DummyExams LogoDummyExams
Azure logo

Free Practice · No Signup Required

30 Free Azure AZ-400 Practice Questions

Real practice questions for the Azure Azure DevOps Solutions (AZ-400) exam, with answers and detailed explanations. Updated 2026.

Start Timed Exam ModeUnlock all 340+ Questions

Free questions

30

Passing score

700 out of 1000

Exam time

120 minutes

Question pool

340+ Questions

Below are 30 real practice questions for the Azure Azure DevOps Solutions (AZ-400) exam. Each question shows the correct answer and a detailed explanation when you reveal it. Use these to benchmark your readiness — if you score below 70% on these 30 questions, plan for at least 4 more weeks of study before booking.

AZ-400 Practice Questions

  1. Question 1.You plan to create a project in Azure DevOps. Multiple developers will work on the project. The developers will work offline frequently and will require access to the full project history while they are offline. Which version control solution should you use?

    • A.TortoiseSVN.
    • B.Team Foundation Version Control.
    • C.Subversion.
    • D.Git.(correct answer)
    Show answer & explanation

    Correct answer: D

    Git.

    Explanation

    Git is a distributed version control system (DVCS) that allows developers to have a full copy of the repository, including history, on their local machines. This enables offline work and fast operations.

  2. Question 2.You use Azure SQL Database Intelligent Insights and Azure Application Insights for monitoring. Which query language should you use?

    • A.Kusto Query Language (KQL).(correct answer)
    • B.PL/pgSQL.
    • C.PL/SQL.
    • D.Transact-SQL.
    Show answer & explanation

    Correct answer: A

    Kusto Query Language (KQL).

    Explanation

    Kusto Query Language (KQL) is the primary query language used in Azure Monitor, Log Analytics, and Application Insights to explore and analyze data.

  3. Question 3.Contoso, Ltd. is a manufacturing company that has a main office in Chicago. Contoso plans to improve its IT development and operations processes by implementing Azure DevOps principles. Contoso has an Azure subscription and creates an Azure DevOps organization. The Azure DevOps organization includes: The Docker extension. A deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2016. The Azure subscription contains an Azure Automation account. Contoso plans to create projects in Azure DevOps as shown in the following table. Contoso identifies the following technical requirements: Implement build agents for Project 1. Whenever possible, use Azure resources. Avoid using deprecated technologies. Implement a code flow strategy for Project2 that will: Enable Team2 to submit pull requests for Project2. Enable Team2 to work independently on changes to a copy of Project2. Ensure that any intermediary changes performed by Team2 on a copy of Project2 will be subject to the same restrictions as the ones defined in the build policy of Project2. Whenever possible implement automation and minimize administrative effort. Implement Protect3, Project5, Project6, and Project7 based on the planned changes. Implement Project4 and configure the project to push Docker images to Azure Container Registry. You need to implement the code flow strategy for Project2 in Azure DevOps. Which three actions should you perform in sequence? ![Question 3 part 1](images/question3_12_22_34_35_40_41_43.jpg) ![Question 3 part 2](images/question3_2.jpg)

    • A.Box 1: Create a repository. Box 2: Create a fork. Box 3: Add a build validation policy.(correct answer)
    • B.Box 1: Create a fork. Box 2: Create a branch. Box 3: Add a build validation policy.
    • C.Box 1: Create a repository. Box 2: Add a build policy. Box 3: Add a build validation policy.
    • D.Box 1: Create a repository. Box 2: Add a build policy. Box 3: Create a branch.
    Show answer & explanation

    Correct answer: A

    Box 1: Create a repository. Box 2: Create a fork. Box 3: Add a build validation policy.

    Explanation

    To enable independent work and pull requests for an existing repository: 1. Create the repository. 2. Create a fork (allows independent changes). 3. Add a build validation policy (ensures quality on PRs).

  4. Question 4.Litware, Inc. an independent software vendor (ISV) Litware has a main office and five branch offices. Application Architecture The company' s primary application is a single monolithic retirement fund management system based on ASP.NET web forms that use logic written in V8.NET. Some new sections of the application are written in C#. Variations of the application are created for individual customers. Currently, there are more than 80 have code branches in the application's code base. The application was developed by using Microsoft Visual Studio. Source code is stored in Team Foundation Server (TFS) in the main office. The branch offices access of the source code by using TFS proxy servers. Architectural Issues Litware focuses on writing new code for customers. No resources are provided to refactor or remove existing code. Changes to the code base take a long time, AS dependencies are not obvious to individual developers. Merge operations of the code often take months and involve many developers. Code merging frequently introduces bugs that are difficult to locate and resolve. Customers report that ownership costs of the retirement fund management system increase continually. The need to merge unrelated code makes even minor code changes expensive. Requirements Planned Changes Litware plans to develop a new suite of applications for investment planning. The investment planning Applications will require only minor integration with the easting retirement fund management system. The investment planning applications suite will include one multi-tier web application and two iOS mobile applications. One mobile application will be used by employees; the other will be used by customers. Litware plans to move to a more agile development methodology. Shared code will be extracted into a series of package. Litware has started an internal cloud transformation process and plans to use cloud based services whenever suitable. Litware wants to become proactive m detecting failures, rather than always waning for customer bug reports. Technical Requirements The company's investment planning applications suite must meet the following technical requirements: New incoming connections through the firewall must be minimized. Members of a group named Developers must be able to install packages. The principle of least privilege must be used for all permission assignments A branching strategy that supports developing new functionality in isolation must be used. Members of a group named Team leaders must be able to create new packages and edit the permissions of package feeds Visual Studio App Center must be used to centralize the reporting of mobile application crashes and device types in use. By default, all App Center must be used to centralize the reporting of mobile application crashes and device types in use. Code quality and release quality are critical. During release, deployments must not proceed between stages if any active bugs are logged against the release. The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HUPS. The required operating system configuration tor the test servers changes weekly. Azure Automation State Configuration must be used to ensure that the operating system on each test servers configured the same way when the servers are created and checked periodically. The test servers are configured correctly when first deployed, but they experience configuration drift over time. Azure Automation State Configuration fails to correct the configurations. Azure Automation State Configuration nodes are registered by using the following command. How should you complete the code to initialize App Center in the mobile application? ![Question 4 part 1](images/question4_79_116_162_322_325.jpeg) ![Question 4 part 2](images/question4_2.jpg)

    • A.Box 1: [MSAnalytics.self. Box 2: MSCrasches.self].(correct answer)
    • B.Box 1: [MSDistribute.self. Box 2: MSAnalytics.self].
    • C.Box 1: [MSPush.self. Box 2: MSCrasches.self].
    • D.Box 1: [MSAnalytics.self. Box 2: MSCrasches.self].
    Show answer & explanation

    Correct answer: A

    Box 1: [MSAnalytics.self. Box 2: MSCrasches.self].

    Explanation

    In Visual Studio App Center for iOS, you initialize services using [MSAnalytics.self, MSCrashes.self] to enable analytics and crash reporting functionality.

  5. Question 5.You manage a project in Azure DevOps. You need to prevent the configuration of the project from changing over time. Solution: Perform a Subscription Health scan when packages are created. Does this meet the goal?

    • A.Yes.
    • B.No.(correct answer)
    Show answer & explanation

    Correct answer: B

    No.

    Explanation

    Subscription Health scans do not prevent configuration drift. Strategies like Desired State Configuration (DSC) or Azure Policy guest configuration are designed to maintain consistent environment states.

  6. Question 6.You have an existing build pipeline in Azure Pipelines. You need to use incremental builds without purging the environment between pipeline executions. What should you use?

    • A.File Transform task.
    • B.Self-hosted agent.(correct answer)
    • C.Microsoft-hosted parallel jobs.
    Show answer & explanation

    Correct answer: B

    Self-hosted agent.

    Explanation

    Self-hosted agents allow you to persist files between build runs, which is a requirement for incremental builds. Microsoft-hosted agents are cleaned after every execution.

  7. Question 7.Woodgrove Bank is a financial services company that has a main office in the United Kingdom. Woodgrove Bank plans to implement the following project management changes: Implement Azure DevOps for project tracking. Centralize source code control in private GitHub repositories. Implement Azure Pipelines for build pipelines and release pipelines. Woodgrove Bank plans to implement the following changes to the identity environment: Deploy an Azure AD tenant named woodgrovebank.com. Sync the Active Directory domain to Azure AD. Configure App1 to use a service principal. Integrate GitHub with Azure AD. Woodgrove Bank plans to implement the following changes to the core apps: Migrate App1 to ASP.NET Core. Integrate Azure Pipelines and the third-party build tool used to develop App2. Woodgrove Bank plans to implement the following changes to the DevOps environment: Deploy App1 to Azure App Service. Implement source control for the DB1 schema. Migrate all the source code from TFS1 to GitHub. Deploy App2 to an Azure virtual machine named VM1. Merge the POC branch into the GitHub default branch. Implement an Azure DevOps dashboard for stakeholders to monitor development progress. Woodgrove Bank identifies the following technical requirements: The initial databases for new environments must contain both schema and reference data. An Azure Monitor alert for VM1 must be configured to meet the following requirements: The commit history of the POC branch must replace the history of the default branch. The Azure DevOps dashboard must display the metrics shown in the following table. Access to Azure DevOps must be restricted to specific IP addresses. Page load times for App1 must be captured and monitored. Administrative effort must be minimized. You need to configure Azure Pipelines to control App2 builds. Which authentication method should you use? ![Question 7](images/question7_9_14_23_39_42_340.jpg)

    • A.Windows NTLM.
    • B.Certificate.
    • C.SAML.
    • D.Personal Access Token (PAT).(correct answer)
    Show answer & explanation

    Correct answer: D

    Personal Access Token (PAT).

    Explanation

    Personal Access Tokens (PATs) are the standard way to authenticate automated tools and secondary processes (like build systems) with Azure DevOps and GitHub.

  8. Question 8.You have an Azure function hosted in an App Service plan named az400-123456789-func1. You need to configure az400-123456789-func1 to upgrade the functions automatically whenever new code is committed to the master branch of https://github.com/Azure-Samples/functions-quickstart. To complete this task, sign in to the Microsoft Azure portal.

    • A.1. Open Microsoft Azure Portal. 2. Log into your Azure account, select App Services in the Azure portal left navigation, and then select configure az400-123456789-func1. 3. On the app page, select Deployment Center in the left menu. 4. On the Build provider page, select Azure Pipelines (Preview), and then select Continue. 5. On the Configure page, in the Code section: For GitHub, drop down and select the Organization, Repository, and Branch you want to deploy continuously. 6. Select Continue. 7. On the Test page, choose whether to enable load tests, and then select Continue. 8. Depending on your App Service plan pricing tier, you may see a Deploy to staging page. Choose whether to enable deployment slots, and then select Continue. 9. After you configure the build provider, review the settings on the Summary page, and then select Finish.(correct answer)
    Show answer & explanation

    Correct answer: A

    1. Open Microsoft Azure Portal. 2. Log into your Azure account, select App Services in the Azure portal left navigation, and then select configure az400-123456789-func1. 3. On the app page, select Deployment Center in the left menu. 4. On the Build provider page, select Azure Pipelines (Preview), and then select Continue. 5. On the Configure page, in the Code section: For GitHub, drop down and select the Organization, Repository, and Branch you want to deploy continuously. 6. Select Continue. 7. On the Test page, choose whether to enable load tests, and then select Continue. 8. Depending on your App Service plan pricing tier, you may see a Deploy to staging page. Choose whether to enable deployment slots, and then select Continue. 9. After you configure the build provider, review the settings on the Summary page, and then select Finish.

    Explanation

    To enable continuous deployment for an Azure Function, you configure the 'Deployment Center' to pull from a source control repository (like GitHub or Azure Repos). Every commit to the specified branch triggers a build and deploy.

  9. Question 9.Woodgrove Bank is a financial services company that has a main office in the United Kingdom. Woodgrove Bank plans to implement the following project management changes: Implement Azure DevOps for project tracking. Centralize source code control in private GitHub repositories. Implement Azure Pipelines for build pipelines and release pipelines. Woodgrove Bank plans to implement the following changes to the identity environment: Deploy an Azure AD tenant named woodgrovebank.com. Sync the Active Directory domain to Azure AD. Configure App1 to use a service principal. Integrate GitHub with Azure AD. Woodgrove Bank plans to implement the following changes to the core apps: Migrate App1 to ASP.NET Core. Integrate Azure Pipelines and the third-party build tool used to develop App2. Woodgrove Bank plans to implement the following changes to the DevOps environment: Deploy App1 to Azure App Service. Implement source control for the DB1 schema. Migrate all the source code from TFS1 to GitHub. Deploy App2 to an Azure virtual machine named VM1. Merge the POC branch into the GitHub default branch. Implement an Azure DevOps dashboard for stakeholders to monitor development progress. Woodgrove Bank identifies the following technical requirements: The initial databases for new environments must contain both schema and reference data. An Azure Monitor alert for VM1 must be configured to meet the following requirements: The commit history of the POC branch must replace the history of the default branch. The Azure DevOps dashboard must display the metrics shown in the following table. Access to Azure DevOps must be restricted to specific IP addresses. Page load times for App1 must be captured and monitored. Administrative effort must be minimized. You need to replace the existing DevOps tools to support the planned changes. What should you use? ![Question 9 part 1](images/question7_9_14_23_39_42_340.jpg) ![Question 9 part 2](images/question9_2.jpg)

    • A.Trello: Azure Boards. Bamboo: Azure Pipelines. BitBucket: GitHub repositories.(correct answer)
    • B.Trello: Azure Test Plans. Bamboo: GitHub Actions. BitBucket: Azure Artifacts.
    • C.Trello: GitHub repositories. Bamboo: Azure Artifacts. BitBucket: Azure Pipelines.
    • D.Trello: Azure Boards. Bamboo: GitHub Actions. BitBucket: Azure Artifacts.
    Show answer & explanation

    Correct answer: A

    Trello: Azure Boards. Bamboo: Azure Pipelines. BitBucket: GitHub repositories.

    Explanation

    Modern DevOps tool replacement: Trello (Project management) -> Azure Boards. Bamboo (CI/CD) -> Azure Pipelines. BitBucket (Git hosting) -> GitHub/Azure Repos.

