Free Microsoft AZ-303 Exam Actual Questions

The questions for AZ-303 were last updated On Apr 2, 2025

At ValidExamDumps, we consistently monitor updates to the Microsoft AZ-303 exam questions by Microsoft. Whenever our team identifies changes in the exam questions,exam objectives, exam focus areas or in exam requirements, We immediately update our exam questions for both PDF and online practice exams. This commitment ensures our customers always have access to the most current and accurate questions. By preparing with these actual questions, our customers can successfully pass the Microsoft Azure Architect Technologies Exam exam on their first attempt without needing additional materials or study guides.

Other certification materials providers often include outdated or removed questions by Microsoft in their Microsoft AZ-303 exam. These outdated questions lead to customers failing their Microsoft Azure Architect Technologies Exam exam. In contrast, we ensure our questions bank includes only precise and up-to-date questions, guaranteeing their presence in your actual exam. Our main priority is your success in the Microsoft AZ-303 exam, not profiting from selling obsolete exam questions in PDF or Online Practice Test.

 

Question No. 1

You create an Azure Kubernetes Service (AKS) duster and an Azure Container Registry.

You need to perform continuous deployments of a containerized application to the AKS cluster as soon as the image updates in the registry.

What should you use to perform the deployments?

Show Answer Hide Answer
Correct Answer: A

You can implement a Continuous Deployment pipeline.

Example:

What the pipeline accomplishes :

Stage 1: The code gets pushed in the Github. The Jenkins job gets triggered automatically. The Dockerfile is checked out from Github.

Stage 2: Docker builds an image from the Dockerfile and then the image is tagged with the build number. Additionally, the latest tag is also attached to the image for the containers to use.

Stage 3: We have default deployment and service YAML files stored on the Jenkins server. Jenkins makes a copy of the default YAML files, make the necessary changes according to the build and put them in a separate folder.

Stage 4: kubectl was initially configured at the time of setting up AKS on the Jenkins server. The YAML files are fed to the kubectl util which in turn creates pods and services.


https://medium.com/velotio-perspectives/continuous-deployment-with-azure-kubernetes-service-azure-container-registry-jenkins-ca337940151b

Question No. 2

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Azure Active Directory (Azure AD) tenant named contoso.com.

A user named Admin1 attempts to create an access review from the Azure Active Directory admin center and discovers that the Access reviews settings are unavailable. Admin1 discovers that all the other Identity Governance settings are available.

Admin1 is assigned the User administrator, Compliance administrator, and Security administrator roles.

You need to ensure that the Admin1 can create access reviews in contoso.com.

Solution: You purchase an Azure Directory Premium P2 license for contoso.com.

Does this meet the goal?

Show Answer Hide Answer
Correct Answer: B

Instead use Azure AD Privileged Identity Management.

Note: PIM essentially helps you manage the who, what, when, where, and why for resources that you care about. Key features of PIM include:

Conduct access reviews to ensure users still need roles


https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-configure

Question No. 3

You have an Azure Cosmos DB account named Account1. Account1 includes a database named DB1 that contains a container named Container 1. The partition key tor Container1 is set to /city.

You plan to change the partition key for Container1

What should you do first?

Show Answer Hide Answer
Correct Answer: B

The good news is that there are two features, the Change Feed Processor and Bulk Executor Library, in Azure Cosmos DB that can be leveraged to achieve a live migration of your data from one container to another. This allows you to re-distribute your data to match the desired new partition key scheme, and make the relevant application changes afterwards, thus achieving the effect of ''updating your partition key''.


https://devblogs.microsoft.com/cosmosdb/how-to-change-your-partition-key/

Question No. 4

You have an Azure subscription that contains the resources shown in the following table.

A certificate named Certificate! is stored in Vault1

You need to grant VM1 and VM2 access to Certificate1 by using the same security principal.

What should you do?

Show Answer Hide Answer
Correct Answer: D

Windows virtual machines (VMs) can use a managed identity to access Azure Key Vault.

A user-assigned managed identity can be shared. The same user-assigned managed identity can be associated with more than one Azure resource.

The managed identity used by the virtual machine needs to be granted access to the Key Vault. Use an access policy


https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-managed-identities-work-vm

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/qs-configure-cli-windows-vm

Question No. 5

You have an Azure App Service app.

You need to implement tracing for the app. The tracing information must include the following:

Usage trends

AJAX call responses

Page load speed by browser

Server and browser exceptions

What should you do?

Show Answer Hide Answer
Correct Answer: D

For web pages, Application Insights JavaScript SDK automatically collects AJAX calls as dependencies.

Note: Some of the things you can track or collect are:

What are the most popular webpages in your application, at what time of day and where is that traffic coming from?

Dependency rates or response times and failure rates to find out if there's an external service that's causing performance issues on your app, maybe a user is using a portal to get through to your application and there are response time issues going through there for instance.

Exceptions for both server and browser information, as well as page views and load performance from the end users' side.


https://azure.microsoft.com/en-us/blog/ajax-collection-in-application-insights/

https://blog.pragmaticworks.com/what-is-application-insights