Azure Solutions Architect Expert AZ-305 Practice Exam 1

Contoso Ltd is a global financial institution with 80 Azure subscriptions spread across 4 management groups. They currently use a decentralized logging approach where each application team deploys their own Log Analytics workspace.

The Chief Information Security Officer (CISO) requires a new logging architecture that meets the following requirements:

• Security and audit logs must be retained centrally for 2 years to meet compliance.
• Application teams must still be able to query their own application performance logs without having access to other teams' data.
• The solution must minimize administrative overhead and data duplication.
• Costs must be optimized.

Which Log Analytics workspace architecture should you recommend?

Fabrikam Inc. operates a hybrid cloud environment with 500 on-premises VMware virtual machines running Windows Server and Linux, and 200 Azure VMs.

The company wants to standardize its monitoring and governance strategy. You need to design a solution that meets the following requirements:

• Collect guest operating system performance metrics and event logs from ALL virtual machines (both on-premises and in Azure).
• Apply Azure Policy guest configuration to the on-premises VMs.
• Ensure the solution uses the most current Microsoft monitoring agents.
• Minimize the number of outbound firewall ports required for on-premises servers.

Which TWO components must you include in your design? (Select TWO)

A startup company has a single Azure subscription with a monthly budget of $5,000.

The CFO wants to ensure that the development team is notified immediately if the forecasted spending for the current month exceeds $4,500. The solution must not require writing any custom code and must be implemented with the least administrative effort.

Which Azure service should you configure?

You are designing an Azure Sentinel architecture for a Managed Security Service Provider (MSSP).

The MSSP manages security for 15 different enterprise customers. Each customer has their own Azure Active Directory (Microsoft Entra ID) tenant and strict data residency requirements (some in the US, some in the EU). The MSSP's Security Operations Center (SOC) team needs to view and correlate incidents across all 15 customers from a single pane of glass.

Which TWO technologies should you include in your design to meet these requirements? (Select TWO)

A healthcare enterprise is migrating its infrastructure to Azure. They have strict compliance requirements regarding administrative access.

You need to design an identity solution that meets the following requirements:

• Administrators must only have elevated privileges when actively performing tasks (Just-In-Time access).
• Administrators must provide a business justification and receive approval before gaining elevated privileges.
• Administrators must be forced to use Multi-Factor Authentication (MFA) when activating their elevated roles.
• The solution must apply to Azure Resource Manager (ARM) roles (e.g., Owner, Contributor).

Which combination of services should you recommend?