AZ-800 Administering Windows Server Hybrid Core Infrastructure Questions and Answers

Questions 4

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com.

You need to identify which server is the PDC emulator for the domain.

Solution: From Active Directory Domains and Trusts, you right-click Active Directory Domains and Trusts in the console tree, and then select Operations Master.

Does this meet the goal?

Options:

Yes

Buy Now

Questions 5

Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com. The domain contains the VPN servers shown in the following table.

AZ-800 Question 5

You have a server named NPS1 that has Network Policy Server (NPS) installed. NPS1 has the following RADIUS clients:

AZ-800 Question 5

VPN1, VPN2, and VPN3 use NPS1 for RADIUS authentication. All the users in contoso.com are allowed to establish VPN connections. For each of the following statements, select Yes If the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

AZ-800 Question 5

Options:

Buy Now

Questions 6

You need to meet technical requirements for HyperV1.

Which command should you run? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-800 Question 6

Options:

Buy Now

Questions 7

You need to sync files from an on-premises server named Server1 to Azure by using Azure File Sync

You have a cloud tiering policy that is configured for 30 percent free space and 70 days.

Volume f on Server1 is 500 GB.

A year ago. you configured E:\Oata on Server1 to sync by using Azure File Sync. The files that are visible in E:\Data are shown in the following table.

AZ-800 Question 7

Volume E does NOT contain any other files.

Where are File1 and flle3 located? To answer, select the appropriate options In the answer area.

AZ-800 Question 7

Options:

Buy Now

Questions 8

Task2

You need to ensure that the Azure file share named share1 can sync to on-premises servers.

The required source files are located in a folder named \\dc1.contoso.com\install.

You do NOT need to specify the on-premises servers at this time.

Options:

Buy Now

Answer:

See the solution of this Task below.

Explanation:

One possible solution to ensure that the Azure file share named share1 can sync to on-premises servers is to use Azure File Sync. Azure File Sync allows you to centralize your file shares in Azure Files without giving up the flexibility, performance, and compatibility of an on-premises file server. It does this by transforming your Windows Servers into a quick cache of your Azure file share. You can use any protocol available on Windows Server to access your data locally (including SMB, NFS, and FTPS) and you can have as many caches as you need across the world1.

Here are the steps to configure Azure File Sync for the Azure file share named share1 and the source files located in a folder named \dc1.contoso.com\install:

On the Azure portal, create a Storage Sync Service in the same region as your storage account that contains the Azure file share named share1. For more information on how to create a Storage Sync Service, see How to deploy Azure File Sync.

On the on-premises server that hosts the folder named \dc1.contoso.com\install, install the Azure File Sync agent. For more information on how to install the Azure File Sync agent, see Install the Azure File Sync agent.

On the on-premises server, register the server with the Storage Sync Service that you created in the first step. For more information on how to register a server with a Storage Sync Service, see Register/unregister a server with Storage Sync Service.

On the Azure portal, create a sync group that defines the sync topology for a set of files. In the sync group, select the Azure file share named share1 as the cloud endpoint and the folder named \dc1.contoso.com\install as the server endpoint. For more information on how to create a sync group, see Create a sync group and a cloud endpoint and Create a server endpoint.

Wait for the initial sync to complete. You can monitor the sync progress on the Azure portal or on the on-premises server. For more information on how to monitor sync progress, see [Monitor sync progress].

Once the initial sync is complete, you can add more on-premises servers to the same sync group to sync and cache the content locally. You can also enable cloud tiering to optimize the storage space on the on-premises servers by tiering infrequently accessed or older files to Azure Files.

Questions 9

Task 11

You need to ensure that all DHCP clients that get an IP address from SRV1 will be configured to use DC1 as a DNS server.

Options:

Buy Now

Answer:

See the solution of this Task below.

Explanation:

One possible solution to ensure that all DHCP clients that get an IP address from SRV1 will be configured to use DC1 as a DNS server is to use the DHCP scope options. DHCP scope options are settings that apply to all DHCP clients that obtain an IP address from a specific scope. You can use the DHCP scope options to specify the DNS server IP address, as well as other parameters such as the default gateway, the domain name, and the DNS suffix. Here are the steps to configure the DHCP scope options on SRV1:

On SRV1, open DNS Manager from the Administrative Tools menu or by typing dnsmgmt.msc in the Run box.

In the left pane, expand your DHCP server and click on IPv4.

In the right pane, right-click on the scope that you want to configure and select Properties.

In the Scope Properties dialog box, click on the DNS tab.

Check the box Enable DNS dynamic updates according to the settings below. This option allows the DHCP server to register and update the DNS records for the DHCP clients.

Select the option Always dynamically update DNS records. This option ensures that the DHCP server updates both the A and PTR records for the DHCP clients, regardless of whether they request or support dynamic updates.

Check the box Discard A and PTR records when lease is deleted. This option allows the DHCP server to delete the DNS records for the DHCP clients when their leases expire or are released.

Check the box Dynamically update DNS records for DHCP clients that do not request updates. This option allows the DHCP server to update the DNS records for the DHCP clients that do not support dynamic updates, such as legacy or non-Windows clients.

