WGU D084 EXAM 2023 STUDY BUNDLE PACK SOLUTION (Verified Answers)

Leave a Comment / Exams & Certification / By

WGU D084 EXAM 2023 STUDY BUNDLE PACK SOLUTION (Verified Answers)

1 / 9
WGU D084 Manage Identities Questions and Answers
2023 – 2024 (Verified Answers)
1.TXT or MX record can be used to verify your .: custom domains
2.Azure Active Directory Identity Protection is a feature of the: Azure
AD Premium P2 edition
3.Enabling Azure AD Identity Protection requires a to onboard the
service.: global administrator
4.Azure Active Directory Identity Protection can detect potential affecting your organization’s identities: vulnerabilities

  1. Azure Active
    Directory Identity Protection can configure responses
    to detected suspicious actions that are related to your organization’s
    identities-
    : automated

2 / 9
6.Azure Active Directory Identity Protection can suspicious incidents
and take appropriate action to resolve them: investigate
7.The registration policy allows you to apply organization-wide policy
to all users or select individuals and groups within your Azure AD tenant.: –
multi-factor authentication

  1. of devices would be appropriate for personal devices: registration9. devices is useful for corporate-owned devices.: joining
  2. is available for Windows 10 devices and allows users to
    syn- chronize user settings and application data through Azure AD.:
    Enterprise State Roaming
    11.When Enterprise State Roaming is enabled, is used to encrypt the
    data before it leaves the device and all data is encrypted in transit and at
    rest.: Azure Rights Management (Azure RMS)

3 / 9
12.Microsoft customers can purchase a full Azure RMS license to gain
access to additional functionality such as document protection and
support: bring-your-own-key (BYOK)
13.There are geographies that are used to partition roaming data: 3

  1. allows users to reset their password in Azure AD, including
    the ability to optionally write the password back to an on-premises
    environment when properly licensed and configured by using password
    writeback and Azure AD Connect.: Self-service password reset (SSPR)
    15.Is only for Cloud-only users and is included in all editions of
    Azure AD: Password Change

1 / 11
WGU D084 Cloud Platform Solutions Exam Questionsand Answers 2023 – 2024 (Verified Answers)
1.Azure offers a rich ecosystem of governance controls with user-level
and platform-level controls in the form of and Azure Policy ANS RoleBased Access Control (RBAC)

  1. can be used to control policy and RBAC for multiplesubscriptions.
    enable organizational alignment for your Azure subscriptions
    through custom hierarchies and groupings ANS Azure Management
    Groups
  2. in Azure can be used to logically organize resources by
    categories. Each is a name and a value pair. can be shared across
    multiple resources and enforced with Azure Policy ANS Tags
    4.” is a service that lets you create, manage, and apply policy to
    Azure resources at a subscription, resource group, or resource level.
    Policies enforce different rules over your Azure resources, so those

2 / 11
resources remain compliant with your organization’s standards. ANS
Azure Policy
5.Contributor, and Reader”,”Role-based access control (RBAC) allows you
to grant users, groups, and service principals access to Azure resources at
the subscription, resource group, or resource scopes with RBAC
inheritance. The three core roles are .” ANSOwner
6.” is a single-pane of glass for accessing Azure metrics, tenant and
resource diagnostic logs, Log Analytics, service health, and alerts. ANS
Azure Monitor
7.”You can configure based on metric alerts (captured from Azure
Metrics) to Activity Log alerts that can notify by email, web hook, SMS,
Logic Apps, or even an Azure Automation Runbook. ANS Alerts

  1. can consolidate machine data from on-premises and cloudbased workloads and this data is indexed and categorized for quick
    searching. Data can be collected from both Windows and Linux machines
    ANS Azure Log Analytics

3 / 11
9.Azure log analytics has many management solutions that help
administra- tors gain value out of . These solutions contain pre-built
visualizations and queries that help surface insights quickly ANS Complex
Machine Data

  1. in Log Analytics can be saved for quick access and visualized
    and shared using Azure Dashboards. To analyze data outside of Log
    Analytics you can export the data to Excel and Power BI ANS Queries
  2. “You can create resources from the portal, PowerShell, the CLI tools,
    and
    . You should understand when to use which tool and how to configure

WGU D084 Cloud Platform Solutions
2023 – 2024
1.Subscription: A logical unit of Azure services linked to an Azure
account, which is an identity in Azure Active Directory (Azure AD).
2.User Principal: An identity that is associated with a user, or a group ofusers.
3.Management Groups: Allow you to apply governance consistently
across sub- scriptions, including the application of common RBAC
controls and the application of Azure policy.
4.Spending Quotas: Allow administrators to set alerts within an Azure
subscrip- tion by configuring budgets to inform the business when
their Azure spending has hit a certain threshold.

5.Resource Tags: Allow you to apply custom metadata to your Azure
resources to logically organize them and build out custom
taxonomies.
6.Azure Policy: An Azure service that can be used to create, assign,
and manage policies that enforce governance in your Azure
environment.
7.Azure Monitor: Helps you track performance, maintain security, and
identify trends, by ingesting metrics and telemetry from multiple
areas, including applica- tions and the operating systems of virtual
machines.
8.Azure Advisor: A free, personalized guide to Azure best practices
which pro- vides recommendations to help you optimize resources for
high availability, secu- rity, performance, and cost.
9.Alerts: Proactively notify you when important conditions are
found in your monitoring data.
10.Metrics: Numerical values provided by resources and services within

Azure.
11.Enterprise Agreement Portal: Available only to customers with an
Enterprise Agreement and is used for managing spend across one or
more subscriptions.
12.Account Portal: Available for all subscriptions and accessible by
Account owners. It is used to manage subscriptions, payment methods,
and spending limits.
13.Azure Portal: Available for all subscriptions and includes Azure Cost
Manage- ment.
14.Cloudyn: An Azure service that is related to Cost Management,
which can track resource cost for Azure resources.
15.Resource: A single service instance, which can be a virtual
machine, a virtual network, a storage account, or any other Azure
service.

WGU D084 Pre Assessment Questions and Answers
2023 – 2024 (Verified Answers)
1.Which feature is used to categorize resource groups to track
utilization across multiple tenants in Azure?: Tags
2.What are the four domains that Azure Advisor creates
recommendations across?: High availability, security, performance,
and cost
3.Which tool is used to automatically enable diagnostic settings at
resource creation?: Azure Resource Manager template

  1. An administrator is configuring virtual network peering between
    three virtual networks. All three virtual networks must be able to
    communicate directly with each other while keeping administrative tasks
    to a minimum.

How many pairs of peering connections should be created?: 3

  1. How many days are events retained in the Azure Activity Log by
    default?-
    : 90
    6.To which level does the Azure Activity Log surface events?: Subscription7. A systems engineer creates an Azure Resource Manager template.
    Which property is required?: ContentVersion
  2. An administrator creates an Azure Resource Manager (ARM) template
    for virtual machine (VM) deployment. The resource group location needs to
    be specified for the VM.
    Which element type is used to derive the resource group location to use as
    a default for deployment?: Function
    9.Which object is preventing a DNS zone from being deleted due to
    a resource lock?: PTR record in the DNS zone is CanNotDelete.
    10.Which resource group operation is supported in Azure?: Moving
    re- sources between resource groups

11.Which cmdlet is used to deploy an Azure Resource Manager
(ARM) template with PowerShell?: NewAzResourceGroupDeployment
12.How does the system preparation tool generalize an Azure Virtual Machine (VM)?: It generalizes the VM for the image capture. The VM can
no longer be used.
13.A cloud administrator wants to store data in an SMB 3.0 file share.
What must be configured before files can be uploaded?: Storage account
and at least one folder

1 / 24
WGU D084 General Study Guide
2023 – 2024 (Verified Answers)

  1. Question :
    The Azure Virtual Machines are deployed on a virtual network. The
    hostname is defined for all the virtual machines. It is required to perform a
    DNS query to find the virtual machine as it resolves the hostname to IP.
    DNS queries should be internal to the virtual network. Which component
    should be used?: Azure Provided DNS
  2. What is the correct CLI command to view DNS records?
    A
    az dns record-set list –zone-name sampleref.com network
    B
    az dns network record-set list –zone-name sampleref.com
    C
    az record- dns network set list –zone-name sampleref.com

2 / 24
D
az network dns record-set list –zone-name sampleref.com:
D az network dns record-set list –zone-name
sampleref.com
3.Custom DNS settings can be configured at the VNet level, and the
network interface level, but not at the level.: subnet level.
To use specific settings for an individual subnet, you must configure
those settings on each network interface in the subnet.
4.NSG Rule priority ranges: Priority values start from 100 and go to
4096 (and from 65001 to 65003 for default rules).
5.IRT NSGs what are service tags?: Service tags are used in NSG rules
as a quick and reliable way of creating rules that control traffic to each
service. Typically, they are used in outbound rules to control which
other Azure services the VMs in a VNet can or cannot access.
6.what are the default NSG rules and their priorities?: Virtual network:
Traffic originating and ending in a virtual network is allowed both in
inbound and outbound directions.

3 / 24
Internet : Outbound traffic is allowed, but inbound traffic is blocked.

4 / 24
Load balancer: Allows Azure load balancer to probe the health of your
VMs and role instances. If you are not using a load balanced set, you
can override this rule.
Inbound:
AllowVNetInBound 65000
AllowAzureLoad BalancerInBound 65001
DenyAllInBound 65500
Outbound:
AllowVNet OutBound 65000
AllowInternet OutBound 65001
DenyAllOutBound 65500
7.caveat regarding the NSG Load Balancer security rule: The Load
Balancer default rule uses the AzureLoadBalancer service tag. This
applies only to Azure load balancer health probes, which originate at
the load balancer. It does not apply to traffic received through the load
balancer, which retain their original source IP address and port.
8.What is an application security group (ASG): Application security
groups enable you to configure network security as a natural
extension of an application’s structure, allowing you to group virtual
machines and define network security policies based on those groups.
You can reuse your security policy at scale without the manual

Related Posts

Leave a Comment

Scroll to Top