AZ-104 Reference
Contact
Money.Yu@microsoft.com
LinkedIn: @abc12207
Date: 20221121
Course ID: 46475
Course Materials
Course AZ-104 English version
Course AZ-104 简体中文版本
Course AZ-104 正體中文版本
Infos
ESI Support
Azure Pricing Calculator
Azure Architecture Center
Lab
Skillable lab system
Date: 20221121
Training key: EA799387420A4526
Only need to redeem once
Valid for 6 months
Turtoial Video: https://media.yu.money/common/lods.html
Azure (Azure Pass version)
Valid for 100 USD or 1 month
Only need to redeem once
In the lab, use EastUS as your region
Cloudslice version don’t need to go to throught this process
Turtoial Video: https://media.yu.money/common/azurepass.html
Instruction (Azure Pass version)
AZ-104 Labs EN
AZ-104 Labs ZH
AZ-104 Lab files
Lab Videos
Lab Videos for AZ-104 (Azure Pass version)
Course Info
M01 – Azure AD
Active Directory Domain Services Overview
Compare Active Directory to Azure Active Directory
Azure AD terminology
Azure AD Role
Azure AD Custom Role
Azure AD Connect and Azure AD Connect Health installation roadmap
Application and service principal objects in Azure Active Directory
Azure AD Domain Service
Azure AD Conditional Access
Azure AD comparison based on licenses
Zero Turst Security
How long does Azure AD store reporting data?
Azure AD joined devices
Azure AD Connect Supported Topology
M02 – Compliance
Azure Speed Test 2.0
Azure Region
Regions and availability zones
Region Pair
Azure Offer
Azure Hybrid Benefit
Azure Reservations
Azure Activity Log
Azure management groups
Azure Policy
What is Azure Policy?
Azure Policy definition structure
Azure Policy initiative definition structure
Recommended policies for Azure services
Tutorial: Create a custom policy definition
RBAC
Understand Azure role definitions
List Azure role definitions
Azure built-in roles
Azure custom roles
M03 – Administration
Azure Portal
Features & tools for Azure Cloud Shell
Install Azure PowerShell
Install Azure CLI
ARM Template
Azure Resource Manager
ARM Template Gallery
ARM template functions
ARM template user-defined functions
Azure Bicep
Decompiling ARM template JSON to Bicep
Comparing JSON and Bicep for templates
M04 – Virtual Network
Basic Networking
Azure Virtual Network concepts and best practices
Virtual Network – Business Continuity
Subnet reserved IP
DDoS Protection compare
Azure Public IP
Azure VNET IPv6
Azure Virtual Network frequently asked questions (FAQ)
Azure Networking limits
What is IP address 168.63.129.16?
Network Security Group
NSG security rules
NSG default rules
Service Tags
Application security groups
Firewall
Azure Firewall Pricing
Azure Firewall Premium features
Tutorial: Deploy and configure Azure Firewall and policy using the Azure portal
区别:
NSG:功能比较简单(端口开放/关闭),并且不需要创建服务器,是免费使用的
防火墙:功能更多;是部署的托管服务器;是收费的
Azure DNS Zone
What is Azure DNS?
Azure DNS Zone Delegation of DNS zones (Child Zone)
Azure Private DNS zone
Architecture of Azure Private DNS
Private DNS zone virtual network link
Private DNS zone auto registration
Azure DNS Private Resolver
M05 – Intersite Connectivity
Peering
Virtual network peering
Configure VPN gateway transit for virtual network peering
Choose between virtual network peering and VPN gateways
Virtual network Gateway (VPN Gateway)
VPN Gateway SKUs
VPN Gateway High availability
Use AAD to login P2S VPN
Create S2S VPN
ExpressRoute
ExpressRoute
Microsoft 365 Routing with ExpressRoute
Hub-spoke network topology in Azure
ExpressRoute Pricing
Virtual WAN
M06 – Network Traffic Management
Secure Connection to PaaS
Azure Service Endpoint
Azure Private Link
What is the difference between Service Endpoints and Private Endpoints?
Difference between Azure Private Links and Azure Service Endpoints
Traffic Management
Load balancing overview
Azure Load Balancer SKU
Distribution mode for Azure Load Balancer
Cross Region Load Balancer
Application Gateway Tier Compare
Traffic Manager Routing
M07 – Storage
Azure Blob Storage Types
Azure Storage Explorer
Business continuity and disaster recovery
Enable and create large file shares
Lifecycle management
Lifecycle management – Move data based on last accessed time
Storage Tier
Azure Files storage tiers
Understanding block blobs, append blobs, and page blobs
Copy data from S3 to Azure Storage
Access to blobs and queues using Azure Active Directory
Azure File scalability and performance targets
Object replication for block blobs
Azure Storage redundancy
Azure Storage Limitation
Repulication 复制 = Redundancy 冗余
【网络限制】Azure PaaS 服务默认都只提供公网的URL进行访问,若要进行vNET内部的访问:
*Service Endpoint
*Private Endpoint
*也可以通过限制特定的IP地址范围来限制客户端的访问
Deploy Azure File Sync
Azure 存储的授权方式
Azure 存储的“共享密钥”,也叫“存储帐户密钥”或“访问密钥”
M08 – VM
Azure VM
VM Size
Availability options
VM’s SLA
Azure SPOT VM
Introduction to Azure managed disks
FAQs for Azure Disks
FAQs for Azure IaaS VM disks and managed and unmanaged premium disks
How to expand virtual hard disks attached to a Windows virtual machine
Azure virtual machine extensions and features
VMSS
VM scale sets
Considerations for scaling when multiple profiles are configured in an autoscale setting
Others
Custom Script Extension for Windows
Custom Script Extension for Linux
Desired State Configuration for Windows
Create Windows VM images with Azure PowerShell
M09 – Platform Service Computing
Azure App Service
App Service plans
Azure Compute Unit
Local Git deployment to Azure App Service
Frontdoor
Hybrid Connection
Scaling
Deployment Slots
App Service Local Cache
Set up staging environments in Azure App Service
https://blog.amitapple.com/post/2014/11/azure-websites-slots/#.WH-1CeTrtWw
Azure Web App with Key Vault
Azure Web App sandbox
Inside the Azure App Service Architecture
Container
Azure Container Registry service tiers
Push container image to ACR
Make Azure container registry content publicly available
Deploy docker image locally
ACI with CLI quickstart
ACI using Docker Compose
Container groups in Azure Container Instances
容器实例和Web应用中部署容器的区别:
容器实例不会原生提供TLS的支持;
容器实例只是提供纯粹的容器运行平台,而不会提供Web管理的功能;
价格不同;
容器实例可以运行任何应用,不仅限于Web应用
Azure Kubernets Service
Kubernetes core concepts for Azure Kubernetes Service
Deploy an AKS using the Azure CLI
Scale applications in AKS
Storage options for applications in AKS
Authenticate with Azure Container Registry from Azure Kubernetes Service
Create and configure an Azure Kubernetes Services (AKS) cluster to use virtual nodes
virtual-kubelet
Kubenet and Azure CNI
M10 – Backup
Azure Backup
What is the Azure Backup service?
Overview of Archive tier in Azure Backup
Overview of Backup center
Create and configure a Recovery Services vault
Install and upgrade Azure Backup Server
Site Recovery
About Site Recovery
General questions about Azure Site Recovery
Quickstart: Set up disaster recovery to a secondary Azure region for an Azure VM
M11 – Monitor
Azure Monitor
Azure Monitor
Monitoring your storage service with Azure Monitor Storage insights
Use the Map feature of VM insights to understand application components
Azure Data Explorer
Configure PV(persistent volumes) monitoring with Container insights
Azure Monitor REST API
Azure Monitor Videos (YouTube)
Application Insight
What is Application Insights
Distributed Tracing
Snapshot-Debugger
Application Map
Live Metrics Stream
Smart Detection
Log Analytics
Log Analytics demo environment
Log Analytics tutorial
Tutorial: Use Kusto queries
Kusto Function types
Whiteboard
SVG:
Whiteboard.svg
Exam
AZ-104 Exam Page
Claiming your exam voucher – Video
Exam duration and question types
AZ-104 Study Guide
AZ-104 Exam Prep videos
Unscheduled breaks now available in most exams without requesting in advance
AZ-104 Exam Readiness Zone
AZ-104 Exam Sandbox
Microsoft Exam FAQ
SVG: exam.svg