Free Microsoft AZ-700 Exam Questions

You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com. The subscription contains the following resources: * An Azure App Service app named App1 * An Azure DNS zone named contoso.com * An Azure private DNS zone named private.contoso.com * A virtual network named Vnet1 You create a private endpoint for App1. The record for the endpoint is registered automatically in Azure DNS. You need to provide a developer with the name that is registered in Azure DNS for the private endpoint. What should you provide?

You have an Azure subscription that contains a user named Admin1 and a resource group named RG1. RG1 contains an Azure Network Watcher instance named NW1. You need to ensure that Admin1 can place a lock on NW1. The solution must use the principle of least privilege. Which role should you assign to Admin1?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure application gateway that has Azure Web Application Firewall (WAF) enabled. You configure the application gateway to direct traffic to the URL of the application gateway. You attempt to access the URL and receive an HTTP 403 error. You view the diagnostics log and discover the following error.You need to ensure that the URL is accessible through the application gateway. Solution: You add a rewrite rule for the host header. Does this meet the goal? 

You have an Azure application gateway for a web app named App1. The application gateway allows end-toend encryption. You configure the listener for HTTPS by uploading an enterprise signed certificate. You need to ensure that the application gateway can provide end-to-end encryption for App1. What should you do? 

Your on-premises network contains a DNS server named Server 1. You have an Azure subscription that contains the resources shown in the following table.The on-premises network is connected to VNet1 by using a Site-to-Site (S2S) VPN. You need to ensure that Server1 can resolve the DNS name of storage1. The solution must minimize costs and administrative effort. What should you use?