AZ-305
1.You plan to automate the deployment of resources to Azure subscriptions.
What is a difference between using Azure Blueprints and Azure Resource Manager (ARM) templates?
A. ARM templates remain connected to the deployed resources.
B. Only ARM templates can contain policy definitions.
C. Blueprints remain connected to the deployed resources.
D. Only Blueprints can contain policy definitions
答案
When considering the differences between Azure Blueprints and Azure Resource Manager (ARM) templates for automating resource deployment in Azure subscriptions, the correct answer to the question is:
C. Blueprints remain connected to the deployed resources.
Explanation of the Options:
A. ARM templates remain connected to the deployed resources.
This statement is incorrect. Once an ARM template is used to deploy resources, there is no ongoing connection between the template and the deployed resources. The template serves as a one-time blueprint for deployment but does not maintain a relationship afterward 24.
B. Only ARM templates can contain policy definitions.
This is also incorrect. Azure Blueprints can include policy definitions as part of their package, allowing for governance and compliance management alongside resource deployment 15.
C. Blueprints remain connected to the deployed resources.
This statement is correct. Azure Blueprints preserve the relationship between the blueprint definition (what should be deployed) and the blueprint assignment (what was actually deployed), enabling improved tracking and auditing of deployments 26.
D. Only Blueprints can contain policy definitions.
This statement is misleading because while Blueprints do include policy definitions, ARM templates can also reference policies, albeit in a different manner 13.
In summary, the key distinction lies in how Azure Blueprints maintain a connection with deployed resources, facilitating better management and governance compared to ARM templates.
2.You plan to automate the deployment of resources to Azure subscriptions.
What is a difference between using Azure Blueprints and Azure Resource Manager templates?
A. Azure Resource Manager templates remain connected to the deployed resources.
B. Only Azure Resource Manager templates can contain policy definitions.
C. Azure Blueprints remain connected to the deployed resources.
D. Only Azure Blueprints can contain policy definitions.
答案
The correct answer to the question regarding the difference between Azure Blueprints and Azure Resource Manager (ARM) templates is:
C. Azure Blueprints remain connected to the deployed resources.
Explanation:
Azure Blueprints maintain a connection between what is defined in the blueprint (the intended deployment) and what has actually been deployed (the assignment). This relationship allows for better tracking, auditing, and management of the deployed resources over time125.
ARM templates, while powerful for defining and deploying resources, do not retain an active connection to the deployed resources once the deployment is complete. They serve as a one-time configuration that does not track changes or deployments after execution13.
Both Azure Blueprints and ARM templates can include policy definitions, making options B and D incorrect. Additionally, since ARM templates do not remain connected to deployed resources, option A is also incorrect.
Thus, option C accurately reflects the unique capability of Azure Blueprints in maintaining a connection with deployed resources.
3.Note: This question is part of a series of questions that present the same scenario. Each question in
the series contains a unique solution that might meet the stated goals. Some question sets might have
more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these
questions will not appear in the review screen.
Your company plans to deploy various Azure App Service instances that will use Azure SQL databases.
The App Service instances will be deployed at the same time as the Azure SQL databases.
The company has a regulatory requirement to deploy the App Service instances only to specific Azure
regions. The resources for the App Service instances must reside in the same region.
You need to recommend a solution to meet the regulatory requirement.
Solution: You recommend using an Azure policy to enforce the resource group location.
Does this meet the goal?
A. Yes
B. No
答案
The correct answer to whether recommending the use of an Azure policy to enforce the resource group location meets the regulatory requirement is:
A. Yes
Explanation:
Using Azure Policy to enforce the location of resource groups aligns with the regulatory requirement to deploy Azure App Service instances and their associated Azure SQL databases in specific regions. Here’s how it meets the goal:
Location Enforcement: Azure Policy can be configured to restrict the locations where resources, including resource groups, can be deployed. This ensures that all App Service instances and their corresponding SQL databases are created only in the specified regions, adhering to compliance requirements.
Resource Group Location: By enforcing a policy on resource groups, you ensure that any resources created within those groups (like App Services and SQL databases) will reside in the same region as dictated by the policy. This directly addresses the requirement that resources must be located in the same region.
Thus, implementing an Azure Policy for location restrictions effectively meets both the regulatory requirements and operational needs for deploying these resources.