Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
MuleSoft
Okta
Palo Alto Networks
Salesforce
SAP
All Vendors
  1. Home
  2. Microsoft
  3. AZ-305

Microsoft AZ-305 Exam (page: 8)
Microsoft Designing Azure Infrastructure Solutions
Updated on: 28-Jul-2025

Viewing Page 8 of 59
AZ-305 PDF 317 Questions

You need to implement the Azure RBAC role assignments for the Network Contributor role. The solution must meet the authentication and authorization requirements.
What is the minimum number of assignments that you must use?

  1. 1
  2. 2
  3. 5
  4. 10
  5. 15

Answer(s): B

Explanation:

Scenario: The Network Contributor built-in RBAC role must be used to grant permissions to the network administrators for all the virtual networks in all the Azure subscriptions.
RBAC roles must be applied at the highest level possible.



You have an Azure Active Directory (Azure AD) tenant named contoso.com that has a security group named Group1. Group1 is configured for assigned membership. Group1 has 50 members, including 20 guest users.
You need to recommend a solution for evaluating the membership of Group1. The solution must meet the following requirements:
-The evaluation must be repeated automatically every three months.
-Every member must be able to report whether they need to be in Group1.
-Users who report that they do not need to be in Group1 must be removed from Group1 automatically.
-Users who do not report whether they need to be in Group1 must be removed from Group1 automatically.
What should you include in the recommendation?

  1. Implement Azure AD Identity Protection.
  2. Change the Membership type of Group1 to Dynamic User.
  3. Create an access review.
  4. Implement Azure AD Privileged Identity Management (PIM).

Answer(s): C

Explanation:

Azure Active Directory (Azure AD) access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and role assignments. User's access can be reviewed on a regular basis to make sure only the right people have continued access.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview



Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You need to deploy resources to host a stateless web app in an Azure subscription. The solution must meet the following requirements:
-Provide access to the full .NET framework.
-Provide redundancy if an Azure region fails.
-Grant administrators access to the operating system to install custom application dependencies.
Solution: You deploy two Azure virtual machines to two Azure regions, and you deploy an Azure Application Gateway.
Does this meet the goal?

  1. Yes
  2. No

Answer(s): B

Explanation:

App Gateway will balance the traffic between VMs deployed in the same region. Create an Azure Traffic Manager profile instead.



You need to design a solution that will execute custom C# code in response to an event routed to Azure Event Grid. The solution must meet the following requirements:
-The executed code must be able to access the private IP address of a Microsoft SQL Server instance that runs on an Azure virtual machine.
-Costs must be minimized.
What should you include in the solution?

  1. Azure Logic Apps in the Consumption plan
  2. Azure Functions in the Premium plan
  3. Azure Functions in the Consumption plan
  4. Azure Logic Apps in the integrated service environment

Answer(s): B

Explanation:

Virtual connectivity is included in the Premium plan.


Reference:

https://docs.microsoft.com/en-us/azure/azure-functions/functions-scale#hosting-plans-comparison



HOTSPOT (Drag and Drop is not supported)
You need to design a storage solution for an app that will store large amounts of frequently used data. The solution must meet the following requirements:
-Maximize data throughput.
-Prevent the modification of data for one year.
-Minimize latency for read and write operations.
Which Azure Storage account type and storage service should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:


Box 1: BlockBlobStorage
Block Blob is a premium storage account type for block blobs and append blobs. Recommended for scenarios with high transactions rates, or scenarios that use smaller objects or require consistently low storage latency.
Box 2: Blob
The Archive tier is an offline tier for storing blob data that is rarely accessed. The Archive tier offers the lowest storage costs, but higher data retrieval costs and latency compared to the online tiers (Hot and Cool). Data must remain in the Archive tier for at least 180 days or be subject to an early deletion charge.


Reference:

https://docs.microsoft.com/en-us/azure/storage/blobs/archive-blob



Viewing Page 8 of 59



Share your comments for Microsoft AZ-305 exam with other users:

Žarko 9/5/2023 3:35:00 AM

@t it seems like azure service bus message quesues could be the best solution
UNITED KINGDOM


Santhi 1/1/2024 8:23:00 AM

passed today.40% questions were new.litwere case study,lots of new questions on afd,ratelimit,tm,lb,app gatway.got 2 set series of questions which are not present here.questions on azure cyclecloud, no.of vnet/vms required for implimentation,blueprints assignment/management group etc
INDIA


T 7/28/2023 9:06:00 PM

this question is keep repeat : you are developing a sales application that will contain several azure cloud services and handle different components of a transaction. different cloud services will process customer orders, billing, payment, inventory, and shipping. you need to recommend a solution to enable the cloud services to asynchronously communicate transaction information by using xml messages. what should you include in the recommendation?
NEW ZEALAND


alaska 10/24/2023 5:48:00 AM

i scored 87% on the az-204 exam. thanks! i always trust
GERMANY


Chere 9/15/2023 4:21:00 AM

found it good
Anonymous