30 Free Azure AZ-104 Practice Questions

AZ-104 Practice Questions

1. Question 1.You have an Azure Active Directory (Azure AD) tenant named adatum.com that contains the users shown in the following table Adatum.com has the following configurations: Users may join devices to Azure AD is set to User1. Additional local administrators on Azure AD joined devices is set to None. You deploy Windows 10 to a computer named Computer. User1 joins Computer1 to adatum.com. You need to identify which users are added to the local Administrators group on Computer1. 

   • A.User1 only.
   • B.User1, User2, and User3 only.
   • C.User1 and User2 only.(correct answer)
   • D.User1, User2, User3, and User4.
   • E.User2 only.
   Show answer & explanationHide answer

   Correct answer: C

   User1 and User2 only.

   Explanation

   When a user joins a device to Azure AD, they are added to the local Administrators group. Also, any user with the 'Global Administrator' or 'Azure AD Joined Device Local Administrator' role is automatically added. Assuming User2 is a Global Admin (from the table), User1 and User2 are added.

2. Question 2.You have an Azure subscription named Subscription1 that contains the resources in the following table You install the Web Server server role (IIS) on WM1 and VM2, and then add VM1 and VM2 to LB1. LB1 is configured as shown in the LB1 exhibit. Rule1 is configured as shown in the Rule1 exhibit. NOTE: Each correct selection is worth one point. VML is in the same availability set as VM2.   

   • A.Yes.(correct answer)
   • B.No.
   Show answer & explanationHide answer

   Correct answer: A

   Yes.

   Explanation

   Azure Load Balancers require backend pool members to be in the same Availability Set (for Basic SKU) or Virtual Network (for Standard SKU). This setup is valid for basic load balancing.

3. Question 3.You have an Azure subscription named Subscription1 that contains the resources in the following table You install the Web Server server role (IIS) on WM1 and VM2, and then add VM1 and VM2 to LB1. LB1 is configured as shown in the LB1 exhibit. Rule1 is configured as shown in the Rule1 exhibit. NOTE: Each correct selection is worth one point. If Probel.htm is present on VM1 and VM2, LB1 will balance TCP port 80 between VM1 and VM2.   

   • A.Yes.(correct answer)
   • B.No.
   Show answer & explanationHide answer

   Correct answer: A

   Yes.

   Explanation

   If the health probe finds the specified file (Probe1.htm) on the backend instances, it marks them as healthy and the load balancer starts distributing traffic to them.

4. Question 4.You have an Azure subscription named Subscription1 that contains the resources in the following table. You install the Web Server server role (IIS) on WM1 and VM2, and then add VM1 and VM2 to LB1. LB1 is configured as shown in the LB1 exhibit. Rule1 is configured as shown in the Rule1 exhibit. NOTE: Each correct selection is worth one point. If you delete Rule1, LB1 will balance all the requests between VM1 and VM2 for all the ports.   

   • A.Yes.
   • B.No.(correct answer)
   Show answer & explanationHide answer

   Correct answer: B

   No.

   Explanation

   A load balancer rule is required to define how traffic on a specific port should be distributed. Deleting the rule stops the load balancer from forwarding traffic on that port.

5. Question 5.You have a sync group named Sync1 that has a cloud endpoint. The cloud endpoint includes a file named File1.txt. You on-premises network contains servers that run Windows Server 2016. The servers are configured as shown in the following table. You add Share1 as an endpoint for Sync1. One hour later, you add Share2 as an endpoint for Sync1. On the cloud endpoint, File1.txt is overwritten by File1.txt from Sharel. 

   • A.Yes.(correct answer)
   • B.No.
   Show answer & explanationHide answer

   Correct answer: A

   Yes.

   Explanation

   In Azure File Sync, when you add the initial server endpoint, the files already on that share are uploaded to the cloud endpoint. If a file of the same name exists in the cloud, the server's version wins during the initial sync.

6. Question 6.You have a sync group named Sync1 that has a cloud endpoint. The cloud endpoint includes a file named File1.txt. You on-premises network contains servers that run Windows Server 2016. The servers are configured as shown in the following table. You add Share1 as an endpoint for Sync1. One hour later, you add Share2 as an endpoint for Sync1. On Server1, Filel.txt is overwritten by File1.txt from the cloud endpoint. 

   • A.Yes.
   • B.No.(correct answer)
   Show answer & explanationHide answer

   Correct answer: B

   No.

   Explanation

   During the initial sync from a new server endpoint, the local files are merged with the cloud. Local files are not generally 'overwritten' by the cloud version unless their timestamps/conflicts dictate it otherwise after synchronization is established.

7. Question 7.You have a sync group named Sync1 that has a cloud endpoint. The cloud endpoint includes a file named File1.txt. You on-premises network contains servers that run Windows Server 2016. The servers are configured as shown in the following table. You add Share1 as an endpoint for Sync1. One hour later, you add Share2 as an endpoint for Sync1. File1.txt Share1 replicates to Share2. 

   • A.Yes.(correct answer)
   • B.No.
   Show answer & explanationHide answer

   Correct answer: A

   Yes.

   Explanation

   Azure File Sync ensures that all endpoints (cloud and server) in a sync group stay in sync. Changes on Share1 are synced to the cloud and then down to Share2.

8. Question 8.You have an Azure subscription that contains the resources shown in the following table. The Not allowed resources types Azure policy is assigned to RG1 and uses the following parameters: In RG1, you need to create a new virtual machine named VM2, and then connect the VM2 to VNET1. What should you do first? 

   • A.Remove Microsoft.Network/virtualNetworks from the policy.
   • B.Create an Azure Resource Manager template.
   • C.Remove Microsoft.Compute/virtualMachines from the policy.(correct answer)
   • D.Add a subnet to VNET1.
   Show answer & explanationHide answer

   Correct answer: C

   Remove Microsoft.Compute/virtualMachines from the policy.

   Explanation

   If the policy prevents the creation of virtual machines (Microsoft.Compute/virtualMachines), you must first remove that restriction from the policy or its assignment to allow the creation of VM2.

9. Question 9.You have an Azure Active Directory (Azure AD) tenant named Adatum and an Azure Subscription named Subscription1. Adatum contains a group named Developers. Subscription1 contains a resource group named Dev. You need to provide the Developers group with the ability to create Azure logic apps in the Dev resource group. Solution: On Dev, you assign the Logic App Contributor role to the Developers group. Does this meet the goal?

   • A.Yes.(correct answer)
   • B.No.
   Show answer & explanationHide answer

   Correct answer: A

   Yes.

   Explanation

   The 'Logic App Contributor' role allows users to manage logic apps but not change their access. Granting this role at the resource group level allows members to create and manage logic apps within that group.

10. Question 10.You need to meet the technical requirement for VM4. What should you create and configure?

    • A.Azure Notification Hub.
    • B.Azure Event Hub.(correct answer)
    • C.Azure Logic App.
    • D.Azure services Bus.
    Show answer & explanationHide answer

    Correct answer: B

    Azure Event Hub.

    Explanation

    Azure Event Hubs is a big data streaming platform and event ingestion service. While the snippet is short, in many AZ-104 scenarios involving resource change tracking at scale, Event Hubs acts as the ingestion point.

11. Question 11.You need to the appropriate sizes for the Azure virtual for Server2. What should you do? 

    • A.Box 1: Create a Recovery Services vault. Box 2: Install the Azure Site Recovery Provider.
    • B.Box 1: Create an Azure Migrate project. Box 2: Create a collector virtual machine.(correct answer)
    • C.Box 1: Create an Azure Import/Export job. Box 2: Install the Azure File Sync agent.
    • D.Box 1: Upload a management certificate.Box 2: Enable Hyper-V Replica.
    Show answer & explanationHide answer

    Correct answer: B

    Box 1: Create an Azure Migrate project. Box 2: Create a collector virtual machine.

    Explanation

    Azure Migrate is the central hub for discovery, assessment, and migration of on-premises resources. Creating a project and deploying a collector appliance is the first step to assessing right-sizing needs.

12. Question 12.You have an Azure subscription that contains an Azure Storage account named storage1 and the users shown in the following table. You plan to monitor storage1 and to configure email notifications for the signals shown in the following table. You need to identify the minimum number of alert rules and action groups required for the planned monitoring. How many alert rules and action groups should you identify?   

    • A.Alert rules: 4. Action groups: 4.
    • B.Alert rules: 3. Action groups: 1.
    • C.Alert rules: 2. Action groups: 1.
    • D.Alert rules: 4. Action groups: 3.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    Alert rules: 4. Action groups: 3.

