NEW QUESTION 1
DRAG DROP
You mc configuring Azure DevOps build pipelines. You plan to use hosted build agents.
Which build agent pool should you use to compile each application type? To answer, drag the appropriate built agent pools to the correct application types. Each butt agent pool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Box 1: Hosted macOS
Hosted macOS pool (Azure Pipelines only): Enables you to build and release on macOS without having to configure a self-hosted macOS agent. This option affects where your data is stored.
Box 2: Hosted
Hosted pool (Azure Pipelines only): The Hosted pool is the built-in pool that is a collection of Microsoft-hosted agents.
Incorrect Answers:
Default pool: Use it to register self-hosted agents that you've set up.
Hosted Windows Container pool (Azure Pipelines only): Enabled you to build and release inside Windows containers. Unless you're building using containers, Windows builds should run in the Hosted VS2021 or Hosted pools.
References: https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/v2-osx

NEW QUESTION 2
unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution
After you answer a question in this section, you will NOT be able to return to it. As a result these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps deployment. You need Azure DevOps to send a notification to Jenkins when a developer commits
changes to a branch in Azure Repos.
Solution: You create a service hook subscription that uses the build completed event Does this meet the goal?

• A. Yes
• B. No

Answer: A

NEW QUESTION 3
Your company plans to use an agile approach to software development You need to recommend an application to provide communication between
members of the development team who work in locations around the world. The
application must meet the following requirements:
¡E Provide the ability to isolate the members of efferent project teams into separate communication channels and to keep a history of the chats within those channels.
¡E Be available on Windows 10, Mac OS, iOS, and Android operating systems.
¡E Provide the ability to add external contractors and suppliers to projects.
¡E Integrate directly with Azure DevOps. What should you recommend?

• A. Octopus
• B. Bamboo
• C. Microsoft Project
• D. Slack

Answer: D

Explanation:
Slack is a popular team collaboration service that helps teams be more productive by keeping all communications in one place and easily searchable from virtually anywhere. All your messages, your files, and everything from Twitter, Dropbox, Google Docs, Azure DevOps, and more all together. Slack also has fully native apps for iOS and Android to give you the full functionality of Slack wherever you go. Integrated with Azure DevOps
This integration keeps your team informed of activity happening in its Azure DevOps projects. With this integration, code check-ins, pull requests, work item updates, and build events show up directly in your team's Slack channel.
Note: Microsoft Teams would also be a correct answer, but it is not an option here. References:
https://marketplace.visualstudio.com/items?itemName=ms-vsts.vss-services-slack

NEW QUESTION 4
Your company uses a Git repository in Azure Repos lo manage the source code of a
web application. The master branch is protected from direct updates. Developers work on new features in the topic branches.
Because of the high volume of requested features, it is difficult to follow the history of the changes to the master branch.
You need to enforce a pull request merge strategy. The strategy must meet the following requirements:
¡E Consolidate commit histories
¡E Merge tie changes into a tingle commit
Which merge strategy should you use in the branch policy?

• A. Git fetch
• B. no-fast-forward merge
• C. squash merge
• D. fast-forward merge

Answer: C

Explanation:
Squash merging is a merge option that allows you to condense the Git history of topic branches when you complete a pull request. Instead of each commit on the topic branch being added to the history of the default branch, a squash merge takes all the file changes and adds them to a single new commit on the default branch. A simple way to think about this is that squash merge gives you just the file changes, and a regular merge gives you the file changes and the commit history. Note: Squash merging keeps your default branch histories clean and easy to follow without demanding any workflow changes on your team. Contributors to the topic branch work how they want in the topic branch, and the default branches keep a linear history through the use of squash merges. The commit history of a master branch updated with squash merges will have one commit for each merged branch. You can step through this history commit by commit to find out exactly when work was done.
References: https://docs.microsoft.com/en-us/azure/devops/repos/git/merging-withQuestions
& Answers PDF P-43 squash

NEW QUESTION 5
Your company has an on-premises Bitbucket Server that is used for Git-based source control. The server is protected by a firewall that blocks inbound Internet traffic.
You plan to use Azure DevOps to manage the build and release processes Which two components are required to integrate Azure DevOps and Bitbucket? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one port.

• A. an External Git service connection
• B. a Microsoft hosted agent
• C. service hooks
• D. a self- hosted agent
• E. a deployment M group

Answer: AD

Explanation:
When a pipeline uses a remote, 3rd-party repository host such as Bitbucket Cloud, the repository is configured with webhooks that notify Azure Pipelines Server or TFS when code has changed and a build should be triggered. Since on-premises installations are normally protected behind a firewall, 3rd-party webhooks are unable to reach the on-premises server. As a workaround, you can use the External Git repository type which uses polling instead of webhooks to trigger a build when code has changed.
References: https://docs.microsoft.com/enus/ azure/devops/pipelines/repos/pipeline-options-for

NEW QUESTION 6
Your company uses cloud-hosted Jenkins for builds.
You need to ensure that Jenkins can retrieve source code from Azure Repos. Which three actions should you perform? Each correct answer presents part of the solution
NOTE: Each correct answer selection is worth one point

• A. Add the Team Foundation Server (TFS) plug-in to Jenkins.
• B. Create a personal access token m your Azure DevOps account.
• C. Create a webhook in Jenkins.
• D. Add a domain to your Jenkins account.
• E. Create a service hook m Azure DevOps.

Answer: ABE

Explanation:
References:
https://blogs.msdn.microsoft.com/devops/2021/04/25/vsts-visual-studio-teamservices- integration-with-jenkins/
http://www.aisoftwarellc.com/blog/post/how-to-setup-automated-builds-usingjenkins- and-visual-studio-team-foundation-server/2044

NEW QUESTION 7
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who work in locations around the world. The applications must meet the following requirements:
„hProvide the ability to isolate the members of different project teams into separate
communication channels and to keep a history of the chats within those channels.
„hBe available on Windows 10, Mac OS, iOS, and Android operating systems.
„hProvide the ability to add external contractors and suppliers to projects.
„hIntegrate directly with Azure DevOps. What should you recommend?

• A. Microsoft Project
• B. Bamboo
• C. Microsoft Lync
• D. Microsoft Teams

Answer: D

Explanation:
„hWithin each team, users can create different channels to organize their communications by topic. Each channel can include a couple of users or scale to thousands of users.
„hMicrosoft Teams works on Android, iOS, Mac and Windows systems and devices. It also works in Chrome, Firefox, Internet Explorer 11 and Microsoft Edge web browsers.
„hThe guest-access feature in Microsoft Teams allows users to invite people outside their organizations to join internal channels for messaging, meetings and file sharing. This capability helps to facilitate business-to-business project management.
„hTeams integrates with Azure DevOps. References:
https://searchunifiedcommunications.techtarget.com/definition/Microsoft-Teams

NEW QUESTION 8
DRAG DROP
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the appropriate security toots to the correct stages. Each security tool may be used once, more than once, or not at all. You may
need to drag the split bar between panes or scroll to view content NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Box 1: Threat modeling
Threat modeling¡¦s motto should be, ¡§The earlier the better, but not too late and never ignore.¡¨
Box 2: Static code analysis
Validation in the CI/CD begins before the developer commits his or her code. Static code analysis tools in the IDE provide the first line of defense to help ensure that security vulnerabilities are not introduced into the CI/CD process.
Box 3: Penetration testing
Once your code quality is verified, and the application is deployed to a lower environment like development or QA, the process should verify that there are not any security vulnerabilities in the running application. This can be accomplished by executing automated penetration test against the running application to scan it for vulnerabilities.
References: https://docs.microsoft.com/en-us/azure/devops/articles/securityvalidation- cicd-pipeline?view=vsts

NEW QUESTION 9
DRAG DROP
You have an Azure Kubermets Service (AKS) implementation that is RBAC-enabled You plan to use Azure Container Instances as a hosted development environment to run containers in the AKS implementation.
You need to conjure Azure Container Instances as a hosted environment for running me containers in AKS. Which three actions should you perform m sequence?
To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Step 1: Create a YAML file.
If your AKS cluster is RBAC-enabled, you must create a service account and role binding for use with Tiller. To create a service account and role binding, create a file named rbac-virtual-kubelet.yaml
Step 2: Run kubectl apply.
Apply the service account and binding with kubectl apply and specify your rbacvirtual- kubelet.yaml file.
Step 3: Run helm init.
Configure Helm to use the tiller service account: helm init --service-account tiller
You can now continue to installing the Virtual Kubelet into your AKS cluster. References: https://docs.microsoft.com/en-us/azure/aks/virtual-kubelet

NEW QUESTION 10
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to create a release pipeline that will deploy Azure resources by using Azure Resource Manager templates. The release pipeline will create the following resources:
„hTwo resource groups
„hFour Azure virtual machines in one resource group
„hTwo Azure SQL databases in other resource group
You need to recommend a solution to deploy the resources.
Solution: Create a main template that will deploy the resources in one resource group and a nested template that will deploy the resources in the other resource group.
Does this meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
Use two linked templates, instead of the nested template.
References: https://docs.microsoft.com/en-us/azure/azure-resourcemanager/ resource-group-linked-templates

NEW QUESTION 11
Your company is concerned that when developers introduce open source libraries, it creates licensing compliance issues.
You need to add an automated process to the build pipeline to detect when common open source libraries are added to the code base.
What should you use?

• A. PDM
• B. OWASPZAP
• C. WhiteSource
• D. Jenkins

Answer: C

NEW QUESTION 12
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an approval process that contains a condition. The condition requires that releases be approved by a team leader before they are deployed.
You have a policy stating that approvals must occur within eight hours.
You discover that deployment fail if the approvals take longer than two hours. You need to ensure that the deployments only fail if the approvals take longer than eight hours.
Solution: From Pre-deployment conditions, you modify the Time between reevaluation of gates option.
Does this meet the goal?

• A. Yes
• B. No

Answer: A

Explanation:
Gates allow automatic collection of health signals from external services, and then promote the release when all the signals are successful at the same time or stop the deployment on timeout. Typically, gates are used in connection with incident management, problem management, change management, monitoring, and external approval systems.
References: https://docs.microsoft.com/enus/ azure/devops/pipelines/release/approvals/gates
Approvals and gates give you additional control over the start and completion of the deployment pipeline. Each stage in a release pipeline can be configured with predeployment and post-deployment conditions that can include waiting for users to
manually approve or reject deployments, and checking with other automated systems until specific conditions are verified.

NEW QUESTION 13
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has a project in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: From the Pre-deployment conditions settings of the release pipeline, you select Batch changes while a build is in progress.
Does this meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
Use a Pull request trigger. Note: Batch changes
Select this check box if you have a lot of team members uploading changes often and you want to reduce the number of builds you are running. If you select this option, when a build is running, the system waits until the build is completed and then queues another build of all changes that have not yet been built.
References: https://docs.microsoft.com/en-us/azure/devops/pipelines/build/triggers

NEW QUESTION 14
You plan to create an image that will contain a .NET Core application.
You have a Dockerfile file that contains the following code. (Line numbers are included for reference only.)

You need to ensure that the image is as small as possible when the image is built. Which line should you modify in the file?

• A. 1
• B. 3
• C. 4
• D. 7

Answer: A

Explanation:
Multi-stage builds (in Docker 17.05 or higher) allow you to drastically reduce the size of your final image, without struggling to reduce the number of intermediate layers and files.
With multi-stage builds, you use multiple FROM statements in your Dockerfile. Each FROM instruction can use a different base, and each of them begins a new stage of the build. You can selectively copy artifacts from one stage to another, leaving behind everything you don¡¦t want in the final image.
References: https://docs.docker.com/develop/develop-images/multistage-build/#usemulti- stage-builds

NEW QUESTION 15
Your company is concerned that when developers introduce open source libraries, it creates licensing compliance issues.
You need to add an automated process to the build pipeline to detect when common open source libraries are added to the code base.
What should you use?

• A. Microsoft Visual SourceSafe
• B. PDM
• C. WhiteSource
• D. OWASP ZAP

Answer: C

Explanation:
WhiteSource is the leader in continuous open source software security and compliance management. WhiteSource integrates into your build process, irrespective of your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking the security, licensing, and quality of your open source components against WhiteSource constantly-updated definitive database of open source repositories.
Azure DevOps integration with WhiteSource Bolt will enable you to:
„hDetect and remedy vulnerable open source components.
„hGenerate comprehensive open source inventory reports per project or build.
„hEnforce open source license compliance, including dependencies¡¦ licenses.
„hIdentify outdated open source libraries with recommendations to update. References: https://www.azuredevopslabs.com/labs/vstsextend/WhiteSource/

NEW QUESTION 16
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has a prefect in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: from the Triggers tab of the build pipeline, you select Enable continuous integration
Does the meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
In Visual Designer you enable continuous integration (CI) by:
„hSelect the Triggers tab.
„hEnable Continuous integration.
A continuous integration trigger on a build pipeline indicates that the system should automatically queue a new build whenever a code change is committed. References:
https://docs.microsoft.com/en-us/azure/devops/pipelines/get-started-designer

NEW QUESTION 17
Your company uses Service Now for incident management. You develop an application that runs on Azure.
The company needs to generate a ticket in Service Now when the application fails to authenticate.
Which Azure Log Analytics solution should you use?

• A. Automation & Control
• B. IT Service Management Connector (ITSM)
• C. Application lmiQ.hu Connector
• D. insight & Analytics

Answer: B

Explanation:
The IT Service Management Connector (ITSMC) allows you to connect Azure and a supported IT Service Management (ITSM) product/service.
ITSMC supports connections with the following ITSM tools:
„hServiceNow
„hSystem Center Service Manager
„hProvance
„hCherwell
With ITSMC, you can
„hCreate work items in ITSM tool, based on your Azure alerts (metric alerts, Activity Log alerts and Log Analytics alerts).
„hOptionally, you can sync your incident and change request data from your ITSM tool to an Azure Log Analytics workspace.
References: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/itsmcoverview

NEW QUESTION 18
You need to recommend a Docker container build strategy that meets the following requirements
¡E Minimizes image sues
¡E Minimizes the security surface area of the final image What should you include m the recommendation?

• A. multi-stage builds
• B. single-stage builds
• C. PowerShell Desired State Configuration (DSC)
• D. Docker Swarm

Answer: A

Explanation:
Multi-stage builds are a new feature requiring Docker 17.05 or higher on the daemon and client. Multistage builds are useful to anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. References: https://docs.docker.com/develop/develop-images/multistage-build/

NEW QUESTION 19
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen
Your company has a project in Azure DevOps for a new web application. You need to ensure that when code is checked in, a build runs automatically.
Solution: From the Continuous deployment trigger settings of the release pipeline, you enable the Pull request trigger setting.
Does the meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
In Visual Designer you enable continuous integration (CI) by:
„hSelect the Triggers tab.
„hEnable Continuous integration. References:
https://docs.microsoft.com/en-us/azure/devops/pipelines/get-started-designer

NEW QUESTION 20
HOTSPOT
How should you confrere the release retention policy for the investment planning depletions suite? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Every request made against a storage service must be authorized, unless the request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key. Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application
and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorizewith- shared-key

NEW QUESTION 21
DRAG DROP
You need to use Azure Automation Sure Configuration to manage the ongoing consistency of virtual machine configurations.
Which five actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in
the correct order.
NOTE: More than one order of answer choices in correct. You writ receive credit for any of the orders you select.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Step 1: Assign the node configuration.
You create a simple DSC configuration that ensures either the presence or absence of the Web-Server Windows Feature (IIS), depending on how you assign nodes. Step 2: Upload a configuration to Azure Automation State Configuration.
You import the configuration into the Automation account. Step 3: Compiling a configuration into a node configuration Compiling a configuration in Azure Automation
Before you can apply a desired state to a node, a DSC configuration defining that state must be compiled into one or more node configurations (MOF document), and placed on the Automation DSC Pull Server.
Step 4: Onboard the virtual machines to Azure State Configuration Onboarding an Azure VM for management with Azure Automation State Configuration
Step 5: Check the compliance status of the node.
Viewing reports for managed nodes. Each time Azure Automation State Configuration performs a consistency check on a managed node, the node sends a status report back to the pull server. You can view these reports on the page for that node.
On the blade for an individual report, you can see the following status information for the corresponding consistency check:
The report status ¡X whether the node is "Compliant", the configuration "Failed", or the node is "Not Compliant" (when the node is in ApplyandMonitor mode and the machine is not in the desired state).
References: https://docs.microsoft.com/en-us/azure/automation/automation-dscgetting- started

NEW QUESTION 22
Your company is building a new solution in Java.
The company currently uses a SonarQube server to analyze the code of .NET solutions.
You need to analyze and monitor the code quality of the Java solution. Which task types should you add to the build pipeline?

• A. Octopus
• B. Chef
• C. Maven
• D. Grunt

Answer: A

NEW QUESTION 23
HOTSPOT
You need to configure a cloud service to store the secrets required by the mobile applications to call the share.
What should you include in the solution? To answer, select the appropriate options m the answer ate., NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Every request made against a storage service must be authorized, unless the
request is for a blob or container resource that has been made available for public or signed access. One option for authorizing a request is by using Shared Key. Scenario: The mobile applications must be able to call the share pricing service of the existing retirement fund management system. Until the system is upgraded, the service will only support basic authentication over HTTPS.
The investment planning applications suite will include one multi-tier web application and two iOS mobile application. One mobile application will be used by employees; the other will be used by customers.
References: https://docs.microsoft.com/en-us/rest/api/storageservices/authorizewith- shared-key

NEW QUESTION 24
Your company uses Azure DevOps for the build pipelines and deployment pipelines of Java based projects. You need to recommend a strategy for managing technical debt.
Which two actions should you include in the recommendation? Each correct answer presents part of the solution
NOTE: Each correct selection is worth one point.

• A. Integrate Azure DevOps and SonarQube.
• B. Integrates Azure DevOPs and Azure DevTest Labs.
• C. Configure post-deployment approvals in the deployment pipeline.
• D. Configure pre-deployment approvals in the deployment pipelin

Answer: AC

NEW QUESTION 25
......