[Free] 2019(Nov) EnsurePass Microsoft 70-532 Dumps with VCE and PDF 121-130

Get Full Version of the Exam

Question No.123

You have an existing classic virtual network.

You need to export the virtual network settings to an XML file to make modifications. Which Azure PowerShell cmdlet should you use?

  1. Get-AzureVNetSite

  2. Get-AzureVNetConnection

  3. Get-AzureVNetGateway

  4. Get-AzureVNetConfig

Correct Answer: D

Question No.124

You administer an Access Control Service namespace named contosoACS that is used by a web application. ContosoACS currently utilizes Microsoft and Yahoo accounts.

Several users in your organization have Google accounts and would like to access the web application through ContosoACS.

You need to allow users to access the application by using their Google accounts. What should you do?

  1. Register the application directly with Google.

  2. Edit the existing Microsoft Account identity provider and update the realm to include Google.

  3. Add a new Google identity provider.

  4. Add a new WS-Federation identity provider and configure the WS-Federation metadata to point to the Google sign-in URL.

Correct Answer: C


Configuring Google as an identity provider eliminates the need to create and manage authentication and identity management mechanism. It helps the end user experience if there are familiar authentication procedures.



Question No.125

You publish an application named MyApp to Azure Active Directory (Azure AD). You grant access to the web APIs through OAuth 2.0.

MyApp is generating numerous user consent prompts. You need to reduce the amount of user consent prompts. What should you do?

  1. Enable Multi-resource refresh tokens.

  2. Enable WS-federation access tokens.

  3. Configure the Open Web Interface for .NET.

  4. Configure SAML 2.0.

Correct Answer: A


When using the Authorization Code Grant Flow, you can configure the client to call multiple resources. Typically, this would require a call to the authorization endpoint for each target service. To avoid multiple calls and multiple user consent prompts, and reduce the number of refresh tokens the client needs to cache, Azure Active Directory (Azure AD) has implemented multi- resource refresh tokens. This feature allows you to use a single refresh token to request access tokens for multiple resources.

References: https://msdn.microsoft.com/en-us/library/azure/dn645538.aspx

Question No.126

You plan to use Password Sync on your DirSync Server with Azure Active Directory (Azure AD) on your company network. You configure the DirSync server and complete an initial synchronization of the users.

Several remote users are unable to log in to Office 365. You discover multiple event log entries for quot;Event ID 611 Password synchronization failed for domain.quot;

You need to resolve the password synchronization issue.

Which two actions should you perform? Each correct answer presents part of the solution.

  1. Restart Azure AD Sync Service.

  2. Run the Set-FullPasswordSync Power Shell cmdlet.

  3. Force a manual synchronization on the DirSync server.

  4. Add the DirSync service account to the Schema Admins domain group.

Correct Answer: AB


The Set-FullPasswordSync Power Shell cmdlet resets the password sync state information forcing a full sync the next time the service is restarted. Then we need to restart the service to initiate the sync.

Question No.127

You have an Azure subscription.

You create an Azure Active Directory (Azure AD) tenant named Tenant1. You plan to integrate Tenant1 and the on-premises Active Directory.

You need to create a user account that can be used to synchronize changes from the on- premises Active Directory. The solution must use the principle of least privilege.

Which organizational role should you assign to the user account?

  1. Service administrator

  2. Global administrator

  3. Password administrator

  4. User administrator

Correct Answer: B

Question No.128

How should you choose a good partition key for a Table storage implementation? (Choose two.)

  1. They should always be unique, like a primary key in a SQL table.

  2. You should always use the same partition key for all records.

  3. Think about how you#39;re likely to update the data using batch transactions.

  4. Find an even way to split them so that you have relatively even partition sizes.

Correct Answer: CD

Question No.129

Which of the following are valid options for scaling queues? (Choose three.)

  1. Distributing messages across multiple queues

  2. Automatically scaling websites based on queue metrics

  3. Automatically scaling VMs based on queue metrics

  4. Automatically scaling cloud services based on queue metrics

Correct Answer: ACD

Question No.130

Which of the following are valid options for processing queue messages? (Choose Two.)

  1. A single compute instance can process only one message at a time.

  2. A single compute instance can process up to 31 messages at a time.

  3. A single compute instance can retrieve up to 32 messages at a time.

  4. Messages can be read one at a time or in batches of up to 32 messages at a time.

  5. Messages are deleted as soon as they are read.

Correct Answer: CD

Question No.131

Which of the following is not true about metadata? (Choose TWO)

  1. Both containers and blobs have writable system properties.

  2. Blob user-defined metadata is accessed as a key value pair.

  3. System metadata can influence how the blog is stored and accessed in Azure Storage.

  4. Only blobs have metadata; containers do not.

Correct Answer: AD

Question No.132

Which metrics should you add to monitoring that will help you select the appropriate level of SQL Database? (Choose three)

  1. CPU Processor Count

  2. CPU Percentage

  3. Physical Data Reads Percentage

  4. Log Writes Percentage

Correct Answer: BCD

Get Full Version of the Exam
70-532 Dumps
70-532 VCE and PDF