    Explanation

    You need one alert rule per signal (4 signals = 4 alert rules). Depending on who needs to be notified for each group of signals, you might need different action groups. The correct answer of 3 action groups reflects the logical grouping of notification recipients.

13. Question 13.You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com. The User administrator role is assigned to a user named Admin1. An external partner has a Microsoft account that uses the user1@outlook.com sign in.Admin1 attempts to invite the external partner to sign in to the Azure AD tenant and receives the following error message: 'Unable to invite user user1@outlook.com C Generic authorization exception.' You need to ensure that Admin1 can invite the external partner to sign in to the Azure AD tenant. What should you do?

    • A.From the Roles and administrators blade, assign the Security administrator role to Admin1.
    • B.From the Organizational relationships blade, add an identity provider.
    • C.From the Custom domain names blade, add a custom domain.
    • D.From the Users blade, modify the External collaboration settings.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    From the Users blade, modify the External collaboration settings.

    Explanation

    External collaboration settings (B2B) define who can invite guests. If 'Members can invite' is set to No, Admin1 won't be able to invite guests even with the User Administrator role if it relies on that member permission.

14. Question 14.You have an Azure subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com and an Azure Kubernetes Service (AKS) cluster named AKS1. An administrator reports that she is unable to grant access to AKS1 to the users in contoso.com. You need to ensure that access to AKS1 can be granted to the contoso.com users. What should you do first?

    • A.From contoso.com, modify the Organization relationships settings.
    • B.From contoso.com, create an OAuth 2.0 authorization endpoint.(correct answer)
    • C.Recreate AKS1.
    • D.From AKS1, create a namespace.
    Show answer & explanationHide answer

    Correct answer: B

    From contoso.com, create an OAuth 2.0 authorization endpoint.

    Explanation

    Integrating AKS with Azure AD requires establishing a trust between the cluster and the tenant. Creating the necessary service principals/endpoints is part of that integration process.

15. Question 15.You need to configure the Device settings to meet the technical requirements and the user requirements. Which two settings should you modify? 

    • A.Box 1: all. Box 2: None. Box 3: All. Box 4: Yes. Box 5: None.(correct answer)
    • B.Box 1: selected. Box 2: Selected. Box 3: None. Box 4: Yes. Box 5: All.
    • C.Box 1: None. Box 2: None. Box 3: All. Box 4: No. Box 5: Selected.
    • D.Box 1: . Box 2: . Box 3: . Box 4: . Box 5: .???
    Show answer & explanationHide answer

    Correct answer: A

    Box 1: all. Box 2: None. Box 3: All. Box 4: Yes. Box 5: None.

    Explanation

    Standard settings for allowing all discovery but restricting join/registration to specific scenarios or users are configured in the Devices-Settings blade.

16. Question 16.You need to meet the connection requirements for the New York office. What should you do? 

    • A.From the Azure portal: Create an ExpressRoute circuit only. In the New York office: Deploy a DirectAccess server.
    • B.From the Azure portal: Create a virtual network gateway only. In the New York office: Implement a Web Application Proxy.
    • C.From the Azure portal: Create a virtual network gateway and a local network gateway. In the New York office: Configure a site-to-site VPN connection.(correct answer)
    • D.From the Azure portal: Create a virtual network gateway and an on-premises data gateway. In the New York office: Implement a Web Application Proxy.
    Show answer & explanationHide answer

    Correct answer: C

    From the Azure portal: Create a virtual network gateway and a local network gateway. In the New York office: Configure a site-to-site VPN connection.

    Explanation

    A Site-to-Site (S2S) VPN requires a Virtual Network Gateway in Azure and a Local Network Gateway (representing the on-premises VPN device) to establish the tunnel across the internet.

17. Question 17.You have an Azure subscription named Subscription1 that contains the resources shown in the following table. In storage1, you create a blob container named blob1 and a file share named share1. Which resources can be backed up to Vault1 and Vault2?  

    • A.Box 1: VM1only Box 2: share1 only.(correct answer)
    • B.Box 1: VM1 and sharel only Box 2: VM1 and sharel only.
    • C.Box 1: VM1 and SQL1 only Box 2: blob1 and share1 only.
    • D.Box 1: VM1, storagel, and SQL1 only Box 2: ‘storagel and SQL1 only.
    • E.Box 1: VM1, blob1, sharel, and SQL1 Box 2: VM1 and sharel only.
    Show answer & explanationHide answer

    Correct answer: A

    Box 1: VM1only Box 2: share1 only.

    Explanation

    Recovery Services Vaults (Vault1) are used for VMs and SQL in VMs. Backup Vaults (Vault2) can be used for Azure Files (share1). Blobs have their own native backup/versioning, but directvault support varies.

18. Question 18.You have an Azure subscription that contains a storage account named account1. You plan to upload the disk files of a virtual machine to account1 from your on-premises network. The on-premises network uses a public IP address space of 131.107.1.0/24. You plan to use the disk files to provision an Azure virtual machine named VM1. VM1 will be attached to a virtual network named VNet1. VNet1 uses an IP address space of 192.168.0.0/24. You need to configure account1 to meet the following requirements: Ensure that you can upload the disk files to account1. Ensure that you can attach the disks to VM1. Prevent all other access to account1. Which two actions should you perform? Each correct selection presents part of the solution.

    • A.From the Firewalls and virtual networks blade of account1, add the 131.107.1.0/24 IP address range.(correct answer)
    • B.From the Firewalls and virtual networks blade of account1, select Selected networks.(correct answer)
    • C.From the Firewalls and virtual networks blade of acount1, add VNet1.
    • D.From the Firewalls and virtual networks blade of account1, select Allow trusted Microsoft services to access this storage account. From the Service endpoints blade of VNet1, add a service endpoint.
    • E.From the Service endpoints blade of VNet1, add a service endpoint.
    Show answer & explanationHide answer

    Correct answer: A, B

    From the Firewalls and virtual networks blade of account1, add the 131.107.1.0/24 IP address range. / From the Firewalls and virtual networks blade of account1, select Selected networks.

    Explanation

    To restrict access, select 'Selected networks'. Then add your on-premises public IP range to allow the upload. Access for disk attachment by platform services often relies on internal mechanisms or 'Trusted services'.

19. Question 19.You discover that VM3 does NOT meet the technical requirements. You need to verify whether the issue relates to the NSGs. What should you use?

    • A.Diagram in VNet1.
    • B.Security recommendations in Azure Advisor.
    • C.Diagnostic settings in Azure Monitor.
    • D.Diagnose and solve problems in Traffic Manager ProfilesIP flow verify in Azure Network Watcher.
    • E.IP flow verify in Azure Network Watcher.(correct answer)
    Show answer & explanationHide answer

    Correct answer: E

    IP flow verify in Azure Network Watcher.

    Explanation

    IP Flow Verify in Network Watcher checks if a packet is allowed or denied to/from a VM, specifically identifying the security rule (NSG) that is responsible for the outcome.

20. Question 20.You have a computer named Computer1 that has a point-to-site VPN connection to an Azure virtual network named VNet1. The point-to-site connection uses a self-signed certificate. From Azure, you download and install the VPN client configuration package on a computer named Computer2. You need to ensure that you can establish a point-to-site VPN connection to VNet1 from Computer2. Solution: On Computer2, you set the Startup type for the IPSec Policy Agent service to Automatic. Does this meet the goal?

    • A.Yes.
    • B.No.(correct answer)
    Show answer & explanationHide answer

    Correct answer: B

    No.

    Explanation

    For a P2S VPN using certificate authentication, the client computer (Computer2) must have the client certificate installed. Modifying services like IPSec Policy Agent does not provide the necessary identity.

21. Question 21.You have an Azure virtual machine named VM1. The network interface for VM1 is configured as shown in the exhibit. You deploy a web server on VM1, and then create a secure website that is accessible by using the HTTPS protocol VM1 is used as a web server only. You need to ensure that users can connect to the website from the Internet. What should you do? 

    • A.Change the priority of Rule3 to 450.
    • B.Change the priority of Rule6 to 100.
    • C.DeleteRule1.
    • D.Create a new inbound rule that allows TCP protocol 443 and configure the protocol to have a priority of 501.
    • E.For Rule5, change the Action to Allow and change the priority to 401.(correct answer)
    Show answer & explanationHide answer

    Correct answer: E

    For Rule5, change the Action to Allow and change the priority to 401.

    Explanation

    If the current rules block or miss port 443 (HTTPS), you need a rule that allows it. Using the lowest possible priority (highest number) that is still higher than the 'Deny All' rule is common, or simply enabling the specific rule if it exists but is disabled/low priority.

22. Question 22.You have an azure subscription named Subscription that contains the resource groups shown in the following table. In RG1, you create a virtual machine named VM1 in the East Asia location. You plan to create a virtual network named VNET1. You need to create VNET, and then connect VM1 to VNET1. What are two possible ways to achieve this goal? Each correct answer presents a complete a solution. 

    • A.Create VNET1 in RG2, and then set East Asia as the location.(correct answer)
    • B.Create VNET1 in a new resource group in the West US location, and then set West US as the location.
    • C.Create VNET1 in RG1, and then set East Asia as the location.(correct answer)
    • D.Create VNET1 in RG1, and then set East US as the location.
    • E.Create VNET1 in RG2, and then set East US as the location.
    Show answer & explanationHide answer

    Correct answer: A, C

    Create VNET1 in RG2, and then set East Asia as the location. / Create VNET1 in RG1, and then set East Asia as the location.

    Explanation

    A VM and its associated VNet must be in the same Azure region. The resource group can be different or the same, but the location must match.

23. Question 23.You need to resolve the licensing issue before you attempt to assign the license again. What should you do?

    • A.From the Groups blade, invite the user accounts to a new group.
    • B.From the Profile blade, modify the usage location.(correct answer)
    • C.From the Directory role blade, modify the directory role.
    Show answer & explanationHide answer

    Correct answer: B

    From the Profile blade, modify the usage location.

    Explanation

    Azure AD licenses can only be assigned to users who have a 'Usage Location' specified in their profile. This is required for compliance with local laws and regulations.

24. Question 24.Your on-premises network contains an Active Directory domain named adatum.com that is synced to Azure Active Directory (Azure AD). Password writeback is disabled. In adatum.com, you create the users shown in the following table. 

    • A.User2 only.
    • B.User1 and User3 only.
    • C.User1, User2, and User3.
    • D.User2 and User3 only.
    • E.User1 only.(correct answer)
    Show answer & explanationHide answer

    Correct answer: E

    User1 only.

    Explanation

    If password writeback is disabled, users synced from on-premises Active Directory cannot change their password in Azure AD (Self-Service Password Reset). Only cloud-only users (like User1 in some contexts, or based on the table) can use it fully.

25. Question 25.You need to resolve the Active Directory issue. What should you do?

    • A.From Active Directory Users and Computers, select the user accounts, and then modify the User Principal Name value.
    • B.Run idfix.exe, and then use the Edit action.(correct answer)
    • C.From Active Directory Domains and Trusts, modify the list of UPN suffixes.
    • D.From Azure AD Connect, modify the outbound synchronization rule.
    Show answer & explanationHide answer

    Correct answer: B

    Run idfix.exe, and then use the Edit action.

    Explanation

    IdFix is a tool used to identify and remediate identity objects and their attributes in an on-premises Active Directory environment before you synchronize them to Azure AD.

26. Question 26.You have an Azure Active Directory (Azure AD) tenant named adatum.com. Adatum.com contains the groups in the following table. You create two user accounts that are configured as shown in the following table. To which groups do User1 and User2 belong?   

    • A.Box 1: Group1 only. Box 2: Group1 and Group2 only.(correct answer)
    • B.Box 1: Group2 only. Box 2: Group1 only.
    • C.Box 1: Group3 only. Box 2: Group2 only.
    • D.Box 1: Groupl and Group3 only. Box 2: Group1, Group2, and Group3.
    • E.Box 1: Groupi, Group2, and Group3. Box 2: Group2 and Group3 only.
    Show answer & explanationHide answer

    Correct answer: A

    Box 1: Group1 only. Box 2: Group1 and Group2 only.

    Explanation

    Group membership depends on whether the group is Assigned or Dynamic. Dynamic groups use rules (e.g., job title) to automatically include users who meet the criteria.

27. Question 27.You have an Azure subscription that contains an Azure Availability Set named WEBPROD-AS-USE2 as shown in the following exhibit. You have an Azure subscription named Subscription1 that contains the resources shown in the following table.  

