8 things you should know before taking the AZ-900 test
Finally, I passed the Microsoft Azure Fundamental Certification (AZ-900) Exam. Before taking the exam, I wrote more than two hundred mock questions, and this article gathers the most important things you should know. We will not cover detailed definitions, just mention the concept that appears in the exam. This is for those who want to prepare in a short period of time. Hope these tips can assist you to pass the challenge.
You can enroll in a remote exam for only $15 during pandemic!
- IaaS vs Paas vs SaaS
- IaaS(Infrastructure as a service): control of hardware
IaaS Example: Azure Virtual Machine
- PaaS(platform as a service): can scale up automatically, availability region contains availability zone(datacenter), azure site recovery provides disaster recovery for the virtual machine, PaaS won’t install stuff
PaaS Example: Azure App Service, Azure Storage Accounts, Azure SQL Database, Azure Cosmos DB, Azure Backup Service
- SaaS(Software as a service): don’t need to apply the software update, run and managed by the cloud provider
SaaS Example: office365
2. CapEx vs OpEx
- CapEx(can see): deploy all datacenter
- OpEx(cannot see): electricity for datacenter, Azure Pay-As-You-Go
3. Azure Resource vs Azure Resource Group
- Azure Resource: can have multiple delete locks, inherit delete locks from resource group, if there’s a read-only lock then we can add a delete lock, each resource only exists in one resource group, the resource can connect resource in other resource groups
- Azure Resource Group: we don’t pay for the resource group, cannot protect the data center, all resources in the resource group share the same lifecycle and will be deployed together, the resource in the resource can be located in a different region
4. Azure Data and Storage related nouns
- Azure SQL Database: managed SQL server database
- Azure Datalake analytics: process petabytes of data for diverse workload
- Azure Databricks: Apache Spark-based analytic service
- Azure Synapse Analytics: Azure Data Warehouse(old name), cloud-based platform, massively parallel processing(MPP), high availability and data recovery are built-in
- Azure CosmosDB: store JSON data, add data concurrently from multiple regions
- Azure Storage: Automatically backup three-time
5. Azure advisor vs Azure monitor vs Azure service health
- Azure Advisor: optimize and reduce overall speed, doesn’t provide recommendation on how to configure network
- Azure Monitor: can monitor resource from multiple subscriptions, can trigger an alert based on data in Azure Log Analytics, collect events from multiple resources into a centralized repository, can monitor the performance of the on-premises computer, can view service failure
- Azure Service Health: can create an alert if virtual machine fail, cannot prevent service fail
6. Private Cloud vs Public Cloud vs Hybrid Cloud
- Private Cloud: on-premise, support IaaS and PaaS, hardware cost, your own data center, easy to control by yourself
- Public Cloud: save money on hardware, easy to expand
- Hybrid Cloud: private cloud with a public cloud
7. Azure Firewall vs Azure ATP vs NSG vs Azure Security Center vs AD
- Network Security Group(NSG): doesn’t encrypt network traffic, can associate to virtual network subnet and network interface, cannot associate to a virtual network
- Azure Advanced Threat Protector(ATP): monitor threat by using sensors, cloud-based security solution, install on server
- Azure Firewall: filtering multiple Azure subscriptions and virtual network, doesn’t encrypt network traffic, limit the amount of traffic
- Azure Security Center: enable just in time(JIT) VM Access, can view company’s regulatory compliance reports
- Azure Active Directory(AD) Identification Protection: enforce MFA base, sign-in risk policy, user risk policy
8. Others key point
- One Azure Subscription: one administrator, multiple co-administrators, only managed by Microsoft account, one Azure Active Directory tenant
- Azure Logic Apps: serverless computing solution, cloud-based platform, create and run automated workflows
- Azure Standard Support Plan -> phone call to the engineer
- Premier Support Plan -> have an architectural review
- Azure China is not owned by Microsoft, it’s own by 21varient
- Azure Government: is only for the US government
- GDPR: European data protection regulation
- Azure Key Vault: store sensitive information like password or certificate
- Azure Functions: provide serverless computing functionalities
- A brief concept: region > zone > datacenter
- One region may have multiple data centers, for example, NA own two datacenters
- Service Level Agreement(SLA): guaranteed uptime is at least 99.9 percent
If this article helpful, please give me some claps :)
Please send me an inbox message if you find any incorrect!
I practice the mock exam from the following website.
