[2017 New] Lead2pass Latest Microsoft 70-533 Exam Questions Free Downloading (31-45)
2017 June Microsoft Official New Released 70-533 Dumps in Lead2pass.com!
100% Free Download! 100% Pass Guaranteed!
Lead2pass dumps for 70-533 exam are written to the highest standards of technical accuracy, provided by our certified subject matter experts and published authors for development. We guarantee the best quality and accuracy of our products. We hope you pass the exams successfully with our practice test. With our Microsoft 70-533 dumps, you will pass your exam easily at the first attempt. You can also enjoy 365 days free update for your product.
Following questions and answers are all new published by Microsoft Official Exam Center: http://www.lead2pass.com/70-533.html
QUESTION 31
Hotspot Question
You manage an Azure subscription.
You develop a storage plan with the following requirements:
– Database backup files that are generated once per year are retained for ten years.
– High performance system telemetry logs are created constantly and processed for analysis every month.
In the table below, identify the storage redundancy type that must be used. Make only one selection in each column.
Answer:
QUESTION 32
You administer an Azure Storage account with a blob container.
You enable Storage account logging for read, write and delete requests.
You need to reduce the costs associated with storing the logs.
What should you do?
A. Execute Delete Blob requests over https.
B. Create an export job for your container.
C. Set up a retention policy.
D. Execute Delete Blob requests over http.
Answer: C
Explanation:
To ease the management of your logs, we have provided the functionality of retention policy which will automatically cleanup `old’ logs without you being charged for the cleanup. It is recommended that you set a retention policy for logs such that your analytics data will be within the 20TB limit allowed for analytics data (logs and metrics combined).
http://blogs.msdn.com/b/windowsazurestorage/archive/2011/08/03/windows-azure-storage-logging-using-logs-to-track-storage-requests.aspx
QUESTION 33
You administer an Azure Storage account named contosostorage.
The account has a blob container to store image files.
A user reports being unable to access an image file.
You need to ensure that anonymous users can successfully read image files from the container.
Which log entry should you use to verify access?
A. Option A
B. Option B
C. Option C
D. Option D
Answer: A
Explanation:
http://blogs.msdn.com/b/windowsazurestorage/archive/2011/08/03/windows-azure-storage-logging-using-logs-to-track-storage-requests.aspx
QUESTION 34
Hotspot Question
You have an Azure SQL Database named Contosodb.
Contosodb is running in the Standard/S2 tier and has a service level objective of 99 percent.
You review the service tiers in Microsoft Azure SQL Database as well as the results of running performance queries for the usage of the database for the past week as shown in the exhibits. (Click the Exhibits button.)
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Answer:
Explanation:
* The P1 performance level has 100 DTUs compared to the 200 DTUs of the P2 performance level. That means that the P1 performance level provides half the performance of the P2 performance level. So 50% of CPU utilization in P2 equals 100% CPU utilization in P1. As long as the application does not have timeouts, it may not matter if a big job takes 2 hours or 2.5 hours to complete as long as it gets done today. An application in this category can probably just use a P1 performance level. You can take advantage of the fact that there are periods of time during the day where resource usage is lower, meaning that any “big peak” might spill over into one of the
QUESTION 35
Your company is launching a public website that allows users to stream videos.
You upload multiple video files to an Azure storage container.
You need to give anonymous users read access to all of the video files in the storage container.
What should you do?
A. Edit each blob’s metadata and set the access policy to Public Blob.
B. Edit the container metadata and set the access policy to Public Container.
C. Move the files into a container sub-directory and set the directory access level to Public Blob.
D. Edit the container metadata and set the access policy to Public Blob.
Answer: D
Explanation:
By default, the container is private and can be accessed only by the account owner. To allow public read access to the blobs in the container, but not the container properties and metadata, use the “Public Blob” option. To allow full public read access for the container and blobs, use the “Public Container” option.
https://azure.microsoft.com/en-gb/documentation/articles/storage-manage-access-to-resources/
QUESTION 36
Hotspot Question
You manage a public-facing web application which allows authenticated users to upload and download large files. On the initial public page there is a promotional video.
You plan to give users access to the site content and promotional video.
In the table below, identify the access method that should be used for the anonymous and authenticated parts of the application. Make only one selection in each column.
Answer:
Explanation:
https://docs.microsoft.com/en-us/azure/storage/storage-dotnet-shared-access-signature-part-1
https://docs.microsoft.com/en-us/azure/storage/storage-manage-access-to-resources
QUESTION 37
Drag and Drop Question
Your company network includes a single forest with multiple domains.
You plan to migrate from On-Premises Exchange to Exchange Online.
You want to provision the On-Premises Windows Active Directory (AD) and Azure Active Directory (Azure AD) service accounts.
You need to set the required permissions for the Azure AD service account.
Which settings should you use? To answer, drag the appropriate permission to the service account. Each permission may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Explanation:
When you run the Directory Sync tool Configuration Wizard, you must provide the following information:
Enterprise admin credentials for the on-premises Active Directory schema Global admin credentials for the Microsoft cloud service https://support.microsoft.com/kb/2684395?wa=wsignin1.0
QUESTION 38
Hotspot Question
You administer an Azure Active Directory (Azure AD) tenant.
You add a custom application to the tenant.
The application must be able to:
– Read data from the tenant directly.
– Write data to the tenant on behalf of a user.
In the table below, identify the permission that must be granted to the application. Make only one selection in each column.
Answer:
Explanation:
http://msdn.microsoft.com/en-us/library/azure/dn132599.aspx
QUESTION 39
Your company plans to migrate from On-Premises Exchange to Exchange Online in Office 365.
You plan to integrate your existing Active Directory Domain Services (AD DS) infrastructure with Azure AD.
You need to ensure that users can log in by using their existing AD DS accounts and passwords. You need to achieve this goal by using minimal additional systems.
Which two actions should you perform? Each answer presents part of the solution.
A. Configure Password Sync.
B. Set up a DirSync Server.
C. Set up an Active Directory Federation Services Server.
D. Set up an Active Directory Federation Services Proxy Server.
Answer: AB
Explanation:
Directory Sync with Password Sync Scenario’ Applies To: Azure, Office 365, Windows Intune
Password sync is an extension to the Directory Sync Scenario. With directory sync, you can manage the entire lifecycle of your cloud user and group accounts using your on- premise Active Directory management tools.
When password sync is enabled on your directory sync computer, your users will be able to sign into Microsoft cloud services, such as Office 365, Dynamics CRM, and Windows InTune, using the same password as they use when logging into your on-premises network. When your users change their passwords in your corporate network, those changes are synchronized to the cloud.
http://technet.microsoft.com/en-us/library/dn441214.aspx
QUESTION 40
Drag and Drop Question
You publish a multi-tenant application named MyApp to Azure Active Directory (Azure AD).
You need to ensure that only directory administrators from the other organizations can access MyApp’s web API.
How should you configure MyApp’s manifest JSON file? To answer, drag the appropriate PowerShell command to the correct location in the application’s manifest JSON file. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
QUESTION 41
You manage a software-as-a-service application named SaasApp1 that provides user management features in a multi-directory environment.
You plan to offer SaasApp1 to other organizations that use Azure Active Directory.
You need to ensure that SaasApp1 can access directory objects.
What should you do?
A. Configure the Federation Metadata URL
B. Register SaasApp1 as a native client application.
C. Register SaasApp1 as a web application.
D. Configure the Graph API.
Answer: D
Explanation:
The Azure Active Directory Graph API provides programmatic access to Azure AD through REST API endpoints. Applications can use the Graph API to perform create, read, update, and delete (CRUD) operations on directory data and objects. For example, the Graph API supports the following common operations for a user object:
/ Create a new user in a directory
/ Get a user’s detailed properties, such as their groups / Update a user’s properties, such as their location and phone number, or change their password
/ Check a user’s group membership for role-based access / Disable a user’s account or delete it entirely
http://msdn.microsoft.com/en-us/library/azure/hh974476.aspx
QUESTION 42
You administer an Azure Active Directory (Azure AD) tenant where Box is configured for:
– Application Access
– Password Single Sign-on
An employee moves to an organizational unit that does not require access to Box through the Access Panel.
