AZ-204 Study Guide (Free Practice Test & Detailed Explanation)

AZ-204 Developing Solutions for Microsoft Azure Certificate Study Guide

The Exam AZ-204 Developing Solutions for Microsoft Azure replaces the older AZ-203 exam. If you haven’t read about the exam changes and how they will impact your certification journey, read here

This post contains a curated list of articles from Microsoft documentation for each objective of the AZ-204 Azure Developer exam. They should assist you in achieving Microsoft Azure Developer Associate Certification. Please share the post within your circles, so it helps them to prepare for the exam.

Exam Voucher for AZ-204 with 1 Retake

Get 40% OFF with the combo

AZ-204 Developing Solutions for Azure Course

AZ-204 Azure Developer Practice Tests & Labs

Azure Developer Learning Materials (AZ-204)

Looking for AZ-204 Dumps? Read This!

Using az-204 exam dumps can get you permanently banned from taking any future Microsoft certificate exam. Read the FAQ page for more information. However, I strongly suggest you validate your understanding with practice questions.

To view other Azure certificate study guides, click here

Full Disclosure: Some of the links in this post are affiliate links. I receive a commission when you purchase through them.

Develop Azure Compute Solutions (25-30%)

Implement IaaS solutions

You have to deploy a microservice-based application to the Azure Kubernetes cluster. The solution has the following requirements:

  • Reverse proxy capabilities
  • The ability to configure traffic routing, and,
  • Termination of TLS with a custom certificate

Which of the following would you use to implement a single public IP endpoint to route traffic to multiple microservices?

a. Helm

b. Brigade

c. Kubectl

d. Ingress Controller

e. Virtual Kubelet

Explanation: First, you need to know that an Ingress is an object that manages external access to services in a cluster.

One of the main reasons to use an ingress controller is that by using a single IP address, you can route traffic to multiple services in a Kubernetes cluster.

The documentation mentions that an ingress controller is a piece of software that provides reverse proxy, configurable traffic routing, and TLS termination for Kubernetes services, all of which are a requirement in the question.

AZ-204 preparation: Azure Kubernetes Serice 0 Ingress Controller

So, option d is the correct choice.

Reference Link: https://docs.microsoft.com/en-us/azure/aks/ingress-basic

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Publish an image to the Azure Container Registry

Push image to Azure Container Registry

Run containers by using Azure Container Instance

Deploy a container application to Azure Container Instances

Create Azure App Service Web Apps

Create an Azure App Service Web App

Create an ASP.NET Core web app in Azure

A company has a web application deployed using the Azure Web App service. The current service plan being used is D1.

It needs to ensure that the application infrastructure can automatically scale when the CPU load reaches 85%. You also have to ensure costs are minimized.

Which of the following steps would you implement to achieve the requirements? Choose 4 answers from the options given below:

a. Enable autoscaling on the Web application.

b. Configure a scale condition.

c. Configure the web application to use the Standard App Service Plan.

d. Configure the web application to use the Premium App Service Plan.

e. Add a scale rule.

Explanation: Well, the app service plan D1 is only for the shared infrastructure and so contains only a limited number of features. For the D1 plan, autoscaling is not supported. So, the application cannot scale automatically when the CPU load reaches 85%.

Azure App Service Plan

To enable autoscaling, you need to upgrade the app service plan tier. Plans like B1, B2, and B3 enable you to scale manually but not automatically.

Azure App Service Plan B2,B3,B1

Autoscaling is only available for the standard and the premium plans.

Azure App Service Plan Autoscaling Premium plans

So, these are the following steps to implement:

  1. First, we need to configure the web application to use the standard app service plan. Note that the premium app service plan works too, but since we need to ensure that costs are minimized too, option d is incorrect.
  2. And, since we need to select a total of 4 options, all the other 3 options must be selected to achieve the requirement.

Reference Link: https://docs.microsoft.com/en-us/azure/app-service/overview-hosting-plans

https://docs.microsoft.com/en-us/azure/app-service/manage-scale-up

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

You deploy a web application to Azure with App Service on Linux. You then publish a custom docker image to the Azure Web App.

Suppose you need to access the console logs generated from the container in real-time. Which of the following would go into Slot 1 in this Azure CLI script?

a. config

b. download

c. show

d. tail

Explanation: To configure logging, we use the az webapp log config command. Option a is the correct choice.

You can easily ignore the other options as it is evident from their names that:

download downloads a web app’s log history as a zip file,

show gets the details of a web app’s logging configuration and,

tail starts live log tracing for a web app.

Reference Link: https://docs.microsoft.com/en-us/cli/azure/webapp/log#az-webapp-log-config

This question is part of the free Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Implement autoscaling rules, including scheduled autoscaling, and autoscaling by operational or system metrics

Azure App Service Autoscaling rules

Scheduled Autoscaling & scaling by operational or system metrics

Also, review the common autoscale patterns

az-204 Exam details & Tips

Implement Azure Functions

Create and deploy Azure Functions apps

Create a function app

Deploy a function app to Azure Functions

Implement input and output bindings for a function

Azure Functions triggers and bindings concepts

You develop an Azure Function that performs the following activities:

  • Read messages from an Azure Storage Queue, and,
  • Process the messages and add entities to Azure Table Storage

AZ-204 preparation: Azure function trigger

You have to define the correct bindings in this function.json file.

{
"bindings": [
{
"type": "queueTrigger",
"direction": slot1 ,
"name": "my-orders",
"queueName": "queue-items",
"connection": "STORAGE_APP_SETTING"
},
{
"type": "table",
"direction": slot2 ,
"name": slot3 ,
"tableName": "out-table",
"connection": "TABLE_APP_SETTING"
}
]
}

Which of the following would go into Slot 1?

Explanation: Since we need to read messages from the Azure Storage Queue, an Azure Queue Storage trigger is defined as the first element in the binding array.

And since we need to process and add entities to Azure table storage, the second element in the array defines the Azure Table Storage output binding.

So, the binding direction will be out (slot 2) for the 2nd item in the array since it is an output binding. And the binding direction for triggers (slot 1) is always in.

Option a is the correct choice.

Reference Link: https://docs.microsoft.com/en-us/azure/azure-functions/functions-bindings-example

https://docs.microsoft.com/en-us/azure/azure-functions/functions-triggers-bindings?tabs=csharp#binding-direction

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Implement function triggers by using data operations, timers, and webhooks

Timer trigger for Azure Functions

Create an Azure function triggered by a webhook

Implement Azure Durable Functions

Create Durable Functions using the Azure portal

Implement custom handlers

Azure Functions custom handlers

Develop for Azure Storage (15-20%)

Develop Solutions That Use Cosmos DB Storage

Azure certification Frequently Asked Questions

Develop Solutions That Use Blob Storage

Move items in blob storage between storage accounts or containers

Moving Azure storage blobs using CLI

You have to implement the azcopy tool to copy objects from a local folder named ‘Contoso’ in the ‘D’ drive to a container named ‘demo’ in a storage account.

And, the azcopy command is given which copies all the objects in the local folder.

azcopy copy slot1 slot2/?sv=2018-03-28&
amp;ss=bjqt&srt=sco&sp=rwddgcup&se=
2019-05-01T05:01:17Z&st=2019-04-30T
21:01:17Z&spr=https&sig=MGCXiyEzbtttk
r3ewJIh2AR8KrghSy1DGM9ovN734bQF4%
3D"
--recursive=false

Which of the following would go into Slot2?

a. contoso.blob.core.windows.net/demo

b. contoso.blob.windows.net/demo

c. D:\contoso

d. contoso

Explanation: To copy objects with the azcopy tool, use the azcopy command with the copy keyword. Then comes the local directory from where the objects need to be copied. Next comes the destination URL of the target container in the storage account.

Clearly options c and d are incorrect. Option a is the correct answer as the correct URL for a storage account will be in the format <name>.blob.core.windows.net. And, ‘demo’ is the name of the container.

The characters that you see after the container name are for the SAS token.

