2016年3月10日時点で、70-534試験は更新を反映しています。
70-534試験は、サポートが終了したテクノロジとプロセスおよび新しいテクノロジとプロセスの両方を反映して定期的に更新されます。
70-534試験は、Microsoft Azure ソリューションに関する自分の設計スキルを検証したい方を対象としています。
Microsoft Azure 環境は常に進化しています。
順調に70-534認定試験に合格したいなら、Passexamはあなたの唯一の選択です。
Passexamの70-534問題集の合格率が100%に達することも数え切れない受験生に証明された事実です。
Passexamは豊富な知識と経験を活かして最新の短期で成果を取る70-534トレーニング方法を研究しました。
70-534認定試験情報:
試験番号:70-534
試験名称:Microsoft Azure ソリューションのアーキテクチャ
配信開始: 2015 年 2 月 26 日
言語: 英語
対象者:IT プロフェッショナル
テクノロジ: Microsoft Azure
対応資格: MCP、Microsoft スペシャリスト
受験料:19000円
70-534試験の受験者は、Azure サービスの機能を理解しており、パブリックやハイブリッドのクラウド ソリューションの設計について、トレードオフを特定して決定できる必要があります。
Exam 70-532: Developing Microsoft Azure Solutions およびExam 70-533:Implementing Microsoft Azure Infrastructure Solutions は、クラウド プロジェクト全般の自分の実装経験を検証したい人に有用ですが、70-534試験の前提条件ではありません。
70-534問題と回答の調査によると、Passexamは効果的なMicrosoft Specialist: Microsoft Azure認定70-534試験の内容をキャプチャすることができます。
70-534(Microsoft Azure ソリューションのアーキテクチャ)試験の準備をするときに試験に関連する知識を学ぶのは必要です。
弊社のMCSD: Azure Solutions Architect 70-534試験のテキストを使用すれば、業務には直接必要のない知識もありますが、知識は広い方がいいと思います。
70-534問題と答えをご参照ください。
1.Topic 1, VanArsdel, Ltd
Overview
VanArsdel, Ltd. builds skyscrapers, subways, and bridges. VanArsdel is a leader in using technology to do
construction better.
Overview
VanArsdel employees are able to use their own mobile devices for work activities because the company
recognizes that this usage enables employee productivity. Employees also access Software as a Service
(SaaS) applications, including DocuSign, Dropbox, and Citrix. The company continues to evaluate and
adopt more SaaS applications for its business. VanArsdel uses Azure Active Directory (AD) to
authenticate its employees, as well as Multi-Factor Authentication (MFA). Management enjoys the ease
with which MFA can be enabled and disabled for employees who use cloud-based services. VanArsdel’s
on-premises directory contains a single forest.
Helpdesk:
VanArsdel creates a helpdesk group to assist its employees. The company sends email messages to all
its employees about the helpdesk group and how to contact it. Configuring employee access for SaaS
applications is often a time-consuming task. It is not always obvious to the helpdesk group which users
should be given access to which SaaS applications. The helpdesk group must respond to many phone
calls and email messages to solve this problem, which takes up valuable time. The helpdesk group is
unable to meet the needs of VanArsdel’s employees.
However, many employees do not work with the helpdesk group to solve their access problems. Instead,
these employees contact their co-workers or managers to find someone who can help them. Also, new
employees are not always told to contact the helpdesk group for access problems. Some employees
report that they cannot see all the applications in the Access Panel that they have access to. Some
employees report that they must re-enter their passwords when they access cloud applications, even
though they have already authenticated.
Bring your own device (BYOD):
VanArsdel wants to continue to support users and their mobile and personal devices, but the company is
concerned about how to protect corporate assets that are stored on these devices. The company does
not have a strategy to ensure that its data is removed from the devices when employees leave the
company.
Customer Support
VanArsdel wants a mobile app for customer profile registration and feedback. The company would like to
keep track of all its previous, current, and future customers worldwide. A profile system using third-party
authentication is required as well as feedback and support sections for the mobile app.
Migration:
VanArsdel plans to migrate several virtual machine (VM) workloads into Azure. They also plan to extend
their on-premises Active Directory into Azure for mobile app authentication.
Business Requirements
Hybrid Solution:
A single account and credentials for both on-premises and cloud applications
Certain applications that are hosted both in Azure and on-site must be accessible to
both VanArsdel employees and partners
The service level agreement (SLA) for the solution requires an uptime of 99.9%
The partners all use Hotmail.com email addresses
Mobile App:
VanArsdel requires a mobile app for project managers on construction job sites. The mobile app has the
following requirements:
The app must display partner information.
The app must alert project managers when changes to the partner information occur.
The app must display project information including an image gallery to view pictures of
construction projects.
Project managers must be able to access the information remotely and securely.
Security:
VanArsdel must control access to its resources to ensure sensitive services and
information are accessible only by authorized users and/or managed devices.
Employees must be able to securely share data, based on corporate policies, with other
VanArsdel employees and with partners who are located on construction job sites.
VanArsdel management does NOT want to create and manage user accounts for
partners.
Technical Requirements
Architecture:
VanArsdel requires a non-centralized stateless architecture fonts data and services
where application, data, and computing power are at the logical extremes of the network.
VanArsdel requires separation of CPU storage and SQL services
Data Storage:
VanArsdel needs a solution to reduce the number of operations on the contractor information table.
Currently, data transfer rates are excessive, and queue length for read/write operations affects
performance.
A mobile service that is used to access contractor information must have automatically
scalable, structured storage
Images must be stored in an automatically scalable, unstructured form.
Mobile Apps:
VanArsdel mobile app must authenticate employees to the company’s Active Directory.
Event-triggered alerts must be pushed to mobile apps by using a custom Node.js script.
The customer support app should use an identity provider that is configured by using
the Access Control Service for current profile registration and authentication.
The customer support team will adopt future identity providers that are configured
through Access Control Service.
Security:
Active Directory Federated Server (AD FS) will be used to extend AD into Azure.
Helpdesk administrators must have access to only the groups of Azure resources they
are responsible for. Azure administration will be performed by a separate group.
IT administrative overhead must be minimized.
Permissions must be assigned by using Role Based Access Control (RBAC).
Line of business applications must be accessed securely.
You need to assign permissions for the Virtual Machine workloads that you migrate to Azure.
The solution must use the principal of least privileges.
What should you do?
A. Create all VMs in the cloud service named Groupl and then connect to the Azure subscription. Run the
following Windows PowerShell command:
New-AzureRoleAssignment -Mail user1@vanarsdelltd.com -RoleDefinitionName Contributor
-ResourceGroupName group1
B. In the Azure portal, select an individual virtual machine and add an owner.
C. In the Azure portal, assign read permission to the user at the subscription level.
D. Create each VM in a separate cloud service and then connect to the Azure subscription. Run the
following Windows PowerShell command:
Get-AzureVM | New-AzureRoleAssignment -Mail userl@vanarsdelltd.com -RoleDefinitionName
Contributor
Answer: A
Explanation:
* Scenario: Permissions must be assigned by using Role Based Access Control (RBAC).
* Role-Based access control (RBAC) in the Azure Portal and Azure Resource Management API allows
you to manage access to your subscription at a fine-grained level. With this feature, you can grant access
for Active Directory users, groups, or service principals by assigning some roles to them at a particular
scope.
Create a role assignment
Use New-AzureRoleAssignment to create a role assignment.
Example: This will create a role assignment for a group at a resource group level.
PS C:\> New-AzureRoleAssignment -ObjectID <group object ID> -RoleDefinitionName Reader
-ResourceGroupName group1
Reference: Managing Role-Based Access Control with Windows PowerShell
https://azure.microsoft.com/en-gb/documentation/articles/role-based-access-control-powershell/