AZ-300 Certificate Study Guide


Preparing for AZ-300 Azure Architect exam? Don’t know where to start? This post is the AZ-300 Certificate Study Guide (with links to each exam objective).

I have curated a list of articles from Microsoft documentation for each objective of AZ-103 exam. I hope this article will be your AZ-300 Certificate Study Guide.

Also, please share the post within your circles so it helps them to prepare for the exam.


Video Preparation Options (Check with a free trial):

Pluralsight (Check Role IQs, Skill IQs & individual courses for practice tests) Microsoft Azure Architect Technologies (AZ-300)
Udemy (paid option, includes 100+ practice tests) Exam AZ-300: Microsoft Azure Architect Technologies


Exam Reference books:

Amazon India Architecting Microsoft Azure Solutions
Other Countries Exam Ref AZ-300 Microsoft Azure Architect Technologies

The AZ-301 Exam Certificate Guide is here. To view other Azure certificate study guides, click here


Full disclosure: Some of the links in this post are affiliate links. I may earn some commission if you purchase through them. This way you can support my blog at not extra cost to you!


Here you go!


AZ-300 – Deploy and Configure Infrastructure:

Analyze resource utilization and consumption:

Configure diagnostic settings on resources

Create a baseline for resources (check with a free trial)

Create and test alerts

Analyze alerts across subscription

Analyze metrics across subscription

Create action groups

Monitor for unused resources

Monitor spend

Report on spend

Utilize Log Search query functions

View alerts in Azure Monitor logs


Create and configure storage accounts:

Configure network access to the storage account

Create the storage account

Configure the storage account

Generate shared access signature

Install and use Azure Storage Explorer

Manage access keys

Monitor activity log by using Azure Monitor logs

Implement Azure storage replication



Create and configure a Virtual Machine (VM) for Windows and Linux:

Configure high availability

Configure monitoring, networking, storage, and virtual machine size
deploy and configure scale sets





Scale set:


Automate deployment of Virtual Machines (VMs):

Modify Azure Resource Manager template

Configure the location of new VMs

Configure VHD template

Deploy from template

Save a deployment as an Azure Resource Manager template

Deploy Windows VMs

Deploy Linux VMs


Implement solutions that use virtual machines (VM):

Provision VMs

Create Azure Resource Manager templates

Configure Azure Disk Encryption for VMs


Create connectivity between virtual networks:

Create and configure VNET peering

Create and configure VNET to VNET

Verify virtual network connectivity

Create a virtual network gateway


Implement and manage virtual networking:

Configure public IP addresses

Configure private IP addresses

Configure network routes

Configure network interface

Configure subnets

Configure virtual network


Manage Azure Active Directory (AD):

Add custom domains

Configure Azure AD Identity Protection

Configure Azure AD Join

Configure Enterprise State Roaming

Configure self-service password reset

Implement conditional access policies

Manage multiple directories

Perform an access review



Implement and manage hybrid identities:

Install and configure Azure AD Connect

Configure federation and single sign-on

Manage Azure AD Connect

Manage password sync

Manage password writeback


AZ-300 – Implement Workloads and Security:

Migrate servers to Azure:

Migrate by using Azure Site Recovery

Migrate using P2V

Configure storage

Create a backup vault

Prepare source environment

Prepare target environment

Backup and restore data

Deploy Azure Site Recovery agent

Prepare virtual network


Configure serverless computing:

Manage a Logic App resource

Manage Azure Function app settings

Manage Event Grid

Manage Service Bus


Implement application load balancing:

Configure application gateway and load balancing rules

Implement front end IP configurations

Manage application load balancing


Integrate the on-premises network with Azure virtual network:

Create and configure Azure VPN Gateway

Create and configure site to site VPN

Configure Express Route

Verify on-premises connectivity

Manage on-premises connectivity with Azure


Manage role-based access control (RBAC):

Create a custom role

Configure access to Azure resources by assigning roles

Configure management access to Azure

Troubleshoot RBAC

Implement RBAC policies

Assign RBAC roles


Implement Multi-Factor Authentication (MFA):

Enable MFA for an Azure tenant

Configure user accounts for MFA

Configure fraud alerts

Configure bypass options

Configure trusted IPs

Configure verification methods


AZ-300 – Create and Deploy apps:

Create web apps by using PaaS:

Create an Azure App Service Web App

Create documentation for the API

Create an App Service Web App for containers

Create an App Service background task by using WebJobs

Enable diagnostics logging


Design and develop apps that run in containers:

Configure diagnostic settings on resources

Create a container image by using a Docker file

Create an Azure Kubernetes Service

Publish an image to the Azure Container Registry

Implement an application that runs on an Azure Container Instance

Manage container settings by using code


AZ-300: Implement authentication and secure data:

Implement authentication:

Implement authentication by using certificates

Implement Forms-based authentication

Implement Token-based authentication

Windows-integrated authentication

Implement multi-factor authentication by using Azure AD

Implement OAuth2 authentication

Implement Managed identities for Azure resources Service Principal authentication


Implement secure data solutions:

Encrypt and decrypt data at rest and in transit

Encrypt data with Always Encrypted

Implement Azure Confidential Compute

Implement SSL/TLS communications

Create, read, update, and delete keys using the KeyVault API

Create, read, update, and delete secrets using the KeyVault API

Create, read, update, and delete certificates by using the KeyVault API


AZ-300: Develop for the cloud and for Azure storage:

Develop solutions that use Cosmos DB storage:

Create, read, update, and delete data by using appropriate APIs

Implement partitioning schemes

Set the appropriate consistency level for operations


Develop solutions that use a relational database:

Provision relational databases

Configure relational databases

Configure elastic pools for Azure SQL Database

Create, read, update, and delete data tables by using code


Configure a message-based integration architecture:

Configure an app or service to send emails

Configure Event Grid

Configure Azure Relay Service

Create and configure Notification Hub

Create and configure Event Hub

Create and configure Service Bus

Configure queries across multiple products


Develop for autoscaling:

Implement autoscaling rules and patterns (schedule, operational/system metrics)

Implement autoscaling rules and patterns (code that addresses singleton application instances) Check the entire module (Writing Code to Handle Singleton Application Instances) with a free trial

Implement code that addresses the transient state


That’s it! This completes the AZ-300 Certification Preparation Guide! In case you are looking for other Azure certification exams check out this page

Want to be notified as soon as I post? Subscribe to RSS feed / leave your email address in the subscribe section. Share the article to your social networks with the below links so it can benefit others.

You may also like


Leave a Reply

Your e-mail address will not be published. Required fields are marked *