Book Image

Microsoft Azure Administrator ??? Exam Guide AZ-103

By : Sjoukje Zaal

Book Image

Microsoft Azure Administrator ??? Exam Guide AZ-103

By: Sjoukje Zaal

Overview of this book

Microsoft Azure Administrator – Exam Guide AZ-103 will cover all the exam objectives that will help you achieve Microsoft Azure Administrator certification. Whether you want to pass the AZ-103 exam or simply want hands-on experience in administering Azure, this study guide will help you achieve your goal. It covers the latest features and capabilities related to configuring, managing, and securing Azure resources. Following Microsoft's AZ-103 exam syllabus, this guide is divided into five modules. The first module helps you understand how to manage Azure subscriptions and resources. You will be able to configure Azure subscription policies at Azure subscription level and even learn how to use Azure policies for resource groups. Later, the book covers techniques related to implementing and managing storage in Azure. You will be able to create and configure backup policies and perform restore operations. The next module will guide you through creating, configuring, and deploying virtual machines for Windows and Linux. In the last two modules, you will learn about configuring and monitoring virtual networks and managing identities. The book concludes with effective mock tests, along with answers to them to help you confidently pass the exam. By the end of this book, you will have developed the skills you need to pass Exam AZ-103 and gain the corresponding certification.

Preface

Who this book is for

What this book covers

To get the most out of this book

Free Chapter

Section 1: Managing Azure Subscriptions and Resources

Section 1: Managing Azure Subscriptions and Resources

Managing Azure Subscriptions and Resource Groups

Managing Azure Subscriptions and Resource Groups

Azure subscriptions and resource groups

Assigning administrator permissions

Configuring Azure subscription policies

Implementing and setting tagging on resource groups

Configuring cost center quotas

Configuring resource locks

Moving resources across resource groups

Removing resource groups

Further reading

Analyzing Resource Utilization and Consumption

Analyzing Resource Utilization and Consumption

Creating and analyzing metrics and alerts

Configuring diagnostic settings on resources

Viewing alerts in Log Analytics

Utilizing Log Search Query functions

Further reading

Managing Role-Based Access Control

Managing Role-Based Access Control

Technical requirements

Configuring access to Azure resources by assigning roles

Configuring management access to Azure

Creating a custom role

Implementing and assigning Azure policies

Further reading

Section 2: Implementing and Managing Storage

Section 2: Implementing and Managing Storage

Creating and Configuring Storage Accounts

Creating and Configuring Storage Accounts

Technical requirements

Azure storage accounts

Creating and configuring storage accounts

Installing and using Azure Storage Explorer

Configuring network access to the storage account

SAS and access keys

Implementing Azure storage replication

Further reading

Importing and Exporting Data to Azure

Importing and Exporting Data to Azure

Technical requirements

Configuring and using Azure Blob Storage

Creating import into, and export from Azure Job

Further reading

Configuring Azure Files and Implementing Azure Backup

Configuring Azure Files and Implementing Azure Backup

Technical requirements

Azure file share and Azure file share sync service

Azure Site Recovery

Performing a backup and restore operation

Further reading

Section 3: Deploying and Managing Virtual Machines

Section 3: Deploying and Managing Virtual Machines

Creating and Configuring VMs for Windows and Linux

Creating and Configuring VMs for Windows and Linux

Technical requirements

Availability sets

Deploying Windows and Linux VMs

Modifying and deploying ARM templates

Further reading

Managing Azure VMs and VM Backups

Managing Azure VMs and VM Backups

Technical requirements

Managing VM sizes

Redeploying VMs

Adding data disks and network interfaces

Automating configuration management

Configuring VM backup and restore operations

Further reading

Section 4: Deploying and Managing Virtual Networks

Section 4: Deploying and Managing Virtual Networks

Implementing and Managing Virtual Networking

Implementing and Managing Virtual Networking

Technical requirements

Configuring virtual networks and subnets

Configuring private and public IP addresses

User-defined routes

Further reading

Integrating On-Premise Networks with Azure Virtual Networks

Integrating On-Premise Networks with Azure Virtual Networks

Technical requirements

Azure VPN gateway

Creating and configuring an Azure VPN gateway

Creating and configuring S2S VPN

Verifying on-premises connectivity

Further reading

Monitoring and Troubleshooting Virtual Networking

Monitoring and Troubleshooting Virtual Networking

Network Watcher

Network resource monitoring

Managing virtual network connectivity

Monitoring and troubleshooting on-premises connectivity

Managing external networking

Further reading

Azure Security Groups and Azure DNS

Azure Security Groups and Azure DNS

Technical requirements

Configuring a public DNS zone

Configuring a private DNS zone

Further reading

Implementing Azure Load Balancer

Implementing Azure Load Balancer

Technical requirements

Azure Load Balancer

Configuring an internal load balancer

Creating health probes

Creating load balancing rules

Testing the load balancer

Configuring a public load balancer

Further reading

Section 5: Managing Identities

Section 5: Managing Identities

Managing Azure Active Directory

Managing Azure Active Directory

Creating and managing users and groups

Configuring self-service password reset

Adding custom domains

Further reading

Implementing and Managing Hybrid Identities

Implementing and Managing Hybrid Identities

Azure AD Connect

Installing Azure AD Connect

Managing Azure AD Connect

Password writeback

Further reading

Implementing Multi-Factor Authentication

Implementing Multi-Factor Authentication

Configuring user accounts for MFA

Configuring the verification methods

Configuring trusted IPs

Configuring fraud alerts

Configuring bypass options

Further reading

Mockup Test Questions

Mockup Test Questions

Chapter 1, Managing Azure Subscriptions and Resource Groups Access Control

Chapter 2, Analyzing Resource Utilization and Consumption

Chapter 3, Managing Role-Based Access Control

Chapter 4, Creating and Configuring Storage Accounts

Chapter 5, Importing and Exporting Data to Azure

Chapter 6, Configuring Azure Files and Implementing Azure Backup

Chapter 7, Creating and Configuring VMs for Windows and Linux

Chapter 8, Managing Azure VMs and VM Backups

Chapter 9, Implementing and Managing Virtual Networking

Chapter 10, Integrating On-Premise Networks with Azure Virtual Networks

Chapter 11, Monitoring and Troubleshooting Virtual Networking

Chapter 12, Azure Security Groups and Azure DNS

Chapter 13, Implementing Azure Load Balancer

Chapter 14, Managing Azure Active Directory

Chapter 15, Implementing and Managing Hybrid Identities

Chapter 16, Implementing Multi-Factor Authentication

Mockup Test Answers

Mockup Test Answers

Chapter 1, Managing Azure Subscriptions and Resource Groups

Chapter 2, Analyzing Resource Utilization and Consumption

Chapter 3, Managing Role-Based Access Control

Chapter 4, Creating and Configuring Storage Accounts

Chapter 5, Importing and Exporting Data to Azure

Chapter 6, Configuring Azure Files and Implementing Azure Backup

Chapter 7, Creating and Configuring VMs for Windows and Linux

Chapter 8, Managing Azure VMs and VM Backups

Chapter 9, Implementing and Managing Virtual Networking

Chapter 10, Integrating on-Premise Networks with Azure Virtual Networks

Chapter 11, Monitoring and Troubleshooting Virtual Networking

Chapter 12, Azure Security Groups and Azure DNS

Chapter 13, Implementing Azure Load Balancer

Chapter 14, Managing Azure Active Directory

Chapter 15, Implementing and Managing Hybrid Identities

Chapter 16, Implementing Multi-Factor Authentication

Assessments

Chapter 1, Managing Azure Subscriptions and Resource Groups

Chapter 2, Analyzing Resource Utilization and Consumption

Chapter 3, Managing Role-Based Access Control

Chapter 4, Creating and Configuring Storage Accounts

Chapter 5, Importing and Exporting Data to Azure

Chapter 6, Configuring Azure Files and Implementing Azure Backup

Chapter 7, Creating and Configuring VMs for Windows and Linux

Chapter 8, Managing Azure VMs and VM Backups

Chapter 9, Implementing and Managing Virtual Networking

Chapter 10, Integrating On-Premise Networks with Azure Virtual Networks

Chapter 11, Monitoring and Troubleshooting Virtual Networking

Chapter 12, Azure Security Groups and Azure DNS

Chapter 13, Implementing Azure Load Balancer

Chapter 14, Managing Azure Active Directory

Chapter 15, Implementing and Managing Hybrid Identities

Chapter 16, Implementing Multi-Factor Authentication

Other Books You May Enjoy

Other Books You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

RBAC

With RBAC, you can manage who has access to the different Azure resources inside of your tenant. You can also set what the users can do with different Azure resources.

A best practice for assigning permissions is using the principle of least permissions; this involves giving users the exact permissions they need to do their jobs properly. Users, groups, and applications are added to roles in Azure, and those roles have certain permissions. You can use the built-in roles that Azure offers, or you can create custom roles in RBAC.

The roles in Azure can be added to a certain scope. This scope can be an Azure subscription, an Azure resource group, or a web application. Azure then uses access inheritance; roles that are added to a parent resource give access to child resources automatically. For instance, a group that is added to an Azure subscription gets access to all the resource...