform for designing and administering these enterprise-
class, tier-1, cloud-scale applications.

2) What is Azure Redis Cache, and how does it work?

Redis is a free, open-source, in-memory data structure store that operates under
the BSD license—used for storing data, caching recently accessed data, and relaying
messages, among other things.
Azure Redis Cache is modeled after the famous open-source Redis cache. Any Azure
app can now use Microsoft's dedicated, encrypted Redis cache management.
Strings, lists, hashes, range-queryable sorted sets, sets, bitmaps, and radius-
queryable geospatial indices are all supported.

3) What is Azure Search used for?

Azure Search transfers server and infrastructure management to Microsoft, leaving

you with an up-and-running service that you can use to add search to your mobile
application or web after populating it with your data.

Azure Search allows you to quickly add a powerful search experience to your
applications using a.NET SDK or REST API without managing search infrastructure or
becoming a search expert.

4) What is Azure Databricks?

Azure Databricks' data analytics platform provides two environments for developing
data-intensive applications:

 Azure Databricks Workspace

 Azure Databricks SQL Analytics

Microsoft Azure Databricks' compatibility with the natively provided security,

analytics, compute, AI and storage services from cloud providers pave the way for
consolidating AI-based workloads.

Related Blog: What is Azure Databricks?

5) What is Azure's CSPack?

CSPack is a command-line tool that makes the service package file and gets an app
ready for deployment in Azure or Compute Emulator. Every project with a cloud
service type has a configuration file .cscfg file, which was made with CSPack.

6) Why is Azure used to fix IP addresses?

A static IP address is used when a device connected to Azure should not have its
address changed.

7) What is a guest OS in Microsoft Azure?

When you host a role instance in a virtual machine, the Guest OS is the OS that
controls the VM.

8) What does a VNet mean?

Virtual Network (VNet) is the cloud-based analog of your physical network. Your
newly launched cloud instances can be logically isolated from the rest of your
resources.
9) Is it possible to add an existing VM to an availability set?

No. Virtual machines can only be included in an availability set if they are initially
created within that set. You can't add a freshly created VM to an existing availability
set.

10) How can I find a list of the already integrated Azure AD apps and what they can
do?

About 2600 applications are already set up to work with Azure AD.

All apps have already been connected to a single sign-on system (SSO). SSO lets you
use the login information for your organization to get into your apps. Some
applications also allow provisioning and de-provisioning to be done automatically.

1. What is Azure Cloud Service?

Azure Cloud Service is a comprehensive platform provided by Microsoft for the

development, deployment, and management of applications and services in the
cloud. It furnishes businesses with a robust and scalable infrastructure,
alleviating concerns associated with hardware maintenance and server
management. Offering an array of features such as automated scaling, load
balancing, and seamless integration with other Azure services, Azure Cloud
Service caters to diverse programming languages and frameworks, thereby
facilitating accessibility for developers.

Learn Microsoft Azure Training for Administration (AZ-103 = AZ-100 and AZ-
101) from Intellipaat to enhance your career!

2. Differentiate between Microsoft Azure and AWS.

Features Microsoft Azure Amazon Web Services
(AWS)

Database services Azure SQL Database Amazon RDS

Deployment services Azure Virtual Machines Amazon EC2

Networking services Load Balancer Elastic Load Balancer

Analytics Azure Stream Analytics Amazon Kinesis

Backup Options Azure Backup Amazon Glacier

Compliance Azure Trust Center AWS CLoudHSM

Content Delivery Network Azure CDN Amazon CloudFront

(CDN)

Data Orchestration Azure Data Factory AWS Data Pipeline

Hybrid Cloud Storage StorSimple AWS Storage Gateway

Monitoring Azure Operational Amazon CloudTrail

Insights

NoSQL Database Options Azure DocumentDB Amazon DynamoDB

3. What is Azure DevOps?

Azure DevOps is a SaaS platform that provides development services for

creating work plans, working together on code, developing applications, and
deploying them. It offers an end-to-end DevOps toolchain for the development
and deployment of software. It integrates with a number of popular tools in the
market and is a great way for setting up a DevOps toolchain.

Learn more about Azure DevOps from this Azure DevOps Interview
Questions blog by Intellipaat.
4. What is Azure Active Directory (Azure AD)?

Azure AD is a cloud-based IAM solution and directory by Microsoft. It brings

together application access management, core directory services, and identity
protection and turns them into a single solution. It helps employees of an
organization sign in and access resources such as:

 External resources, including Microsoft 365, the Azure portal, and a big
number of SaaS applications
 Internal resources, such as apps on a corporate network and intranet, as
well as any cloud-based apps built by that organization

Azure AD is intended for use by:

 IT Admins
 App Developers
 Azure, Office 365, Microsoft 365, or Dynamics CRM online subscribers

5. What is Azure Data Factory?

Azure Data Factory is a serverless and cloud-based data integration service and
platform used for the creation of ETL and ELT pipelines. It helps in the creation
of data-driven workflows for the planning and execution of data movements and
data transformation at scale.

6. What is Azure Databricks?

Azure Databricks is a Data Analytics platform that offers two environments for
the development of data-intensive applications:

 Azure Databricks SQL Analytics

 Azure Databricks Workspace
Azure Databricks’ integration with the security, compute, analytics, storage, and
AI services that are natively provided by cloud providers facilitates the
unification of data and AI workloads.

7. What is Azure Data Lake?

Azure Data Lake is a cloud platform that supports Big Data Analytics through its
unlimited storage for structured, semi-structured, or unstructured data of all
types and sizes.

8. What are Azure resources?

Any entity managed by Azure can be referred to as an Azure resource. The

following are some examples of Azure resources: Storage accounts, virtual
networks, virtual machines, etc.

9. What are the roles implemented in Windows Azure?

 Web Role
 Worker Role
 Virtual Machine Role

Web Role: It gives a web solution that is front-end. This is like an ASP.NET
application. While under facilitating, Azure gives IIS and required services.
Worker Role: It gives solutions for background service. It can run long activities.

Virtual Machine Role: The roles of both web and worker are executed on virtual
machines. The Virtual Machine Roles give the client the capacity to modify
the Azure Virtual Machine on which the web and worker roles are running.

10. What are the three principal segments of the Windows

Azure platform?

Windows Azure has three principal segments: Compute, Storage, and Fabric.

A. Windows Azure Compute

Windows Azure gives a code that can be managed by the hosting environment. It
gives the calculation benefit through parts. Windows Azure backs three types of
roles:

 Web roles utilized for web application programming and upheld by IIS7
 Worker roles utilized for foundation handling of web roles
 Virtual machine (VM) roles utilized for moving windows server applications
to Windows Azure in a simple way

B. Windows Azure Storage

It gives four types of storage services:

 Queues for informing between web parts and worker roles

 Tables for storing structural data
 BLOBs (Binary Large Objects) to store contents, records, or vast information
 Windows Azure Drives (VHD) to mount a page BLOB. These can be
transferred and downloaded by means of BLOBs

C. Windows Azure AppFabric

AppFabric provides five services:

  Service bus
 Access
 Caching
 Integration
 Composite

Learn from the Azure DevOps Tutorial blog by Intellipaat.

11. Define Windows Azure AppFabric.

Windows Azure AppFabric was a service platform introduced by Microsoft,

designed for the development, deployment, and administration of applications
in the cloud. AppFabric encompassed essential functionalities such as
messaging, caching, and access control, enabling smooth integration and
scalability of applications. However, Microsoft has since deprecated AppFabric,
integrating its features into other Azure services.

12. What is the distinction between Windows Azure

Queues and Windows Azure Service Bus Queues?

 Messaging Size:

In terms of messaging size, Windows Azure Queues allow messages up to a

maximum size of 64 KB, while Windows Azure Service Bus Queues support
larger message sizes up to 256 KB. This means that Service Bus Queues offer
greater flexibility for handling larger message payloads.

 Messaging Model:
Windows Azure Queues follow a simple point-to-point messaging model. They
are designed for asynchronous communication, where a sender enqueues a
message that is later retrieved and processed by a single receiver. On the other
hand, Windows Azure Service Bus Queues support both point-to-point and
publish-subscribe messaging models. They allow multiple subscribers to receive
and process messages, enabling more complex messaging scenarios.

 Protocol Supported:

Windows Azure Queues primarily support the REST protocol, which allows
applications to communicate with the queues using HTTP/HTTPS requests. On
the other hand, Windows Azure Service Bus Queues support additional
protocols, including Advanced Message Queuing Protocol (AMQP) and Message
Queuing Telemetry Transport (MQTT). This broader protocol support offers
developers more flexibility and choice when integrating with the queues.

13. What is table storage in Windows Azure?

Windows Azure table storage is a NoSQL key-value store offered by Azure for
storing large amounts of structured, non-relational data.

It uses RESTful API that allows us to create, read, update, and delete entities in a
table. You can access the data using the Azure portal, Azure Storage Explorer, or
programmatically using SDKs for various programming languages, such as .NET,
Java, Node.js, Python, and more.
Table: A table is a collection of entities. Tables don’t uphold a blueprint on
elements, which implies that a solitary table can contain substances that have
distinctive arrangements of properties. A record can contain numerous tables.

Entity: An entity is an arrangement of properties, like a database row. An entity

can be up to 1 MB in size.

Properties: A property is a name-value pair. Every entity can incorporate up to

252 properties to store data. Every entity likewise has three system properties
that determine a segment key, a row key, and a timestamp.

Become a master of Azure by going through this online Azure Training in

Toronto!

14. What is autoscaling in Azure?

Scaling by including extra instances is frequently referred to as scaling out.

Windows Azure likewise supports scaling up by utilizing bigger roles rather than
more role instances.

By adding and expelling role instances to our Windows Azure application while it
is running, we can adjust the execution of the application against its running
costs.

An autoscaling solution reduces the amount of manual work engaged in

dynamically scaling an application.
Learn end-to-end Azure concepts through the Microsoft Azure Course in
Hyderabad to take your career to a whole new level!

15. What are the features of Windows Azure?

Windows Azure has the following features:

 Scalability: Azure enables users to effortlessly adjust resource capacity in

response to demand, facilitating easy scaling up or down as required.
 Virtual Machines: Users gain the ability to create and manage virtual
machines (VMs) within the cloud, facilitating the deployment of diverse
operating systems and software applications.
 Storage Options: Azure offers a selection of storage services, such as Blob
Storage for unstructured data, File Storage for seamless file sharing, Queue
Storage for efficient messaging, and Table Storage for flexible NoSQL key-
value storage.
 App Services: Azure provides an effective platform-as-a-service (PaaS)
solution for developing, deploying, and scaling web, mobile, and API
applications. It encompasses Azure Web Apps, Mobile Apps, and API Apps.

16. What are the differences between a public cloud and a

private cloud?

Private clouds are those that are constructed solely for an individual enterprise.
They enable a firm to have applications in the cloud while tending to concerns
with respect to data security and control that is frequently ailing in a public cloud
environment.

Private cloud is otherwise called an internal cloud or enterprise cloud and dwells
on the organization’s Intranet or hosted data center where the data is protected.
17. What is IaaS, PaaS, and SaaS?

IaaS: IaaS is short for Infrastructure as a Service. It offers a range of capabilities,

such as OS and network connectivity, that are at the infrastructural level. It
follows a pay-per-use policy. It is used to host applications. Azure VM and VNET
are examples of this kind of infrastructure.

PaaS: PaaS is an acronym for Platform as a Service. It primarily includes

underlying infrastructure abstraction that allows quicker development of
applications without the hassle of hosting management. Azure web apps, cloud
services, storage services, etc., are all examples of PaaS.

SaaS: SaaS stands for Software as a Service. These applications are delivered
with the help of a service delivery model where applications are simply used by
an organization. SaaS follows subscription-based payments or ads. Examples of
SaaS are Gmail, Office 365, SharePoint Online, etc.

18. Is it possible to get a public DNS or IP address for the

Azure Internal Load Balancer?

No. Azure Internal Load Balancer supports only private IP addresses.

19. What is Azure Resource Manager?

Azure Resource Manager, offered by Azure, provides management and

application deployment in Azure. The management layer helps to build, modify,
or delete resources in the Azure subscription account. It is useful while
managing access controls, locks, and security of resources.

20. What is NSG?

NSG or Network Security Group contains a list of ACL rules that allow or deny
network traffic to subnets, network interface cards (NICs) linked to a subnet, or
both. When an NSG is connected to a subnet, the ACL rules are for all virtual
machines that are located in that subnet. The traffic restrictions to an individual
NIC are achieved by linking the NSG directly to that NIC.

Do you want to get a DevOps Engineer job? Enhance your knowledge on DevOps
by enrolling for Intellipaat’s DevOps Course!

21. What is Azure Redis Cache?

Azure Redis Cache is an in-memory Redis cache system by Azure that helps web
applications to optimize performance. Data is fetched from the backend
database and stored in the Redis cache for the first request. On subsequent
requests, data is fetched from the Redis cache. Azure Redis cache provides
powerful and secure caching mechanisms by using Azure Cloud.

22. Define Azure storage key

Azure storage key is used to authenticate access to Azure storage service data
depending on the project requirements. There are two types of storage keys that
are used for authentication:

 Primary access key

 Secondary access key, to avoid downtime of the website or application

23. What is CSPack in Azure?

CSPack is a command-line tool that generates the service package file and
prepares an application for deployment in Azure or Compute Emulator. Every
cloud service type project includes the cloud service configuration file, .cscfg file,
generated using CSPack. It stores:

 The number of role instances for each role deployment

 The certificate thumbprints
 User-defined configurations
Intermediate Azure Interview Questions

24. Why is Azure Diagnostics API necessary?

Azure Diagnostics API helps to gather diagnostic data, such as system event logs
and performance monitoring, from applications operating on Azure. Azure
Diagnostics has to be enabled for the cloud service roles. The collected data can
be later used for creating visual chart representations that enable better
monitoring and create performance metric alerts.

25. What are the deployment environment options

provided by Azure?

There are two deployment environments:

 Staging environment: It is used to validate the changes of an application

before making it live.
 Production environment: This is where applications go live and can be
accessed by target users with a DNS-friendly URL.

26. What is Azure Blob Storage?

Azure Blob (binary large object) storage is the object storage solution for the
cloud. It is capable of storing large unstructured data in text or binary format
and is suitable for serving documents, media, or text to the browser directly. The
data is accessible from anywhere.