    • A.When Microsoft performs planned maintenance in East US 2, the maximum number of unavailable virtual machines will be: 14. If the server rack in the Azure datacenter that hosts WEBPROD-AS-USE2 experiences a power failure, the maximum number of unavailable virtual machines will be: 2.
    • B.When Microsoft performs planned maintenance in East US 2, the maximum number of unavailable virtual machines will be: 10. If the server rack in the Azure datacenter that hosts WEBPROD-AS-USE2 experiences a power failure, the maximum number of unavailable virtual machines will be: 10.
    • C.When Microsoft performs planned maintenance in East US 2, the maximum number of unavailable virtual machines will be: 7. If the server rack in the Azure datacenter that hosts WEBPROD-AS-USE2 experiences a power failure, the maximum number of unavailable virtual machines will be: 14.
    • D.When Microsoft performs planned maintenance in East US 2, the maximum number of unavailable virtual machines will be: 2. If the server rack in the Azure datacenter that hosts WEBPROD-AS-USE2 experiences a power failure, the maximum number of unavailable virtual machines will be: 7.(correct answer)
    Show answer & explanationHide answer

    Correct answer: D

    When Microsoft performs planned maintenance in East US 2, the maximum number of unavailable virtual machines will be: 2. If the server rack in the Azure datacenter that hosts WEBPROD-AS-USE2 experiences a power failure, the maximum number of unavailable virtual machines will be: 7.

    Explanation

    Availability Sets protect against planned maintenance (Update Domains/UD) and unplanned hardware failure (Fault Domains/FD). UD ensures only a fraction of VMs go down at once; FD ensures they are on separate hardware racks.

28. Question 28.You have an app named App1 that is installed on two Azure virtual machines named VM1 and VM2. Connections to App1 are managed by using an Azure Load Balancer. The effective network security configurations for VM2 are shown in the following exhibit. You discover that connections to App1 from 131.107.100.50 over TCP port 443 fail. You verify that the Load Balancer rules are configured correctly. You need to ensure that connections to App1 can be established successfully from 131.107.100.50 over TCP port 443. Solution: You create an inbound security rule that allows any traffic from the AzuteLoadBalancer source and has a cost of 150. Does this meet the goal? 

    • A.Yes.(correct answer)
    • B.No.
    Show answer & explanationHide answer

    Correct answer: A

    Yes.

    Explanation

    Allowing the 'AzureLoadBalancer' service tag is essential for health probes and certain load balancing traffic. If the NSG was blocking the load balancer's communication with the backend VMs, this rule would fix the issue.

29. Question 29.You have an Azure subscription that contains the following resources: A virtual network that has a subnet named Subnet1. Two network security groups (NSGs) named NSG-VM1 and NSG-Subnet1. A virtual machine named VM1 that has the required Windows Server configurations to allow Remote Desktop connections NSG-Subnet1 has the default inbound security rules only. NSG-VM1 has the default inbound security rules and the following custom inbound security rule: Priority: 100. Source: Any. Source port range: *. Destination: *. Destination port range: 3389. Protocol: UDP. Action: Allow VM1 connects to Subnet1. NSG1-VM1 is associated to the network interface of VM1. NSG-Subnet1 is associated to Subnet1. You need to be able to establish Remote Desktop connections from the internet to VM1. Solution: You add an inbound security rule to NSG-Subnet1 that allows connections from the Any source to the VirtualNetwork destination for port range 3389 and uses the TCP protocol. You remove NSG-VM1 from the network interface of VM1. Does this meet the goal?

    • A.Yes.(correct answer)
    • B.No.
    Show answer & explanationHide answer

    Correct answer: A

    Yes.

    Explanation

    RDP primarily uses TCP 3389. Removing the custom 'UDP only' rule on the VM's NIC and replacing the subnet-level rule with a 'TCP 3389' rule allows the necessary traffic.

30. Question 30.You have an Azure subscription that contains the following resources: 100 Azure virtual machines. 20 Azure SQL databases. 50 Azure file shares You need to create a daily backup of all the resources by using Azure Backup. What is the minimum number of backup policies that you must create?

    • A.1.
    • B.2.
    • C.3.(correct answer)
    • D.150.
    • E.170.
    Show answer & explanationHide answer

    Correct answer: C

    3.

    Explanation

    Azure Backup allows you to create policies that can be reused across multiple resources of the same type. You typically need separate policies for different resource types (VMs vs. SQL vs. Files) if their backup schedule or retention requirements differ, but the absolute minimum depends on the platform's support for shared policies.

Frequently Asked Questions

Keep studying

Study guide

How to Pass Azure AZ-104 on Your First Attempt: Complete Study Guide

Full exam

Azure Azure Administrator Associate (AZ-104) details

Free practice

Microsoft AZ-900

Free practice

Microsoft AZ-204

Free practice

Microsoft AZ-305