AZ-104 Online Practice Questions

Home / Microsoft / AZ-104

Latest AZ-104 Exam Practice Questions

The practice questions for AZ-104 exam was last updated on 2025-12-17 .

Viewing page 1 out of 30 pages.

Viewing questions 1 out of 150 questions.

Question#1

HOTSPOT
You have an Azure subscription that contains a storage account named storage 1. The storage1 account contains a container named container1.
You need to create a lifecycle management rule for storage1 that will automatically move the blobs in contained to the lowest-cost tier after 90 days.
How should you complete the rule? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point.


A. 

Question#2

HOTSPOT
You have an Azure subscription that contains the hierarchy shown in the following exhibit.



You create an Azure Policy definition named Policy1.
To which Azure resources can you assign Policy and which Azure resources can you specify as exclusions from Policy1? To answer, select the appropriate options in the answer NOTE Each correct selection is worth one point.


A. 

Explanation:

Question#3

You have an Azure Storage account named storage1 that contains a blob container named containers You need to prevent new content added to container! from being modified for one year.
What should you configure?

A. the access level
B. the Access control (1AM) settings
C. an access policy
D. the access tier

Question#4

HOTSPOT
You manage two Azure subscriptions named Subscription 1 and Subscription2.
Subscription! has following virtual networks:



The virtual networks contain the following subnets:



Subscnption2 contains the following virtual network:
- Name: VNETA
• Address space: 10.10.128.0/17
• Region: Canada Central
VNETA contains the following subnets:



For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.


A. 

Question#5

You have an Azure subscription that contains 20 virtual machines, a network security group (NSG) named NSG1, and two virtual networks named VNET1 and VNET2 that are peered.
You plan to deploy an Azure Bastion Basic SKU host named Bastion1 to VNET1. You need to configure NSG1 to allow inbound access from the internet to Bastion1.
Which port should you configure for the inbound security rule?

A. 22
B. 443
C. 3389
D. 8080

Explanation:
Azure Bastion is a service that provides secure and seamless RDP/SSH connectivity to virtual machines directly over TLS from the Azure portal or via native client. Azure Bastion uses an HTML5 based web client that is automatically streamed to your local device. Your RDP/SSH session is over TLS on port 443. This enables the traffic to traverse firewalls more securely. To allow inbound access from the internet to Bastion1, you need to configure NSG1 to allow port 443 for the inbound security rule.
Reference: What is Azure Bastion?
About Azure Bastion configuration settings

Exam Code: AZ-104Q & A: 430 Q&AsUpdated:  2025-12-17

 Get All AZ-104 Q&As

Top 20 Exams

CertQuestionsBank doesn't offer Real Microsoft, Amazon, Cisco Exam Questions. All CertQuestionsBank content is sourced from the Internet.

Important Links

Know Us

Follow Us

Copyright © 2025 CertQuestionsBank NETWORK CO.,LIMITED. All Rights Reserved.