Reference Link: https://docs.microsoft.com/en-us/azure/storage/common/storage-use-azcopy-v10#option-2-use-a-sas-token

This question is part of the free Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Set and retrieve properties and metadata

Setting properties & metadata during the import process

Perform operations on data by using the appropriate SDK

Azure Blob storage client library v12 for .NET

Implement storage policies, and data archiving and retention

Manage immutability policies for Blob storage

Add or remove a policy

Archive access tier

Set retention policies

Exam reference az-204 certificate exam

Amazon link (affiliate)

Implement Azure Security (20-25%)

Implement User Authentication and Authorization

You build a web application that’s deployed to Azure. The application would not allow anonymous access and the authentication would be carried out via Azure AD. Further, the application needs to abide by the following requirements:
  • Users must be able to log into the web application using their Azure AD credentials
  • The personalization of the web application must be based on the membership in Active Directory groups
{
'appId' : 'ad1403a-dfb-48d03-b15-e622s3le31'
slot1 : 'all'
slot2 : true
}
You have to configure the application manifest file. Which of the following would go into Slot 2?a. allowPublicClient b. oauth2Permissions c. requiredResourceAccess d. oauth2AllowImplicitFlow

Explanation: First, see the below application manifest file which sometimes you would edit to configure the attributes of an application in Azure Active Directory.

AZ-204 preparation: Application Manifest file in Azure AD

All the applications contain something called appID which is nothing but the application ID or the Client ID.

AZ-204 preparation: Application ID & Client ID in Azure AD

From the question, it is evident that the attribute (in slot2) will have a value of type Boolean.

Now, to meet the requirements in the question, you would set the value of the attribute ‘oauth2AllowImplicitFlow’ to True.

AZ-204 preparation: Azure AD OAuth2 Implicit flow

This attribute specifies whether a web app can request OAuth2.0 implicit flow access tokens for browser-based apps, like single-page apps.

So, option d perfectly fits what’s asked in the question.

Options oauth2Permissions and requiredResourceAccess represent a value of type Collections so you can easily ignore them.

AZ-204 preparation: Oauth2 permissions in Azure AD

Reference Link: https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifest

https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifest#oauth2permissions-attribute

https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-app-manifest#requiredresourceaccess-attribute

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Create and implement shared access signatures

Grant limited access to Azure Storage resources using SAS

Implement Secure Cloud Solutions

You develop an ASP.Net Core application that works with blobs in an Azure storage account. The application authenticates via Azure AD credentials.

ASP.NET Core authenticate Storage account

Role-based access has been implemented on the containers that contain the blobs. These roles have been assigned to the users.

You have to configure the application so that the user’s permissions can be used with the Azure Blob containers.

Which of the following would you use as the Permission for the Microsoft Graph API?

a. User.Read

b. User.Write

c. client_id

d. user_impersonation

Explanation: First, log in to the Azure portal and create a new app registration in Azure Active Directory for the ASP.Net Core application.

Click ‘App registrations’ and then click ‘New registration.’ Enter a name for your app and then click ‘Register’ to create the app.

Azure AD App registration

If you check the API permissions for the app, by default, the registered Azure AD application has access to the Microsoft Graph API.

Azure AD API Permissions

And the permission used by the app for accessing Microsoft Graph API is User.Read. So, option a is the right choice.

Reference Link:

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Monitor, Troubleshoot, and Optimize Azure Solutions (15-20%)

Integrate Caching and Content Delivery within Solutions

Configure cache and expiration policies

Configure cache and expiration policy for Azure CDNs

Configure cache and expiration policies for Azure Redis Cache

Setting an expiration value on keys

EXPIRE key seconds

EXPIREAT key timestamp

How to configure Azure Cache for Redis

Implement secure and optimized application cache patterns including data sizing, connections, encryption, and expiration

Common cache patterns with Azure Redis Cache

Cache-Aside pattern

Sharding pattern

Caching guidance

Instrument Solutions to Support Monitoring and Logging

A developer needs to enable the Application Insights Profiler for Azure Web App. Which of the following feature is a prerequisite to enable the Profiler?

a. CORS configuration

b. Always On setting

c. Enable Identity

d. Enable Custom domains

Explanation: Azure Application Insights Profiler provides performance traces for applications that are running in production in Azure.

Enabling Identity is part of Azure Active Directory and is not related to Application Insights Profiler.

