Candidates for this exam should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platforms, and governance. A professional in this role should manage how decisions in each area affect an overall solution. In addition, they should have experience in Azure administration, Azure development, and DevOps processes.
The Microsoft Certified: Azure Solutions Architect Expert certification will be earned by completing the following requirements:
Earn the Microsoft Certified: Azure Administrator Associate certification and pass Exam AZ-305
or
Pass Exam AZ-303 (before it retires on March 31, 2022) and Exam AZ-305
NOTE: Passing score: 700. Learn more about exam scores here. Beta exams are not scored immediately because we are gathering data on the quality of the questions and the exam. Learn more about the value and importance of beta exams.
Part of the requirements for: Microsoft Certified: Azure Solutions Architect Expert
Related exams: none
Important: See details
Skills measured
Design identity, governance, and monitoring solutions (25-30%)
Design data storage solutions (25-30%)
Design business continuity solutions (10-15%)
Design infrastructure solutions (25-30%)
NOTE: Passing score: 700. Learn more about exam scores here.
Audience Profile
Candidates for the Azure Solutions Architect Expert certification should have subject matter expertise in designing cloud and hybrid solutions that run on Microsoft Azure, including compute, network, storage, monitoring, and security.
Responsibilities for this role include advising stakeholders and translating business requirements into designs for secure, scalable, and reliable Azure solutions.
An Azure Solutions Architect partners with developers, administrators, and other roles responsible for implementing solutions on Azure.
A candidate for this certification should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platforms, and governance. A professional in this role should manage how decisions in each area affect an overall solution. In addition, they should have experience in Azure administration, Azure development, and DevOps processes.
Skills Measured
NOTE: The bullets that follow each of the skills measured are intended to illustrate how we are assessing that skill. This list is not definitive or exhaustive.
NOTE: Most questions cover features that are general availability (GA). The exam may contain questions on Preview features if those features are commonly used.
Design Identity, Governance, and Monitoring Solutions (25-30%)
Design a solution for logging and monitoring
design a log routing solution
recommend an appropriate level of logging
recommend monitoring tools for a solution
Design authentication and authorization solutions
recommend a solution for securing resources with role-based access control
recommend an identity management solution
recommend a solution for securing identities
Design governance
recommend an organizational and hierarchical structure for Azure resources
recommend a solution for enforcing and auditing compliance
Design identities and access for applications
recommend solutions to allow applications to access Azure resources
recommend a solution that securely stores passwords and secrets
recommend a solution for integrating applications into Azure Active Directory (Azure AD)
recommend a user consent solution for applications
Design Data Storage Solutions (25-30%)
Design a data storage solution for relational data
recommend database service tier sizing
recommend a solution for database scalability
recommend a solution for encrypting data at rest, data in transmission, and data in use
Design data integration
recommend a solution for data integration
recommend a solution for data analysis
Recommend a data storage solution
recommend a solution for storing relational data
recommend a solution for storing semi-structured data
recommend a solution for storing non-relational data
Design a data storage solution for non-relational data
recommend access control solutions to data storage
recommend a data storage solution to balance features, performance, and cost
design a data solution for protection and durability
Design Business Continuity Solutions (10-15%)
Design a solution for backup and disaster recovery
recommend a recovery solution for Azure, hybrid, and on-premises workloads that meets recovery objectives (Recovery Time Objective [RTO], Recovery Level Objective [RLO],
Recovery Point Objective [RPO])
understand the recovery solutions for containers
recommend a backup and recovery solution for compute
recommend a backup and recovery solution for databases
recommend a backup and recovery solution for unstructured data
Design for high availability
identify the availability requirements of Azure resources
recommend a high availability solution for compute
recommend a high availability solution for non-relational data storage
recommend a high availability solution for relational data storage
Design Infrastructure Solutions (25-30%)
Design a compute solution
recommend a virtual machine-based compute solution
recommend an appropriately sized compute solution based on workload requirements
recommend a container-based compute solution
recommend a serverless-based compute solution
Design an application architecture
recommend a caching solution for applications
recommend a messaging architecture
recommend an event-driven architecture
recommend an automated deployment solution for your applications
recommend an application configuration management solution
recommend a solution for API integration
Design migrations
evaluate a migration solution that leverages the Cloud Adoption Framework for Azure
assess and interpret on-premises servers, data, and applications for migration
recommend a solution for migrating applications and virtual machines
recommend a solution for migrating databases
recommend a solution for migrating unstructured data
Design network solutions
recommend a network architecture solution based on workload requirements
recommend a connectivity solution that connects Azure resources to the internet
recommend a connectivity solution that connects Azure resources to on-premises networks
optimize network performance for applications
recommend a solution to optimize network security
recommend a load balancing and routing solution
QUESTION 1
After you migrate App1 to Azure, you need to enforce the data modification requirements to meet the security and compliance requirements.
What should you do?
A. Create an access policy for the blob service.
B. Implement Azure resource locks.
C. Create Azure RBAC assignments.
D. Modify the access level of the blob service.
Answer: B
QUESTION 2
You need to recommend a solution to meet the database retention requirements.
What should you recommend?
A. Configure a long-term retention policy for the database.
B. Configure Azure Site Recovery.
C. Use automatic Azure SQL Database backups.
D. Configure geo-replication of the database.
Answer: A
QUESTION 3
You have an Azure subscription that contains a custom application named Application1. Application1 was
developed by an external company named Fabrikam, Ltd. Developers at Fabrikam were assigned role-based
access control (RBAC) permissions to the Application1 components. All users are licensed for the Microsoft 365 E5 plan.
You need to recommend a solution to verify whether the Fabrikam developers still require permissions to
Application1. The solution must meet the following requirements:
To the manager of the developers, send a monthly email message that lists the access permissions to Application1.
If the manager does not verify an access permission, automatically revoke that permission.
Minimize development effort.
What should you recommend?
A. In Azure Active Directory (Azure AD), create an access review of Application1.
B. Create an Azure Automation runbook that runs the Get-AzRoleAssignment cmdlet.
C. In Azure Active Directory (Azure AD) Privileged Identity Management, create a custom role assignment for the Application1 resources.
D. Create an Azure Automation runbook that runs the Get-AzureADUserAppRoleAssignment cmdlet.
Answer: A
Examkingdom Microsoft AZ-305 Exam pdf, Certkingdom Microsoft AZ-305 PDF
Best Microsoft AZ-305 Certification, Microsoft AZ-305 Training at certkingdom.com