The blobs are grouped into containers and tied to user accounts. This service
has three components:

 Storage account: This can be a general storage account or a blob storage

account registered in Microsoft Azure.
  Container: Containers are used for grouping blobs. Each container can
store an unlimited number of blobs. The container name should be in
lowercase.
 Blob: A blob is a file or document of any type and size. Three kinds of blobs
are supported by Azure:
o Block blobs: Text and binary files up to 195GB, 50,000 blocks of
maximum 4 MB each
o Append blobs: Appends operations such as logging data in log
files
o Page blobs: For frequent read or write operations

27. What is a role instance in Azure?

Role instance is a virtual machine where application code is run using running
role configurations. Multiple instances of a role are also possible according to
the definition in cloud service configuration files.

Streamline access management with Azure Single Sign-On. Learn how to

enable seamless user authentication across multiple applications and
enhance productivity.

28. What is Windows Azure Portal?

To run an application, a designer gets to the Windows Azure Portal through

his/her web program by logging in with a Windows Live ID. The user at that point
chooses whether to create a host account for running applications, a storage
account for storing data, or both.

Once the designer has a host account, he/she can utilize a Windows Azure Portal
to submit applications to Windows Azure.
29. Explain Azure Fabric.

Azure Fabric is the principal core concept. It gives a service called Azure Fabric
Controller. It is called the OS for Azure since it handles/oversees:

 All roles (processing) and resources

 Sending and activating services
 Monitoring the health of all services
 Releasing and allocating resources
 Provisioning VM, terminating, etc.
 Patches get updated for the installed OS on VM in the most automated form

30. What do you comprehend about Hybrid Cloud?

A hybrid cloud is a blend of internal and external cloud services, a mix of a

private cloud joined with the utilization of public cloud services. This kind of
cloud is most appropriate when you need to keep classified information in your
vicinity (private cloud) and consume alternate services from a public cloud.

31. What is a storage key?

Storage keys or access keys are utilized as a validation mode for accessing the
storage services account to control data based on our prerequisites. In Windows
Azure, we have an alternative to give a primary access key and a secondary
access key, despite the fact that we will utilize a solitary access key to confirm
our application to the storage. The primary reason to give the secondary access
key is to avoid downtime to the application.

32. What is Windows Azure Traffic Manager?

It enables users to control the distribution of user traffic of installed Azure cloud
services. There are three distinctive load-balancing strategies provided by Azure.
The Manager who works on traffic applies a routing policy to the Domain Name
Service (DNS) questions on your domain names and maps the DNS courses to
the apt instances of your applications.

33. What is federation in SQL Azure?

Organization in SQL Azure is introduced for scalability. Federation helps both

managers and developers scale information. It helps managers by making
repartitioning and redistributing information in a simpler manner. It enables
developers in the layer of routing and sharing of information. It helps in routing
without application downtime.

34. What is SQL Azure database?

SQL Azure database is just an approach to getting associated with cloud services
where you can store your database in the cloud. Microsoft Azure is the most
ideal approach to utilizing PaaS, where you can have different databases on a
similar account.

Microsoft SQL Azure has a similar component to SQL Server, i.e., high
accessibility, versatility, and security in the core.

The Microsoft Azure SQL database has an element: it makes backups of each
active database automatically. Consistently, a backup is taken and geo-repeated
to empower the 1-hour recuperation point objective (RPO) for geo-restore.
35. What are the different types of Storage areas in
Windows Azure?

BLOB: BLOBs offer a component for storing a lot of content or binary data, for
example, pictures, audio, and visual documents. They can scale up to 200
terabytes and can be acquired by utilizing RESTful APIs.

Table: Tables represent storage areas across machines for information that is in
the form of properties on the cloud.

File: File Storage provides fully managed file shares in the cloud that can be
accessed via the Server Message Block (SMB) protocol.

Queue: Queue Storage is a messaging system used to facilitate communication

between components of an application or different applications.

Disk: Disk Storage offers durable and high-performance disk storage options for
virtual machines.

Archive: It provides a highly cost-effective solution for storing rarely accessed

data that needs to be retained for a longer duration, typically for compliance,
regulatory, or legal requirements.

36. What is the concept of the table in Windows Azure?

A table is a kind of Azure Storage where you can store your information. BLOBs
are put in a compartment and an entity on a table.

Following are the key concepts in a table:

 Tables allow structured data storage.

 There can be 0 to n numbers of tables in a storage account.
 Tables store information as an accumulation of elements.
 An element has an essential key and properties as a key–value pair.
37. How to secure Azure functions?

One can secure Azure functions through the following:

 Security Center
 Log and monitor
 HTTPS
 Function access keys
 Authentication/authorization
 Permissions
 Secret management
 Set up usage quotas
 Data validation
 Error handling
 Disabled remote debugging
 Restricted CORS access
 Store the data encrypted
 Secure deployment
 Deployment credentials
 Disabled FTP
 Secure scm endpoint
 Continuous security validation
 Network security

38. What is Conditional Access in Azure?

Conditional Access is used by Azure AD as a tool to make decisions, bring signals

together, and impose organizational policies.

Through Conditional Access policies, one can implement the right access
controls whenever required to keep the organization secure and stay out of the
users’ way when not needed.
39. When should you use a static IP address in Azure?

In Azure, a static IP address is used when the address connected to the device is
not to be changed.

40. How does Azure Site Recovery work?

Site Recovery orchestrates and automates the replication of Azure VMs in

different locations—on-premises machines to a secondary data center, and on-
premises VMs and physical servers to Azure.

It contributes to business continuity and disaster recovery (BCDR) by enabling

access to apps from the secondary location in case of an outage at the primary
site.

Wish to make a career in the world of Cloud Computing? Start with Azure
Tutorial!

41. Why should you use Azure CDN?

Azure CDN reduces the bandwidth and load time. It also helps speed up the
responsiveness.

42. Explain the benefits of Azure Traffic Manager.

Azure Traffic Manager has the following benefits:

 Optimized performance
 No downtime during the update or maintenance process
 Easily configurable on the Windows Azure portal

43. What is the difference between a library and a list?

A library is an interface that enables the management and storage of a

document created in Word, Excel, or PowerPoint. A list, on the other hand, is the
representation of an item in a tabular format (with columns and rows). It can be
attached with documents.

44. How many types of backups are there in Azure?

Azure Backup includes three types of replications that keep both storage and
data highly available.

 Geo-redundant storage (GRS): The default and recommended option that

replicates data to a secondary region far from the primary location
 Locally redundant storage (LRS): Creates three copies of the data in a
storage scale unit within a data center
 Zone-redundant storage (ZRS): Replicates the data in availability zones
with data residency and resiliency in the same region and has no downtime

45. How can you have a common file-sharing system

among multiple virtual machines?

Azure files system is used as a common repository system for data sharing
among virtual machines that are configured using protocols such as NFS, FTPS,
SMB, etc.

46. What is the TFS build system in Azure?

A build is the solution of an output. In Azure projects, you get the record with
a .cspkg extension, that is, a Cloud Service Package is utilized for the deployment
of your cloud administration.

Build Servers: In general terms, a build server is a machine where you put your
deployment packages.

