70-534 Architecting Azure Solutions

Light IT up.
Microsoft Learning
Ignite | May 4 8, 2015 | Chicago,
IL
Mark Grimes | MCS | MCT
Exam Preparation
70-534
Mark Grimes
Senior Consultant
Microsoft Consulting Services
Aka.ms/certification/70-534
Session Objectives And Takeaways

Session Objective(s):
Objective 1: Understand the Breakdown of Exam Contents by category
Objective 2: Understand the correct study resources and links
Objective 3: Try to get you 4-7 conceptual points ahead!
Key Takeaway 1
Increase participants ability to successfully prepare for and pass, Exam 70-534
Key Takeaway 2
Understand architectural decisions for Microsoft Azure solutions
Azure Certification
Three Exams = MCSD: Azure Solutions Architect = BRAND
NEW!
Roadmap Azure Certification
http://bit.ly/Ignite-CertApp
Breakdown
Mark Grimes
70-534 Exam Objectives

Design Azure Infrastructure and
Networking
Secure Resources
Design and Application Storage and
Data Access Strategy
Design an Advanced Application
Design Websites
Design a Management, Monitoring and Business Continuity Strategy; 17%
Design a Management, Monitoring

and Business Continuity Strategy
Design Azure Infrastructure and Networking; 17%
Design Websites;
Secure
17%
Resources; 17%
Design an Advanced Application; 17%
Design and Application Storage and Data Access Strategy; 17%
Side-by-side Comparison | 70533/4

70-533
70-534
Implement Websites
Design Websites
Implement Cloud Services
Implement Storage
Design an Application Storage and Data Access Strategy
Implement Cloud Services
Implement Virtual
Networks
Implement an Azure AD
Implement Virtual
Machines
Design Azure Infrastructure and Networking
Implement Cloud Services Design an Advanced Application
Microsoft Azure components

Compute
App Services
Virtual Machines
Web Sites
Media Services
Service Bus
Mobile Services
Cloud Services
Web Roles
Worker Roles
Notification Hubs
Scheduler
Data
Services
Storage
SQL Database
HDInsight
Cache
Automation
BizTalk Services
BizTalk Hybrid Connections
Visual Studio Online
Active Directory
Multi Factor Authentication
API Management
Azure RemoteApp
Network
ExpressRoute
Virtual Network
Traffic Manager
CDN
SDKs
.NET
Java
PHP
Python
Node.js
Ruby
Design Azure Infrastructure &

Networking
Glob
al
Foun
datio
n
Servi
ces
Virtu
al
Netw
orks
and
Servi
ces
Azur
e
Com
pute
VPN
&
Expr
ess
Rout
e
Azur
e
Servi
ces
Global Foundation Services (GFS)

Datacenters
Datacenter Architecture
19 Datacenters and growing
Integrates Software, hardware, operations
Regional Availability
2 Regional Datacenters per Geographic Area
16 Buildings per Region
~600,000 Servers per region
Fiber Infrastructure
High Availability
Microsoft
Azure
Thousands of Servers in pluggable units

Full Power Redundancy and Contingency
Triple Redundant data storage and geo replication
Office
365
Consumer
(Hotmail,
OneDrive,
etc.)
Other
Business
(CRM, etc.)
Global Foundation Services
M I C R O S O F T C O N F I D E N T I A L I N T E R N A L O N LY
MS IT
Virtual Networks and Services

DNS
DNS Resolves VMs by name within the same cloud service
Machine names are modeled explicitly and registered in the DNS service
BYO DNS Use your on-premise DNS servers
Deploy a DNS server in Windows Azure
Use public DNS services
DHCP
Public IP Addresses in Azure Pool
Public IP to Every VM = PIP
IP to Cloud Services = VIP or Reserved IP is STICKY!
Can Move IPs across cloud services
Virtual Networks and Services

Network Storage Groups
Tied to subscription
Control traffic from one VM to another
Contains Access Control rules
Requires a regional Vnet if not, use ACL
Not Compatible with Vnet tied to Affinity group
Understand ACLs
Can Secure VM with input ACLs
Can Permit or Deny
Think Packet Filtering
For Endpoints only
Can also configure with PS
Azure Compute
IaaS
Infrastructure-as-a-Service
Storage/Compute/Network
PaaS
Infrastructure-as-a-Service
-faster, cheaper, lower risk
Azure Compute
Machine
Classifications
A Family
Highest value VM Size
Basic and Standard Sizes
General Purpose and High Memory
G Family
High Performance A8/A9 (RDMA)
D Family
60% faster CPU
Optimized for data workloads

Up to 32 CPU cores, 448 GB RAM,
6.5 TB local SSD
Intel processor
MICROSOFT CONFIDENTIAL INTERNAL
Up to 112 GB MemoryLatest generation
O N LY
Cloud Services, Roles and

Instances
CLOUD SERVICE
Cloud Service is a management, configuration, security, networking and service model boundary
ROLES
VM1
VM2
VM3
WORKER ROLE
VM4
VM5
VM
INSTANCES
WEB ROLE
Virtual Machines
Standalone Virtual Machines are Cloud Services roles with exactly

one instance
CLOUD SERVICE
VIRTUAL MACHINE
VM
Connected Virtual Machines
Multiple Virtual Machines can be hosted within the same cloud service
CLOUD SERVICE
VIRTUAL MACHINE
VIRTUAL MACHINE
VM
VM
Azure Compute
Fault Domains
Represent groups of resources anticipated
to fail together i.e. Same rack, same server
Fabric spreads instances across fault at least
2 fault domains
Update Domains
Represents groups of resources that will be
updated together
Host OS updates honour service update
domains
Specified in service definition
Default of 5 (up to 20)
Availability Sets
VMs in separate Fault Domains
MICROSOFT CONFIDENTIAL
SLA 99.95 | HW SW | Windows & Linux
I N T E R N A L O N LY
VPN and Express Route

Cloud
Customer
Secure point-to-site
connectivity
Virtual network (Point-to-Site)
Secure site-to-site
VPN connectivity
Virtual network (Site-to-Site)
Private site-to-site
connectivity
ExpressRoute
Segment and workloads

Developers
POC Efforts
Small scale
deployments
Connect from
anywhere
SMB, Enterprises
Connect to Azure
compute
IaaS and PaaS workloads
SMB & Enterprises

Mission critical workloads
Backup/DR, media, HPC
Connect to all hardware
Reduces Risk, Complexity, Costs, Latency | Increases Bandwidth

& Availability
See
Describe Azure App Services

Azure AD
Identity and Access capabilities
Leverage for SSO for LoB and SaaS
Query and Manage Objects through Graph API
Azure Cache
Provides super fast data access
3 Flavors: Azure Redis, Managed Cache Service
In-Role Cache
MFA
Requires verification
Mobile App, phone call, SMS
With Azure AD or customer apps/directories (SDK)
On-premises option available
Service Bus
Hosted Communications Infrastructure
Relayed and Brokered messaging
Reliably stores messages until other side
ready
Describe Azure Services

Traffic Manager
Control the distribution of user traffic to various endpoints
Intelligent Policy Engine to DNS queries
Media Services
Scalable media management and delivery of applications
Secure upload, store, encode & package data
Both on-demand and streaming
CDN
Global Solution
Deliver High Bandwidth Content
Provide Maximum bandwidth
This Azure Service provides

connectivity options for WCF and other
service endpoints e.g. REST
1. Service Bus
2. Azure Cache
3. MFA
4. CDN
5. Traffic Manager
Secure Resources
Usin
g
Hybr
id
Iden
titie
s
Usin
g
Man
age
d
Iden
titie
s
Data
Sec
urity
Solu
tion
Role
Bas
ed
Acce
ss
Stra
tegy
Secure Resources using Managed

Identities
AD On-premises vs Azure
AD
Graph API
Programmatic Access to Azure AD | RESTful
CRUD | Application must be registered and
configured
Requests use standard HTTP Methods
OAuth
AuthZ web apps and web APIs in Azure AD Tenant
Access authorization, role-based assignment
for app and user authorization
OpenID Connect
Secure Resources using Hybrid

SAML
AuthN
Identities
Claims or Assertions about objects
XML token form
DirSync Replication
Synchronization between On-premises and Azure AD
Filtering by OU and or Attributes
Federation via AD FS and ACS

AD FS - SSO by trusted relationships
ACS Cloud Based AuthN and AuthZ
Integrated with stds based IdPs and Web Identities
Multiple protocol support and web platforms
Use Appropriate Data Security

Data
In Transit
Solution
Import/Export Service
Think Hybrid, Across Service Bus
Also includes internal movement e.g. 2 VMs
Bitlocker Drives to protect in transit Mandatory
Customer Facing secured with
SSL/TLS
All LDAP within and between datacenters is signed
Data at Rest
Includes: Storage Objects, containers % Physical Media
2 Types: Data in Production and not e.g. VHD
Secret keys all stored in Directory
Encrypted using Distributed Key Manager (DKM)
See Protecting Data in Microsoft Azure
Design an RBAC Strategy

Secure Resource Scopes
Every Azure subscription associated w/ Azure Active Directory.
Built in Roles assigned to Azure AD users, groups, and services
3 Ways to Assign roles: 1. subscription 2. resource group 3. resource level.
Assigned role defines the level of access on the Azure resource.
3 built-in roles
Owner: has full control over Azure resources. Owner can perform all management
operations on a resource including access management.
Contributor: can perform all management operations except access management. So, a
contributor cant grant access to others.
Reader: can only view resources. Reader cant view secrets associated with a resource.
Xplat-cli | Same functionality as Azure Portal
Written in JavaScript and requires Node.js @github
This provides programmatic access to

Azure AD
1. Remote PowerShell
2. LDIFDE
3. Graph API
4. OpenID Connect
5. OAuth
Design Application Access and Data

Strategy
Data
Stora
ge
Mobil
e
Servi
ces
Push
Notifi
catio
n
Web
API
Data
Acce
ss
Strat
egy
Design Data Storage

Data Storage Options
Table Storage
SQL Database, My SQL
DocumentDB (NoSQL)
Blob
MongoDB
Data Security Options

Azure Storage | Share Access Signature - SAS
SQL Database same model as on-premises
Azure Mobile Services

Native
SDKs
X-Plat SDKs
HTML5/JS
Xamarin
Phonegap
Sencha
Data
SQL
REST API
Windows
iOS
Android
Offline
Sync
Office
365
Salesforc
e
Dynamics
Tables
Mongo DB
On-premises
User Authentication
Faceboo
k
Twitter
Microsoft
Googl
e
Azure
Active
Directory
Directory
Push Notifications
Node.js
Express
.NET
Web API
Androi
Window
d
s
Chrom
e
iOS
OSX
Kindle
In-app
Design Applications using Mobile

Create
and Consume Mobile Services
Services
Choose Backend | JavaScript or .Net | no going back!
Globally Unique name w/in Mobile Svcs | 2-60 char
Requires Azure SQL | Use existing (saves cost) or create new
Must use Region | Affinity groups not used
See also See more for Data Access
Data stored in Tables
Integrate offline sync capabilities into an App

Update App to support feature
initialize MobileServiceClient.SyncContext to a local store
Then reference your table through the IMobileServiceSyncTable interface
SQLite for Windows 8 Phone projects
Change Processor Architecture to x86, x64 or ARM
In VS, run Manage Nuget Packages , install the
WindowsAzure.MobileServices.SQLiteStore
package see more
Design Application that use

Implement
Push notification services in
Notifications
Mobile Svcs
Register App with WINS and configure Mobile Services

Update the app to register for notifications
Update server scripts to send notifications
Insert data to receive push notifications see more
Send Push Notifications to all subscribers

Notification Hubs to broadcast
Use TAGS to to subscribe for notifications for different news categories
Use Template feature for localization. Can use tags also e.g. world_en world_fr
Send Push Notifications to a segment of

subscribers
Design Applications that use a

Implement
Web API a Custom API
Publish to External, Partner and Internal developers
Extend Operations for data and services
Each API has 1 or more operations
Each API can be added to one or more products
Thus..Subscribe to Product > which contains that API,
then call the APIs operation
See more
Scale using Azure Websites

Free -> Shared -> Basic -> Standard
2 Actions: Change Plan + Configure Settings (Scale tab)
Choose Instance Size | S,M,L | but not in Shared mode
Select Instance Count see more
Design Applications that use a

Offload
long running Websites WebJobs
Web API
Run Programs or Scripts 3 ways
1. On demand
2. 2.Continuously
3. 3.On a schedule
No Additional Cost to use WebJobs
Deploy in 3 ways:
1. Portal
2. VS
3. Continuous Delivery
See more
Secure web API w/Azure AD

Developer and Standard Pricing Tier
Client Certs | API Mgt REST API | Ext IDs | Delegation
I C R O S O F T iOS
C O N F I&
DEN
TIAL INTERNAL
Open Source for .Net, WindowsM Store,
Android
O N LY
Design a Data Access Strategy for

Connect
Hybrid to On-premises using
Service Bus
BizTalk Hybrid Connections
VPN Capabilities of websites
Constraints for Connectivity with VPN

S2S - Need externally facing IPv4 IP address & VPN device or RRAS
P2S - must have VPN client on every client
ExpressRoute Service Provider must support e.g. MPLS
Options to join VMs to domains or Cloud

services
Select Existing Cloud Service or Create New One
Design a Media Solution

Overview
Build Scalable Media Management and Delivery
Securely Upload, Store, Encode and Package AV for On-Demand and Live Streaming
Clients such as TV, PC, and mobile devices
Can use end-end workflows
Streaming Capabilities
Ingest, Preview, Store, Deliver Content
2 Encode Options
Encode directly to Smooth Streaming
Encode to MP4 and then convert to Smooth Streaming
Use Common Protocols e.g. MPEG DASH, Smooth, HLS, HDS
Or to a Content Delivery Network for further Distribution scale to millions
Design a Media Solution

Video on-demand
Blobs only supported storage type
Monitoring Services
Blobs only supported storage type
Monitor Blob, Table and Queue Services
3 Levels
Minimal - Collects metrics such as ingress/egress, availability, latency, and success percentages,
which are aggregated for the Blob, Table, and Queue services.
Verbose - In addition to the minimal metrics, collects the same set of metrics for each storage
operation in the Azure Storage Service API. Verbose metrics enable closer analysis of issues that
occur during application operations.
Of - Turns off monitoring. Existing monitoring data is persisted through the end of the retention
period.
This feature set of Azure Media

Services encrypts live streaming or on
demand content
1. Encode
2. Ingest
3. Protect
4. Stream
Design an Advanced Application

Comp
ute
Intens
ive
Worke
r
Roles
&
Statel
ess
Comp
onent
s
Appro
priate
Storag
e
Option
Integr
ate
Azure
Servic
es
Create Compute-intensive
Design
High Performance Computing (HPC)
applications
HPC Pack 2012 R2
Microsoft MPI 2012 R2
Scheduler
Other compute-intensive applications

MPI Message Passing Interface Applications on A8 and A9 instances
Azure Worker Role
HPC Services for Excel
Java on a Virtual Machine
Deployment Options
Hybrid with On-premises
Microsoft Azure exclusively
Parametric Sweep
Create Long-Running Applications

Implement Worker Roles
Can run asynchronous, long-running or perpetual tasks independent of user interaction or
input.
Design Stateless Components

Follow Communications Pattern of WCF
Allows Fabric to route requests to any Web Role in Cluster
Select the Appropriate Storage

Queue
Centric pattern for development
Option
Appropriate Storage for Performance
Storage Options
For Cloud Services
VMs interacting with
Storage Service
SQL Database
Integrate Azure Services