You need to remove only Box from the list of applications only for this user.
What should you do?
A. Delete the user from the Azure AD tenant.
B. Delete the Box Application definition from the Azure AD tenant.
C. From the Management Portal, remove the user’s assignment to the application.
D. Disable the user’s account in Windows AD.
Answer: C
Explanation:
Note: Use Azure AD to manage user access, provision user accounts, and enable single sign-on with Box. Requires an existing Box subscription
QUESTION 43
You administer an Azure Active Directory (Azure AD) tenant that has a SharePoint web application named TeamSite1. TeamSite1 accesses your Azure AD tenant for user information.
The application access key for TeamSite1 has been compromised.
You need to ensure that users can continue to use TeamSite1 and that the compromised key does not allow access to the data in your Azure AD tenant.
Which two actions should you perform? Each correct answer presents part of the solution.
A. Remove the compromised key from the application definition for TeamSite1.
B. Delete the application definition for TeamSite1.
C. Generate a new application key for TeamSite1.
D. Generate a new application definition for TeamSite1.
E. Update the existing application key.
Answer: AC
Explanation:
One of the security aspects of Windows Azure storage is that all access is protected by access keys.
It is possible to change the access keys (e.g. if the keys become compromised), and if changed, we’d need to update the application to have the new key.
QUESTION 44
You administer a DirSync server configured with Azure Active Directory (Azure AD).
You need to provision a user in Azure AD without waiting for the default DirSync synchronization interval.
What are two possible ways to achieve this goal? Each correct answer presents a complete solution.
A. Restart the DirSync server.
B. Run the Start-OnlineCoexistenceSync PowerShell cmdlet.
C. Run the Enable-SyncShare PowerShell cmdlet.
D. Run the Azure AD Sync tool Configuration Wizard.
E. Replicate the Directory in Active Directory Sites and Services.
Answer: BD
Explanation:
If you don’t want to wait for the recurring synchronizations that occur every three hours, you can force directory synchronization at any time.
B: Force directory synchronization using Windows PowerShell
You can use the directory synchronization Windows PowerShell cmdlet to force synchronization. The cmdlet is installed when you install the Directory Sync tool. On the computer that is running the Directory Sync tool, start PowerShell, type Import- Module DirSync, and then press ENTER.
Type Start-OnlineCoexistenceSync, and then press ENTER.
D: Azure Active Directory Sync Services (AAD Sync) In September 2014 the Microsoft Azure AD Sync tool was released. This changed how manual sync requests are issued.
To perform a manual update we now use the DirectorySyncClientCmd.exe tool. The Delta and Initial parameters are added to the command to specify the relevant task.
This tool is located in:
C:\Program Files\Microsoft Azure AD Sync\Bin
You can use the directory synchronization Windows PowerShell cmdlet to force synchronization. The cmdlet is installed when you install the Directory Sync tool. On the computer that is running the Directory Sync tool, start PowerShell, type Import- Module DirSync, and then press ENTER.
Type Start-OnlineCoexistenceSync, and then press ENTER.
QUESTION 45
Hotspot Question
You manage an Internet Information Services (IIS) 6 website named contososite1. Contososite1 runs a legacy ASP.NET 1.1 application named LegacyApp1. LegacyApp1 does not contain any integration with any other systems or programming languages.
You deploy contososite1 to Azure Web Sites.
You need to configure Azure Web Sites.
You have the following requirements:
– LegacyApp1 runs correctly.
– The application pool does not recycle.
Which settings should you configure to meet the requirements? To answer, select the appropriate settings in the answer area.
Answer:
Explanatio:
http://msdn.microsoft.com/en-us/library/k6h9cz8h%28v=vs.140%29.aspx
We offer standard exam questions of Microsoft 70-533 dumps. The standard exams are important if you have never taken a real exam. The accuracy of the Q&As are fully guaranteed and the number is enough to impact you passing the exam.
70-533 new questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDeFgyaGRNaE5iaFk
2017 Microsoft 70-533 exam dumps (All 217 Q&As) from Lead2pass:
http://www.lead2pass.com/70-533.html [100% Exam Pass Guaranteed]