Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft AZ-800 Exam Questions

Exam Name: Administering Windows Server Hybrid Core Infrastructure
Exam Code: AZ-800
Related Certification(s): Microsoft Windows Server Hybrid Administrator Associate Certification
Certification Provider: Microsoft
Number of AZ-800 practice questions in our database: 230 (updated: Oct. 16, 2024)
Expected AZ-800 Exam Topics, as suggested by Microsoft :
  • Topic 1: Configure and manage multi-site, multi-domain, and multi-forest environments/ Troubleshoot flexible single master operations (FSMO) roles
  • Topic 2: Manage authentication in on-premises and hybrid environments/ Implement and configure Distributed File System (DFS)
  • Topic 3: Manage users and groups in multi-domain and multi-forest scenarios/ Manage Windows Servers and workloads in a hybrid environment
  • Topic 4: Manage VM using PowerShell Remoting, PowerShell Direct, and HVC.exe/ Deploy Azure services using Azure Virtual Machine extensions on non-Azure machines
  • Topic 5: Manage IaaS virtual machines (VMs) in Azure that run Windows Server/ Manage Windows Server by using domain-based Group Policies
  • Topic 6: Configure File Server Resource Manager (FSRM) quotas/ Deploy and manage Active Directory Domain Services (AD DS) in on-premises and cloud environments
  • Topic 7: Create and manage AD DS security principals/ Configure CredSSP or Kerberos delegation for second hop remoting
  • Topic 8: Manage Windows Servers and workloads by using Azure services/ Implement DSC to prevent configuration drift in IaaS machines
  • Topic 9: Implement site-to-site virtual private network (VPN)/ Integrate Windows Server DNS with Azure DNS private zones
  • Topic 10: Implement and manage an on-premises and hybrid networking infrastructure/ Implement on-premises and hybrid network connectivity
  • Topic 11: Configure and manage Windows Server file shares/ Implement high availability for virtual machines
  • Topic 12: Manage Windows Servers in a hybrid environment/ Integrate Windows Servers with Azure Security Center
Disscuss Microsoft AZ-800 Topics, Questions or Ask Anything Related

Cammy

10 days ago
Passed the exam, thanks Pass4Success! Heads up: You'll need to understand Hyper-V networking in depth. Study virtual switches and their properties.
upvoted 0 times
...

Zona

13 days ago
I passed the Microsoft Administering Windows Server Hybrid Core Infrastructure exam. One question that puzzled me was about managing Windows Servers in a hybrid environment. It asked how to configure Azure Arc to manage on-premises servers. Pass4Success practice questions were a great help.
upvoted 0 times
...

Paulina

21 days ago
Aced the Microsoft certification! Pass4Success materials were a game-changer for quick prep.
upvoted 0 times
...

Brock

25 days ago
Exam success! Pass4Success really helped. Be ready for scenarios on configuring and managing Windows Server core installations. Practice remote management techniques!
upvoted 0 times
...

Nohemi

27 days ago
Just cleared the Microsoft Administering Windows Server Hybrid Core Infrastructure exam! There was a tricky question about managing virtual machines, specifically how to implement nested virtualization in Hyper-V. I wasn't entirely sure of the answer, but the practice questions from Pass4Success helped me pass.
upvoted 0 times
...

Glory

1 months ago
Just passed the Microsoft Certified: Administering Windows Server Hybrid Core Infrastructure exam! Thanks to Pass4Success for the great prep materials. Tip: Know your Azure AD Connect configurations inside out - expect questions on sync options and troubleshooting.
upvoted 0 times
...

Roselle

1 months ago
I recently passed the Microsoft Administering Windows Server Hybrid Core Infrastructure exam. One of the questions that threw me off was about deploying AD DS in a hybrid environment. It asked how to configure a site-to-site VPN to connect on-premises AD DS with Azure AD DS. Thanks to Pass4Success practice questions, I managed to get through it.
upvoted 0 times
...

Stevie

2 months ago
Just passed the Windows Server Hybrid Core Infrastructure exam! Thanks Pass4Success for the spot-on practice questions.
upvoted 0 times
...

Claudia

2 months ago
Thanks to Pass4Success practice questions, I was able to pass the Microsoft Administering Windows Server Hybrid Core Infrastructure exam. The exam included topics on multi-domain environments and DFS configuration. One question that I recall was about managing authentication in on-premises environments. It required a deep understanding of authentication protocols, but I was able to answer it correctly and pass the exam.
upvoted 0 times
...

Alecia

3 months ago
My exam experience for the Microsoft Administering Windows Server Hybrid Core Infrastructure exam was successful, thanks to Pass4Success practice questions. The topics on managing authentication in hybrid environments and implementing DFS were crucial for the exam. One question that I remember was about troubleshooting FSMO roles. I had to carefully analyze the scenario to select the correct answer, but I was able to pass the exam.
upvoted 0 times
...

Cecilia

4 months ago
Just passed the Microsoft Certified: Administering Windows Server Hybrid Core Infrastructure exam! A key topic was Azure Arc-enabled servers. Expect questions on connecting on-premises servers to Azure Arc and managing them through Azure portal. Study the Arc agent installation process and Azure policy assignments. Thanks to Pass4Success for the spot-on practice questions that helped me prepare quickly!
upvoted 0 times
...

Xochitl

4 months ago
I passed the Microsoft Administering Windows Server Hybrid Core Infrastructure exam with the help of Pass4Success practice questions. The exam covered topics like managing multi-site environments and troubleshooting FSMO roles. One question that stood out to me was related to configuring DFS. I wasn't completely sure of the answer, but I managed to pass the exam.
upvoted 0 times
...

Kenny

5 months ago
Azure File Sync was another important topic in the exam. Questions focused on configuring and troubleshooting sync groups and cloud tiering. Make sure to understand the components of Azure File Sync and best practices for implementation. Pass4Success provided spot-on practice questions that helped me master this topic quickly.
upvoted 0 times
...

Free Microsoft AZ-800 Exam Actual Questions

Note: Premium Questions for AZ-800 were last updated On Oct. 16, 2024 (see below)

Question #1

SIMULATION

Task 5

You have an application that is copied to a folder named C:\app on SRV1. C:\app also contains also a Dockerfile for the app.

On SRV1. you need to create a container image for the application by using the Dockerfile. The container image mutt be named app1.

Reveal Solution Hide Solution
Correct Answer: A

Explore

To create a container image named app1 for your application using the Dockerfile in the C:\app directory on SRV1, follow these steps:

Step 1: Open PowerShell or Command Prompt First, open PowerShell or Command Prompt on SRV1.

Step 2: Navigate to the Application Directory Change to the directory where your application and Dockerfile are located:

cd C:\app

Step 3: Build the Container Image Use the docker build command to create the container image. The -t flag tags the image with the name app1:

docker build -t app1 .

The period . at the end of the command tells Docker to use the Dockerfile in the current directory.

Step 4: Verify the Image Creation After the build process completes, verify that the image app1 has been created successfully by listing all images:

docker images

You should see app1 in the list of images.

Step 5: Use the Image Now, you can use the image app1 to run containers or push it to a container registry if needed.

By following these steps, you'll have created a Docker container image named app1 using the Dockerfile located in C:\app on SRV11. Ensure that Docker is installed on SRV1 and that you have the necessary permissions to execute these commands.


Question #2

SIMULATION

Task 7

You need to monitor the security configuration of DC1 by using Microsoft Defender for Cloud.

The required source files are located in a folder named \\dc1.contoso.com\install.

Reveal Solution Hide Solution
Correct Answer: A

One possible solution to monitor the security configuration of DC1 by using Microsoft Defender for Cloud is to use the Guest Configuration feature. Guest Configuration is a service that audits settings inside Linux and Windows virtual machines (VMs) to assess their compliance with your organization's security policies. You can use Guest Configuration to monitor the security baseline settings for Windows Server in the Microsoft Defender for Cloud portal by following these steps:

On DC1, open a web browser and go to the folder named \dc1.contoso.com\install. Download the Guest Configuration extension file (GuestConfiguration.msi) and save it to a local folder, such as C:\Temp.

Run the Guest Configuration extension file and follow the installation wizard. You can choose to install the extension for all users or only for the current user. For more information on how to install the Guest Configuration extension, seeInstall the Guest Configuration extension.

After the installation is complete, sign in to the Microsoft Defender for Cloud portal (2).

In the left pane, selectSecurity Centerand thenRecommendations.

In the recommendations list, find and selectVulnerabilities in security configuration on your Windows machines should be remediated (powered by Guest Configuration).

In theRemediate Security Configurationspage, you can see the compliance status of your Windows VMs, including DC1, based on the Azure Compute Benchmark. The Azure Compute Benchmark is a set of rules that define the desired configuration state of your VMs. You can also see the number of failed, passed, and skipped rules for each VM. For more information on the Azure Compute Benchmark, seeMicrosoft cloud security benchmark: Azure compute benchmark is now available.

To view the details of the security configuration of DC1, click on the VM name and then selectView details. You can see the list of rules that apply to DC1 and their compliance status. You can also see the severity, description, and remediation steps for each rule. For example, you can see if DC1 has the latest security updates installed, if the firewall is enabled, if the password policy is enforced, and so on.

To monitor the security configuration of DC1 over time, you can use theCompliance over timechart, which shows the trend of compliance status for DC1 in the past 30 days. You can also use theCompliance breakdownchart, which shows the distribution of compliance status for DC1 by rule severity.

By using Guest Configuration, you can monitor the security configuration of DC1 by using Microsoft Defender for Cloud and ensure that it meets your organization's security standards. You can also use Guest Configuration to monitor the security configuration of other Windows and Linux VMs in your Azure environment.


Question #3

SIMULATION

Task 8

You need to create an Active Directory Domain Services (AD DS) site named Site2 that is associated to an IP address range of 192.168.2.0 to 192.168.2.255.

Reveal Solution Hide Solution
Correct Answer: A

To create an AD DS site named Site2 that is associated to an IP address range of 192.168.2.0 to 192.168.2.255, you can follow these steps:

On a domain controller or a computer that has the Remote Server Administration Tools (RSAT) installed, openActive Directory Sites and Servicesfrom theAdministrative Toolsmenu or by typingdssite.mscin the Run box.

In the left pane, right-click onSitesand selectNew Site.

In theNew Object - Sitedialog box, enterSite2as theNameof the new site. Select a site link to associate the new site with, such asDEFAULTIPSITELINK, and clickOK. You can also create a new site link if you want to customize the replication frequency and schedule between the sites. For more information on how to create a site link, seeCreate a Site Link.

In the left pane, right-click onSubnetsand selectNew Subnet.

In theNew Object - Subnetdialog box, enter192.168.2.0/24as thePrefixof the subnet. This notation represents the IP address range of 192.168.2.0 to 192.168.2.255 with a subnet mask of 255.255.255.0. SelectSite2as theSite objectto associate the subnet with, and clickOK.

Wait for the changes to replicate to other domain controllers. You can verify the site and subnet creation by checking theSitesandSubnetscontainers in Active Directory Sites and Services.

Now, you have created an AD DS site named Site2 that is associated to an IP address range of 192.168.2.0 to 192.168.2.255. You can add domain controllers to the new site and configure the site links and site link bridges to optimize the replication topology.


Question #4

SIMULATION

Task 9

You plan to create group managed service accounts (gMSAs).

You need to configure the domain to support the creation of gMSAs.

Reveal Solution Hide Solution
Correct Answer: A

To configure the domain to support the creation of gMSAs, you need to perform the following steps:

On a domain controller or a computer that has the Remote Server Administration Tools (RSAT) installed, open PowerShell as an administrator and run the following command to install the Active Directory module:

Install-WindowsFeature -Name RSAT-AD-PowerShell

Run the following command to create a Key Distribution Service (KDS) root key, which is required for generating passwords for gMSAs. You only need to do this once per domain:

Add-KdsRootKey -EffectiveImmediately

Wait for at least 10 hours for the KDS root key to replicate to all domain controllers in the domain. Alternatively, you can use the-EffectiveTimeparameter to specify a past date and time for the KDS root key, but this is not recommended for security reasons. For more information, seeAdd-KdsRootKey.

After the KDS root key is replicated, you can create and configure gMSAs using theNew-ADServiceAccountandSet-ADServiceAccountcmdlets. For more information, seeCreate a gMSAandConfigure a gMSA.


Question #5

SIMULATION

Task 10

You need to configure Hyper-V to ensure that running virtual machines can be moved between SRV1 and SRV2 without downtime.

You do NOT need to move any virtual machines at this time.

Reveal Solution Hide Solution
Correct Answer: A

One possible solution to configure Hyper-V to ensure that running virtual machines can be moved between SRV1 and SRV2 without downtime is to use Live Migration. Live Migration is a feature of Hyper-V that allows you to move a running virtual machine from one host to another without any noticeable interruption of service. To set up Live Migration between SRV1 and SRV2, you need to perform the following steps:

On both SRV1 and SRV2, openHyper-V Managerfrom theAdministrative Toolsmenu or by typingvirtmgmt.mscin the Run box.

In the left pane, right-click on the name of the server and selectHyper-V Settings.

In theHyper-V Settingsdialog box, selectLive Migrationsin the navigation pane.

Check the boxEnable incoming and outgoing live migrations.

UnderAuthentication protocol, select the method that you want to use to authenticate the live migration traffic between the servers. You can choose eitherKerberosorCredSSP. Kerberos does not require you to sign in to the source server before starting a live migration, but it requires you to configure constrained delegation on the domain controller. CredSSP does not require you to configure constrained delegation, but it requires you to sign in to the source server through a local console session, a Remote Desktop session, or a remote Windows PowerShell session. For more information on how to configure constrained delegation, seeConfigure constrained delegation.

UnderPerformance options, select the option that best suits your network configuration and performance requirements. You can choose eitherTCP/IPorCompressionorSMB. TCP/IP uses a single TCP connection for the live migration traffic. Compression uses multiple TCP connections and compresses the live migration traffic to reduce the migration time and network bandwidth usage. SMB uses the Server Message Block (SMB) 3.0 protocol and can leverage SMB features such as SMB Multichannel and SMB Direct. For more information on how to choose the best performance option, seeChoose a live migration performance option.

UnderAdvanced Features, you can optionally enable theUse any available network for live migrationoption, which allows Hyper-V to use any available network adapter on the source and destination servers for live migration. If you do not enable this option, you need to specify one or more network adapters to be used for live migration by clicking on theAddbutton and selecting the network adapter from the list. You can also change the order of preference by using theMove UpandMove Downbuttons.

ClickOKto apply the settings.

Now, you have configured Hyper-V to enable live migration between SRV1 and SRV2. You can use Hyper-V Manager or Windows PowerShell to initiate a live migration of a running virtual machine from one server to another.



Unlock Premium AZ-800 Exam Questions with Advanced Practice Test Features:
  • Select Question Types you want
  • Set your Desired Pass Percentage
  • Allocate Time (Hours : Minutes)
  • Create Multiple Practice tests with Limited Questions
  • Customer Support
Get Full Access Now

Save Cancel