Custom domains are a feature to access any Azure URI by a different or a customized URI. Hence this is not related to Application Insights Profiler.

Cross-origin resource sharing (or CORS) defines a way for web applications in 1 domain to interact with resources in another domain. CORS will not help in enabling Application Insights Profiler.

To enable Application Insights Profiler for a web App, the correct prerequisite is to enable ‘Always On.’

Application Insights Profiler

This is required because if a web app is idle for too long, Azure App Service unloads the website, and it only loads the website again when the traffic returns. By enabling ‘Always On’, you keep the Web App up and running all the time.

Reference Link: https://docs.microsoft.com/en-us/azure/azure-monitor/app/profiler

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Analyze and troubleshoot solutions by using Azure Monitor

Troubleshoot solutions by using Azure Monitor

Troubleshoot an App Service app with Azure Monitor

Implement Application Insights web tests and alerts

Creating an Application Insights web test & alert programmatically

Connect to and Consume Azure services and Third-party Services (15-20%)

Implement API Management

Develop Event-based Solutions

Implement solutions that use Azure Event Grid

Automate resizing uploaded images using Event Grid

Implement solutions that use Azure Notification Hubs

Send notifications to UWP apps using Azure Notification Hubs

Implement solutions that use Azure Event Hub

Visualize data anomalies in real-time events in Azure Event Hubs

A company is building a traffic monitoring system. The system monitors the traffic along 4 highways, and responsible for producing a time series-based report for each highway.

The traffic sensors on each highway have been configured to send their data to Azure Event Hubs. The data from Event Hubs is then consumed by three departments. Each department makes use of an Azure Web App to display the data.

You have to implement the Azure Event Hub instance and ensure that data throughput is maximized and latency is minimized.

Which of the following would you use as the partition key?

a. Highway

b. Department

c. Timestamp

d. Datestamp

Explanation: The scenario in the question is best understood with the help of the diagram below:

Azure Event Hub Traffic Monitoring System

Since the data comes in for each highway, the highway represented by probably a highway number would be ideal for the partition key.

The other options are incorrect since they would not provide ideal values for the distribution of data across the partitions.

Reference Link: https://docs.microsoft.com/en-us/azure/event-hubs/event-hubs-features#partitions

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Develop Message-based Solutions

Implement solutions that use Azure Service Bus

Azure PowerShell to create a Service Bus namespace & a queue

You develop an application that makes use of Azure Service Bus. You create filters based on different types of subscribers that would subscribe to the topic.

Which of the following would you use as the filter condition for the requirement?

“Subscribers should be able to receive all messages being sent to the topic”

a. Boolean filters

b. Primary filters

c. SQL filters

d. Correlation filters

Explanation: Well, Azure Service Bus supports 3 different filter conditions: They are:

  • Boolean filters
  • SQL filters, and,
  • Correlation filters.

Correlation filters have a set of conditions that are matched against the arriving messages.

SQL filter holds a SQL-like conditional expression that’s evaluated against the incoming messages.

Boolean filters cause either all or none of the arriving messages to be selected for the subscription.

Since the question mentions that we need to receive all messages sent to the topic, a Boolean filter would be more suitable.

Option a is the correct choice

Reference Link: https://docs.microsoft.com/en-us/azure/service-bus-messaging/topic-filters#filters

This question is part of the free AZ-204 Whizlabs practice test. My detailed explanation (with demo) is given on my YouTube channel as well!

Implement solutions that use Azure Queue Storage queues

Work with Azure storage queues in .NET

This brings us to the end of the AZ-204 Developing Solutions For Microsoft Azure Study Guide.

What do you think? Let me know in the comments section if I have missed out on anything. Also, I love to hear from you about how your preparation is going on!

In case you are looking for other Azure certification exams, check out this page.

Follow Me to Receive Updates on AZ-204 Exam

Want to be notified as soon as I post? Subscribe to RSS feed / leave your email address in the subscribe section. Share the article to your social networks with the below links so it can benefit others.

Share the AZ-204 Study Guide in Your Network

  •  
  • 4
  • 1
  • 2
  •  
  •  
    7
    Shares

You may also like