Use of Machine Learning
A fully managed service
Create, test, operationalize and manage predictive analytics solutions in the cloud.
Big Data
HDInsight service that deploys and provisions Apache Hadoop clusters in the cloud
Provides Software Framework to manage, analyze and report on big data
Media Services
Scalable Media Management and Delivery Applications
Can Securely upload, store, encode and package audio/video content
OnDemand or Streaming
Azure Search
Delegates Server and Infrastructure Management
CROSOFT CONFIDENTIAL INTERNAL
Ready to us service to populateM I search
data
O N LY
Which is the best option to run

synchronous, long running or perpetual
tasks
1. Virtual Machines
2. Cloud Services
3. Worker Roles
4. Web Jobs
5. Network Security Groups
Design Websites
Scalab
ility &
Perfor
manc
e
Deplo
y
Websi
tes
Busin
ess
Contin
uity
Websites for Scalability and

Websites
Performance
Near instant deployment
SSL and Custom Domain Names only on Basic / Std modes
Webjobs provide background processing for independent scaling
Can Scale to larger machines without Redeploy
VMs
Need Affinity Group and LB to prevent simultaneous restarts for maintenance or HW fails
Cloud Services
Better for more control over web server env
Remote into Server or Startup Tasks
For all the Above See
Websites, Cloud Services and Virtual Machines Comparison
Deploy Websites
Implement Azure Site
Extensions
Site extensions are web apps with simple
metadata for extension registration.
Can be authored for any development stack
supported by the Azure Websites platform
An extensible management end point per
Azure Website
Source code editors e.g. VSO for connected
resources such as a MySQL database
Available per website in Azure Preview Portal:
Packaged in NuGet format
Deploy Websites
Create Packages
Continuous Delivery w/ VSO
Use Tem Foundation Version Control (TFVC) for source control
Deployment Slots
STANDARD mode websites required
Staging Slot
Production Slot
Web Deploy
Older IIS Extension method to Export and Import
FTP Locations Settings

Deployment or Profile Publishing Settings
Websites for Business Continuity

Scale up and out - Azure Websites and SQL
Design for DR
Secondary Region
Publish to new region
Update DNS, SSL, CNAME, etc..
Design Data Tier

Azure SQL
Built-in HA
multiple copies of all data in different physical nodes located across fully independent
physical sub-systems to mitigate outages due to failures of individual server components,
such as hard drives, network interface adapters, or even entire servers. At any one time,
three database replicas are running
What is the best option to add

background processing to your
app?
1. Virtual Machines
2. Cloud Services
3. Worker Roles
4. Web Jobs
5. Network Security Groups
Design a Management, Monitoring and

Business Continuity Strategy
Hybrid
and
Azurehoste
d for
Syste
m
Cente
r
Monit
oring
Strate
gy
BC/DR
Capab
ilities
Desig
n DR
Strate
gy
Azure
Autom
ation
and
PS WF
Autom
ation
Use
Cases
Hybrid & Azure Architectures for

System
Common Center
Elements
Identity, Virtualization, Management, Development and Data Platform across
Considerations for Managing resources with

System Center
Configuration Manger Client Device and Application Management
Operations Manager Monitoring and Alerting
Virtual Machine Manager DataCenter Mgt
Service Manager ITIL based SM and Human WF + CMDB
Data Protection Manager Backup and Disaster Recovery
Orchestrator Workflow Engine
Scenarios for Hybrid

Private Cloud
Public Cloud
Design a Monitoring Strategy

Operations
Manager
Webtest Upload
Tra
nsa
ctio
n
Real User Experience
ion
Transact
Application
/
d
l
i
Bu loy
p
De
Webtest
Work Items
Visual Studio Developer
IntelliTrace
Alerts
nce
a
m
or
Perf
lity
i
b
a
i
Rel
ity
l
i
b
a
l
Avai
Webtest
Global Service
Monitor
Team
Foundation
Server
Azure BCR/DR Capabilities

Hyper-V Replica
Simple, Affordable Second Site
Extended Replication -3rd
Hardware Agnostic either side
Hybrid Cloud
Seamless Integration:
Private Cloud to
Service Provider Cloud
Windows Azure
ASR
WHEN TO USE: 2nd Site / Use SCCMM, Unprotected workloads
WHEN NOT: Workload requires synchronous replication, data outside of VHD
Workload needs to recover physical servers, beyond Hyper-V replicas capabilities
Disaster Recovery Strategy

Backup Solutions
Microsoft Azure Backup
Reliable, Simple, Efficient
Use for Branch Office or Small Business
Hyper-V Recovery Manager
StorSimple
Proprietary Device | Multiple Tiers
Cloud Integrated Storage (CiS)
Seamless view of ALL Enterprise Storage | Windows and VMWare
System Center Data Protection Manager

Can Store backed up DPM data in Azure
As Physical or VM
As Azure VM
Azure Automation Use Cases

Azure Automation
Runbooks
Chef
Configure and Automate. Apply Fine Grained Permissions
https://www.chef.io/solutions/windows/
Puppet
Can Configure and Manage Windows and Azure
http://puppetlabs.com/solutions/microsoft
Desired State Configuration

Make it So
Which of the following is NOT part

of the Azure Monitoring Strategy?
1. Automated System Recovery (ASR)
2. Systems Center Operations Pack (SCOM)
3. Management Pack for Windows Azure
4. Desired State Configuration (DSC)
5. Global Service Manager (GSM)
Session Objectives And Takeaways

Session Objective(s):
Objective 1: Understand the Breakdown of Exam Contents by category
Objective 2: Understand the correct study resources and links
Objective 3: Try to get you 4-7 conceptual points ahead!
Key Takeaway 1
Increase participants ability to successfully prepare for and pass, Exam 70-534
Key Takeaway 2
Understand architectural decisions for Microsoft Azure solutions
Resources
Microsoft Learning Site (
http://bit.ly/Ignite-Learning)
Your one-stop location for info on all available Microsoft certifications, training, and
exam prep resources
Microsoft Virtual Academy (
http://bit.ly/Ignite-VirtAcad)
Your source for on-demand, online technical training
Microsoft Training and Certification Guide (
http://bit.ly/Ignite-CertApp)
Interactive Windows 8.1 app, to help you choose and traverse your path
http://aka.ms/certification/70-534
2015 Microsoft Corporation. All rights reserved.
Extra Study
Slides
70-534
ExpressRoute vs VPN
Virtual Network (Point-to- Virtual Network (Site-to- ExpressRoute
site)
site)
Exchange Provider
ExpressRoute Network
Service Provider
Azure services
supported
Cloud ServicesVirtual
Machines
Cloud ServicesVirtual
Machines
Refer to validated list.
Refer to validated list.
Typical
Bandwidths
Typically < 100 Mbps

aggregate
Typically < 100 Mbps

aggregate
200 Mbps, 500 Mbps, 1

Gbps and 10 Gbps
10 Mbps, 50 Mbps, 100

Mbps, 500 Mbps, 1 Gbps
Protocols
Supported
Secure Sockets Tunneling

Protocol (SSTP)
NSPs VPN technologies

(MPLS, VPLS, )
Routing
Static
IPsec (
Direct connection over
Refer to VPN page for more VLANs
details
)Static We support policy BGP
based (static routing) and
route-based (dynamic
routing VPN)
Connection
resiliency
Active-passive
Active-passive
Active-active
Active-active
Access to all Azure

services (validated list)
Enterprise-class and
mission critical workloads.
Backup
Big Data
Azure as a DR site
Access to all Azure

services (validated list)
Enterprise-class and
mission critical workloads.
Backup
Big Data
Azure as a DR site
Typical use cases Prototyping, dev / test / lab Dev / test / lab scenarios
scenarios for cloud services and small scale production
and virtual machines
workloads for cloud
services and virtual
machines
BGP
Design a Monitoring Strategy

Built-in Abilities
Diagnostic Monitor:
Web & Worker Roles
Global Service Manager
System Center Capabilities

Management Packs: Azure, Azure SQL, SQL
Third Party Tools

Open Source
Ops Manager, Application Insights (VSO) Telemetry Data
Use Cases for WSUS

Config Manager
Custom Solutions
Architecture Constructs: Availability
Groups and Update Domains
VM Type and Size for a Solution

General
Purpose VMs
Memory
Intensive VMs
Compute
Intensive VMs
Compute Instance
Name
Extra Small (A0)
Virtual Cores RAM

Shared
768 MB
Small (A1)
1.75 GB
Medium (A2)
3.5 GB
Large (A3)
7 GB
Extra Large (A4)
14 GB
Compute Instance
Name
Virtual
Cores
RAM
A5
14 GB
A6
28 GB
A7
56 GB
Compute Instance
Name
Virtual
Cores
RAM
Networking
A8
56 GB
40 Gbit/s InfiniBand
A9
16
112 GB
40 Gbit/s InfiniBand
http://azure.microsoft.com/en
-us/pricing/details/virtualmachines/
Each Persistent Data Disk Can be up to 1 TB with up to 16 disks

per VM
Graph API
https://graph.windows.net/contoso.com/tenantDetails?apiversion=2013-11-08
Returnstenant levelInformation
including company name, tech contact,
subscriptions
ttps://graph.windows.net/contoso.com/groups/7373b0af-d462h
406e-ad26-f2bc96d823d9/members?api-version=2013-11-08
Returns a groups members
https://graph.windows.net/contoso.com/users/adam@contoso.com/
memberOf?api-version=2013-11-08
Get a users direct group membership
manager?api-version=2013-11-08
Get an individual user's manager
directReports?api-version=2013-11-08
Get an individuals Direct Reports
https://graph.windows.net/contoso.com/directoryObjects/2bb889
2b-b7bf-4ae9-b2f2-02d9103cb82b?api-version=2013-11-08
Resolve an directory object via GUID
https://graph.windows.net/contoso.com/roles?api-version=201311-08
Return Roles
ttps://graph.windows.net/contoso.com/subscribedSkus?apih
version=2013-11-08
Return all subscriptions that the tenant

owns

70-534 Architecting Azure Solutions

Enviado por

Dados do documento

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

70-534 Architecting Azure Solutions

Enviado por

Direitos autorais:

Formatos disponíveis

Light IT up.

Session Objectives And Takeaways

Roadmap Azure Certification

70-534 Exam Objectives

Design a Management, Monitoring

Design Azure Infrastructure and Networking; 17%

Design an Advanced Application; 17%

Design and Application Storage and Data Access Strategy; 17%

Side-by-side Comparison | 70533/4

Design Azure Infrastructure and Networking

Implement Cloud Services Design an Advanced Application

Microsoft Azure components

Design Azure Infrastructure &

Global Foundation Services (GFS)

Thousands of Servers in pluggable units

Global Foundation Services

Virtual Networks and Services

Virtual Networks and Services

High Performance A8/A9 (RDMA)

Optimized for data workloads

Cloud Services, Roles and

Standalone Virtual Machines are Cloud Services roles with exactly

Connected Virtual Machines

VPN and Express Route

Virtual network (Point-to-Site)

Virtual network (Site-to-Site)

Segment and workloads

SMB & Enterprises

Reduces Risk, Complexity, Costs, Latency | Increases Bandwidth

Describe Azure App Services

Describe Azure Services

This Azure Service provides

Secure Resources using Managed

Secure Resources using Hybrid

Federation via AD FS and ACS

Use Appropriate Data Security

Design an RBAC Strategy

This provides programmatic access to

Design Application Access and Data

Design Data Storage

Data Security Options

Azure Mobile Services

Design Applications using Mobile

Integrate offline sync capabilities into an App

Design Application that use

Register App with WINS and configure Mobile Services

Send Push Notifications to all subscribers

Send Push Notifications to a segment of

Design Applications that use a

Scale using Azure Websites

Design Applications that use a

Secure web API w/Azure AD

Design a Data Access Strategy for

Constraints for Connectivity with VPN

Options to join VMs to domains or Cloud

Design a Media Solution

Design a Media Solution

This feature set of Azure Media

Design an Advanced Application

Other compute-intensive applications

Create Long-Running Applications

Design Stateless Components

Select the Appropriate Storage

Integrate Azure Services