microsoft az-801 practice test

Question 1

You have an Azure virtual machine named VM1 that runs Windows Server.
You need to encrypt the contents of the disks on VM1 by using Azure Disk Encryption.
What is a prerequisite for implementing Azure Disk Encryption?

• A. Customer Lockbox for Microsoft Azure
• B. an Azure key vault
• C. a BitLocker recovery key
• D. data-link layer encryption in Azure

Question 2

You need to meet technical requirements for Share1.
What should you use?

• A. Storage Migration Service
• B. File Server Resource Manager (FSRM)
• C. Server Manager
• D. Storage Replica

Question 3

DRAG DROP You have two physical servers named AppSrv1 and AppSrv2 and an unconfigured server named Server1. All the servers run Windows Server. Only Server1 can access the internet.
You plan to use Azure Site Recovery to replicate AppSrv1 and AppSrv2 to Azure.
You need to deploy the required components to AppSrv1, AppSrv2, and Server1.
Which components should you deploy? To answer, drag the appropriate components to the correct servers. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Question 4

You need to back up Server 4 to meet the technical requirements.
What should you do first?

• A. Deploy Microsoft Azure Backup Server (MABS).
• B. Configure Windows Server Backup.
• C. Install the Microsoft Azure Recovery Services (MARS) agent.
• D. Configure Storage Replica.

Question 5

HOTSPOT

You have an Azure subscription.

You plan to deploy a virtual machine named VM1 to the East US Azure region and use Azure Site Recovery between availability zones.

You need to configure the disks on VM1 and the virtual network. The solution must meet the following requirements:

Maximize the availability of VM1.
Maintain the private IP address of VM1 during failover and failback operations.

What should you configure? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Question 6

You have a Storage Spaces Direct configuration that has persistent memory and contains the data volumes shown in the following table.

You plan to add data volumes to Storage Spaces Direct as shown in the following table.

On which volumes can you use direct access (DAX)?

• A. Volume3 only
• B. Volume4 only
• C. Volume1 and Volume3 only
• D. Volume2 and Volume4 only
• E. Volume3 and Volume4 only

Question 7

HOTSPOT You have a server that runs Windows Server and has the Web Server (IIS) server role installed. Server1 hosts a single website that has the following configurations:
Is accessible by using a URL of https://www.contoso.com:8443 and has an SSL certificate that was issued by a third-party certification authority (CA) in the

Microsoft Trusted Root Program Uses anonymous authentication
Was developed by using PHP
You plan to use APP Service Migration Assistant to migrate the website to Azure App Service.
You need to migrate the website. The solution must minimize the number of changes made to the existing website.
What should you do manually to ensure that the website migration is successful? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Question 8

You have an Azure subscription that has Microsoft Defender for Cloud enabled.
You have 50 Azure virtual machines that run Windows Server.
You need to ensure that any security exploits detected on the virtual machines are forwarded to Defender for Cloud.
Which extension should you enable on the virtual machines?

• A. Vulnerability assessment for machines
• B. Microsoft Dependency agent
• C. Log Analytics agent for Azure VMs
• D. Guest Configuration agent

Question 9

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a server named Server1 that runs Windows Server.

You need to ensure that only specific applications can modify the data in protected folders on Server1.

Solution: From App & browser control, you configure Reputation-based protection.

Does this meet the goal?

• A. Yes
• B. No

Question 10

HOTSPOT You have a failover cluster named FC1 that contains two nodes named Server1 and Server2. FC1 is configured to use a file share witness.
You plan to configure FC1 to use a cloud witness.
You need to configure Azure Storage accounts for the cloud witness.
Which storage account type and authorization method should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area: