[May-2016-NEW]New 70-533 Test Questions 117q Free Shared by the Braindump2go[NQ1-NQ10]

May-2016 Microsoft Official News: 70-533 New Exam Questions Released Today in Braindump2go.com Online IT Certifications Study Website!

New Questions 1 – New Questions 10:

QUESTION 1
You manage a cloud service that supports features hosted by two instances of an Azure virtual machine (VM).
You discover that occasional outages cause your service to fail.
You need to minimize the impact of outages to your cloud service.
Which two actions should you perform? Each correct answer presents part of the solution.

A.    Deploy a third instance of the VM.
B.    Configure Load Balancing on the VMs.
C.    Redeploy the VMs to belong to an Affinity Group.
D.    Configure the VMs to belong to an Availability Set.

Answer: BD
Explanation:
Adding your virtual machine to an availability set helps your application stay available during network failures, local disk hardware failures, and any planned downtime.
Combine the Azure Load Balancer with an Availability Set to get the most application resiliency. The Azure Load Balancer distributes traffic between multiple virtual machines.
http://azure.microsoft.com/en-gb/documentation/articles/virtual-machines-manage-availability/

QUESTION 2
You administer an Azure subscription with an existing cloud service named contosocloudservice. Contosocloudservice contains a set of related virtual machines (VMs) named ContosoDC, ContosoSQL and ContosoWeb1.
You want to provision a new VM within contosocloudservice.
You need to use the latest gallery image to create a new Windows Server 2012 R2 VM that has a target IOPS of 500 for any provisioned disks.
Which PowerShell command should you use?
 

A.    Option A
B.    Option B
C.    Option C
D.    Option D

Answer: A
Explanation:
This example creates a new Windows virtual machine configuration with operating system disk, data disk and provisioning configuration. This configuration is then used to create a new virtual machine.
C:\PS> $image = (Get-AzureVMImage).ImageName
C:\PS>New-AzureVMConfig -Name “MyVM1” -InstanceSize ExtraSmall -ImageName $image ` | Add-AzureProvisioningConfig -Windows -Password $adminPassword ` | Add- AzureDataDisk -CreateNew -DiskSizeInGB 50 -DiskLabel ‘datadisk1’ -LUN 0 ` | New- AzureVM ­ServiceName “MySvc1”
http://msdn.microsoft.com/en-us/library/dn495159.aspx

QUESTION 3
Drag and Drop Question
You administer an Azure Virtual Machine (VM) named server!. The VM is in a cloud service named ContosoService1.
You discover that the VM is experiencing storage issues due to increased application logging on the server.
You need to create a new 256-GB disk and attach it to the server.
Which Power Shell cmdlets should you use? To answer, drag the appropriate cmdlet to the correct location in the Power Shell command. Each cmdlet may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
 
Answer:
 

QUESTION 4
Your company has two cloud services named CS01 and CS02.
You create a virtual machine (VM) in CS02 named Accounts.
You need to ensure that users in CS01 can access the Accounts VM by using port 8080.
What should you do?

A.    Create a firewall rule.
B.    Configure load balancing.
C.    Configure port redirection.
D.    Configure port forwarding.
E.    Create an end point.

Answer: E
Explanation:
All virtual machines that you create in Azure can automatically communicate using a private network channel with other virtual machines in the same cloud service or virtual network. However, other resources on the Internet or other virtual networks require endpoints to handle the inbound network traffic to the virtual machine.
http://azure.microsoft.com/en-us/documentation/articles/virtual-machines-set-up-endpoints/

QUESTION 5
Your company network includes an On-Premises Windows Active Directory (AD) that has a DNS domain named contoso.local and an email domain named contoso.com.
You plan to migrate from On-Premises Exchange to Office 365.
You configure DirSync and set all Azure Active Directory {Azure AD) usernames as %username%@contoso.onmicrosoft.com.
You need to ensure that each user is able to log on by using the email domain as the username.
Which two actions should you perform? Each correct answer presents part of the solution.

A.    Verify the email domain in Azure AD domains.
B.    Run the Set-MsolUserPnncipalName -UserPnncipalName %username%@co ntoso.onmicrosoft.com -NewUserPrincipalName %usemame %@contoso.com Power Shell cmdlet.
C.    Edit the ProxyAddress attribute on the On-Premises Windows AD user account.
D.    Verify the Windows AD DNS domain in Azure AD domains.
E.    Update the On-Premises Windows AD user account UPN to match the email address.

Answer: CD
Explanation:
* There are two main traffic flows originating from the server hosting the Azure Active Directory Sync tool:
The Azure Active Directory Sync tool queries a domain controller on the on-premises network for changes to accounts and passwords.
The Azure Active Directory Sync tool sends the changes to accounts and passwords to the Azure AD instance of your Office 365 subscription. These changes are sent through the on- premises network’s proxy server.
 
* Verify that your virtual machine is joined to the domain by checking your internal DNS to make sure that an Address (A) record was added for the virtual machine with the correct IP address from Azure. For the Azure Active Directory Sync tool to gain access to Internet resources, you must configure the server that runs the Azure Active Directory Sync tool to use the on-premises network’s proxy server.

QUESTION 6
You develop a Windows Store application that has a web service backend.
You plan to use the Azure Active Directory Authentication Library to authenticate users to Azure Active Directory (Azure AD) and access directory data on behalf of the user.
You need to ensure that users can log in to the application by using their Azure AD credentials.
Which two actions should you perform? Each correct answer presents part of the solution.

A.    Create a native client application in Azure AD.
B.    Configure directory integration.
C.    Create a web application in Azure AD.
D.    Enable workspace join.
E.    Configure an Access Control namespace.

Answer: BC
Explanation:
B: An application that wants to outsource authentication to Azure AD must be registered in Azure AD, which registers and uniquely identifies the app in the directory.
C (not A): NativeClient-WindowsStore
A Windows Store application that calls a web API that is secured with Azure AD.
 
Authentication Scenarios for Azure AD, Basics of Authentication in Azure AD
http://msdn.microsoft.com/en-us/library/azure/dn499820.aspx#BKMK_Auth
https://github.com/AzureADSamples/NativeClient-WindowsStore

QUESTION 7
Your company plans to migrate from On-Premises Exchange to Office 365.
The existing directory has numerous service accounts in your On-Premises Windows Active Directory (AD), stored in separate AD Organizational Units (OU) for user accounts.
You need to prevent the service accounts in Windows AD from syncing with Azure AD.
What should you do?

A.    Create an OU filter in the Azure AD Module for Windows PowerShell.
B.    Configure directory partitions in miisclient.exe.
C.    Set Active Directory ACLs to deny the DirSync Windows AD service account MSOL_AD_SYNC
access to the service account OUs.
D.    Create an OU filter in the Azure Management Portal.

Answer: B
Explanation:
One customer, who was looking for OU level filtering to import selected users from On-Premises active directory to Office365.
Configure OU level filtering for Office365 directory synchronization.
1. Logged in to your Domain controller
2. Created an OU (Organisational Unit) from your AD (Active Directory) a. In my case I named it “DirSync”
3. Move all those users you want to sync, to that DirSync OU.
4. From your DirSync Server navigate to <Drive>\Program Files\Microsoft Online Directory Sync\SYNCBUS\Synchronization Service\UIShell
5. Double click on miisclient.exe
6. This opens a console something similar to the below screen capture
 
Identity Manager, click Management Agents, and then double-click SourceAD.
8. Click Configure Directory Partitions, and then click Containers, as shown in the below screen capture.
 
11. Click OK on the SourceAD Properties page.
12. Perform a full sync: on the Management Agent tab, right-click SourceAD, click Run, click Full Import Full Sync, and then click OK.
Etc.
http://blogs.msdn.com/b/denotation/archive/2012/11/21/installing-and-configure-dirsync-with-ou-level-filtering-for-office365.aspx

QUESTION 8
You manage an Azure Active Directory (AD) tenant
You plan to allow users to log in to a third-party application by using their Azure AD credentials.
To access the application, users will be prompted for their existing third-party user names and passwords.
You need to add the application to Azure AD.
Which type of application should you add?

A.    Existing Single Sign-On with identity provisioning
B.    Password Single Sign-On with identity provisioning
C.    Existing Single Sign-On without identity provisioning
D.    Password Single Sign-On without identity provisioning

Answer: A
Explanation:
* Azure AD supports two different modes for single sign-on:
/ Federation using standard protocols
Configuring Federation-based single sign-on enables the users in your organization to be automatically signed in to a third-party SaaS application by Azure AD using the user account information from Azure AD.
/ Password-based single sign-on
* Support for user provisioning
User provisioning enables automated user provisioning and deprovisioning of accounts in third-party SaaS applications from within the Azure Management Portal, using your Windows Server Active Directory or Azure AD identity information. When a user is given permissions in Azure AD for one of these applications, an account can be automatically created (provisioned) in the target SaaS application.
http://msdn.microsoft.com/en-us/library/azure/dn308588.aspx

QUESTION 9
You plan to use Password Sync on your DirSync Server with Azure Active Directory {Azure AD) on your company network.
You configure the DirSync server and complete an initial synchronization of the users.
Several remote users are unable to log in to Office 365.
You discover multiple event log entries for “Event ID 611 Password synchronization failed for domain.”
You need to resolve the password synchronization issue.
Which two actions should you perform? Each correct answer presents part of the solution.

A.    Restart Azure AD Sync Service.
B.    Run the Set-FullPasswordSync Power Shell cmdlet.
C.    Force a manual synchronization on the DirSync server.
D.    Add the DirSync service account to the Schema Admins domain group.

Answer: AB
Explanation:
On the computer that has the Azure Active Directory Sync tool installed, follow these steps:
Perform a full password sync for all users who are synced through directory synchronization.
To do this, follow these steps:
Set-FullPasswordSync
Restart the Forefront Identity Manager Synchronization Service.
To do this, follow these steps:
http://support2.microsoft.com/kb/2915221

QUESTION 10
You administer an Access Control Service namespace named contosoACS that is used by a web application. ContosoACS currently utilizes Microsoft and Yahoo accounts.
Several users in your organization have Google accounts and would like to access the web application through ContosoACS.
You need to allow users to access the application by using their Google accounts.
What should you do?

A.    Register the application directly with Google.
B.    Edit the existing Microsoft Account identity provider and update the realm to include Google.
C.    Add a new Google identity provider.
D.    Add a new WS-Federation identity provider and configure the WS-Federation metadata to point
to the Google sign-in URL.

Answer: C
Explanation:
Configuring Google as an identity provider eliminates the need to create and manage authentication and identity management mechanism. It helps the end user experience if there are familiar authentication procedures.
http://msdn.microsoft.com/en-us/library/azure/gg185976.aspx

QUESTION 11
You publish an application named MyApp to Azure Active Directory (Azure AD).
You grant access to the web APIs through OAuth 2.0.
MyApp is generating numerous user consent prompts.
You need to reduce the amount of user consent prompts.
What should you do?

…………..


2016 Valid Microsoft 70-533 Exam Preparation Materials:
1.|2016 Latest 70-533 Exam Dumps with PDF and VCE 117Q&As Download:
http://www.braindump2go.com/70-533.html [New Questions,100% Exam Pass Guaranteed!]
2.|2016 Newest 70-533 PDF Dumps & 70-533 VCE Dumps – Google Drive:
https://drive.google.com/folderview?id=0B9YP8B9sF_gNVDBXdm1raUN0cUk&usp=sharing
3.|70-533 Practice Questions – Google Drive:

https://drive.google.com/folderview?id=0B75b5xYLjSSNfjZVVmtFSVhfTExxZGdPTWFRUWNoRWgzbFJ0NWtWMnhXZnBLWU1ZRWdhckk&usp=sharing