Skip to content

Latest commit

 

History

History
512 lines (355 loc) · 43.5 KB

70-534.md

File metadata and controls

512 lines (355 loc) · 43.5 KB

Microsoft Exam 70-534 Reference Guide

Useful Links

Reference


Design Azure Resource Manager (ARM) Networking (5-10%)

Design Azure virtual networks

Topics:

  • Extend on-premises;
  • Leverage Azure networking services: implement load balancing using Azure Load Balancer and Azure Traffic Manager;
  • Define DNS, DHCP, and IP addressing configuration;
  • Define static IP reservations;
  • Apply Network Security Groups (NSGs) and User Defined Routes (UDRs);
  • Deploy Azure Application Gateway.

Resources:

Describe Azure VPN and ExpressRoute architecture and design

Topics:

  • Describe Azure point-to-site (P2S) and site-to-site (S2S) VPN, leverage Azure VPN and ExpressRoute in network architecture

Resources:

Secure resources (20-25%)


Secure resources by using managed identities

Topics:

  • Describe the differences between Active Directory on-premises and Azure Active Directory (Azure AD), programmatically access Azure AD using Graph API, secure access to resources from Azure AD applications using OAuth and OpenID Connect.

Resources:

Secure resources by using hybrid identities

Topics:

  • Use SAML claims to authenticate to on-premises resources, describe AD Connect synchronization, implement federated identities using Active Directory Federation Services (ADFS).

Resources:

Secure resources by using identity providers

Topics:

  • Provide access to resources using identity providers, such as Microsoft account, Facebook, Google, and Yahoo!;
  • Manage identity and access by using Azure AD B2C;
  • Implement Azure AD B2B.

Resources:

Identify an appropriate data security solution

Topics:

  • Identify security requirements for data in transit and data at rest;
  • Identify security requirements using Azure services, including Azure Storage Encryption, Azure Disk Encryption, and Azure SQL Database TDE.

Resouces:

Design a role-based access control (RBAC) strategy

Topics:

  • Secure resource scopes, such as the ability to create VMs and Azure Web Apps;
  • Implement Azure RBAC standard roles;
  • Design Azure RBAC custom roles.

Resouces:

Manage security risks by using an appropriate security solution

Topics:

  • Identify, assess, and mitigate security risks by using Azure Security Center, Operations Management Suite, and other services .

Resources:


Design an application storage and data access strategy (5-10%)

Design data storage

Topics:

  • Design storage options for data, including Table Storage, SQL Database, DocumentDB, Blob Storage, MongoDB, and MySQL;
  • Design security options for SQL Database or Azure Storage.

Resouces:

Select the appropriate storage option

Topics:

  • Select the appropriate storage for performance, identify storage options for cloud services and hybrid scenarios with compute on-premises and storage on Azure.

Resources:


Design advanced applications (20-25%)

Create compute-intensive applications

Topics:

  • Design high-performance computing (HPC) and other compute-intensive applications using Azure Services.

Resources:

Create long-running applications

Topics:

  • Implement Azure Batch for scalable processing, design stateless components to accommodate scale, use Azure Scheduler.

Resources:

Integrate Azure services in a solution

Topics:

  • Design Azure architecture using Azure services, such as Azure AD, Azure App Service, API Management, Azure Cache, Azure Search, Service Bus, Event Hubs, Stream Analytics, and IoT Hub;
  • Identify the appropriate use of Azure Machine Learning, big data, Azure Media Services, and Azure Search services.

Resources:

Implement messaging applications

Topics:

  • Use a queue-centric pattern for development;
  • Select appropriate technology, such as Azure Storage Queues, Azure Service Bus queues, topics, subscriptions, and Azure Event Hubs.

Resources:

Implement applications for background processing

Topics:

  • Implement Azure Batch for compute-intensive tasks, use Azure WebJobs to implement background tasks, use Azure Functions to implement event-driven actions, leverage Azure Scheduler to run processes at preset/recurring timeslots.

Resources:

Design connectivity for hybrid applications

Topics:

  • Connect to on-premises data from Azure applications using Service Bus Relay, Hybrid Connections, or the Azure Web App virtual private network (VPN) capability;
  • Identify constraints for connectivity with VPN;
  • Identify options for joining VMs to domains or cloud services.

Resources:


Design Azure Web and Mobile Apps (5-10%)

Design Web Applications

Topics:

  • Design Azure App Service Web Apps, design custom web API, offload long-running applications using WebJobs, secure Web API using Azure AD, design Web Apps for scalability and performance, deploy Azure Web Apps to multiple regions for high availability, deploy Web Apps, create App Service plans, design Web Apps for business continuity, configure data replication patterns, update Azure Web Apps with minimal downtime, back up and restore data, design for disaster recovery.

Resources:

Design Mobile Applications

Topics:

  • Design Azure Mobile Services;
  • Consume Mobile Apps from cross-platform clients;
  • Integrate offline sync capabilities into an application;
  • Extend Mobile Apps using custom code;
  • Implement Mobile Apps using Microsoft .NET or Node.js;
  • Secure Mobile Apps using Azure AD;
  • Implement push notification services in Mobile Apps;
  • Send push notifications to all subscribers, specific subscribers, or a segment of subscribers.

Resources:


Design a management, monitoring and business continuity strategy (20-25%)

Design a monitoring strategy

Topics:

  • Identify the Microsoft products and services for monitoring Azure solutions;
  • Leverage the capabilities of Azure Operations Management Suite and Azure Application Insights for monitoring Azure solutions;
  • Leverage built-in Azure capabilities;
  • Identify third-party monitoring tools, including open source;
  • Describe Azure architecture constructs, such as availability sets and update domains, and how they impact a patching strategy;
  • Analyze logs by using the Azure Operations Management Suite.

Resources:

Describe Azure business continuity/disaster recovery (BC/DR) capabilities

Topics:

  • Leverage the architectural capabilities of BC/DR, describe Hyper-V Replica and Azure Site Recovery (ASR), describe use cases for Hyper-V Replica and ASR.

Resouces:

Design a disaster recovery strategy

Topics:

  • Design and deploy Azure Backup and other Microsoft backup solutions for Azure, leverage use cases when StorSimple and System Center Data Protection Manager would be appropriate, design and deploy Azure Site recovery.

Resources:

Design Azure Automation and PowerShell workflows

Topics:

  • Create a PowerShell script specific to Azure, automate tasks by using the Azure Operations Management Suite.

Resources:

Describe the use cases for Azure Automation configuration

Topics:

  • Evaluate when to use Azure Automation, Chef, Puppet, PowerShell, or Desired State Configuration (DSC)

Resources:


Architect an Azure Compute Infrastructure (10-15%)

Design ARM Virtual Machines (VMs)

Topics:

  • Design VM deployments leveraging availability sets, fault domains, and update domains in Azure; select appropriate VM SKUs.

Resources:

Design ARM template deployment

Topics:

  • Author ARM templates;
  • Deploy ARM templates via the portal, PowerShell, and CL.

Resources:

Design for availability

Topics:

  • Implement regional availability and high availability for Azure deployments.

Resources: