Raavi Raja
APEX | Office#403, PSR Prime Towers | Gachibowli |hyderabad|india
(M): +91-8500-122-107 ,(whats app)
| USA(L):+1 (214)-628-3894
Gtalk: raavi.sriraja@gmail.com
Email: raj@apex-online-it-training.com
WebSite:www.apex-online-it-training.com
Go Green Save Earth Save water
Course Content
70-533 Microsoft Azure
Architect
Question Cover for Certification
(20-25%)
·
Deploy
workloads on Azure Resource Manager (ARM) virtual machines (VMs)
o
Identify
workloads that can and cannot be deployed; run workloads that use Microsoft or
Linux operating systems; create VMs; connect to a Windows/Linux VM; deploy
workloads; deploy Bring Your Own License (BYOL) images
·
Perform
configuration management
o
Automate
configuration management by using PowerShell Desired State Configuration (DSC)
and VM Agent (custom script extensions); enable remote debugging
·
Design
and implement VM storage
o
Configure
disk caching; plan storage capacity; configure operating system disk
redundancy; configure shared storage using Azure File service; configure Azure
File Share snapshots; configure geo-replication; encrypt disks; implement ARM
VMs with Standard and Premium Storage; configure Blob-Level Tiering (Hot, Cool,
Archive); manage storage encryption keys
·
Monitor
ARM VMs
o
Configure
ARM VM monitoring; configure alerts; configure diagnostic and monitoring
storage location
·
Manage
ARM VM availability
o
Configure
multiple ARM VMs in an availability set for redundancy; configure each
application tier into separate availability sets; combine the Load Balancer
with availability sets; configure fault domains and update domains; leverage
Availability Zones
·
Scale
ARM VMs
o
Scale
up and scale down VM sizes; deploy ARM VM Scale Sets (VMSS); configure ARM VMSS
auto-scale
·
Manage
Containers with Azure Container Services (AKS)
o
Deploy
a Kubernetes cluster in AKS; create and manage container images; scale
applications using Docker, DC/OS, Swarm, or Kubernetes; configure for
open-source tooling; migrate container workloads to and from Azure; monitor
Kubernetes by using Microsoft Operations Management Suite (OMS); implement
Azure Container Registry
Question Cover for
Certification (15-20%)
·
Deploy
Web Apps
o
Define
deployment slots; roll back deployments; implement pre- and post-deployment
actions; create, configure, and deploy packages; create App Service plans;
migrate Web Apps between App Service plans; create an app within an App Service
plan; determine when to use App Service Environment (ASE); select and use
appropriate deployment methods including Git, FTP, and cloud sync
·
Configure
Apps
o
Define
and use app settings, connection strings, handlers, and virtual directories;
configure certificates and custom domains; configure SSL bindings and runtime
configurations; manage Apps by using Azure PowerShell and Azure-CLI; manage App
Service backups; configure authentication and authorisation for apps; configure
app notifications
·
Configure
diagnostics, monitoring and analytics
o
Retrieve
diagnostics data; view streaming logs; configure endpoint monitoring; configure
alerts; configure diagnostics; use remote debugging; monitor Web App resources;
use Microsoft Operations Management Suite (OMS) workspaces
·
Configure
Web Apps for scale and resilience
o
Configure
auto-scale using built-in and custom schedules; configure by metric; change the
size of an instance; configure Azure Traffic Manager
Question Cover
for Certification (20-25%)
- Configure virtual networks
- Deploy a VM into a virtual
network; configure external and internal load balancing; implement
Application Gateway; design subnets; configure static, public, and
private IP addresses; set up Network Security Groups (NSGs), DNS at the
virtual network level, HTTP and TCP health probes, public IPs, User
Defined Routes (UDRs), firewall rules, and direct server return; connect
VNets by virtual network peering; configure VMs using a configuration
management tool such as Puppet or Chef
- Design and implement multi-site
or hybrid network connectivity
- Choose the appropriate
solution between Azure ExpressRoute, site-to-site, and point-to-site;
choose the appropriate gateway; identify supported devices and software
VPN solutions; identify networking prerequisites; configure virtual
networks and multi-site virtual networks; implement virtual network
peering and service chaining; implement hybrid connections to access
on-premises data sources, leverage S2S VPNs to connect to on-premises
infrastructure; monitor ExpressRoute
- Configure ARM VM networking
- Configure static IP addresses,
Network Security Groups (NSGs), DNS, User Defined Routes (UDRs), external
and internal load balancing with HTTP and TCP health probes, public IPs,
firewall rules, and direct server return; design and implement
Application Gateway; configure Accelerated Networking; configure virtual
network service endpoints
- Design and implement a
connection strategy
- Implement Hybrid Connections
to access data sources on-premises; leverage S2S VPN to connect to an
on-premises infrastructure
Question Cover
for Certification (25-30%)
·
Manage
data protection and security compliance
o
Create
and import encryption keys with Key Vault; automate tasks for SSL/TLS
certificates; prevent and respond to security threats with Azure Security
Center; Configure single sign-on with SaaS applications using federation and
password based authentication; add users and groups to applications; revoke
access to SaaS applications; configure access; configure federation with public
consumer identity providers such as Facebook and Google
·
Implement
recovery services
o
Create
a backup vault; deploy a backup agent; backup and restore data, use snapshots
and Geo-replication for recovery; Implement DR as service; Deploy Azure Site
Recovery (ASR) agent, configure ASR; configure ASR one-click failover .
Question Cover for
Certification (15-20%)
· Monitor
on-premises identity infrastructure and synchronization services with Azure AD
Connect Health
- Monitor AD FS proxy and web
application proxy servers; setup email notifications for critical alerts;
generate utilisation reports; monitor Sync Engine; monitor domain
controllers; monitor replication
·
Manage domains with Azure Active Directory Domain Services
- Join Azure virtual machines to
a domain, securely administer domain-joined virtual machines by using
Group Policy; migrate on-premises apps to Azure; handle traditional
directory-aware apps along with SaaS apps
·
Integrate with Azure Active Directory (Azure AD)
- Implement Azure AD Connect and
single sign-on with on-premises Windows Server 2016; add custom domains;
monitor Azure AD; configure MFA; configure Windows 10 with Azure AD join;
implement Enterprise State Roaming, implement Azure AD integration in web
and desktop applications; leverage Microsoft Graph API; implement Azure
Managed Service Identity; implement Privileged Identity Management,
implement Azure AD Identity Management, enable self-service password reset.
Question
Cover for Certification (10-15%)
·
Implement Azure Storage blobs and
Azure Files
o
Identify appropriate blob type for
specific storage requirements; read data; change data; set metadata on a
container; store data using block and page blobs; stream data using blobs;
access blobs securely; implement async blob copy; configure Content Delivery
Network (CDN); design blob hierarchies; configure custom domains; scale blob
storage; manage SMB file storage; implement Azure StorSimple
·
Manage access
o
Create and manage shared access
signatures; use stored access policies; regenerate keys; encrypt keys by using
Azure Key Vault integration
·
Configure diagnostics, monitoring
and analytics
o
Set retention policies and logging
levels; access, add, and remove logs; analyse logs
·
Implement storage encryption
o
Encrypt data as written to Azure
Storage by using Azure Storage Service Encryption (SSE); implement encrypted
and role-based security for data managed by Azure Data Lake Store
No comments:
Post a Comment