• Home
  • Articles
  • Prepare Important Exam with AZ-720 Exam Dumps(2024) [Q12-Q35]

Prepare Important Exam with AZ-720 Exam Dumps(2024) [Q12-Q35]

Share

Prepare Important Exam with AZ-720 Exam Dumps(2024) 

Pass Exam Questions Efficiently With AZ-720 Questions


Microsoft Azure platform is one of the most popular cloud computing platforms in the world. With its vast array of services, it has become the go-to platform for businesses looking to take advantage of the benefits of cloud computing. However, like any platform, Azure is not without its challenges. One of the most common issues faced by Azure users is connectivity issues. These issues can be caused by a variety of factors, including network issues, misconfigured settings, and security issues.


Microsoft AZ-720 exam is a valuable certification exam that demonstrates your expertise in troubleshooting Azure connectivity issues. AZ-720 exam covers a wide range of topics, including Azure networking, virtual networks, VPN gateways, Azure ExpressRoute, and Azure Firewall. Passing AZ-720 exam ensures that you have the knowledge and skills required to identify and resolve connectivity issues in Microsoft Azure.

 

NEW QUESTION # 12
A company uses an Azure Backup agent to back up specific files and folder from an Azure virtual machine
(VM) and an on-premises VM.
An administrator reports that the backup job fails on both VMs. Errors are returned in Microsoft Azure
Recovery Services (MARS).
You need to troubleshoot the backup issues.
Which troubleshooting solution should you use?

Answer:

Explanation:


NEW QUESTION # 13
You need to resolve the issue.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 14
You need to troubleshoot the sales department issues.
How should you configure the system? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 15
A company migrates an on-premises Windows virtual machine (VM) to Azure. An administrator enables
backups for the VM by using the Azure portal.
The company reports that the Azure VM backup job is failing.
You need to troubleshoot the issue.
Solution: Create a new manual backup in Backup center.
Does the solution meet the goal?

  • A. Yes
  • B. No

Answer: A


NEW QUESTION # 16
A company has an Azure virtual network (VNet). An administrator creates a subet in the VNet named AzureSastionSubnet. The administrator deploys Azure Bastion to AzureBastionSubnet.
The administrator creates a default network security group named nsg-Bastion. The following error message display when the administrator attempts to assign nsg-Bastion to AzureBastionSubnet:
Network security group nsg-Bastion does not have necessary rules for Azure Bastion Subnet AzureBastionSubnet You need to resolve the issues with the inbound security rules.
Which port or set of ports should you configure?

Answer:

Explanation:


NEW QUESTION # 17
A company has an Azure Virtual Network gateway named VNetGW1. The company enables point-to-site connectivity on VNetGW1. An administrator configures VNetGW1 for the following:
OpenVPN for the tunnel type.
Azure certificate for the authentication type.
Users receive a certificate mismatch error when connecting by using a VPN client.
You need to resolve the certificate mismatch error.
What should you do?

  • A. Reissue the client certificate with server authentication enabled.
  • B. Install an IKEv2 VPN client on the user's computers.
  • C. Reissue the client certificate with client authentication enabled.
  • D. Create a profile manually, add the server FQDN and reissue the client certificate.

Answer: C

Explanation:
To resolve the certificate mismatch error, you should reissue the client certificate with client authentication enabled. According to 2, when you use Azure certificate for authentication type on point-to-site VPN connections, you need to ensure that your client certificates have client authentication as one of their enhanced key usage attributes. Otherwise, you will receive a certificate mismatch error when connecting by using a VPN client.


NEW QUESTION # 18
A company has an Azure environment that uses one virtual network.
The company restructures the environment to use two different virtual networks. Virtual machines in one
network cannot communicate with virtual machines in the other virtual network.
You need to re-establish a connection between virtual machines in the two networks.
How should you configure the networks?

Answer:

Explanation:


NEW QUESTION # 19
A company uses Azure AD Connect. The company plans to implement self-service password reset (SSPR).
An administrator receives an error that password writeback cloud not be enabled during the Azure AD
Connect configuration. The administrator observes the following event log error:
Error getting auth token
You need to resolve the issue.
Solution: Disable password writeback and then enable password writeback.
Does the solution meet the goal?

  • A. No
  • B. Yes

Answer: A


NEW QUESTION # 20
A company enables just-in-time (JIT) virtual machine (VM) access in Azure.
An administrator observes a list of VMs on the Unsupported tab of the JIT VM access page in the Microsoft
Defender for Cloud portal.
You need to determine why some VMs are not supported for JIT VM access.
What should you conclude?

  • A. The administrator is using the Microsoft Defender for Cloud free tier.
  • B. The administrator does not have the SecurityReader role.
  • C. The administrator does not have permissions to request JIT access to the VMs.
  • D. The VMs were provisioned by using a classic deployment.

Answer: D


NEW QUESTION # 21
A company uses an Azure Virtual Network (VNet) gateway named VNetGW1. VNetGW1 connects to a partner site by using a site-to-site VPN connection with dynamic routing.
The company observes that the VPN disconnects from time to time.
You need to troubleshoot the cause for the disconnections.
What should you verify?

  • A. The partner's VPN device and VNetGW1 are configured using the same shared key.
  • B. VNetGW1 has exceeded the subnet Security Association pairs.
  • C. The partner's VPN device and VNetGW1 are configured with the same virtual network address space.
  • D. The public IP address of the partner's VPN device is configured in the local network gateway address space on VNetGW1.

Answer: A


NEW QUESTION # 22
You need to troubleshoot and resolve the reverse VPN connectivity issues.
What should you do? To answer, select the appropriate option in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 23
A company has an Azure environment that uses one virtual network.
The company restructures the environment to use two different virtual networks. Virtual machines in one network cannot communicate with virtual machines in the other virtual network.
You need to re-establish a connection between virtual machines in the two networks.
How should you configure the networks?

Answer:

Explanation:


NEW QUESTION # 24
A company deploys Azure Bastion to connect to their virtual machine (VM) infrastructure.
An engineer attempts to connect to a Windows VM by using Remote Desktop Protocol (RDP). The connection fails.
You need to troubleshoot the issue.
Which two actions should you perform?

  • A. Apply a network security group on the same subnet as Azure Bastion.
  • B. Run the Network Watcher Connection troubleshoot service.
  • C. Monitor traffic with the following PowerShell cmdlet Test-AzNetworkWatcherConnectivity.
  • D. Configure Azure Bastion with static assignment.
  • E. Monitor traffic with the following PowerShell cmdlet New-AzNetworkWatcherFlowLog.

Answer: B,C

Explanation:
The two actions that should be performed to troubleshoot the issue of a failed RDP connection to a Windows VM through Azure Bastion are A) Monitor traffic with the PowerShell cmdlet 'Test-AzNetworkWatcherConnectivity' and D) Run the Network Watcher Connection troubleshoot service.
A) Monitor traffic with the PowerShell cmdlet 'Test-AzNetworkWatcherConnectivity': This cmdlet can be used to verify connectivity between two endpoints in Azure. By monitoring traffic, you can identify the root cause of issues with the VM's connectivity through Azure Bastion.
D) Run the Network Watcher Connection troubleshoot service: This service can help identify the root cause of connectivity issues with Azure resources. It analyses network traffic to identify common misconfiguration issues and provides guidance on how to resolve them.


NEW QUESTION # 25
A company deploys the Azure Application Gateway Web Application Firewall (WAF) to protect their web applications.
Users in a remote office location report the following issues:
Unable to access part of a web application.
Part of the web application is failing to load.
Parts of the web application has activities that are not performing as expected.
You need to troubleshoot the issue.
Which diagnostic log should you review?

  • A. Access
  • B. Firewall
  • C. Performance
  • D. Azure Activity

Answer: B

Explanation:
To troubleshoot the issue, you should review the Firewall diagnostic log. According to 2, Azure Application Gateway Web Application Firewall (WAF) logs requests that are logged through either detection or prevention mode of an application gateway that is configured with WAF. You can use this log to view and analyze blocked requests and identify false positives or false negatives.


NEW QUESTION # 26
You need to troubleshoot the issues related to VM3.
How should you complete the web link? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 27
A company uses Azure Site Recovery (ASR) to replicate and recover Azure virtual machines (VM) between Azure regions.
An administrator receives the following warning from ASR about a VM that uses P10 disks: Data change rate beyond supported limits You add OS Disk Write Bytes/Sec and Data Disk Write Bytes/Sec to the list of metrics for monitoring. You discover that the VM consistently has a data churn of greater than 8 MB/s but less than 10 MB/s.
You need to resolve the issue.
What should you do?

  • A. Uninstall the Volume Shadow Copy Service (VSS) Provider service.
  • B. Create a network service endpoint in a virtual network.
  • C. Upgrade the target storage disk.
  • D. Use AzCopy to upload data to a cache storage account.

