Implement IaaS solutions, provision vms

Question 1

How to create VM in Portal?

Answer 1

Search for “Virtual Machines” in global search. Click Add in Top Menu

Question 2

What is meant by Image Size

Answer 2

Select a VM size to support the workload that you want to run. The size that you choose then determines factors such as processing power, memory, and storage capacity. Azure offers a wide variety of sizes to support many types of uses. Azure charges an hourly price based on the VM’s size and operating system.

Question 3

How are VMs charged

Answer 3

Amount is based on Size, Charged Hourly

Question 4

What is Azure Spot Instance

Answer 4

Using Spot VMs allows you to take advantage of our unused capacity at a significant cost savings. At any point in time when Azure needs the capacity back, the Azure infrastructure will evict Spot VMs. Therefore, Spot VMs are great for workloads that can handle interruptions like batch processing jobs, dev/test environments, large compute workloads, and more.

Question 5

What are Inbound port rules

Answer 5

These configuration allows access to VM from public internet.

Question 6

Security recommendation for VM inbound ports?

Answer 6

Deny all and change source port for required ports, e. g. switch 22 for ssh to something else.

Question 7

What is Azure Hybrid Benefit

Answer 7

With Azure Hybrid Benefit its possible to save money on new Windows VMs when using existing licenses, up to 49%

Question 8

What is Port 3389 usually used for

Answer 8

RDP

Question 9

What is usually the RDP port when unchanged

Answer 9

3389

Question 10

How to connect to VM via RDP

Answer 10

Via RDP, its possible to download a RDP Client configuration with “Connect” button in Portal. Then use localhost\ and to login

Question 11

Powershell to Create VM?

Answer 11

New-AzVm `

- ResourceGroupName "myResourceGroup" `
- Name "myVM" `
- Location "East US" `
- VirtualNetworkName "myVnet" `
- SubnetName "mySubnet" `
- SecurityGroupName "myNetworkSecurityGroup" `
- PublicIpAddressName "myPublicIpAddress" `
- OpenPorts 80,3389

Question 12

How to Create a ResourceGroup with Powershell

Answer 12

New-AzResourceGroup -Name something -Location EastUS

Question 13

Get public Ip from VM

Answer 13

Get-AzPublicIpAddress -ResourceGroupName “myResourceGroup” | Select “IpAddress”

Question 14

How to launch the Cloud Shell

Answer 14

Top right corner of portal

Question 15

Common steps required to conect to a new vm

Answer 15

Create a new Rg if not present, create a new vm and assign it to the desired rg, open the rdp port, get the public ip addres and connect with rdp client

Question 16

What are marketplace images

Answer 16

Marketplace contains images that can be used to create new vms

Question 17

How does every powershell command start to interact with vm images

Answer 17

Get-AzVM (ImagePublisher, ImageOffer, ImageSku)

-AzVm

can be Get or New

Question 18

What parameter can be used to perform a VM creation as Background Task

Answer 18

Add -AsJob to create command

Question 19

How to retrieve information from a powershell command that is running in background

Answer 19

Get-Job

Question 20

How to List VM sizes that are available options in one Location via Powershell

Answer 20

Get-AzVmSize -Location “EastUS”. All isted can be used in that region option during create.

Question 21

How to get VM Size from existing VM/resource

Answer 21

Get-AzVmSize -ResourceGroupName “Rg” -Name “Vm”

So again unique identifier required the command

Question 22

General Concept of Updating a VM via Powershell?

Answer 22

Store vm object into variable using Get-AzVM, then change its propierties using the variable. When done, use Update-AzVM

Question 23

Is it possible to Update a VM via Powershell while it is running?

Answer 23

Yes, its possible (E.g. Size is possible). But still silent reboot is done. When a size Option is not availble in the cluster, a relocation will happen. For some changes it is required to stop the vm (Stop-AzVM), do the update (Update-AzVM) and when done, start it again (Start-AzVM)

Question 24

What are the VM power states

Answer 24

Starting, Running, Stopping, Stopped, Deallocating, Deallocated (Removed from Hypervisor, not charged) AND “-“ for unknown

Question 25

Ways to administer resources/VMs

Answer 25

Resource Manager, PowerShell, Azure CLI, Azure REST API, Azure Client SDK, Azure VM Extensions
, Azure Automation Services

Question 26

What are resource manager templates

Answer 26

JSON Files that define the resources for a VM. CLI, PS, and Rest API can be used to automate processing

Question 27

What is Azure Client SDK

Answer 27

Azure SDK to integrate azure administration in various programming languages. For example c# nuget packagel Also for Java and other

Question 28

Suppose you want to run a network appliance on a virtual machine. Which workload option should you choose?
- General purpose

• Compute optimized
• Memory optimized
• Storage optimized

Answer 28

Compute optimized virtual machines are designed to have a high CPU-to-memory ratio. Suitable for medium traffic web servers, network appliances, batch processes, and application servers.

Question 29

True or false: Resource Manager templates are JSON files?

Answer 29

True

Question 30

True or false: for security reasons, you must use an image from the official Azure Marketplace when creating a new virtual machine.

Answer 30

False, Azure lets you configure your virtual machines to meet your needs. This includes support for using your own VM images.

Question 31

What is the effect of the default network security settings for a new virtual machine?

• Neither outbound nor inbound requests are allowed.
• Outbound request are allowed. Inbound traffic is only allowed from within the virtual network.
• There are no restrictions: all outbound and inbound requests are allowed.

Answer 31

Outbound requests are considered low risk, so they are allowed by default. Inbound traffic from within the virtual network is allowed. By placing a VM in a virtual network, the VM owner is implicitly opting-in to communication among the resources in the virtual network.

Question 32

Suppose you have several Linux virtual machines hosted in Azure. You will administer these VMs remotely over SSH from three dedicated machines in your corporate headquarters. Which of the following authentication methods would typically be considered best-practice for this situation?

• Username and password
• Private key
• Private key with passphrase

Answer 32

Private key with passphrase

Question 33

When creating a Windows virtual machine in Azure, which port would you open using the INBOUND PORT RULES in order to allow remote-desktop access?

HTTPS

SSH (22)

RDP (3389)

Answer 33

RDP (3389)

Question 34

Suppose you have an application running on a Windows virtual machine in Azure. What is the best-practice guidance on where the app should store data files?

The OS disk (C:)

The Temporary disk (D:)

An attached data disk

Answer 34

An attached data disk, Dedicated data disks are generally considered the best place to store application data files. They can be larger than OS disks and you can optimize them for the cost and performance characteristics appropriate for your data.

Question 35

What is the final rule that is applied in every Network Security Group?

Allow All

Deny All

You configure the final rule to your needs

Answer 35

Deny All