AZ-304 Exam Study Guide (Microsoft Azure Architect Design)


The AZ-304 Azure Architect Design exam will replace the older AZ-301 exam by end of June 2020. Since I received requests to continue to create study guides for the new Azure exams, I have prepared the AZ-304 Study Guide. This exam is in beta now.

If you haven't read about the exam changes and how they will impact your certification journey, read here

This post contains a curated list of articles from Microsoft documentation for each objective of the AZ-304 exam. Please share the post within your circles so it helps them to prepare for the exam.

AZ-304 Architect Course (Online Training)

Pluralsight (Learning Path)Microsoft Azure Architect Design Course [Free Trial]
LinkedIn Learning [Free Trial]
Exam Tips for Azure Architectecture Exam
Skylines AcademyAZ-300 & AZ-301 Certification Bundle
UdemyA Course on Designing Architecture in Azure

AZ-304 Azure Architect Design Practice Test

Whizlabs Exam Questions5 Practice Tests (275 Questions) or [subscription]
Udemy Practice TestsAzure Exam Preparation Practice Questions

AZ-304 Exam Reference E-book (PDF) & Lab

AmazonArchitect Design Lab Guide e-book
Labs on GitHubMicrosoft Azure Architect Design Labs

In case, if you are looking for the older Azure Architect Design exam, check out AZ-301 Study Guide. To view other Azure certificate study guides, click here

Full Disclosure: Some of the links in this post are affiliate links. I receive a commission when you purchase through them.

Looking for AZ-304 dumps? Read this!

Using az-304 exam dumps can get you permanently banned from taking any future Microsoft certificate exam. Read the FAQ page for more information. However, I strongly suggest you validate your understanding with practice questions.

Design Monitoring (10-15%)

Design for cost optimization

Recommend a solution for cost management and cost reporting

Recommend solutions to minimize costs


Design a solution for logging and monitoring

Determine levels and storage locations for logs

Plan for integration with monitoring tools including Azure Monitor and Azure Sentinel

Recommend appropriate monitoring tool(s) for a solution

Check this PS module on the recommendation for monitoring tools (Free Trial)

Choose a mechanism for event routing and escalation

Check this PS module on Event Routing and Escalation (Free trial)

Recommend a logging solution for compliance requirements

Design Identity and Security (25-30%)

Design authentication

Recommend a solution for single-sign-on

Recommend a solution for authentication

Recommend a solution for Conditional Access, including multi-factor authentication

Recommend a solution for network access authentication

Recommend a solution for a hybrid identity including Azure AD Connect and Azure AD Connect Health

Recommend a solution for user self-service

Recommend and implement a solution for B2B integration

YouTube video: Azure AD B2B authentication


Design authorization

Choose an authorization approach

Recommend a hierarchical structure that includes management groups, subscriptions and resource groups

Recommend an access management solution including RBAC policies, access reviews, role assignments, physical access, Privileged Identity Management (PIM), Azure AD

Identity Protection, Just In Time (JIT) access


Design governance

Recommend a strategy for tagging

Recommend a solution for using Azure Policy

Recommend a solution for using Azure Blueprint


Design security for applications

Recommend a solution that includes KeyVault

o What can be stored in KeyVault? & KeyVault operations

o KeyVault regions

Recommend a solution that includes Azure AD Managed Identities

Recommend a solution for integrating applications into Azure AD


Amazon link (affiliate)

Design Data Storage (15-20%)

Design a solution for databases

Select an appropriate data platform based on requirements

Selecting an Appropriate Data Storage Service in Microsoft Azure

Recommend database service tier sizing

Recommend a solution for database scalability

Recommend a solution for encrypting data at rest, data in transmission, and data in use


Design data integration

Recommend a data flow to meet business requirements

PS Course: Design and Document Data Flow (Free trial)

Recommend a solution for data integration, including Azure Data Factory, Azure Data Bricks, Azure Data Lake, Azure Synapse Analytics


Select an appropriate storage account

Choose between storage tiers

Recommend a storage access solution

Recommend storage management tools

PS Video: Azure Storage Management Tools (Free trial)

Design Business Continuity (10-15%)

Design a solution for backup and recovery

Recommend a recovery solution for Azure hybrid and on-premises workloads that meet recovery objectives (RTO, RLO, RPO)

Design an Azure Site Recovery solution

o Recommend a site recovery replication policy

o Recommend a solution for site recovery capacity

o Recommend a solution for site failover and failback (planned/unplanned)

o Recommend a solution for the site recovery network

Recommend a solution for recovery in different regions

Recommend a solution for Azure Backup management

Design a solution for data archiving and retention

o Recommend storage types and methodology for data archiving

o Identify business compliance requirements for data archiving

o Identify requirements for data archiving

o Identify SLA(s) for data archiving

o Recommend a data retention policy


Design for high availability

Recommend a solution for application and workload redundancy, including compute, database, and storage

Recommend a solution for autoscaling

Identify resources that require high availability

Identify storage types for high availability

Recommend a solution for geo-redundancy of workloads

Design Infrastructure (25-30%)

Design a compute solution

Recommend a solution for compute provisioning

Determine appropriate compute technologies, including virtual machines, App Services, Service Fabric, Azure Functions, Windows Virtual Desktop, and containers

Pluralsight course: Choose an appropriate compute solution

Recommend a solution for containers

o AKS versus ACI and the configuration of each one

Recommend a solution for automating compute management


Design a network solution

Recommend a solution for network addressing and name resolution

Recommend a solution for network provisioning

Recommend a solution for network security

o Private endpoints

o Firewalls

o Gateways

Recommend a solution for network connectivity to the Internet, on-premises networks, and other Azure virtual networks

Recommend a solution for automating network management

Recommend a solution for load balancing and traffic routing


Design an application architecture

Recommend a microservices architecture including Event Grid, Event Hubs, Service Bus, Storage Queues, Logic Apps, Azure Functions, and webhooks

Recommend an orchestration solution for deployment of applications including ARM templates, Logic Apps, or Azure Functions

o Select an automation method

o Choose which resources or lifecycle steps will be automated

o Design integration with other sources such as an ITSM solution

o recommend a solution for monitoring automation

Recommend a solution for API integration

o Design an API gateway strategy

Design an API Gateway Strategy

o Determine policies for internal and external consumption of APIs

o Recommend a hosting structure for API management

o Recommend when and how to use API Keys


Design migrations

Assess and interpret on-premises servers, data, and applications for migration

Recommend a solution for migrating applications and VMs

YouTube video: How to migrate your VMs, databases, and apps to Azure using Azure Migrate

Recommend a solution for migration of databases

o Determine migration scope, including redundant, related, trivial, and outdated data

This brings us to the end of AZ-304 Study Guide

What do you think? Let me know in the Comments section if I have missed out on anything. Also, I love to hear from you how your preparation is going on!

In case you are looking for other Azure certification exams check out this page

Follow/Like to receive updates

Sign up for Newsletter

Want to be notified as soon as I post? Subscribe to RSS feed / leave your email address in the subscribe section. Share the article to your social networks with the below links so it can benefit others.

Sharing is Caring

  • 1

You may also like


  1. The AZ-304 Azure Architect Design exam will replace the older AZ-303 exam by end of June 2020.

    — I think you mean replacing 301.

    (300+301 are being replaced by 303+304)

Leave a Reply

Your e-mail address will not be published. Required fields are marked *