"The Cloud 9" (Cloud Concepts)
A type of cloud deployment model where you share the underlying infrastructure with other organizations, but you manage your own applications and data.
What is Multi-tenant Cloud (or Public Cloud)?
The fundamental building block of Azure compute that allows you to create a virtual computer with a specific OS (like Windows Server or Ubuntu).
What is a Virtual Machine (VM)?
The directory service that handles user identity and authentication for Azure resources (formerly known as Azure Active Directory).
What is Microsoft Entra ID?
The Azure service that monitors network traffic and blocks malicious attacks before they reach your VMs.
What is Azure Firewall?
A tool in the Azure portal that allows you to estimate the cost of your resources before you actually deploy them.
What is the Total Cost of Ownership (TCO) Calculator (or Pricing Calculator)?
The ability of a system to increase or decrease resources automatically based on demand, without human intervention.
What is Elasticity?
An Azure storage service designed for storing massive amounts of unstructured data, such as text or binary data (blobs), accessible from anywhere.
What is Blob Storage?
A security model that allows you to assign specific permissions (like Reader, Contributor, Owner) to users or groups for specific resources.
What is Role-Based Access Control (RBAC)?
A network security group (NSG) acts as a virtual firewall for virtual machines in Azure; it filters traffic based on these rules.
What are Security Rules (Inbound/Outbound)?
A specific type of support plan that includes 24/7 access to Support Engineers and is required for production workloads.
What is Standard, Professional Direct, or Professional Direct Premium Support?
A physical location that houses Azure datacenters, connected by a dedicated low-latency network; there are currently 60+ of these globally.
What is an Azure Region?
This storage account type is optimized for high-throughput workloads and supports Azure Files and Azure Queue Storage.
What is General Purpose v2 (GPv2)?
This feature allows you to enforce rules that restrict which types of resources can be created, or in which regions they can be deployed.
What is Azure Policy?
This Azure service provides protection against Distributed Denial of Service (DDoS) attacks for public IP addresses.
What is Azure DDoS Protection?
A financial tool that lets you set a spending limit and alerts you when your projected costs exceed this amount.
What is a Budget?
The cost model where you only pay for the cloud services you consume, rather than purchasing hardware upfront.
What is Pay-as-you-go?
A service that allows you to run containers (like Docker) without managing the underlying infrastructure, using a PaaS model.
What is Azure Container Instances (or Azure Kubernetes Service)?
In RBAC, this is the most restrictive scope level you can assign a role to (e.g., a specific Storage Account, rather than the whole Subscription).
What is Resource Group (or Resource)?
This feature allows you to manage encryption keys for your data at rest, giving you control over the keys rather than Microsoft.
What is Customer-Managed Keys (CMK)?
This agreement defines the amount of uptime a service is expected to provide (e.g., 99.9%) and the credits you receive if that uptime is not met.
What is a Service Level Agreement (SLA)?
In the "Shared Responsibility Model," this is the specific area where the customer is responsible for configuring the operating system, patching, and encryption of the virtual machine.
What is Infrastructure as a Service (IaaS)
You need to store data that is accessed very rarely (perhaps once a year) to meet compliance requirements. Which tier of Blob storage would be the most cost-effective?
What is Archive Tier?
A security feature that requires a user to authenticate again with a biometric factor or code before accessing a specific high-risk resource, even if they are already logged in.
What is Conditional Access?
Which Azure service would you use to detect and report suspicious activities and security threats across your entire Azure environment?
What is Microsoft Defender for Cloud?
You want to reduce the cost of your Virtual Machines by 70%, but you can tolerate having the VMs turned off (deallocated) for up to 30 days without notice. Which purchasing option should you choose?
What are Spot Instances?