In the DNS servers section, click on the Add button to add a new DNS server IP address.

In the Add Server dialog box, enter the IP address of DC1, which is the DNS server that you want to use for the DHCP clients, and click Add.

Click OK to close the Add Server dialog box and return to the Scope Properties dialog box.

Click OK to apply the changes and close the Scope Properties dialog box.

Now, all DHCP clients that get an IP address from SRV1 will be configured to use DC1 as a DNS server. You can verify the DNS configuration by using the ipconfig /all command on a DHCP client computer and checking the DNS Servers entry. You can also check the DNS records for the DHCP clients by using the DNS Manager console on DC1.

Questions 10

Task 5

You have an application that is copied to a folder named C:\app on SRV1. C:\app also contains also a Dockerfile for the app.

On SRV1. you need to create a container image for the application by using the Dockerfile. The container image mutt be named app1.

Options:

Buy Now

Questions 11

You need to ensure that data availability on SSPace1 meets the technical requirements.

What is the maximum number of physical disks that can fail on each disk? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-800 Question 11

Options:

Buy Now

Questions 12

You need to implement the planned changes for Microsoft Entra users to sign in to Server1.

Which PowerShell cmdlet should you run?

Options:

Add-ADComputerServiceAccount

Set-AzVM

Set-AzVMExtension

New-ADComputer

Buy Now

Questions 13

You need to ensure that Automanage meets the technical requirements.

On which Azure virtual machines should you enable Automanage?

Options:

Server1 only

Server2 only

Server1 and Server2 only

Server2 and Server3 only

Server1 and Server4 only

Buy Now

Questions 14

Task 4

You need to run a container that uses the mcrmicrosoft.com/windows/servercofe/iis image on SRV1. Port 80 on the container must be published to port 5001 on SRV1 and the container must run in the background

Options:

Buy Now

Questions 15

You need to ensure that VM3 meets the technical requirements.

What should you install first?

Options:

Enhanced Storage

File Server Resource Manager (FSRM)

Windows Standards-Based Storage Management

the iSNS Server service

Buy Now

Questions 16

DC1 fails.

You need to meet the technical requirements for the schema master.

Yourunntdsutil.exe.

Which five commands should you run in sequence? To answer, move the appropriate commands from the list of commands to the answer area and arrange them in the correct order?

AZ-800 Question 16

Options:

Buy Now

Questions 17

You create a new Azure subscription.

You plan to deploy Azure Active Directory Domain Services (Azure AD DS) and Azure virtual machines.

You need to ensure that the virtual machines can join Azure AD DS.

Which three actions should perform in sequence? To answer, move the appropriate actions from the list of action of the answer area and arrange them in the correct order.

AZ-800 Question 17

Options:

Buy Now

Questions 18

Which two languages can you use for Task1? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

Java

Bicep

JavaScript

Python

PowerShell

Buy Now

Questions 19

You need to implement the planned changes for the Azure DNS Private Resolver.

Which private DNS zones can you use for name resolution?

Options:

Zone1.com only

Zone2.com only

Zone1.com and Zone2.com only

Zone2.com and Zone3.com only

Zone1.com, Zone2.com, and Zone3.com

Buy Now

Questions 20

You need to ensure that access to storage1 for the Marketing OU users meets the technical requirements.

What should you implement?

Options:

Microsoft Entra Connect cloud sync

Active Directory Federation Services (AD FS)

Microsoft Entra Connect in staging mode

Microsoft Entra Connect in active mode

Buy Now

Questions 21

You need to implement the planned change for Data1.

Which actions should you perform in sequence? To answer, drag the appropriate actions to the correct order. Each action may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

AZ-800 Question 21

Options:

Buy Now

Questions 22

You need to meet the technical requirements for User1. The solution must use the principle of least privilege.

What should you do?

Options:

Add Users1 to the Server Operators group in contoso.com.

Create a delegation on contoso.com.

Add Users1 to the Account Operators group in contoso.com.

Create a delegation on OU3.

Buy Now

Questions 23

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

AZ-800 Question 23

Options:

Buy Now

Questions 24

You need to meet the technical requirements for VM3

On which volumes can you enable Data Deduplication?

Options:

D and E only

C, D, E, and F

D only

D and E only

D, E, and F only

Buy Now

Questions 25

You need to meet the technical requirements for Server4.

Which cmdlets should you run on Server1 and Server4? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-800 Question 25

Options:

Buy Now

Questions 26

You need to configure network communication between the Seattle and New York offices. The solution must meet the networking requirements.

What should you configure? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-800 Question 26

Options:

Buy Now

Questions 27

You need to implement an availability solution for DHCP that meets the networking requirements.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Options:

On DHCP1. create a scope that contains 25 percent of the IP addresses from Scope2.

On the router in each office, configure a DHCP relay.

DHCP2. configure a scope that contains 25 percent of the IP addresses from Scope 1 .

On each DHCP server, install the Failover Clustering feature and add the DHCP cluster role.

On each DHCP scope, configure DHCP failover.

Buy Now

Questions 28

You need to configure the Group Policy settings to ensure that the Azure Virtual Desktop session hosts meet the security requirements. What should you configure?

Options:

security filtering for the link of GP04

security filtering for the link of GPO1

loopback processing in GPO4

the Enforced property for the link of GP01

loopback processing in GPO1

the Enforced property for the link of GP04

Buy Now

Questions 29

You need to meet the security requirements for passwords.

Where should you configure the components for Azure AD Password Protection? lo answer, drag the appropriate components to the correct locations. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE Each correct selection is worth one point.

AZ-800 Question 29

Options:

Buy Now

Questions 30

You are planning the implementation Azure Arc to support the planned changes. You need to configure the environment to support configuration management policies. What should you do?

Options:

Hybrid Azure AD join all the servers.

Create a hybrid runbook worker m Azure Automation.

Deploy the Azure Connected Machine agent to all the servers.

Deploy the Azure Monitor agent to all the servers.

Buy Now

Questions 31

You need to configure remote administration to meet the security requirements. What should you use?

Options:

just in time (JIT) VM access

Azure AD Privileged Identity Management (PIM)

the Remote Desktop extension for Azure Cloud Services

an Azure Bastion host

Buy Now

Questions 32

Which three actions should you perform in sequence to meet the security requirements for Webapp1? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

AZ-800 Question 32

Options:

Buy Now

Questions 33

You need to configure Azure File Sync to meet the file sharing requirements. What should you do? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point.

AZ-800 Question 33

Options:

Buy Now

Questions 34

You need to implement a name resolution solution that meets the networking requirements. Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point

Options:

Create an Azure private DNS zone named corp.fabhkam.com.

Create a virtual network link in the coip.fabnkam.c om Azure private DNS zone.

Create an Azure DNS zone named corp.fabrikam.com.

Configure the DNS Servers settings for Vnet1.

Enable autoregistration in the corp.fabnkam.com Azure private DNS zone.

On DC3, install the DNS Server role.

Configure a conditional forwarder on DC3.

Buy Now

Questions 35

What should you implement for the deployment of DC3?

Options:

Azure Active Directory Domain Services (Azure AD DS}

Azure AD Application Proxy

an Azure virtual machine

an Azure AD administrative unit

Buy Now

Questions 36

You have a server named Server1 that runs Windows Server.

You plan to host applications in Windows containers.

You need to configure Server1 to run containers. What should you install?

Options:

Windows Admin Center

the Windows Subsystem for Linux

Doctor

Hyper-V

Buy Now

Questions 37

You plan to deploy an Azure virtual machine that will run Windows Server.

You need to ensure that an Azure Active Directory (Azure AD) user nameduserl@contoso.com can connect 10 the virtual machine by using the Azure Serial Console.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

AZ-800 Question 37

Options:

Buy Now

Questions 38

Your network contains an Active Directory Domain Services (AD DS) domain. The domain contains the offices shown in the following table.

AZ-800 Question 38

You need to deploy a Network Policy Server (NPS) named NPS1 to enforce network access policies for all remote connections.

What is the minimum number of RADIUS clients that you should add to NPS1?

Options:

180

188

Buy Now

Questions 39

You have servers that run Windows Server 2022 as shown in the following table.

AZ-800 Question 39

Server2 contains a .NET app named App1.

You need to establish a WebSocket connection from App1 to the SQL Server instance on Server!. The solution must meet the following requirements:

• Minimize the number of network ports that must be open on the on-premises network firewall.

• Minimize administrative effort.

What should you create first?

Options:

an Azure Relay namespace

an Azure VPN gateway

a WFC relay connection

a hybrid connection

Buy Now

Questions 40

Your network contains a DHCP server.

You plan to add a new subnet and deploy Windows Server to the subnet.

You need to use the server as a DHCP relay agent.

Which role should you install on the server?

Options:

Network Policy and Access Services

Remote Access

Network Controller

DHCP Server

Buy Now

Questions 41

You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with a Microsoft Entra tenant.

You deploy an app that adds custom attributes to the domain.

From Azure Cloud Shell, you discover that you cannot query the custom attributes of users.

You need to ensure that the custom attributes are available in Microsoft Entra ID.

Which task should you perform from Microsoft Entra Connect first?

Options:

Refresh directory schema

Configure device options

Customize synchronization options

Manage federation

Buy Now

Questions 42

Your network contains an Active Directory Domain Services (AD DS) forest named contoso.com. The root domain contains the domain controllers shown in the following table.

AZ-800 Question 42

A failure of which domain controller will prevent you from creating application partitions?

Options:

DC1

DC2

DC3

DC4

DC5

Buy Now

Exam Code: AZ-800

Exam Name: Administering Windows Server Hybrid Core Infrastructure

Last Update: Nov 22, 2024

Questions: 235

PDF + Testing Engine

$61.25 ~~$174.99~~

Testing Engine

$47.25 ~~$134.99~~

PDF (Q&A)

$40.25 ~~$114.99~~

Black Friday Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

marks4sure logo

Navigation:

AZ-800 Administering Windows Server Hybrid Core Infrastructure Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer: