Are you looking for quick revisions for the Microsoft AZ304 exam? You’re in the right place! ThisMicrosoft Azure Architect Design cheat sheetis your best tool to get a general overview of the exam before you go. This will help you to be prepared and make it easier to find the job of your dreams. We will also be adding a few links to help you prepare. Before you take the exam, we recommend that you have a quick look at this cheat sheet.
Microsoft AZ-304 – Overview
The Microsoft AZ-304 Microsoft Azure Architect Design exam is required to be certified as a Microsoft Azure Architect. An Azure Solution Architect works with cloud administrators, cloud DBAs, clients, and other stakeholders to implement solutions. An Azure Solution Architect’s responsibilities include providing advice and translating business requirements into secure and scalable cloud solutions. Candidates should have expertise in designing and implementing solutions for Microsoft Azure. This includes aspects such as storage, compute, security, and network.
Recommendations
Candidates for this exam need to have extensive experience in IT operations including virtualization, identity, security and business continuity. They also need to be able to budget and manage the impact of decisions on each area on the overall solution. Candidates for this role should also have expertise in Azure administration and experience with DevOps and Azure development.
Cheat Sheet | Microsoft AZ-304 Azure Architect Design Exam
This Microsoft AZ-304 exam Cheat Sheet will help you prepare for the exams. This cheat sheet will guide you through all learning resources and give you a competitive edge. Let’s get started on our revision journey.
Deeply Analyze the Microsoft AZ-304 Exam Topics
When revising for the exam, the first thing you should do is to thoroughly analyse the exam objectives. These objectives are the blueprint for the exam. The course outline also provides a detailed description of all exam concepts.
Microsoft AZ-304 Exam: Updates to the course outline as of January 27, 2021
The Microsoft AZ-304 exam topics have been updated.
Design Monitoring (10-15%)
Design for cost optimization
Recommend a cost management and cost reporting solution (Microsoft Docation:Choose from Azure Cost Management or Cloudyn).
recommend solutions to minimize costs (Microsoft Documentation:Optimize costs from recommendations)
Design a solution to log and monitor
determine levels and storage locations for logs (Microsoft Documentation:Configure metrics alerts)
plan for integration with monitoring tools including Azure Monitor and Azure Sentinel (Microsoft Documentation:Introducing Microsoft Azure Sentinel, intelligent security analytics for your entire enterprise)
Recommend appropriate monitoring tools for a solution
Choose a mechanism to allow event routing and escalation
Recommend a logging solution to comply with compliance requirements (Microsoft Docation:Audit Activity Reports in the Azure Active Directory portal).
Design Identity and Security (25-30%)
Design authentication
Recommend a solution for single sign on (Microsoft documentation:What is single signing-on?
Recommend a solution for authentication (Microsoft Docation:Choose an authentication method for your Azure Active Directory hybrid ID solution).
Recommend a solution for Conditional Access, which includes multi-factor authentication (Microsoft Docation:Common Conditional Access policies).
Recommend a solution to network access authentication (Microsoft documentation:Azure security overview)
Recommend a solution to a hybrid identity, including Azure AD Connect or Azure AD (Microsoft documentation:Choose an authentication method for your Azure Active Directory hybrid Identity solution).
recommend a solution for user self-service (Microsoft Documentation:self-service sign-up for Azure Active Directory)
Recommend and implement a B2B integration solution
Design authorization
choose an authorization approach (Microsoft Documentation:Authorization behavior)
Recommend a hierarchical structure that includes subscriptions, management groups, and resource groups. (Microsoft documentation: What are Azure management groups?
Recommend a solution for access management, including access reviews, role assignments and RBAC policies.
Identity Protection, Just In Time (JIT) access (Microsoft Documentation:Identity Protection policies,Secure your management ports with just-in-time access)
Design governance
recommend a strategy for tagging (Microsoft Documentation:Resource naming and tagging decision guide)
recommend a solution for using Azure Policy (Microsoft Documentation:Enabling and managing a Key Vault policy through the Azure portal)
Recommend a solution to Azure Blueprint
Application security design
We recommend a solution that includes KeyVault. (Microsoft Docation:About keys secrets and certificates).
Recommend a solution that includes AzureAD Managed Identities (Microsoft documentation:Use a Windows VM-assigned managed ID to access Resource Manager
recommend a solution for integrating applications into Azure AD (Microsoft Documentation:Integrating Azure Active Directory with applications getting started guide)
Design Data Storage (15-20%)
Design a database solution
Based on your requirements, choose the right data platform
recommend database service tier sizing (Microsoft Documentation:Service tiers in the DTU-based purchase model)
recommend a solution for database scalability (Microsoft Documentation:Dynamically scale database resources with m
