Microsoft Azure Certified DevOps Engineer AZ-400 Part 3
Question #: 151
Topic #: 3
You have a build pipeline in Azure Pipelines that occasionally fails.
You discover that a test measuring the response time of an API endpoint causes the failures.
You need to prevent the build pipeline from failing due to the test.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Set Flaky test detection to Off.
B. Clear Flaky tests included in test pass percentage.
C. Enable Test Impact Analysis (TIA).
D. Manually mark the test as flaky.
E. Enable test slicing.
Selected Answer: BD
Question #: 152
Topic #: 5
You have a GitHub repository.
You create a new repository in Azure DevOps.
You need to recommend a procedure to clone the repository from GitHub to Azure DevOps.
What should you recommend?
A. Create a pull request.
B. Create a webhook.
C. Create a service connection for GitHub.
D. From Import a Git repository, click Import.
E. Create a personal access token in Azure DevOps.
Selected Answer: D
Question #: 153
Topic #: 1
You scan a Node.js application using WhiteSource Bolt.
The scan finds numerous libraries with invalid licenses, but are only used during development.
You have to make sure that only production dependencies are scanned by WhiteSource Bolt.
Which of the following is a command you should run?
A. npm edit
B. npm publish
C. npm install
D. npm update
Selected Answer: C
Question #: 154
Topic #: 9
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure pipeline that is used to deploy a web app. The pipeline includes a test suite named TestSuite1. TestSuite1 is used to validate the operations of the web app.
TestSuite1 fails intermittently.
You identify that the failures are unrelated to changes in the source code and execution environment.
You need to minimize troubleshooting effort for the TestSuite1 failures.
Solution: You implement the Test Results Trend widget.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 157
Topic #: 1
You are currently defining a release strategy for an app, named APP-01.
The strategy should allow you to keep the time it takes to deploy new releases of the app to a minimum. The strategy should also allow you to roll back in the shortest time required.
Which of the following is the release strategy you should use?
A. Red/Black deployment
B. Rolling deployment
C. ג€Big Bangג€ deployment
D. Canary deployment
Selected Answer: A
Question #: 158
Topic #: 1
You are currently defining a release strategy for an app, named APP-01.
The strategy should allow you to keep the time it takes to deploy new releases of the app to a minimum. The strategy should also allow you to roll back in the shortest time required.
Which of the following is the release strategy you should use?
A. Red/Black deployment
B. Rolling deployment
C. ג€Big Bangג€ deployment
D. Canary deployment
Selected Answer: A
Question #: 159
Topic #: 8
You have an Azure DevOps project that contains a release pipeline and a Git repository.
When a new code revision is committed to the repository, a build and release is triggered.
You need to ensure that release information for the pipeline is added automatically to the work items associated to the Git commit.
What should you do?
A. Modify the Integrations options for the pipeline.
B. Modify the post-deployment conditions for the last stage of the pipeline.
C. Add an agentless job to the pipeline.
D. Modify the service hooks for the project.
Selected Answer: D
Question #: 160
Topic #: 5
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
The lead developer at your company reports that adding new application features takes longer than expected due to a large accumulated technical debt.
You need to recommend changes to reduce the accumulated technical debt.
Solution: You recommend increasing the code duplication.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 161
Topic #: 9
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure pipeline that is used to deploy a web app. The pipeline includes a test suite named TestSuite1. TestSuite1 is used to validate the operations of the web app.
TestSuite1 fails intermittently.
You identify that the failures are unrelated to changes in the source code and execution environment.
You need to minimize troubleshooting effort for the TestSuite1 failures.
Solution: You enable Test Impact Analysis (TIA).
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 162
Topic #: 6
You have an Azure DevOps organization that contains a project named Project1.
You need to create a published wiki in Project1.
What should you do first?
A. Modify the Storage settings of Project1.
B. In Project1, create an Azure DevOps pipeline.
C. In Project1, create an Azure DevOps repository.
D. Modify the Team configuration settings of Project1.
Selected Answer: C
Question #: 163
Topic #: 3
Your company hosts a web application in Azure. The company uses Azure Pipelines for the build and release management of the application.
Stakeholders report that the past few releases have negatively affected system performance.
You configure alerts in Azure Monitor.
You need to ensure that new releases are only deployed to production if the releases meet defined performance baseline criteria in the staging environment first.
What should you use to prevent the deployment of releases that fall to meet the performance baseline?
A. an Azure Scheduler job
B. a trigger
C. a gate
D. an Azure function
Selected Answer: C
Question #: 165
Topic #: 6
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The applications must meet the following requirements:
✑ Provide the ability to isolate the members of different project teams into separate communication channels and to keep a history of the chats within those channels.
✑ Be available on Windows 10, Mac OS, iOS, and Android operating systems.
✑ Provide the ability to add external contractors and suppliers to projects.
✑ Integrate directly with Azure DevOps.
What should you recommend?
A. Microsoft Project
B. Bamboo
C. Microsoft Lync
D. Microsoft Teams
Selected Answer: D
Question #: 166
Topic #: 5
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
The lead developer at your company reports that adding new application features takes longer than expected due to a large accumulated technical debt.
You need to recommend changes to reduce the accumulated technical debt.
Solution: You recommend increasing the test coverage.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 167
Topic #: 3
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a project in Azure DevOps.
You need to prevent the configuration of the project from changing over time.
Solution: Perform a Subscription Health scan when packages are created.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 168
Topic #: 1
Your company hosts a web application in Azure, and makes use of Azure Pipelines for managing the build and release of the application.
When stakeholders report that system performance has been adversely affected by the most recent releases, you configure alerts in Azure Monitor.
You are informed that new releases must satisfy specified performance baseline conditions in the staging environment before they can be deployed to production.
You need to make sure that releases not satisfying the performance baseline are prevented from being deployed.
Which of the following actions should you take?
A. You should make use of a branch control check.
B. You should make use of an alert trigger.
C. You should make use of a gate.
D. You should make use of an approval check.
Selected Answer: C
Question #: 169
Topic #: 7
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?
A. Cobertura
B. Bullseye Coverage
C. MSTest
D. Coverlet
Selected Answer: A
Question #: 170
Topic #: 9
You plan to publish build artifacts by using an Azure pipeline.
You need to create an .artifactignore file that meets the following requirements:
• Includes all files in the build output folder and all subfolders
• Excludes files that have the .dll extension
What should you include in the file?
A. ./**
!*.dll
B. **/*
!*.dll
C. */**
*.dll
D. **/*
#*.dll
Selected Answer: B
Question #: 173
Topic #: 5
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
The lead developer at your company reports that adding new application features takes longer than expected due to a large accumulated technical debt.
You need to recommend changes to reduce the accumulated technical debt.
Solution: You recommend reducing the code complexity.
Does this meet the goal?
A. Yes
B. No
Selected Answer: A
Question #: 174
Topic #: 4
You are deploying a server application that will run on a Server Core installation of Windows Server 2019.
You create an Azure key vault and a secret.
You need to use the key vault to secure API secrets for third-party integrations.
Which three actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Configure RBAC for the key vault.
B. Modify the application to access the key vault.
C. Configure a Key Vault access policy.
D. Deploy an Azure Desired State Configuration (DSC) extension.
E. Deploy a virtual machine that uses a system-assigned managed identity.
Selected Answer: ABE
Question #: 175
Topic #: 3
Your company uses the following resources:
✑ Windows Server 2019 container images hosted in an Azure Container Registry.
✑ Azure virtual machines that run the latest version of Ubuntu
✑ An Azure Log Analytics workspace
✑ Azure Active Directory (Azure AD)
✑ An Azure key vault
For which two resources can you receive vulnerability assessments in Azure Security Center? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. the Azure Log Analytics workspace
B. the Azure key vault
C. the Azure virtual machines that run the latest version of Ubuntu
D. Azure Active Directory (Azure AD)
E. The Windows Server 2019 container images hosted in the Azure Container Registry.
Selected Answer: CE
Question #: 176
Topic #: 8
Your company has a release pipeline in an Azure DevOps project.