  10. Question 10.You are building an application that has the following assets: Source code. Logs from automated tests and builds. Large and frequently updated binary assets. A common library used by multiple applications. Where should you store each asset? ![Question 10](images/question10.jpg)

    • A.Source code: Azure Repos. A common library used by multiple applications: Azure Storage. Logs from automated tests and builds: Azure Pipelines. Large and frequently updated binary assets: Azure Storage.
    • B.Source code: Azure Repos. A common library used by multiple applications: Azure Artifacts. Logs from automated tests and builds: Azure Pipelines. Large and frequently updated binary assets: Azure Test Plans.
    • C.Source code: Azure Test Plans. A common library used by multiple applications: Azure Artifacts. Logs from automated tests and builds: Azure Pipelines. Large and frequently updated binary assets: Azure Storage.
    • D.Source code: Azure Repos. A common library used by multiple applications: Azure Artifacts. Logs from automated tests and builds: Azure Pipelines. Large and frequently updated binary assets: Azure Storage.(correct answer)
    Show answer & explanation

    Correct answer: D

    Source code: Azure Repos. A common library used by multiple applications: Azure Artifacts. Logs from automated tests and builds: Azure Pipelines. Large and frequently updated binary assets: Azure Storage.

    Explanation

    Asset mapping: Source code -> Azure Repos. Shared library -> Azure Artifacts. Build logs -> Azure Pipelines. Large binary files -> Azure Storage (best for non-versioned large blobs).

  11. Question 11.You are defining release strategies for two applications as shown in the following table. Which release strategy should you use for each application? ![Question 11 part 1](images/question11_1.jpg) ![Question 11 part 2](images/question11_2.png)

    • A.App1: Canary deployment. App2: Blue/Green deployment.(correct answer)
    • B.App1: Blue/Green deployment. App2: Rolling deployment.
    • C.App1: Canary deployment. App2: Rolling deployment.
    • D.App1: Rolling deployment. App2: Canary deployment.
    Show answer & explanation

    Correct answer: A

    App1: Canary deployment. App2: Blue/Green deployment.

    Explanation

    Release strategies: Canary deployment (small group test) and Blue/Green deployment (duplicate production environment for zero downtime/fast rollback).

  12. Question 12.Contoso, Ltd. is a manufacturing company that has a main office in Chicago. Contoso plans to improve its IT development and operations processes by implementing Azure DevOps principles. Contoso has an Azure subscription and creates an Azure DevOps organization. The Azure DevOps organization includes: The Docker extension. A deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2016. The Azure subscription contains an Azure Automation account. Contoso plans to create projects in Azure DevOps as shown in the following table. Contoso identifies the following technical requirements: Implement build agents for Project 1. Whenever possible, use Azure resources. Avoid using deprecated technologies. Implement a code flow strategy for Project2 that will: Enable Team2 to submit pull requests for Project2. Enable Team2 to work independently on changes to a copy of Project2. Ensure that any intermediary changes performed by Team2 on a copy of Project2 will be subject to the same restrictions as the ones defined in the build policy of Project2. Whenever possible implement automation and minimize administrative effort. Implement Protect3, Project5, Project6, and Project7 based on the planned changes. Implement Project4 and configure the project to push Docker images to Azure Container Registry. You need to implement Project4. What should you do first? ![Question 12](images/question3_12_22_34_35_40_41_43.jpg)

    • A.Add the FROM instruction in the Dockerfile file.
    • B.Add a Copy and Publish Build Artifacts task to the build pipeline.
    • C.Add a Docker task to the build pipeline.(correct answer)
    • D.Add the MAINTAINER instruction in the Dockerfile file.
    Show answer & explanation

    Correct answer: C

    Add a Docker task to the build pipeline.

    Explanation

    To build and push Docker images in Azure Pipelines, you use the 'Docker' task, which simplifies interaction with Docker registries and build commands.

  13. Question 13.Your company uses Azure DevOps to manage the build and release processes for applications. You use a Git repository for applications source control. You plan to create a new branch from an existing pull request. Later, you plan to merge the new branch and the target branch of the pull request. You need to use a pull request action to create the new branch. The solution must ensure that the branch uses only a portion of the code in the pull request. Which pull request action should you use?

    • A.Set as default branch.
    • B.Approve with suggestions.
    • C.Cherry-pick.(correct answer)
    • D.ReactivateRevert.
    • E.Revert.
    Show answer & explanation

    Correct answer: C

    Cherry-pick.

    Explanation

    Cherry-pick is a Git feature that allows you to select specific commits from one branch and apply them to another, which is useful for moving only a portion of code.

  14. Question 14.Woodgrove Bank is a financial services company that has a main office in the United Kingdom. Woodgrove Bank plans to implement the following project management changes: Implement Azure DevOps for project tracking. Centralize source code control in private GitHub repositories. Implement Azure Pipelines for build pipelines and release pipelines. Woodgrove Bank plans to implement the following changes to the identity environment: Deploy an Azure AD tenant named woodgrovebank.com. Sync the Active Directory domain to Azure AD. Configure App1 to use a service principal. Integrate GitHub with Azure AD. Woodgrove Bank plans to implement the following changes to the core apps: Migrate App1 to ASP.NET Core. Integrate Azure Pipelines and the third-party build tool used to develop App2. Woodgrove Bank plans to implement the following changes to the DevOps environment: Deploy App1 to Azure App Service. Implement source control for the DB1 schema. Migrate all the source code from TFS1 to GitHub. Deploy App2 to an Azure virtual machine named VM1. Merge the POC branch into the GitHub default branch. Implement an Azure DevOps dashboard for stakeholders to monitor development progress. Woodgrove Bank identifies the following technical requirements: The initial databases for new environments must contain both schema and reference data. An Azure Monitor alert for VM1 must be configured to meet the following requirements: The commit history of the POC branch must replace the history of the default branch. The Azure DevOps dashboard must display the metrics shown in the following table. Access to Azure DevOps must be restricted to specific IP addresses. Page load times for App1 must be captured and monitored. Administrative effort must be minimized. You need to configure authentication for App1. The solution must support the planned changes. Which three actions should you perform in sequence? You need to replace the existing DevOps tools to support the planned changes. What should you use? ![Question 14 part 1](images/question7_9_14_23_39_42_340.jpg) ![Question 14 part 2](images/question14_2.jpg)

    • A.Box 1: Create an app. Box 2: Add a secret. Box 3: Configure the ID and secret for App1.(correct answer)
    • B.Box 1: Create a managed service identity. Box 2: Create a credential. Box 3: Configure the ID and secret for App 1.
    • C.Box 1: Add a secret. Box 2: Create an app. Box 3: Create a managed service identity.
    • D.Box 1: Create an app. Box 2: Create a managed service identity. Box 3: Configure the ID and secret for App1.
    Show answer & explanation

    Correct answer: A

    Box 1: Create an app. Box 2: Add a secret. Box 3: Configure the ID and secret for App1.

    Explanation

    To authenticate an application against Azure AD (Microsoft Entra ID): 1. Create an app registration. 2. Create a client secret. 3. Configure the application with the Client ID and Secret.

  15. Question 15.You have a Microsoft ASP.NET Core web app in Azure that is accessed worldwide. You need to run a URL ping test once every five minutes and create an alert when the web app is unavailable from specific Azure regions. The solution must minimize development time. What should you do?

    • A.Create an Azure Application Insights availability test and alert.(correct answer)
    • B.Create an Azure Service Health alert for the specific regions.
    • C.Create an Azure Monitor Availability metric and alert.
    • D.Write an Azure function and deploy the function to the specific regions.
    Show answer & explanation

    Correct answer: A

    Create an Azure Application Insights availability test and alert.

    Explanation

    Azure Application Insights 'Availability Tests' (like URL ping tests) allow you to monitor web app availability from multiple geographic regions with minimal effort.

  16. Question 16.You have a private GitHub repository. You need to display the commit status of the repository on Azure Boards. What should you do first?

    • A.Create a GitHub action in GitHub.
    • B.Add the Azure Pipelines app to the GitHub repository.
    • C.Configure multi-factor authentication (MFA) for your GitHub account.
    • D.Add the Azure Boards app to the repository.(correct answer)
    Show answer & explanation

    Correct answer: D

    Add the Azure Boards app to the repository.

    Explanation

    To integrate GitHub commit history with Azure Boards, you must add the 'Azure Boards' app to your GitHub repository to enable the bi-directional association.

  17. Question 17.You are configuring Azure DevOps build pipelines. You plan to use hosted build agents. Which build agent pool should you use to compile each application type? ![Question 17](images/question17.jpg)

    • A.An application that runs on iOS: Hosted Windows Container. An Internet Information Services (IS) web application that runs in Docker: Hosted Ubuntu 1604.
    • B.An application that runs on iOS: Hosted macOS. An Internet Information Services (IS) web application that runs in Docker: Hosted.(correct answer)
    • C.An application that runs on iOS: Hosted. An Internet Information Services (IS) web application that runs in Docker: Default.
    • D.An application that runs on iOS: Hosted Windows Container. An Internet Information Services (IS) web application that runs in Docker: Default.
    Show answer & explanation

    Correct answer: B

    An application that runs on iOS: Hosted macOS. An Internet Information Services (IS) web application that runs in Docker: Hosted.

    Explanation

    Hosted build agents: macOS is required for iOS builds. Ubuntu or Windows can be used for Docker-based web applications, but 'Hosted' (Ubuntu/Windows) is the standard answer for IIS Docker scenarios.

  18. Question 18.How should you configure the release retention policy for the investment planning applications suite? ![Question 18](images/question18.jpg)

    • A.Global release: Set the default retention policy to 30 days. Production stage: Set the stage retention policy to 60 days.(correct answer)
    • B.Global release: Set the maximum retention policy to 30 days. Production stage: Set the default retention policy to 30 days.
    • C.Global release: Set the stage retention policy to 60 days. Production stage: Set the maximum retention policy to 60 days.
    • D.Global release: Set the stage retention policy to 30 days. Production stage: Set the stage retention policy to 30 days.
    Show answer & explanation

    Correct answer: A

    Global release: Set the default retention policy to 30 days. Production stage: Set the stage retention policy to 60 days.

    Explanation

    Release retention policies control how long release data and artifacts are kept. You can set global policies or stage-specific policies (e.g., Keeping production releases longer).

  19. Question 19.You are automating the testing process for your company. You need to automate UI testing of a web application. Which framework should you use?

    • A.JaCoco.
    • B.Selenium.(correct answer)
    • C.Xamarin.UITest.
    • D.Microsoft.CodeAnalysis.
    Show answer & explanation

    Correct answer: B

    Selenium.

    Explanation

    Selenium is a widely used open-source framework for automating UI testing across different web browsers.

  20. Question 20.You are automating the testing process for your company. You need to automate UI testing of a web application. Which framework should you use?

    • A.JaCoco.
    • B.Playwright.(correct answer)
    • C.Xamarin.UITest.
    • D.Microsoft.CodeAnalysis.
    Show answer & explanation

    Correct answer: B

    Playwright.

    Explanation

    Playwright is a modern end-to-end testing framework for web apps that provides reliable cross-browser automation.

  21. Question 21.You have an approval process that contains a condition. The condition requires that releases be approved by a team leader before they are deployed. You have a policy stating that approvals must occur within eight hours. You discover that deployments fail if the approvals lake longer than two hours. You need to ensure that the deployments only fail if the approvals take longer than eight hours. Solution: From Pre-deployment conditions, you modify the Timeout setting for pre-deployment approvals. Does this meet the goal?

    • A.Yes.(correct answer)
    • B.No.
    Show answer & explanation

    Correct answer: A

    Yes.

    Explanation

    Pre-deployment approvals have a default timeout of 30 days, but individual environment timeout settings can cause earlier failures if not configured correctly.

  22. Question 22.Contoso, Ltd. is a manufacturing company that has a main office in Chicago. Contoso plans to improve its IT development and operations processes by implementing Azure DevOps principles. Contoso has an Azure subscription and creates an Azure DevOps organization. The Azure DevOps organization includes: The Docker extension. A deployment pool named Pool7 that contains 10 Azure virtual machines that run Windows Server 2016. The Azure subscription contains an Azure Automation account. Contoso plans to create projects in Azure DevOps as shown in the following table. Contoso identifies the following technical requirements: Implement build agents for Project 1. Whenever possible, use Azure resources. Avoid using deprecated technologies. Implement a code flow strategy for Project2 that will: Enable Team2 to submit pull requests for Project2. Enable Team2 to work independently on changes to a copy of Project2. Ensure that any intermediary changes performed by Team2 on a copy of Project2 will be subject to the same restrictions as the ones defined in the build policy of Project2. Whenever possible implement automation and minimize administrative effort. Implement Protect3, Project5, Project6, and Project7 based on the planned changes. Implement Project4 and configure the project to push Docker images to Azure Container Registry. You need to configure Azure Automation for the computers in Group7. Which three actions should you perform in sequence? ![Question 22 part 1](images/question3_12_22_34_35_40_41_43.jpg) ![Question 22 part 2](images/question22_2.jpg)

    • A.Box 1: Create a Desired State Configuration (DSC) configuration file that has an extension of .ps1. Box 2: Run the Import-AzureRmAutomationDscConfiguration Azure PowerShell cmdlet. Box 3: Run the Start-AzureRmAutomationDscCompilationJob Azre PowerShell cmdlet.(correct answer)
    • B.Box 1: Run the Import-AzureRmAutomationDscConfiguration Azure PowerShell cmdlet. Box 2: Create a Desired State Configuration (DSC) configuration file that has an extension of .ps1. Box 3: Run the New-AzureRmResourceGroupDeployment Azure PowerShell cmdlet.
    • C.Box 1: Run the New-AzureRmResourceGroupDeployment Azure PowerShell cmdlet. Box 2: Create an Azure Resource Manager template file that hasan extension of .json. Box 3: Run the New-AzureRmResourceGroupDeployment Azure PowerShell cmdlet.
    • D.Box 1: Create an Azure Resource Manager template file that has an extension of .json. Box 2: Run the New-AzureRmResourceGroupDeployment Azure PowerShell cmdlet. Box 3: Run the Import-AzureRmAutomationDscConfiguration Azure PowerShell cmdlet.
    Show answer & explanation

    Correct answer: A

    Box 1: Create a Desired State Configuration (DSC) configuration file that has an extension of .ps1. Box 2: Run the Import-AzureRmAutomationDscConfiguration Azure PowerShell cmdlet. Box 3: Run the Start-AzureRmAutomationDscCompilationJob Azre PowerShell cmdlet.

    Explanation

    Azure Automation DSC workflow: 1. Create .ps1 configuration. 2. Import into Automation account. 3. Compile into a node configuration.

  23. Question 23.Woodgrove Bank is a financial services company that has a main office in the United Kingdom. Woodgrove Bank plans to implement the following project management changes: Implement Azure DevOps for project tracking. Centralize source code control in private GitHub repositories. Implement Azure Pipelines for build pipelines and release pipelines. Woodgrove Bank plans to implement the following changes to the identity environment: Deploy an Azure AD tenant named woodgrovebank.com. Sync the Active Directory domain to Azure AD. Configure App1 to use a service principal. Integrate GitHub with Azure AD. Woodgrove Bank plans to implement the following changes to the core apps: Migrate App1 to ASP.NET Core. Integrate Azure Pipelines and the third-party build tool used to develop App2. Woodgrove Bank plans to implement the following changes to the DevOps environment: Deploy App1 to Azure App Service. Implement source control for the DB1 schema. Migrate all the source code from TFS1 to GitHub. Deploy App2 to an Azure virtual machine named VM1. Merge the POC branch into the GitHub default branch. Implement an Azure DevOps dashboard for stakeholders to monitor development progress. Woodgrove Bank identifies the following technical requirements: The initial databases for new environments must contain both schema and reference data. An Azure Monitor alert for VM1 must be configured to meet the following requirements: The commit history of the POC branch must replace the history of the default branch. The Azure DevOps dashboard must display the metrics shown in the following table. Access to Azure DevOps must be restricted to specific IP addresses. Page load times for App1 must be captured and monitored. Administrative effort must be minimized. You need to meet the technical requirements for controlling access to Azure DevOps. What should you use? ![Question 23](images/question7_9_14_23_39_42_340.jpg)

    • A.Azure Multi-Factor Authentication (MFA).
    • B.On-premises firewall rules.
    • C.Conditional access policies in Azure AD.(correct answer)
    • D.Azure role-based access control (Azure RBAC).
    Show answer & explanation

    Correct answer: C

    Conditional access policies in Azure AD.

    Explanation

    Conditional Access policies in Azure AD (Entra ID) allow you to restrict access to Azure DevOps based on signals like IP address, device state, or user risk.

  24. Question 24.You are configuring the Azure DevOps dashboard. The solution must meet the technical requirements. Which widget should you use for each metric? ![Question 24](images/question24.jpg)

    • A.Box 1: Sprint burndown. Box 2: Release pipeline overview. Box 3: Query tile.(correct answer)
    • B.Box 1: Query tile. Box 2: Velocity. Box 3: Cumulative flow diagram.
    • C.Box 1: Velocity. Box 2: Release pipeline overview. Box 3: Query tile.
    • D.Box 1: Velocity. Box 2: Sprint burndown. Box 3: Query tile.
    Show answer & explanation

    Correct answer: A

    Box 1: Sprint burndown. Box 2: Release pipeline overview. Box 3: Query tile.

    Explanation

    Azure Boards widgets: Sprint Burndown (track remaining work), Release Pipeline Overview (deployment status), and Query Tile (custom work item metrics).

  25. Question 25.You company has a prefect in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically. Solution: From the Triggers tab of the build pipeline, you selected Batch changes while a build is in progress. Does this meet the goal?

    • A.Yes.
    • B.No.(correct answer)
    Show answer & explanation

    Correct answer: B

    No.

    Explanation

    To trigger builds automatically on check-in, you must enable the 'Continuous integration' trigger. 'Batch changes' only controls how multiple commits are handled during an active build.

  26. Question 26.You need to find and isolate shared code. The shared code will be maintained in a series of packages. Which three actions should you perform in sequence? ![Question 26](images/question26.jpg)

    • A.Box 1: Create a dependency graph for the application. Box 2: Group the related components. Box 3: Assign ownership to each component group.(correct answer)
    • B.Box 1: Identify the most common language used. Box 2: Group the related components. Box 3: Assign ownership to each component group.
    • C.Box 1: Rewrite the components in the most common language. Box 2: Create a dependency graph for the application. Box 3: Group the related components.
    • D.Box 1: Assign ownership to each component group. Box 2: Rewrite the components in the most common language. Box 3: Identify the most common language used.
    Show answer & explanation

    Correct answer: A

    Box 1: Create a dependency graph for the application. Box 2: Group the related components. Box 3: Assign ownership to each component group.

    Explanation

    Effective package management starts with identifying dependencies, grouping related code into components, and assigning clear ownership to those groups.

  27. Question 27.You are configuring an Azure DevOps deployment pipeline. The deployed application will authenticate to a web service by using a secret stored in an Azure key vault. You need to use the secret in the deployment pipeline. Which three actions should you perform in sequence? ![Question 27](images/question27.jpg)

    • A.Box 1: Add an app registration in Azure Active Directory (Azure AD). Box 2: Create a service principal in Azure Active Directory (Azure AD). Box 3: Add an Azure Resource Manager service connection to the pipeline.
    • B.Box 1: Create a service principal in Azure Active Directory (Azure AD). Box 2: Configure an access policy in the key vault. Box 3: Add an Azure Resource Manager service connection to the pipeline.(correct answer)
    • C.Box 1: Export a certificate from the key vault. Box 2: Add an Azure Resource Manager service connection to the pipeline. Box 3: Generate a self-signed certificate.
    • D.Box 1: Generate a self-signed certificate. Box 2: Create a service principal in Azure Active Directory (Azure AD). Box 3: Export a certificate from the key vault.
    Show answer & explanation

    Correct answer: B

    Box 1: Create a service principal in Azure Active Directory (Azure AD). Box 2: Configure an access policy in the key vault. Box 3: Add an Azure Resource Manager service connection to the pipeline.

    Explanation

    To access Key Vault secrets in a pipeline: 1. Create a Service Principal. 2. Grant it access in the Key Vault Access Policy. 3. Create a Service Connection in Azure DevOps.

  28. Question 28.You have a multi-tier application. The front end of the application is hosted in Azure App Service. You need to identify the average load times of the application pages. What should you use?

    • A.Diagnostics logs of the App Service.
    • B.Azure Application Insights.(correct answer)
    • C.Azure Advisor.
    • D.Activity log of the App Service.
    Show answer & explanation

    Correct answer: B

    Azure Application Insights.

    Explanation

    Azure Application Insights provides detailed performance metrics, including 'Browser Timings' which capture average page load times experienced by users.

  29. Question 29.You have an application that consists of several Azure App Service web apps and Azure functions. You need to access the security of the web apps and the functions. Which Azure feature can you use to provide a recommendation for the security of the application?

    • A.Security & Compliance in Azure Log Analytics.
    • B.Resource health in Azure Service Health.
    • C.Smart Detection in Azure Application Insights.
    • D.Compute & apps in Azure Security Center.(correct answer)
    Show answer & explanation

    Correct answer: D

    Compute & apps in Azure Security Center.

    Explanation

    Azure Security Center (now Microsoft Defender for Cloud) provides 'Compute & Apps' security recommendations, including validating the posture of web apps and functions.

  30. Question 30.You need to configure a virtual machine named VM1 to securely access stored secrets in an Azure Key Vault named az400-11566895-kv. To complete this task, sign in to the Microsoft Azure portal.

    • A.1. Sign in to Azure portal. 2. Locate virtual machine VM1. 3. Select Identity. 4. Enable the system-assigned identity for VM1 by setting the Status to On. 5. Allow the managed identity of VM1 in Key vault using Access control (IAM) blade role assignment.(correct answer)
    Show answer & explanation

    Correct answer: A

    1. Sign in to Azure portal. 2. Locate virtual machine VM1. 3. Select Identity. 4. Enable the system-assigned identity for VM1 by setting the Status to On. 5. Allow the managed identity of VM1 in Key vault using Access control (IAM) blade role assignment.

    Explanation

    Managed Identities allow Azure resources (like VMs) to authenticate to services (like Key Vault) without storing credentials in code. Enabling system-assigned identity is the first step.

Ready for the full AZ-400 exam?

Get all 340+ Questions, timed simulation, and weak-area analytics. Plans from $2.99 — credits never expire.

See pricing

Frequently Asked Questions

Are these real AZ-400 practice questions?+
Yes. These 30 questions are taken directly from our 340+ Questions pool, written and reviewed by certified practitioners. They mirror the style, difficulty, and scope of the official Azure AZ-400 exam.
Is the AZ-400 exam hard?+
The Azure Azure DevOps Solutions (AZ-400) is considered a pass-mark exam (passing score: 700 out of 1000). Most candidates need 4–8 weeks of focused preparation. Use these free questions to gauge where you stand before committing to a full study plan.
How many questions are on the real AZ-400 exam?+
The official AZ-400 exam has 40-60 questions.
Do I need to sign up to use these questions?+
No. These 30 questions are free and require no signup. If you want timed simulation, performance analytics, and access to all 340+ Questions, our paid plans start at $2.99 per exam with credits that never expire.

Keep studying

Full exam

Azure Azure DevOps Solutions (AZ-400) details

Azure

Free practice

Microsoft AZ-204

Azure

Free practice

Microsoft AZ-104

Azure

Free practice

Microsoft AZ-305

Pass AZ-400 on your first try

Join candidates using DummyExams to practice with realistic timed exams, detailed explanations, and weak-area analytics.

Start full AZ-400 practice exam