Free AZ-400 Exam Braindumps

- (Exam Topic 4)
You have an Azure subscription that contains an Azure pipeline named Pipeline1 and a GitHub repository named Repo1, Repo1 contains Bicep modules. Pipeline1 deploys Azure resources by using the Bicep modules.
You need to ensure that all releases comply With Azure Policy before they are deployed to production. What should you do?

1. A. Configure a deployment gate for Pipeline' include the Azure DevOps Security and compliance assessment task.
2. B. Create an Azure DevOps build runs on the creation of a pull request assesses the code tor compliance.
3. C. To Pipeline1, add a step that runs a What If deployment before the deployment step.
4. D. Configure a deployment gate for Pipeline' that uses Azure Automation to run a What If deployment

Correct Answer: A

- (Exam Topic 4)
You have an application that consists of several Azure App Service web apps and Azure functions. You need to access the security of the web apps and the functions.
Which Azure features can you use to provide a recommendation for the security of the application?

1. A. Security & Compliance in Azure Log Analytics
2. B. Resource health in Azure Service Health
3. C. Smart Detection in Azure Application Insights
4. D. Compute & apps in Azure Security Center

Correct Answer: D
Monitor compute and app services: Compute & apps include the App Services tab, which App services: list of your App service environments and current security state of each.
Recommendations
This section has a set of recommendations for each VM and computer, web and worker roles, Azure App Service Web Apps, and Azure App Service Environment that Security Center monitors. The first column lists the recommendation. The second column shows the total number of resources that are affected by that recommendation. The third column shows the severity of the issue.

- (Exam Topic 4)
You have a project m Azure DevOps that has a release pipeline.
You need to integrate work item tracking and an Agile project management system to meet the following requirements:
• Ensure that developers can track whether their commits are deployed to production.
• Report the deployment status.
• Minimize integration effort. Which system should you use?

1. A. Trello
2. B. Jira
3. C. Basecamp
4. D. Asana

Correct Answer: B
Jira Software is a development tool used by agile teams to plan, track, and manage software releases. Using Azure Pipelines, teams can configure CI/CD pipelines for applications of any language, deploying to any platform or any cloud.
Note: Microsoft and Atlassian have partnered together to build an integration between Azure Pipelines and Jira Software.
This integration connects the two products, providing full tracking of how and when the value envisioned with an issue is delivered to end users. This enables teams to setup a tight development cycle from issue creation through release. Key development milestones like builds and deployments associated to a Jira issue can then be tracked from within Jira Software.
Reference:
https://devblogs.microsoft.com/devops/azure-pipelines-integration-with-jira-software/

- (Exam Topic 4)
You are automating the testing process for your company. You need to automate UI testing of a web application. Which framework should you use?

1. A. JaCoco
2. B. Selenium
3. C. Xamarin.UITest
4. D. Microsoft.CodeAnalysis

Correct Answer: B
Performing user interface (UI) testing as part of the release pipeline is a great way of detecting unexpected changes, and need not be difficult. Selenium can be used to test your website during a continuous deployment release and test automation.
References:
https://docs.microsoft.com/en-us/azure/devops/pipelines/test/continuous-test-selenium?view=azure-devops

- (Exam Topic 4)
You are deploying a server application that will run on a Server Core installation of Windows Server 2019. You create an Azure key vault and a secret.
You need to use the key vault to secure API secrets for third-party integrations.
Which three actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point. D18912E1457D5D1DDCBD40AB3BF70D5D

1. A. Configure RBAC for the key vault.
2. B. Modify the application to access the key vault.
3. C. Configure a Key Vault access policy.
4. D. Deploy an Azure Desired State Configuration (DSC) extension.
5. E. Deploy a virtual machine that uses a system-assigned managed identity.

Correct Answer: BCE
BE: An app deployed to Azure can take advantage of Managed identities for Azure resources, which allows the app to authenticate with Azure Key Vault using Azure AD authentication without credentials (Application ID and Password/Client Secret) stored in the app.
Select Add Access Policy.
Open Secret permissions and provide the app with Get and List permissions.
Select Select principal and select the registered app by name. Select the Select button.
Select OK.
Select Save.
Deploy the app. References:
https://docs.microsoft.com/en-us/aspnet/core/security/key-vault-configuration https://docs.microsoft.com/en-us/azure/key-vault/general/tutorial-net-virtual-machine