You plan to deploy to an Azure Kubernetes Services (AKS) cluster by using the Helm package and deploy task.
You need to install a service in the AKS namespace for the planned deployment.
Which service should you install?
A. Azure Container Registry
B. Chart
C. Kubectl
D. Tiller
Selected Answer: C
Question #: 177
Topic #: 1
You need to consider the underlined segment to establish whether it is accurate.
To deploy an application to a number of Azure virtual machines, you should create a universal group.
Select `No adjustment required` if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.
A. No adjustment required.
B. security
C. deployment
D. resource
Selected Answer: C
Question #: 178
Topic #: 7
You have an existing build pipeline in Azure Pipelines.
You need to use incremental builds without purging the environment between pipeline executions.
What should you use?
A. a self-hosted agent
B. Microsoft-hosted parallel jobs
C. a File Transform task
Selected Answer: A
Question #: 179
Topic #: 6
You are developing a multi-tier application. The application will use Azure App Service web apps as the front end and an Azure SQL database as the back end.
The application will use Azure functions to write some data to Azure Storage.
You need to send the Azure DevOps team an email message when the front end fails to return a status code of 200.
Which feature should you use?
A. Service Map in Azure Log Analytics
B. availability tests in Azure Application Insights
C. Profiler in Azure Application Insights
D. Application Map in Azure Application Insights
Selected Answer: B
Question #: 185
Topic #: 3
You use Azure Pipelines to manage build pipelines, GitHub to store source code, and Dependabot to manage dependencies.
You have an app named App1.
Dependabot detects a dependency in App1 that requires an update.
What should you do first to apply the update?
A. Create a pull request.
B. Approve the pull request.
C. Create a branch.
D. Perform a commit.
Selected Answer: C
Question #: 186
Topic #: 5
During a code review, you discover quality issues in a Java application.
You need to recommend a solution to detect quality issues including unused variables and empty catch blocks.
What should you recommend?
A. In a Maven build task, select Run PMD.
B. In an Xcode build task, select Use xcpretty from Advanced.
C. In a Gulp build task, specify a custom condition expression.
D. In a Grunt build task, select Enabled from Control Options.
Selected Answer: A
Question #: 187
Topic #: 6
You have a project in Azure DevOps named Project1. Project1 contains a published wiki.
You need to change the order of pages in the navigation pane of the published wiki in the Azure DevOps portal.
What should you do?
A. At the root of the wiki, create a file named .order that defines the page hierarchy.
B. At the root of the wiki, create a file named wiki.md that defines the page hierarchy.
C. Rename the pages in the navigation pane.
D. Drag and drop the pages in the navigation pane.
Selected Answer: A
Question #: 188
Topic #: 9
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure pipeline that is used to deploy a web app. The pipeline includes a test suite named TestSuite1. TestSuite1 is used to validate the operations of the web app.
TestSuite1 fails intermittently.
You identify that the failures are unrelated to changes in the source code and execution environment.
You need to minimize troubleshooting effort for the TestSuite1 failures.
Solution: You increase code coverage.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 191
Topic #: 5
You use Azure Artifacts to host NuGet packages that you create.
You need to make one of the packages available to anonymous users outside your organization. The solution must minimize the number of publication points.
What should you do?
A. Change the feed URL of the package
B. Create a new feed for the package
C. Promote the package to a release view.
D. Publish the package to a public NuGet repository.
Selected Answer: B
Question #: 192
Topic #: 9
You have an Azure pipeline that is used to build and deploy an app named App1. The build job uses a Microsoft-hosted Windows agent.
The build job for App1 intermittently returns a timeout error.
You need to ensure that the build job completes successfully. The solution must minimize administrative effort.
What should you do?
A. Change the configuration of the build agent.
B. Deploy a self-hosted agent.
C. Change to a Microsoft-hosted Linux agent.
D. Purchase more parallel jobs.
Selected Answer: B
Question #: 193
Topic #: 1
You intend to make use of Azure Artifacts to share packages that you wrote, tested, validated, and deployed.
You want to use a solitary feed to release several builds of each package. You have to make sure that the release of packages that are in development is restricted.
Which of the following actions should you take?
A. You should make use of static code analysis.
B. You should make use of views.
C. You should make use of dynamic code analysis.
D. You should make use of upstream sources.
Selected Answer: B
Question #: 194
Topic #: 7
You have a private project in Azure DevOps.
You need to ensure that a project manager can create custom work item queries to report on the project’s progress. The solution must use the principle of least privilege.
To which security group should you add the project manager?
A. Reader
B. Project Collection Administrators
C. Project Administrators
D. Contributor
Selected Answer: D
Question #: 195
Topic #: 3
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a project in Azure DevOps.
You need to prevent the configuration of the project from changing over time.
Solution: Add a code coverage step to the build pipelines.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 196
Topic #: 2
You are monitoring the health and performance of an Azure web app by using Azure Application Insights.
You need to ensure that an alert is sent when the web app has a sudden rise in performance issues and failures.
What should you use?
A. custom events
B. Application Insights Profiler
C. usage analysis
D. Smart Detection
E. Continuous export
Selected Answer: D
Question #: 197
Topic #: 4
You have an Azure DevOps organization named Contoso that contains a project named Project1.
You provision an Azure key vault named Keyvault1.
You need to reference Keyvault1 secrets in a build pipeline of Project1.
What should you do first?
A. Add a secure file to Project1.
B. Create an XAML build service.
C. Create a variable group in Project1.
D. Configure the security policy of Contoso.
Selected Answer: C
Question #: 201
Topic #: 1
You need to consider the underlined segment to establish whether it is accurate.
To find when common open source libraries are added to the code base, you should add Jenkins to the build pipeline.
Select `No adjustment required` if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.
A. No adjustment required.
B. SourceGear Vault
C. WhiteSource
D. OWASP ZAP
Selected Answer: C
Question #: 202
Topic #: 1
You need to consider the underlined segment to establish whether it is accurate.
To find when common open source libraries are added to the code base, you should add Jenkins to the build pipeline.
Select `No adjustment required` if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.
A. No adjustment required.
B. SourceGear Vault
C. WhiteSource
D. OWASP ZAP
Selected Answer: C
Question #: 203
Topic #: 5
You use GitHub for source control and project-related discussions.
You receive a notification when an entry is made to any team discussion.
You need to ensure that you receive email notifications only for discussions in which you commented or in which you are mentioned.
Which two Notifications settings should you clear? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Automatically watch teams
B. Participating
C. Automatically watch repositories
D. Watching
Selected Answer: AC
Question #: 204
Topic #: 6
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The applications must meet the following requirements:
✑ Provide the ability to isolate the members of different project teams into separate communication channels and to keep a history of the chats within those channels.
✑ Be available on Windows 10, Mac OS, iOS, and Android operating systems.
✑ Provide the ability to add external contractors and suppliers to projects.
✑ Integrate directly with Azure DevOps.
What should you recommend?
A. Skype for Business
B. Bamboo
C. Octopus
D. Slack
Selected Answer: D
Question #: 205
Topic #: 9
You have an Azure subscription that contains an Azure Pipelines pipeline named Pipeline1 and a user named User1. Pipeline1 is used to build and test an app named App1. User1 is assigned the Contributors role for Pipeline1.
You plan to test App1 by using an Azure Deployment Environments environment.
You need to ensure that User1 can provision the environment. The solution must follow the principle of least privilege.
Which role should you assign to User1?
A. DevCenter Project Admin
B. Deployment Environments User
C. Contributors
D. Build Administrators
Selected Answer: B
Question #: 206
Topic #: 7
Your company has a project in Azure DevOps for a new application. The application will be deployed to several Azure virtual machines that run Windows Server
2019.
You need to recommend a deployment strategy for the virtual machines. The strategy must meet the following requirements:
✑ Ensure that the virtual machines maintain a consistent configuration.
✑ Minimize administrative effort to configure the virtual machines.
What should you include in the recommendation?
A. Azure Resource Manager templates and the PowerShell Desired State Configuration (DSC) extension for Windows
B. Deployment YAML and Azure pipeline deployment groups
C. Azure Resource Manager templates and the Custom Script Extension for Windows
D. Deployment YAML and Azure pipeline stage templates
Selected Answer: C
Question #: 207
Topic #: 3
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a project in Azure DevOps.
You need to prevent the configuration of the project from changing over time.
Solution: Implement Continuous Integration for the project.
Does this meet the goal?
A. Yes
B. No
Selected Answer: B
Question #: 209
Topic #: 4
You have the following Azure policy.
You assign the policy to the Tenant root group.
What is the effect of the policy?
A. prevents all HTTP traffic to existing Azure Storage accounts
B. ensures that all traffic to new Azure Storage accounts is encrypted
C. prevents HTTPS traffic to new Azure Storage accounts when the accounts are accessed over the Internet
D. ensures that all data for new Azure Storage accounts is encrypted at rest
Selected Answer: B
Question #: 210
Topic #: 7
You have an Azure DevOps project that uses many package feeds.
You need to simplify the project by using a single feed that stores packages produced by your company and packages consumed from remote feeds. The solution must support public feeds and authenticated feeds.
What should you enable in DevOps?
A. Universal Packages
B. upstream sources
C. views in Azure Artifacts
D. a symbol server
Selected Answer: B
Question #: 211
Topic #: 2
You have a private GitHub repository.
You need to display the commit status of the repository on Azure Boards.
What should you do first?
A. Configure multi-factor authentication (MFA) for your GitHub account.
B. Add the Azure Pipelines app to the GitHub repository.
C. Add the Azure Boards app to the repository.
D. Create a GitHub action in GitHub.
Selected Answer: C
Question #: 212
Topic #: 1
Your company has an Azure DevOps project, which includes a build pipeline that makes use of roughly fifty open source libraries.
You have been tasked with making sure that you are able to scan project for common security weaknesses in the open source libraries.
Which of the following actions should you take?
A. You should create a build task and use the WhiteSource Bolt service.
B. You should create a deployment task and use the WhiteSource Bolt service.
C. You should create a build task and use the Chef service.
D. You should create a deployment task and use the Chef service.
Selected Answer: A
Question #: 213
Topic #: 5
You have an Azure Automation account that contains a runbook. The runbook is used to configure the application infrastructure of an Azure subscription.
You have a project in Azure DevOps named Project1. Project1 contains a repository that stores code for the runbook.
You need to ensure that every committed change to the code will update automatically and publish the runbook to Azure Automation.
What should you configure?
A. the Service hooks settings for Project1
B. the Connections settings for the Automation account
C. the Source control settings for the Automation account
D. the Service connections settings for Project1
Selected Answer: C
Question #: 214
Topic #: 6
You are designing a YAML template for use with Azure Pipelines. The template will include the outputfile parameter.
Which two methods can you use to reference the parameter? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
A. ${{parameters.outputfile}}
B. $(parameters[‘outputfile’])
C. $(parameters.outputfile)
D. $(parameters[outputfile])
E. ${{parameters[‘outputfile’]}}
Selected Answer: AE
Question #: 215
Topic #: 8
You plan to use Terraform to deploy an Azure resource group from a Windows system.
You need to install the required frameworks to support the planned deployment.
Which two frameworks should you install? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Vault
B. Terratest
C. Node.js
D. Yeoman
E. Tiller
Selected Answer: BD
Question #: 216
Topic #: 3
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You manage a project in Azure DevOps.
You need to prevent the configuration of the project from changing over time.
Solution: Implement Continuous Assurance for the project.
Does this meet the goal?
A. Yes
B. No
Selected Answer: A
