Valid AZ-103 Dumps shared by PassLeader for Helping Passing AZ-103 Exam! PassLeader now offer the newest AZ-103 VCE dumps and AZ-103 PDF dumps, the PassLeader AZ-103 exam questions have been updated and ANSWERS have been corrected, get the newest PassLeader AZ-103 dumps with VCE and PDF here: https://www.passleader.com/az-103.html (425 Q&As Dumps)
BTW, DOWNLOAD part of PassLeader AZ-103 dumps from Cloud Storage: https://drive.google.com/open?id=1pcJSvWksUYfrmRT5Hy9xnh0iGBvW_sfq
NEW QUESTION 411
You have an Azure virtual machine named VM1. You use Azure Backup to create a backup of VM1 named Backup1. After creating Backup1, you perform the following changes to VM1:
– Modify the size of VM1.
– Copy a file named Budget.xls to a folder named Data.
– Reset the password for the built-in administrator account.
– Add a data disk to VM1.
An administrator uses the Replace existing option to restore VM1 from Backup1. You need to ensure that all the changes to VM1 are restored. Which change should you perform again?
A. Modify the size of VM1.
B. Add a data disk.
C. Reset the password for the built-in administrator account.
D. Copy Budget.xls to Data.
Answer: D
Explanation:
https://docs.microsoft.com/en-us/azure/backup/backup-azure-arm-restore-vms#replace-existing-disks
NEW QUESTION 412
You have an Azure virtual machine named VM1 that runs Windows Server 2016. You need to create an alert in Azure when more than two error events are logged to the System log on VM1 within an hour.
Solution: You create an event subscription on VM1. You create an alert in Azure Monitor and specify VM1 as the source.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
Instead: You create an Azure Log Analytics workspace and configure the data settings. You install the Microsoft Monitoring Agent on VM1. You create an alert in Azure Monitor and specify the Log Analytics workspace as the source.
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/agents-overview
NEW QUESTION 413
You have an Azure virtual machine named VM1 that runs Windows Server 2016. You need to create an alert in Azure when more than two error events are logged to the System log on VM1 within an hour.
Solution: You create an Azure Log Analytics workspace and configure the data settings. You install the Microsoft Monitoring Agent on VM1. You create an alert in Azure Monitor and specify the Log Analytics workspace as the source.
Does this meet the goal?
A. Yes
B. No
Answer: A
Explanation:
Alerts in Azure Monitor can identify important information in your Log Analytics repository. They are created by alert rules that automatically run log searches at regular intervals, and if results of the log search match particular criteria, then an alert record is created and it can be configured to perform an automated response. The Log Analytics agent collects monitoring data from the guest operating system and workloads of virtual machines in Azure, other cloud providers, and on-premises. It collects data into a Log Analytics workspace.
https://docs.microsoft.com/en-us/azure/azure-monitor/learn/tutorial-response
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/agents-overview
NEW QUESTION 414
You have an Azure virtual machine named VM1. The network interface for VM1 is configured as shown in the exhibit.
……
You deploy a web server on VM1, and then create a secure website that is accessible by using the HTTPS protocol. VM1 is used as a web server only. You need to ensure that users can connect to the website from the internet. What should you do?
A. Change the priority of Rule6 to 100.
B. Change the priority of Rule3 to 450.
C. Delete Rule1.
D. Modify the action of Rule1.
Answer: B
Explanation:
Rule 2 is blocking HTTPS access (port 443) and has a priority of 500. Changing Rule 3 (ports 60-500) and giving it a lower priority number will allow access on port 443. Note: Rules are processed in priority order, with lower numbers processed before higher numbers, because lower numbers have higher priority. Once traffic matches a rule, processing stops.
Incorrect:
Not A: HTTPS uses port 443. Rule6 only applies to ports 150 to 300.
Not C and D: Rule 1 blocks access to port 80, which is used for HTTP, not HTTPS.
https://docs.microsoft.com/en-us/azure/virtual-network/security-overview
NEW QUESTION 415
You have a Microsoft 365 tenant and an Azure Active Directory (Azure AD) tenant named contoso.com. You plan to grant three users named User1, User2, and User3 access to a temporary Microsoft SharePoint document library named Library1. You need to create groups for the users. The solution must ensure that the groups are deleted automatically after 180 days. Which two groups should you create? (Each correct answer presents a complete solution. Choose two.)
A. a Security group that uses the Assigned membership type
B. an Office 365 group that uses the Assigned membership type
C. an Office 365 group that uses the Dynamic User membership type
D. a Security group that uses the Dynamic User membership type
E. a Security group that uses the Dynamic Device membership type
Answer: BC
Explanation:
You can set expiration policy only for Office 365 groups in Azure Active Directory (Azure AD). Note: With the increase in usage of Office 365 Groups, administrators and users need a way to clean up unused groups. Expiration policies can help remove inactive groups from the system and make things cleaner. When a group expires, all of its associated services (the mailbox, Planner, SharePoint site, etc.) are also deleted. You can set up a rule for dynamic membership on security groups or Office 365 groups.
Incorrect:
Not A and D and E: You can set expiration policy only for Office 365 groups in Azure Active Directory (Azure AD).
https://docs.microsoft.com/en-us/office365/admin/create-groups/office-365-groups-expiration-policy?view=o365-worldwide
NEW QUESTION 416
You have an Azure subscription. You enable multi-factor authentication for all users. Some users report that the email applications on their mobile device cannot connect to their Microsoft Exchange Online mailbox. The users can access Exchange Online by using a web browser and from Microsoft Outlook 2016 on their computer. You need to ensure that the users can use the email applications on their mobile device. What should you instruct the users to do?
A. Reinstall the Microsoft Authenticator app.
B. Create an app password.
C. Enable self-service password reset.
D. Reset the Azure Active Directory (Azure AD) password.
Answer: B
Explanation:
If you’re enabled for multi-factor authentication, make sure that you have set up app passwords. Note: During your initial two-factor verification registration process, you’re provided with a single app password. If you require more than one, you’ll have to create them yourself. Go to the Additional security verification page.
https://docs.microsoft.com/en-us/office365/troubleshoot/sign-in/sign-in-to-office-365-azure-intune
https://docs.microsoft.com/sv-se/azure/active-directory/user-help/multi-factor-authentication-end-user-app-passwords
NEW QUESTION 417
You have an Azure subscription that contains the following resources:
– A virtual network that has a subnet named Subnet1.
– Two network security groups (NSGs) named NSG-VM1 and NSG-Subnet1.
– A virtual machine named VM1 that has the required Windows Server configurations to allow Remote Desktop connections.
NSG-Subnet1 has the default inbound security rules only. NSG-VM1 has the default inbound security rules and the following custom inbound security rule:
– Priority: 100
– Source: Any
– Source port range: *
– Destination: *
– Destination port range: 3389
– Protocol: UDP
– Action: Allow
VM1 connects to Subnet1. NSG1-VM1 is associated to the network interface of VM1. NSG-Subnet1 is associated to Subnet1. You need to be able to establish Remote Desktop connections from the internet to VM1.
Solution: You modify the custom rule for NSG-VM1 to use the internet as a source and TCP as a protocol.
Does this meet the goal?
A. Yes
B. No
Answer: A
Explanation:
The default port for RDP is TCP port 3389. A rule to permit RDP traffic must be created automatically when you create your VM. Note on NSG-Subnet1: Azure routes network traffic between all subnets in a virtual network, by default.
https://docs.microsoft.com/en-us/azure/virtual-machines/troubleshooting/troubleshoot-rdp-connection
NEW QUESTION 418
You have an Azure subscription that contains the following resources:
– A virtual network that has a subnet named Subnet1.
– Two network security groups (NSGs) named NSG-VM1 and NSG-Subnet1.
– A virtual machine named VM1 that has the required Windows Server configurations to allow Remote Desktop connections.
NSG-Subnet1 has the default inbound security rules only. NSG-VM1 has the default inbound security rules and the following custom inbound security rule:
– Priority: 100
– Source: Any
– Source port range: *
– Destination: *
– Destination port range: 3389
– Protocol: UDP
– Action: Allow
VM1 connects to Subnet1. NSG1-VM1 is associated to the network interface of VM1. NSG-Subnet1 is associated to Subnet1. You need to be able to establish Remote Desktop connections from the internet to VM1.
Solution: You add an inbound security rule to NSG-Subnet1 that allows connections from the Any source to the * destination for port range 3389 and uses the TCP protocol. You remove NSG-VM1 from the network interface of VM1.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
The default port for RDP is TCP port 3389. A rule to permit RDP traffic must be created automatically when you create your VM. Note on NSG-Subnet1: Azure routes network traffic between all subnets in a virtual network, by default.
https://docs.microsoft.com/en-us/azure/virtual-machines/troubleshooting/troubleshoot-rdp-connection
NEW QUESTION 419
You have an Azure Active Directory (Azure AD) tenant named contoso.com. Multi-factor authentication (MFA) is enabled for all users. You need to provide users with the ability to bypass MFA for 10 days on devices to which they have successfully signed in by using MFA. What should you do?
A. From the multi-factor authentication page, configure the users’ settings.
B. From Azure AD, create a conditional access policy.
C. From the multi-factor authentication page, configure the service settings.
D. From the MFA blade in Azure AD, configure the MFA Server settings.
Answer: C
Explanation:
Enable remember Multi-Factor Authentication steps:
1. Sign in to the Azure portal.
2. On the left, select Azure Active Directory -> Users.
3. Select Multi-Factor Authentication.
4. Under Multi-Factor Authentication, select service settings.
5. On the Service Settings page, manage remember multi-factor authentication, select the Allow users to remember multi-factor authentication on devices they trust option.
6. Set the number of days to allow trusted devices to bypass two-step verification. The default is 14 days.
7. Select Save.
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings
NEW QUESTION 420
You have an Azure subscription. All users are enabled for multi-factor authentication (MFA). You need to ensure that the users can lock out their own account if they receive an unsolicited MFA request from Azure. Which MFA settings should you configure?
A. Block/unblock users
B. Providers
C. Notifications
D. Fraud alert
Answer: D
Explanation:
Configure the fraud alert feature so that your users can report fraudulent attempts to access their resources. Users can report fraud attempts by using the mobile app or through their phone.
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#fraud-alert
NEW QUESTION 421
……
Get the newest PassLeader AZ-103 VCE dumps here: https://www.passleader.com/az-103.html (425 Q&As Dumps)
And, DOWNLOAD the newest PassLeader AZ-103 PDF dumps from Cloud Storage for free: https://drive.google.com/open?id=1pcJSvWksUYfrmRT5Hy9xnh0iGBvW_sfq