To utilize Team Foundation Build, you should have no less than one build
machine. This machine can be a physical machine or a virtual machine.
Build Controllers: Manufacture Controllers are the component in the build
system that accepts the build requests from any task inside the group project.
Each build controller is dedicated to a solitary team project collection. So, there
is a balanced relationship between a team project and a build controller.

Build Agents: Build Agents are components in the build system that
accomplishes more processor-concentrated work.

47. What is Azure App Service?

Azure App Service is a completely managed Platform-as-a-Service (PaaS) offering

for proficient developers that conveys a rich arrangement of abilities to the web,
mobile, and integration scenarios. Mobile apps in Azure App Service offer a very
adaptable, universally accessible mobile application development platform for
Enterprise Developers and System Integrators that conveys a rich set of
capacities to mobile engineers.

48. What is profiling in Azure?

Profiling is only a procedure for measuring the performance analysis of an

application. It is normally done to guarantee that the application is sufficiently
steady and can maintain overwhelming traffic.

Visual Studio gives us different tools to do it by gathering the performance

information from the application that likewise helps in troubleshooting issues.

Once the profiling wizard is run, it sets up the execution session and collects the
data of the sample.

The profiling reports help in:

 Deciding the longest-running strategies inside the application

 Measuring the execution time of every strategy in the call stack
 Assessing memory allocation
49. What is cmdlet in Azure?

A cmdlet is a lightweight command that is utilized as a part of the Microsoft

PowerShell environment. The cmdlets are summoned by the Windows
PowerShell to automate the scripts which are in the command line. Windows
PowerShell runtime additionally invokes them automatically through Windows
PowerShell APIs.

50. What is Windows Azure Scheduler?

Windows Azure Scheduler enables you to invoke activities, for example, calling
HTTP/S endpoints or presenting a message on a storage queue on any schedule.

With Scheduler, you make jobs in the cloud that dependably call services both
inside and outside of Windows Azure and execute those jobs on-demand, on a
routinely repeating schedule, or assign them for a future date.

51. How can you create an HDInsight Cluster in Azure?

To make an Azure HDInsight Cluster, open the Azure portal > click on New >
select Data Services > click on HDInsight.

Hadoop is the default and native execution of Apache Hadoop.

HBase is an Apache open-source NoSQL database based on Hadoop that gives

random access and solid consistency for a lot of unstructured data.

Apache Storm is a distributed, fault-tolerant, open-source computation system

that enables you to process data in real time.

52. What is Text Analytics API in Azure Machine?

Content Analytics API is a part of content examination web administrations

worked with Azure Machine Learning. The API can be utilized to analyze
unstructured content for tasks such as sentiment analysis and key-phrase
extraction.

The API restores a numeric score between 0 and 1. Scores near 1 show positive
sentiment, while scores near 0 demonstrate negative sentiment.

The upside of this API is that another new model need not be planned and
prepared; the user just needs to bring the data and call the service to get the
sentiment results.

53. What is the Migration Assistant tool in Azure Websites?

Migration Assistant tool will examine our IIS installation and recognize the sites
that can be migrated to the cloud, featuring any components which can’t be
migrated or are unsupported on the platform.

Once broken down, this tool will likewise create sites and databases provided
under the given Azure membership.

54. What is Azure Service Level Agreement (SLA)?

The SLA ensures that, when you send two or more role instances for each role,
access to your cloud service will be maintained not less than 99.95 percent of
the time. Additionally, identification and re-correction activities will be started
99.9 percent of the time when a role instance’s procedure isn’t running.

55. How to add an administrator to the Azure portal?

To add an administrator to the Azure portal, it has to be given the owner role. It
will be able to manage only those resources in the subscription that are
assigned to it. To add an administrator, follow these steps:

1. Sign in to the Azure portal

2. Go to the Hub menu and then to Subscription and select the subscription
that the administrator will need access to
 3. Select Access control (IAM) in the subscription blade, and then click on Add
4. Go to Select a role, and click on Owner
5. Here, provide the email address of the user to be assigned as the owner
6. Click on the user, and then click on Select

56. How to connect to Azure Database from SQL

Management Studio?

1. The first time you start the SQL Server Management Studio, the ‘Connect to
Server dialog box’ opens up automatically. You can also open it manually by
going to Object Explorer > Connect > Database Engine.
2. Then, enter the following information in the Connect to Server window:
Server Type Database Engine
Server Name Enter the name of your Azure SQL Database or Azure Managed
Instance
Authentication SQL Server Authentication
Login Enter the server account user ID
Password Enter the server account password
You can also choose to change the additional connection options by going to
Options.
3. Click on Connect after completing all the required fields

If the firewall settings are not set up, a prompt appears to configure the
same. Once signed in, provide the Azure account login information, and set
the firewall rule. Then, click on OK.
4. To verify if your Azure Database connection is successful, expand and
explore Object Explorer for the server name, the SQL Server version, and the
username.

57. How to create a virtual machine on Azure?

To create a VM on Azure, you need to follow the below steps:

 1. Sign in to Azure
2. Sign in to the Azure portal
3. Search for virtual machines in the search box
4. Under Services, select Virtual Machines
5. Click on ‘Add’ on the Virtual Machines page
6. In the Basics tab, under Project details, select the correct subscription, and
choose Create new resource group
7. Type myResourceGroup for the name
8. Under Instance details, the Virtual machine name should be myVM
9. Choose your Region [e.g., (US) East US]
10. Choose Windows Server 2019 Datacenter for the Image
11. Leave the rest as default
12. Under Administrator account, enter a username and a password
13. Under Inbound port rules, click on Allow selected ports, and then select
HTTP (80) and RDP (3389) for Select inbound ports
14. The rest will remain as default here
15. Finally, click on the Review + create button

58. How to deploy SQL Database in Azure?

1. Authenticate to the Azure portal

2. Click on SQL Databases
3. Click on Servers
4. Click on a server name to connect to
5. Press Configure
6. Open SQL Server Management Studio
7. Connect to Database services (usually, this happens by default)
8. Finally, click on Connect
9.

59. How to export users from Azure Active Directory?

You can export users from Azure AD by following the below-mentioned steps:
 1. Install the Azure PowerShell module using the following cmdlet:

install-module az

2. To connect to Azure AD and Azure, run:

Connect-azaccount

3. To export, all users to a CSV file, run:

Get-AzADUser | export-csv file.csv

4. If you only need to export the first 10 users, then you can use:

Get-AzADUser -First 10 | export-csv file.csv

5. To export all users after the first 2 users, you can use:

Get-AzADUser -Skip 2 | ft

60. How to create a resource group in Azure?

To create a resource group in Azure:

1. Log in to the Azure portal

2. In the menu on the left, select Resource groups
3. In the Resource groups page, click on Add
4. Fill in the details in the fields as follows:
o Subscription: Select your Microsoft Azure subscription
o Resource group name: Enter a unique name
o Resource details region: Select a location
5. Click on Review + create
 6. Once validation is passed, click on Create to create your resource group

That’s it in our blog on MS Azure interview questions and answers. Hope these
Azure questions help you in your Azure Interview job preparation.

61. What are the differences between Azure Scale Sets and
Availability Sets?

The major difference is that Azure scale sets have identical VMs, and in the case
of Availability sets, there is no hard and fast rule for the VMs to be identical. Let
us see other differences here –

62. What are the different storage services available in

Azure apart from Blob storage?

Azure offers three other types of storage services, apart from Blob storage, table
storage, queue Storage, and file storage.

 Azure table storage: It allows the deployment of applications with semi-

structured data and a key-value store, which is NoSQL-based.
o Used when there is a requirement for applications with a flexible
data schema
o Emphasis is on enterprise-level data and strongly follows
consistent models
o Data is in terms of entities grouped under tables
  Azure queue storage: The message queue system is capable of handling
large workloads through the development of flexible and durable
applications.
o Ensures that the applications are scalable and less likely to have
component failures
o The queue monitoring helps the application ensure that the
requirements are met
 Azure file storage: It offers file sharing and access using server message
block (SMB) protocol. The data is secured with SMB 3.0 and HTTPS.
o Improves the performance of on-premise applications
o Azure takes care of OS deployments and hardware management

63. What is the difference between Azure Table Storage

and the Azure SQL service?

The major difference is that Azure SQL uses a relational storage structure and
Azure Table follows centralized structured data without relations. Other
differences are –

64. Create a Virtual Machine with Azure CLI.

Following is an example of how one can create a VM using Azure CLI:

az vm create \

--resource-group myResourceGroupName \

--name myVM \
--image Win19Datacenter \

--public-ip-sku Standard \

--admin-username AzureuserNAME \

--admin-password AzurePASSWORD

65. How will you execute code with the help of Azure if
there is no server?

Azure Functions can execute code without a server. These services simplify
complex orchestration and challenges. They help connect with other services
without hard coding of integrations, which speeds up the development process.

Developers can write and focus on the business logic code saving time and
effort. Azure Application Insights can help analyze and monitor code
performance as well as identify hiccups and failure points across various
application components.

You can also take up a Microsoft Azure free certification course and learn
more about technology that has made major improvements in the cloud area.

66. What will you do in case of a drive failure?

When a drive failure occurs, the following steps need to be performed:

 Ensure that the drive is not mounted so that Azure Storage is functioning
without fail.
 Replace the drive so that it is remounted and formatted.
Scenario-based Azure Interview Questions

67. What could be the reason for the client application to

be disconnected from the cache?

There could be two possible reasons:

 Client-end

o Redeployment of application
o Scaling operation by application
o Change in the client-side networking layer
o Transient errors in the client or network between the client and the server
o The crossing of bandwidth threshold limits

 Server-end

o Azure Redis Cache service had a failover from the primary node to the
secondary node.
o The server instance where the cache was deployed had patching or
maintenance.

68. How can you stop the high load issue on an application
in cases of no man support on the flow?

Azure VM Scale Sets can be used to define proper configurations and conditions
and provide a new VM whenever there is a high load.

The VM Scale Sets allow the developer to create and manage a group of load-
balanced VMs. The scale sets can be configured in accordance with the demand
of the application or a predefined schedule that automatically adjusts the
number of VMs.

Using scale sets ensures that the applications are highly available
and enables the management, updation, and configuration of large VMs
centrally. It also supports large-scale application development with big
workloads, big data, and compute loads. Azure Scale Sets support up to 1,000
VMs and 600 VMs for custom VM images.

69. What would happen if tone reaches the maximum

failed attempts for Azure ID authentication?

In this situation, the Azure account will get locked depending on the protocol
analyzing the entered password and the IP address from where the login is
requested.

70. If you have an application running on the on-premise

server and Azure East US region has a backup, will you be
able to access the application via the Azure environment in
case of an on-premise server application access failure?

Yes. One can access the application by using the Site Recovery Service by Azure.
It is capable of handling fail-over and fail-back scenarios between on-premise
servers and Azure environments.

71. In case the front-end hosting of an application is done

on Azure, if the user needs the database hosting to be
done on an on-premise server due to security concerns,
how will you handle the Azure connectivity?

There are a few possibilities to resolve this:

 Azure VNET based point-to-site service can be used to connect one on-
premise DB to an Azure-hosted application. This is valid where there are
limited resources to be connected via VPN.
 In case of more resources for connection, site-to-site VPN or express routes
are the solutions. Site-to-site might cause network latency as the VPN works
only via public infrastructure, which is the Internet. In that case, express
 routes can be used as it has a dedicated leased line that solves latency
issues.
 In case VNET is not preferred, Windows Communication Foundation (WCF)
service can be developed and hosted on-premise. It will have CRUD
operations intended solely for the database that is hosted on-premise. It
uses the service bus relay that can build communication between the Azure-
hosted app to the WCF service for database access.

72. You have an Azure subscription that contains an Azure

Log Analytics workspace. You have a resource group that
contains 100 virtual machines. The virtual machines run
Linux. You need to collect events from the virtual
machines to the log analytics workspace. Which type of
data source should be configured in the workspace?

The answer is Syslog, which is an event-logging protocol that is common to

Linux. Applications will send messages that may be stored on the local machine
or delivered to a Syslog collector. When the log analytics agent for Linux is
installed, it configures the local Syslog daemon to forward messages to the
agent. The agent then sends the message to Azure Monitor where a
corresponding record is created.

73. You create a container image named Image1 on a

developer workstation. You plan to create an Azure web
app for containers named WebAppContainer that will use
Image1. You need to upload Image1 to Azure. The solution
must ensure that WebAppContainer can use Image1. To
which storage type should you upload Image1?

Image1 should be uploaded to the Azure container registry. The registry

credentials are configured in the web app. The app service needs information
about the registry and image to pull the private image. In the Azure portal, go to
Container settings from the web app and update the Image source, Registry, and
Save.

74. You have an Azure subscription that contains 100

virtual machines. You have a set of Pester tests in
PowerShell that validate the virtual machine environment.
You need to run the tests whenever there is an operating
system update on the virtual machines. The solution must
minimize implementation time and recurring costs. Which
three resources should you use to implement the tests?

The three resources to use to implement the test are the Azure Automation
runbook, an alert rule, and an alert action group. Azure Automation runbooks
can be called by using action groups or by using classic alerts to automate tasks
based on alerts. Alerts are one of the key features of Azure Monitor. They allow
alerts on actions within an Azure subscription.

75. You have an Azure App Service app. You need to

implement tracing for the app. What should the tracing
information include?

 Usage trends
 A JAX call responses
 Page load speed by browser server and browser exceptions

What should you do?

The Azure Application Insights site extension should be enabled in this scenario.
For web pages, Application Insights JavaScript SDK automatically collects AJAX
calls as dependencies.
76. You have an Azure virtual machine named VM1 and an
Azure Active Directory (Azure AD) tenant named
adatum.com. VM1 has the following settings:
IP address: 10.10.0.10

System-assigned managed identity: On

You need to create a script that will run from within VM1 to retrieve the
authentication token of VM1. Which address should you use in the script?

The answer is 169.254.169.254. The code that is running on the VM can request
a token from the Azure Instance Metadata Service identity endpoint, accessible
only from within the VM:
http://169.254.169.254/metadata/identity/oauth2/token

77. You are designing an Azure solution. The solution must

meet the following requirements:

 Distribute traffic to different pools of dedicated virtual machines (VMs)

based on rules
 Provide SSL offloading capabilities

You need to recommend a solution to distribute network traffic. Which

technology should you recommend?

If you require SSL offloading, application layer treatment, or wish to delegate

certificate management to Azure, Azure’s Layer 7 load balancer application
gateway should be used.
78. You have an Azure Cosmos DB account named
Account1. Account1 includes a database named DB1 that
contains a container named Container1. The partition key
for Container1 is set to /city. You plan to change the
partition key for Container1. What should you do first?

The Change Feed Processor and Bulk Executor Library, in Azure Cosmos DB, can
be leveraged to achieve a live migration of data from one container to another.
This allows the redistribution of data to match the desired new partition key
scheme and make the relevant application changes afterward. Thus, achieving
the effect of updating your partition key.

79. You have an Azure subscription that contains a

resource group named RG1. RG1 contains multiple
resources. You need to trigger an alert when the resources
in RG1 consume US$1,000. What should you do?

To trigger an alert when the resources in the RG1 resource group consume
US$1,000 in your Azure subscription, you can follow these steps:

1.
1. Log in to the Azure portal using your credentials.
2. Navigate to the Azure Monitor service. You can search for
“Monitor” in the search bar at the top of the portal and select the
“Monitor” result.
3. In the Azure Monitor menu, locate and click on the “Alerts”
section.
4. Click on the “New alert rule” button to create a new alert rule.
5. In the “Create rule” blade, you will need to configure the
following settings:

a. Scope: Select the appropriate subscription that contains the RG1 resource
group.
 b. Condition: In the condition section, click on the “Add condition” button.
Choose the appropriate metric that represents the cost consumption of
resources in the RG1 resource group. For example, you can select “Total
cost” or “Resource cost.” Set the condition to “Greater than” or “Greater than
or equal to” and specify the threshold value of US$1,000.
c. Action group: Configure the action group that will be triggered when the
alert condition is met. An action group defines the actions to be taken when
the alert fires, such as sending an email notification, SMS, or running a Logic
App. If you haven’t set up an action group before, you can create a new one
by clicking on the “Create action group” link.
d. Alert details: Provide a meaningful name and description for the alert rule to
easily identify it.

6. Once you have configured all the necessary settings, click on the “Create alert
rule” button to create the alert rule.

Now, whenever the cost consumption of resources in the RG1 resource group
exceeds or equals US$1,000, the alert rule will be triggered, and the defined
action group will be notified accordingly.

80. You have an Azure Kubernetes Service (AKS) cluster

named Clus1 in a resource group named RG1. An
administrator plans to manage Clus1 from an Azure AD-
joined device. You need to ensure that the administrator
can deploy the YAML application manifest file for a
container application. You install the Azure CLI on the
device. Which command should you run next?
kubectl apply –f appl.yaml

The command applies a configuration change to a resource from a file or stdin.

81. Your company has the groups shown in the following
table.
Group Number of Members
Managers 10
Sales 100
Development 15

The company has an Azure subscription that contains an Azure AD tenant

named contoso.com. An administrator named Admin1 attempts to enable
Enterprise State Roaming for all the users in the Managers group. Admin1
reports that the options for enterprise state roaming are unavailable from
Azure AD. You verify that Admin1 is assigned the global administrator role.
You need to ensure that Admin1 can enable enterprise state roaming.
What should you do?

Purchase an Azure AD Premium P1 license for each user in the Managers group.
Enterprise state roaming is available to any organization with an Azure AD
Premium or Enterprise Mobility + Security (EMS) license.

82. Your company has an office in Seattle. You have an

Azure subscription that contains a virtual network named
VNET1. You create a site-to-site VPN between the Seattle
office and VNET1. VNET1 contains the subnets shown in
the following table.
Name IP Address Space
Subnet1 10.1.1.0/24
GatewaySubnet 10.1.200.8/28

You need to route all internet-bound traffic from Subnet1 to the Seattle
office. What should you create?

A route for Subnet1 that uses the virtual network gateway as the next hop
should be created. A route with the 0.0.0.0/0 address prefix instructs Azure how
to route traffic destined for an IP address that is not within the address prefix of
any other route in a subnet’s route table.

When a subnet is created, Azure creates a default route to the 0.0.0.0/0 address
prefix, with the internet next hop type. We need to create a custom route in
Azure to use a virtual network gateway in the Seattle office as the next hop.

83. You have an Azure web app named App1 that is

configured to run between two and five instances. There
are currently three instances of App1 running. App1 has
the following autoscale rules: Increase the instance count
by one when the CPU percentage is greater or equal to 80.
Decrease the instance count by one when the CPU
percentage is less than or equal to 60. You are evaluating
the following CPU percentage of utilization for App1:

 60 percent
 55 percent
 50 percent
 45 percent

You need to identify which utilizations will cause App1 to scale in.

Azure Monitor autoscaling allows you to scale the number of running instances
up or down, based on telemetry data or metrics. Scale-in occurs when the
instances are decreased. For this rule, the instances are decreased when the
CPU usage is 60 percent or lower. Hence, the answer is 45 percent, 50 percent,
and 55 percent.
84. You have an on-premises network that contains a
Hyper-V host named Host1. Host1 runs Windows Server
2016 and hosts 10 virtual machines that run Windows
Server 2016. You plan to replicate the virtual machines to
Azure by using Azure Site Recovery. You create a Recovery
Services vault named ASR1 and a Hyper-V site named
Site1. You need to add Host1 to ASR1. What should you
do?

Download the installation file for the Azure Site Recovery Provider. Download
the vault registration key.
Install the Azure Site Recovery Provider on Host1 and register the server.

85. You have an Azure subscription named Subscription1

that contains a virtual network named VNet1. VNet1 is in a
resource group named RG1. Subscription1 has a user
named User1. User1 has the following roles:

 Reader
 Security admin
 Security reader

You need to ensure that User1 can assign the reader role for VNet1 to
other users. What should you do?

User1 should be assigned the owner role for VNet1.

86. A company hosts virtual machines (VMs) in an on-
premises data center and in Azure. The on-premises and
Azure-based VMs communicate using ExpressRoute. The
company wants to be able to continue regular operations
if the ExpressRoute connection fails. Failover connections
must use the internet and must not require multiprotocol
label switching (MPLS) support. You need to recommend a
solution that provides continued operations. What should
you recommend?

In this case, a VPN connection should be set up.

87. You have a resource group named RG1. RG1 contains

an Azure Storage account named storageaccount1 and a
virtual machine named VM1 that runs Windows Server
2016. storageaccount1 contains the disk files for VM1. You
apply a ReadOnly lock to RG1. What can you do from the
Azure portal?

View the keys of storageaccount1. ReadOnly allows authorized users to read a

resource, but they cannot delete or update the resource. Applying this lock is
similar to restricting all authorized users to the permissions granted by the
reader role.

1. Why Did You Choose a Career in Cloud Computing?

These types of Azure interview questions require a thoughtful, honest response. By thinking
through your answer ahead of time, you’ll be ready to say something your interviewer will
approve of. Show that you care about the field and that you have a passion for cloud
computing and the problems it can solve.
2. Why Did You Choose Microsoft Azure and Not Aws?

Your response to this question is based on your own background and experience. Maybe you
come from a developer background, so Azure appealed to you. Maybe your first cloud
computing role just happened to be with Azure. As with the question above, the key here is to
be ready to give an intelligent answer to the question.

3. How Does Microsoft Azure Compare to Aws?

This might be a matter of opinion for you, so answer as you see fit. In general, people say
Azure is a better choice because it’s a Microsoft product, making it easier for organizations
already using Windows Server, SQL Server, and Exchange to move to the cloud. In addition,
because of Microsoft’s deep knowledge of developer tools, Azure offers multiple app
deployment options for developers, which makes it stand out against AWS.

4. How Did You Learn Azure?

Did you learn Azure through a certification? Through on-the-job experience? A little of each?
However you learned it, make sure to demonstrate to the interviewer that you have practical
experience (if you’re new to the field) and that you are continuing to learn.

5. Tell Me About a Problem You Solved at Your Prior Job.

This is something to spend some time on when you’re preparing responses to possible Azure
interview questions. As a cloud architect, you need to show that you are a good listener and
problem solver, as well as a good communicator. Yes, you need to know the technology, but
cloud computing does not usually involve sitting isolated in a cubicle. You’ll have
stakeholders to listen to, problems to solve, and options to present. When you answer
questions like these, try to convey that you are a team player and a good communicator, in
addition to being a really good Azure architect.
6. What is the difference between SaaS, PaaS, and IaaS?

This is one of the most common Azure interview questions. Cloud Computing has three types
of service models, that are IaaS, PaaS, and SaaS

Infrastructure as a Software as a
Platform as a Service(PaaS)
Service(IaaS) Service(SaaS)

It provides users with

It enables developers to build and It involves applications
components such as OS,
work with applications without being consumed and used
networking capabilities, etc.
having to worry about the by organizations. Usually,
This is a paid service, based
infrastructure or management of the organizations pay for their
on usage and can be used to
hosting environment. use of the application
host applications.

Example - Azure Virtual Example - Azure SQL, Azure Example - Office 365,
Machine, Azure VNET Storage Salesforce

7. What are the instance types offered by Azure?

Azure offers a number of different instance types based on what needs they fulfill.

 General Purpose - CPU to memory ratio is balanced. Provides low to medium traffic web
servers, small to medium databases and is ideal for testing and development

Largest instance size: Standard_D64_v3

256 GB Memory and 1600 GB SSD Temp Storage

  Compute Optimized - High CPU to memory ratio. Best suited for medium traffic web
servers, application servers, batch processes, and network appliances

Largest instance size: Standard_F72s_V2

144 GB Memory and 576 GB SSD Temp Storage

 Memory-Optimized - High memory to CPU ratio. Best suited for relational database
servers, in-memory analytics, and medium to large caches

Largest instance size: Standard_M128m

3892 GB Memory and 14,336 GB SSD Temp Storage

 Storage Optimized - Provides high disk IO and throughput. Best suited for Big Data,
NoSQL and SQL Databases

Largest instance size: Standard_L32s

256 GB Memory and 5630 GB SSD Temp Storage

 GPU - Virtual Machines that specialize in heavy graphic rendering and video editing. It
also helps with model training and inferencing with deep learning

Largest instance size: Standard_ND24rs

448 GB Memory and 2948 GB SSD Temp Storage

4 GPUs and 96 GB Memory

 High-Performance Compute - Provides Azure’s fastest and powerful CPU virtual

machines with optional high throughput interfaces

Largest instance size: Standard_L32s

224 GB Memory and 2000 GB SSD Temp Storage

8. What are the deployment environments offered by
Azure?

This is one of the most frequently asked Azure interview questions, and you must know the
answer. Azure offers two deployment environments:

Staging Environment:

 It provides a platform to validate changes to your application before it can be made live in
the production environment

 In this stage, the app can be identified using the Azure’s Globally Unique Identifier
(GUID) in URL form (GUID.cloudapp.net)

Production Environment:

 This environment is used to store the live application

 It can be differentiated from the staging environment with an URL that’s more DNS
friendly (servicename.cloudapp.net)

9. Differentiate between repetitive and minimal

monitoring.

Repetitive / Verbose Monitoring Minimal Monitoring

It collects metrics based on performance It is a default configuration method

It allows a close analysis of data fed during the process of It allows a close analysis of data fed
application during the process of application
10. Which one amongst Microsoft Azure ML Studio and
GCP Cloud AutoML is better?

When we compare both in terms of services, Azure ML Studio wins the verdict since it has
Classification, Regression, Anomaly Detection, Clustering, Recommendation, and Ranking
features.

On the other hand, GCP Cloud AutoML has Clustering, Regression, and Recommendation
features. Moreover, Azure has a drag and drop options that make the process easier to carry
out.

11. What are the advantages of Scaling in Azure?

Azure performs scaling with the help of a feature known as Autoscaling. Autoscaling helps to
deal with changing demands in Cloud Services, Mobile Services, Virtual Machines, and
Websites. Below are a few of its advantages:

 Maximizes application performance

 Scale up or down based on demand

 Schedule scaling to particular time periods

 Highly cost-effective

12. How is Windows Active Directory and Azure Active

Directory different?

This one’s another regular question from the list of Azure interview questions.

Windows Active Directory Azure Active Directory

 Azure Active Directory (Azure AD)
It is a directory service that facilitates working with
is Microsoft’s multi-tenant, cloud-
interconnected, complex and different network resources in a
based directory and identity
unified manner
management service

Uses 5 layers to store data, store

Uses 5 layers to store data, store user details, issue and
user details, issue and manage
manage certifications, etc.
certifications, etc.

Works with an emphasis on on-premises units like Emphasizes on web-based services

applications, file services, printers, etc. that use RESTful interfaces

13. What are the types of Queues offered by Azure?

Azure offers two types of queues:

Storage Queues:

 It is a part of Azure’s Storage infrastructure

 It provides messaging within and between services

 It is best suited when users need to store more than 80 GB of messages in queues

 It can provide side logs of all transactions executed against the user’s queues

Service Bus Queues:

 It is a part of Azure’s messaging infrastructure

  It integrates application or application components that span multiple communication
protocols, network environments, etc.

 It provides a FIFO style of delivery

 The user’s queue size has to remain under 80 GB

14. What are the advantages of the Azure Resource

Manager?

Azure Resource Manager enables users to manage their usage of application resources. Few
of the advantages of Azure Resource Manager are:

 ARM helps deploy, manage and monitor all the resources for an application, a solution or
a group

 Users can be granted access to resources they require

 It obtains comprehensive billing information for all the resources in the group

 Provisioning resources is made much easier with the help of templates

15. Azure interview questions can also have MCQ’s like

follows: Which of the following web applications can be
deployed with Azure?

a. ASP.NET

b. PHP

c. WCF

d. All of the mentioned

Answer: a) ASP.NET
16. How has integrating hybrid cloud been useful for
Azure?

The Hybrid Cloud boosts productivity by using Azure and the Azure stack for building and
deploying applications for the cloud and on-premises applications. Integrating hybrid cloud
been useful for Azure in the following ways:

 It obtains greater efficiency with a combination of Azure services and DevOps processes
and tools

 Users can take advantage of constantly updated Azure services and other Azure
Marketplace applications

 It enables it to be deployed regardless of its location, the cloud, or on-premises.

 This enables applications to be created at a higher speed

17. What is the Federation in Azure SQL?

SQL Azure Federation provides tools that can enable developers to access or share databases
among themselves in SQL Azure.

 It enables users to take advantage of resources within the cloud

 It allows users to have their own database or share databases amongst each other

 It reduces the possibility of a single point of failure

 It provides cost-effectiveness, by using cloud resources only when needed

18. What are the different types of storage offered by

Azure?

Storage questions are very commonly asked during an Azure Interview. Azure has four
different types of storage. They are:

Azure Blob Storage

Blob Storage enables users to store unstructured data that can include pictures, music, video
files, etc. along with their metadata.

 When an object is changed, it is verified to ensure it is of the latest version.

 It provides maximum flexibility to optimize the user’s storage needs.

 Unstructured data is available to customers through REST-based object storage

Azure Table Storage

Table Storage enables users to perform deployment with semi-structured datasets and
a NoSQL key-value store.

 It is used to create applications requiring flexible data schema

 It follows a strong consistency model, focusing on enterprises

Azure File Storage

File Storage provides file-sharing capabilities accessible by the SMB (Server Message Block)
protocol

 The data is protected by SMB 3.0 and HTTPS

 Azure takes care of managing hardware and operating system deployments

 It improves on-premises performance and capabilities

Azure Queue Storage

Queue Storage provides message queueing for large workloads

 It enables users to build flexible applications and separate functions

 It ensures the application is scalable and less prone to individual components failing

 It enables queue monitoring which helps ensure customer demands are met
19. What is the Text Analysis API in Azure Machine
Learning?

Text Analysis API is a set of web services that can be used for text analysis. It is used to
analyze unstructured text for sentiment analysis and keyphrase extraction. It provides results
that range between 0 and 1, to elicit a positive or negative sentiment.

When a new model is created, it doesn’t need to be designed and trained, users need to add
the data and call the service to obtain the sentiment analysis.

20. What are the advantages of Azure Queue Storage?

Queue storage enables message queueing for large workloads in a simple, cost-effective, and
durable manner. Few of its advantages are:

 It provides rich client libraries for Java, Android, C++, PHP, Ruby, etc.

 It enables users to build flexible apps and separate functions for greater durability

 It ensures users’ applications are scalable and less prone to individual component failure

 It enables queue monitoring to ensure servers aren’t overwhelmed by sudden traffic bursts

21. What are the two kinds of Azure Web Service roles?

A cloud service role is a set of managed and load-balanced virtual machines that work
together to perform tasks. The two kinds of Azure Web Service roles are:

Web Roles
  It is a cloud service role that is used to run web applications developed in programming
languages supported by IIS (Internet Information Services) like ASP.NET, PHP, etc.

 It automatically deploys and hosts applications through the users IIS

Worker Roles

 It runs applications and other tasks that don't require IIS. It performs supporting
background tasks along with web roles

 It doesn’t use IIS and runs user applications standalone

22. What is Azure Service Fabric?

Service Fabric provides a platform that makes the process of developing microservices and
managing the application lifecycle easier.

 It produces applications with a faster time to market

 It supports Windows/ Linux, on-premises or other clouds

 It provides the ability to scale up to a thousand machine

23. How can Azure handle this situation?

A client wants the front end of his/ her application to be hosted on Azure, but wants the
database to be hosted on-premises.

Solution - The ideal solution in this scenario is to use Azure VNET based “Point to Site”. It’s
best suited for scenarios where there are only a limited number of resources that need to be
connected
24. What is the Azure Traffic Manager?

Azure Traffic Manager is a traffic load balancer that enables users to provide high availability
and responsiveness by distributing traffic in an optimal manner across global Azure regions.

 It provides multiple automatic failover options

 It helps reduce application downtime

 It enables the distribution of user traffic across multiple locations

 It enables users to know where customers are connecting from

25. How can Azure handle this situation?

You need to isolate network traffic among VMs in a subnet, which is part of a Virtual
Network with little downtime and impact on users?

Solution - This would ensure that the virtual machines are kept isolated without the need for
additional security, like a Network Security Group.

26. With respect to Azure, what is public, private, and

hybrid cloud?

Public Cloud - Every component that the user is using in his/ her application are running only
on Azure
Private Cloud - Azure services are being run within an on-premises data center or on-
premises data centers are used by the user to host systems or applications

Hybrid Cloud - Combines features of both Public and Private cloud. Some of the user’s
components are being run on Azure and others within an on-premises datacenter

27. What kind of storage is best suited to handle

unstructured data?

Questions on Blob Storage can be seen in the list of Azure Interview Questions.

Blob Storage provides storage capacity for data. It places data into different tiers based on
how often they’re accessed.
  Any type of unstructured data can be stored

 Data integrity is maintained every time an object is changed

 It helps to increase app performance and reduces bandwidth consumption

28. How do you set up an Azure Virtual Machine?

Setting up a VM is one of the most important Azure Interview Questions.

The below image would explain clearly how to set up an Azure Virtual Machine:

29. How do you handle this scenario?

You need to make sure your Virtual Machines are able to communicate securely with each
other to ensure security.

Solution - Azure Virtual Network enables Azure resources to communicate with each other,
the internet, or on-premises networks securely.

 Users can create their own private networks

 It provides users with an isolated and highly secure environment for applications

 All traffic stays within the Azure network

 It allows users to design their own networks

30. How do you handle this scenario?

You need to ensure that every time a user logs in, they are not asked to re-enter their
passwords as part of the authentication.

a. To enable Microsoft Account authentication

b. Deploy ExpressRoute

c. Set up a VPN between premises and datacenter. Set up an AD domain controller in VM

and implement integrated Windows Authentication

d. Configure Azure AD Sync to use single sign-on

Solution - d) Configure Azure AD Sync to use single sign-on

 Single sign-on (SSO) is a property of access control of multiple related, but independent
software systems. With this property, a user logs in once and gains access to all systems
without being prompted to log in again at each of them.

31. Azure Storage plays the same role in Azure that ______
plays in Amazon Web Services.

a. S3.

b. EC2

c. EC3

d. All of the mentioned

Answer: a) S3
32. Which service in Azure is used to manage resources in
Azure?

a. Azure Resource Manager

b. Application Insights

c. Log Analytics

d. Azure Portal

Answer: a) Azure Resource Manager

33. How do you handle this scenario?

You need to ensure that virtual machines remain available while migrating to Azure. What
would be the appropriate service to use?

a. Traffic Manager

b. Update Domains

c. Express Route

d. Cloud Services

Solution - c) Express Route

34. How do you handle this scenario?

a. You administer a website called web game. You’re required to validate and deploy changes
made to your website by your development team with minimum downtime

b. Create a new linked resource

c. Create a staging environment for the site

d. Enable remote debugging on the website

Solution - b) Create a staging environment for the site

35. How do you handle this scenario?

These scenarios are important on the list of Azure Interview Questions

Your standard tier application is used across the world and uses the Azure website standard
tier. It uses a large number of image files. However, this causes the application to load
slowly

a. Configure Azure blob storage with a custom domain

b. Configure Azure website Autoscaling to increase instances at high loads

c. Configure Azure CDN to cache all responses from the application’s web endpoint

d. Configure Azure CDN to cache site images and content stored in Azure blob storage

Solution - d)Configure Azure CDN to cache site images and content stored in Azure blob
storage

Blobs that benefit the most from Azure CDN caching are those that are accessed frequently
during their time-to-live (TTL) period. A blob stays in the cache for the TTL period and then
is refreshed by the blob service after that time is elapsed. Then the process repeats.