AZ-801 Sample Questions Answers

You are evaluating the technical requirements tor Cluster2.

What is the minimum number of Azure Site Recovery Providers that you should install?

You need to back up Server 4 to meet the technical requirements.

What should you do first?

You need to configure BitLocker on Server4.

On which volumes can you turn on BitLocker, and on which volumes can you turn on auto-unlock? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

You need to meet technical requirements for Share1.

What should you use?

What is the effective minimum password length for User1 and Admin1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com. Contoso.com contains a member server named Server1 .contoso.com.

You cannot resolve the FQDN of server1.contoso.com.

You verify that Windows Defender Firewall is configured correctly and that you can ping server1.contoso.com successfully by using the server's IP address.

You need to validate that the DNS record for server1.contoso.com exists.

Which command should you run?

Your on-premises network is connected to Azure.

You have an Azure subscription. The subscription contains a virtual machine named VM1 that runs Windows Server.

You need to identify the latency between the on-premises network and VM1.

Which Azure Network Watcher settings should you use?

You need to meet the technical requirements for Cluster3.

What should you include in the solution?

Your on-premises network contains an Active Directory Domain Services (AD DS) domain.

The domain contains four servers named Server1, Server2. Server3. and Server4 that run Windows Server.

You configure the connection security rules shown in the following table.

Server4 does NOT have any connection security rules applied.

With which servers can Server1 and Server2 establish communication after the connection security rules are applied? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You need to implement alerts for the domain controllers. The solution must meet the technical requirements.

What should you do on the domain controllers, and what should you create on Azure? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You have an Azure subscription. The subscription contains two virtual machines named VM1 and VM2 that run Windows Server. You need to use Azure Network Watcher to meet the following requirements;

• Identify security rules that prevent network traffic from reaching VM1.

• Identify the source region of packets sent to VM2.

What should you use for each requirement? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You need to meet the technical requirements for Cluster2.

Which four actions should you perform in sequence before you can enable replication? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

You have an on-premises Hyper- V deployment that hosts multiple virtual machines. You have an Azure subscription that contains an Azure Migrate project named Project1. You plan to migrate the virtual machines to Azure by using Project1.

You need to discover all the Hyper-V hosts and virtual machines running in your environment. The solution must minimize administrative effort. What should you do first?

You have an on-premises server named Server1 and Microsoft Sentinel instance.

You plan to collect windows Defender Firewall events from Sever1 and analyze the event data by using Microsoft Sentinel.

What should you install on Server1, and which information should you provide during the instance? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Your network contains an Active Directory Domain Services (AD DS) domain that has the Active Directory Recycle Bin enabled. The domain contains two domain controllers named DC1 and DC2. The system state of the domain controllers is backed up daily at 23:00 by using Windows Server Backup.

You have an organizational unit (OU) named ParisUsers that contains 1,000 users.

At 08:00, DC1 shuts down for hardware maintenance. The maintenance completes, but DC1 remains shut down.

At 09:00, an administrative error causes the manager attribute of each user in ParisUsers to be deleted.

You need to recover the user account details as quickly as possible. The solution must minimize data loss.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

You have an on-premises server named Server1 that runs Windows Server, has the Web Server (IIS) server role installed, and hosts an ASP.NET-based web app named App1.

You have an Azure subscription that contains an Azure App Service app and an Azure container registry named ACR1.

You plan to migrate App1 to an App Service container by using Azure Migrate. The container image for App1 will be stored in ACR1.

You need to ensure that the App Containerization tool can store the container for App1 in ACR1. The solution must follow the principle of least privilege.

Which credential should the App Containerization tool use?

You have three Hyper-V hosts named Server 1, Server2, and Server 3 that run Windows Server Server1 hosts a virtual machine named VM1.

You enable Hyper-V Replica to replicate VM1 to Server2 and set the replication frequency to 30 seconds.

You need to extend the replication and create a second replica of VM1.

On which Hyper-V hosts can you configure the replication, and what is the minimum replication frequency you can use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You have a Site-to-Site VPN between an on-premises network and an Azure VPN gateway. BGP is disabled for the Site-to-Site VPN.

You have an Azure virtual network named Vnet1 that contains a subnet named Subnet1. Subnet1 contains a virtual machine named Server1.

You can connect to Server1 from the on-premises network.

You extend the address space of Vnet1. You add a subnet named Subnet2 to Vnet1. Subnet2 uses the extended address space. You deploy an Azure virtual machine named Server2 to Subnet2.

You cannot connect to Server2 from the on-premises network. Server1 can connect to Server2.

You need to ensure that you can connect to Subnet2 from the on-premises network.

What should you do?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a server named Server1 that runs Windows Server.

You need to ensure that only specific applications can modify the data in protected folders on Server1.

Solution: From Virus & threat protection, you configure Controlled folder access.

Does this meet the goal?

You have an Azure virtual machine named VM1 that runs Windows Server. You need to perform the following tasks on VM1:

• Configure Windows Defender Firewall to allow Remote Desktop connections.

• Configure where to store the logs of the virtual machine console.

Which two settings should you use? To answer, select the settings in the answer area. NOTE: Each correct selection is worth one point.

You have a Windows Server 2022 Remote Desktop Services deployment that includes the servers shown in the following table.

You need to upgrade Remote Desktop Services deployment to Windows Server 2025.

Which server must you upgrade first?

You have a server named Server1 that runs Windows Server. You install System Insights on Server 1.

You need to modify the schedule for storage consumption forecasting. What should you use?

Your company uses Storage Spaces Direct.

You need to view the available storage in a Storage Space Direct storage pool.

What should you use?

Your on-premises network contains an Active Directory Domain Services (AD DS) domain. The domain contains five servers that run Windows Server. The network also contains two workgroup servers that run Windows Server.

You need to implement a connection security rule between the member servers and the workgroup servers.

Which authentication method should you use?

You are planning the data share migration to support the on-premises migration plan.

What should you use to perform the migration?

You are remediating the firewall security risks to meet the security requirements.

What should you configure to reduce the risks?

You need to implement a security policy solution to authorize the applications. The solution must meet the security requirements.

Which service should you use to enforce the security policy, and what should you use to manage the policy settings? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You are planning the europe.fabrikam.com migration to support the on-premises migration plan-Where should you install the Password Export Server (PES) service, where should you generate the encryption key? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You are planning the deployment of Microsoft Sentinel.

Which type of Microsoft Sentinel data connector should you use to meet the security requirements?

You are planning the DHCP1 migration to support the DHCP migration plan.

Which two PowerShell cmdlets should you run on DHCP1, and which two PowerShell cmdlets should you run on DHCP2? To answer, drag the appropriate cmdlets to the correct servers. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

You are planning the migration of Archive1 to support the on-premises migration plan.

What is the minimum number of IP addresses required for the node and cluster roles on Cluster3?

You are planning the implementation of Cluster2 to support the on-premises migration plan.

You need to ensure that the disks on Cluster2 meet the security requirements.

In which order should you perform the actions? To answer, move all actions from the list of actions to the answer area and arrange them in the correct order.

You are planning the migration of APP3 and APP4 to support the Azure migration plan.

What should you do on Cluster1 and in Azure before you perform the migration? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You are planning the www.fabrikam.com website migration to support the Azure migration plan.

How should you configure WebApp1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.