Answer: C

Explanation:
Azure Site Recovery has limits on data change rates depending on the type of disk used for replication. If a VM has a data change rate higher than the supported limit for its disk type, it can cause replication issues or errors. To resolve this issue, you can upgrade the target storage disk to a higher tier that supports higher data change rates.


NEW QUESTION # 28
A company uses Azure AD Connect. The company plans to implement self-service password reset (SSPR).
An administrator receives an error that password writeback cloud not be enabled during the Azure AD Connect configuration. The administrator observes the following event log error:
Error getting auth token
You need to resolve the issue.
Solution: Disable password writeback and then enable password writeback.
Does the solution meet the goal?

  • A. No
  • B. Yes

Answer: A

Explanation:
The solution of disabling and re-enabling password writeback may not meet the goal of resolving the issue. According to 1, there are other steps that you should try before disabling and re-enabling password writeback, such as:
Confirm network connectivity
Restart the Azure AD Connect Sync service
Install the latest Azure AD Connect release
Troubleshoot password writeback
If none of these steps work, then you can try to disable and re-enable password writeback as a last resort.


NEW QUESTION # 29
A company has an Azure Active Directory (Azure AD) tenant. You are assigned the Owner role-based access control (RBAC) role of an Azure resource group named RG1.
An administrator grants a user named User1 the Contributor RBAC role for RG1. User1 receives an authorization error when attempting to create a Cosmos DB account in RG1.
The administrator verifies that they can create a Cosmos DB account in RG1.
You need to troubleshoot the issue.
What should you do?

Answer:

Explanation:


NEW QUESTION # 30
A company deploys the Azure Application Gateway Web Application Firewall (WAF) to protect their web
applications.
Users in a remote office location report the following issues:
* Unable to access part of a web application.
* Part of the web application is failing to load.
* Parts of the web application has activities that are not performing as expected.
You need to troubleshoot the issue.
Which diagnostic log should you review?

  • A. Firewall
  • B. Access
  • C. Azure Activity
  • D. Performance

Answer: C


NEW QUESTION # 31
A company implements Azure Firewall and deploys an Azure Firewall policy.
The policy incudes multiple application and network rules for the company's infrastructure. After deployment, an application is not accessible from on-premises computers.
You need to enable diagnostic logging for the following settings:
AzureFirewallApplicationRule
AzureFirewallNetworkRule
AzureFirewallDnsProxy
How should you complete the PowerShell cmdlet?

Answer:

Explanation:


NEW QUESTION # 32
A company migrates an on-premises Windows virtual machine (VM) to Azure. An administrator enables backups for the VM by using the Azure portal.
The company reports that the Azure VM backup job is failing.
You need to troubleshoot the issue.
Solution: Create a new manual backup in Backup center.
Does the solution meet the goal?

  • A. No
  • B. Yes

Answer: A

Explanation:
It is unlikely that creating a new manual backup in Backup center would resolve the issue of an Azure VM backup job failing after enabling backups for the VM through the Azure portal. To troubleshoot the issue, the administrator should first check the Azure VM backup job logs and identify the specific error message or code provided. This can help identify the underlying issue and the appropriate solution.
Therefore, the solution mentioned in the question is incorrect and the answer is B. No.
Reference:
Troubleshoot Azure VM backup failures (Microsoft documentation)


NEW QUESTION # 33
A company uses public Azure DNS zones.
The company reports DNS record creation and name resolution issues.
You need to troubleshoot the issues.
What are the causes of the issues?

Answer:

Explanation:


NEW QUESTION # 34
A company deploys an Azure Firewall. The company reports the following log entry:

For each of the following questions, select Yes or No.

Answer:

Explanation:


NEW QUESTION # 35
......

AZ-720 Questions - Truly Beneficial For Your Microsoft Exam: https://www.test4cram.com/AZ-720_real-exam-dumps.html

Download Microsoft AZ-720 Sample Questions: https://drive.google.com/open?id=1JYDCelUw_tTlmDNC_Cvr8r23-pV47Te_

Related Articles

more
Microsoft AZ-720 Certification Practice Exam

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Test4cram provides latest and valid test questions and dumps which help people pass exam and get the certification they want. We serve every customer at our best and guarantee 100% pass with exam cram pdf.

Disclaimer:
Test4Cram doesn't offer Real Lenovo Exam Questions.
Test4Cram does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Test4Cram does not own or claim any ownership on any of the brands.

Copyright © 2026 Test4Cram NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy