Microsoft Certified: Azure Solutions Architect Expert

Azure Solutions Architect, With my 10 years of IT journey and 5+ years of Cloud engineer, my thought was that I could take the Azure Solution Architect exam in 2021 first quarter.

I have been working with Azure for the majority of my professional career. I always started to a find solution to the problem that I faced and I would find the solution most of the time.

My milestone to obtain to the “Azure solutions Architect” certification. you need to complete the following 2 exams:

• Exam AZ-303: Microsoft Azure Architect Technologies
• Exam AZ-304: Microsoft Azure Architect Design

Following key areas, I would like to mention under studying aspect of both exams.

Past cloud solution design experience

If you work with Azure for at least 1-3 years, I think you on the correct approach to services offed by azure. During the experience again mode, you might come across different approaches on how to provide correct solutions while researching documents. Azure technologies

Pluralsight Video Tutorials

If you have a business subscription you can gain perfect core tutorials on pluralsight website.

Udemy

Udemy and in this platform, there is quite some content available if you want to study for anything and thus also for Azure certifications. Scott Duffy video tutorials are very much helping me to understand the concept of each segment of the AZ-303 and AZ-304.

Study Guide

AZ-303 Microsoft Azure Architect Technologies Certification Exam Study Guide

It is essential to get familiar with the exam objectives and skills measured first. That is why I recommend reading the description of the exam and the skills measured.

Exam AZ-303: Microsoft Azure Architect Technologies

Candidates for this exam are Azure Solutions Architects who advise stakeholders and translate business requirements into secure, scalable, and reliable solutions. Candidates should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance. This role requires managing how decisions in each area affects an overall solution.

Candidates must have expert-level skills in Azure administration and have experience with Azure development processes and DevOps processes.

The high-level view of the skills measured in the exam:

1. Implement and Monitor an Azure Infrastructure (50-55%)
2. Implement Management and Security Solutions (25-30%)
3. Implement Solutions for Apps (10-15%)
4. Implement and Manage Data Platforms (10-15%)

Free Online Microsoft Learn
AZ-303 Exam

Microsoft Learn provides you with free online training and learning paths for different Microsoft technologies. They not just offer reading material, but also control questions and free online labs.

Implement and Monitor an Azure Infrastructure (50-55%)

Implement cloud infrastructure monitoring

• monitor security
  • Strengthen your security posture with Azure Security Center
  • Security Control: Logging and Monitoring
  • Azure infrastructure monitoring
• monitor performance
  • Create diagnostic setting to collect platform logs and metrics in Azure
  • Create diagnostic setting in Azure using a Resource Manager template
  • Metric Baseline – Get
  • Azure Monitor overview
  • Quickstart: Monitor an Azure resource with Azure Monitor
  • Azure Monitor Workbooks
  • Azure Monitor workbook visualizations
  • Collect data from an Azure virtual machine with Azure Monitor
• monitor health and availability
  • Azure Service Health
  • Resource Health overview
• monitor cost
  • Monitoring your cloud costs
  • Use cost alerts to monitor usage and spending
  • Download or view your Azure billing invoice and daily usage data
• configure advanced logging
  • What is Application Insights?
  • Overview of Insights in Azure Monitor
• configure logging for workloads
  • Logs in Azure Monitor
• initiate automated responses by using Action Groups
  • Create and manage action groups in the Azure portal
• configure and manage advanced alerts
  • Create, view, and manage log alerts using Azure Monitor
  • Manage alert instances with unified alerts
  • Create diagnostic setting to collect platform logs and metrics in Azure
  • Overview of alerts in Microsoft Azure
  • Create a Log Analytics workspace in the Azure portal

Implement storage accounts

• select storage account options based on a use case
  • Storage account overview
  • Introduction to Azure Storage
• configure Azure Files and blob storage
  • Introduction to Azure Blob storage
  • Create an Azure file share
• configure network access to the storage account
  • Configure Azure Storage firewalls and virtual networks
• implement Shared Access Signatures and access policies
  • Delegate access with a shared access signature
  • Grant limited access to Azure Storage resources using shared access signatures (SAS)
• implement Azure AD authentication for storage
  • Authorize access to blobs and queues using Azure Active Directory
• manage access keys
  • Manage storage account access keys
• implement Azure storage replication
  • Azure Storage redundancy
  • Disaster recovery and account failover (preview)
• implement Azure storage account failover
  • Initiate a storage account failover (preview)

Implement VMs for Windows and Linux

• configure High Availability
  • Availability options for virtual machines in Azure
  • Manage the availability of Windows virtual machines in Azure
• configure storage for VMs
  • Attach a managed data disk to a Windows VM by using the Azure portal
  • Attach a data disk to a Windows VM with PowerShell
  • What disk types are available in Azure?
• select virtual machine size
  • Sizes for Windows virtual machines in Azure
  • Sizes for Linux virtual machines in Azure
• implement Azure Dedicated Hosts
  • Deploy VMs to dedicated hosts using the portal
  • Azure Dedicated Hosts
• deploy and configure scale sets
  • What are virtual machine scale sets?
• configure Azure Disk Encryption
  • Azure Disk Encryption for Linux VMs
  • Azure Disk Encryption for Windows VMs

Automate deployment and configuration of resources

• save a deployment as an Azure Resource Manager template
  • Download the template for a VM
• modify Azure Resource Manager template
  • Extend Azure Resource Manager template functionality
  • Azure Resource Manager templates overview
  • Tutorial: Create and deploy your first Azure Resource Manager template
• evaluate location of new resources
  • Conditional deployment in Resource Manager templates
  • Set resource location in Resource Manager template
• configure a virtual disk template
  • Create a VM from a VHD by using the Azure portal
• deploy from a template
  • Download the template for a VM
• manage a template library
  • Azure Resource Manager templates overview
• create and execute an automation runbook
  • Start a runbook in Azure Automation

Implement virtual networking

• implement VNet to VNet connections
  • Configure a VNet-to-VNet VPN gateway connection by using the Azure portal
• implement VNet peering
  • Virtual network peering
  • Create, change, or delete a virtual network peering

Implement Azure Active Directory

• add custom domains
  • Add your custom domain name using the Azure Active Directory portal
• configure Azure AD Identity Protection
  • What is Azure Active Directory Identity Protection?
• implement self-service password reset
  • Plan an Azure Active Directory self-service password reset
  • How it works: Azure AD self-service password reset
  • Licensing requirements for Azure AD self-service password reset
• implement Conditional Access including MFA
  • Conditional Access: Require MFA for all users
  • Conditional Access: Risk-based Conditional Access
• configure user accounts for MFA
  • Tutorial: Secure user sign-in events with Azure Multi-Factor Authentication
• configure fraud alerts
  • Reports in Azure Multi-Factor Authentication
  • Configure Azure Multi-Factor Authentication settings
• configure bypass options
  • Configure Azure Multi-Factor Authentication settings
• configure Trusted IPs
  • Quickstart: Configure named locations in Azure Active Directory
  • What is the location condition in Azure Active Directory Conditional Access?
• configure verification methods
  • Change your two-factor verification method and settings
  • What is the Additional verification page?
• implement and manage guest accounts
  • What is guest user access in Azure Active Directory B2B?
  • Manage guest access with Azure AD access reviews
  • Quickstart: Add guest users to your directory in the Azure portal
• manage multiple directories
  • Understand how multiple Azure Active Directory tenants interact

Implement and manage hybrid identities

• install and configure Azure AD Connect
  • Custom installation of Azure AD Connect
  • Select which installation type to use for Azure AD Connect
• identity synchronization options
  • Azure AD Connect sync: Understand and customize synchronization
  • Azure Active Directory Hybrid Identity Design Considerations
• configure and manage password sync and password writeback
  • Implement password hash synchronization with Azure AD Connect sync
  • Tutorial: Enable Azure Active Directory self-service password reset writeback to an on-premises environment
  • Azure AD Connect: Enabling device writeback
  • What is password writeback?
• configure single sign-on
  • Azure Active Directory Seamless Single Sign-On: Quick start
  • Azure Active Directory Seamless Single Sign-On: Frequently asked questions
• use Azure AD Connect Health
  • Azure Active Directory Connect Health operations
  • What is Azure AD Connect?

Implement Management and Security Solutions (25-30%)

Manage workloads in Azure

• migrate workloads using Azure Migrate
  • About Azure Migrate
  • Prepare VMware VMs for assessment and migration to Azure
  • Assess VMware VMs by using Azure Migrate Server Assessment
  • Select a VMware migration option
  • Migrate VMware VMs to Azure (agentless)
  • Migrate VMware VMs to Azure (agent-based)
• implement Azure Backup for VMs
  • An overview of Azure VM backup
  • Get improved backup and restore performance with Azure Backup Instant Restore capability
• implement disaster recovery
  • Set up disaster recovery to a secondary Azure region for an Azure VM
• implement Azure Update Management
  • Update Management solution in Azure
  • Enable Update Management, Change Tracking, and Inventory solutions on multiple VMs
  • Manage updates and patches for your Azure VMs

Implement load balancing and network security

• implement Azure Load Balancer
  • Tutorial: Balance internal traffic load with a Basic load balancer in the Azure portal
  • Create an internal load balancer by using the Azure PowerShell module
  • Quickstart: Create a Load Balancer to load balance VMs using the Azure portal
• implement an application gateway
  • Application Gateway configuration overview
• implement a Web Application Firewall
  • Azure Web Application Firewall on Azure Application Gateway
• implement Azure Firewall
  • Tutorial: Deploy and configure Azure Firewall using the Azure portal
• implement the Azure Front Door Service
  • What is Azure Front Door Service?
  • Quickstart: Create a Front Door for a highly available global web application
• implement Azure Traffic Manager
  • What is Traffic Manager?
  • Quickstart: Create a Traffic Manager profile using the Azure portal
• implement Network Security Groups and Application Security Groups
  • Security groups
  • Create, change, or delete a network security group
• implement Bastion
  • Create an Azure Bastion host

Implement and manage Azure governance solutions

• create and manage hierarchical structure that contains management groups, subscriptions and resource groups
  • Azure Resource Manager overview
  • Organize your resources with Azure management groups
  • Create management groups for resource organization and management
  • Manage Azure Resource Manager resource groups by using the Azure portal
  • Azure subscription and service limits, quotas, and constraints
• assign RBAC roles
  • Add or remove role assignments using Azure RBAC and the Azure portal
• create a custom RBAC role
  • Custom roles for Azure resources
  • Tutorial: Create a custom role for Azure resources using Azure PowerShell
• configure access to Azure resources by assigning roles
  • Tutorial: Grant a user access to Azure resources using RBAC and the Azure portal
• configure management access to Azure
  • Manage access to Azure management with Conditional Access
  • Manage access to Azure resources with Azure AD Privileged Identity Management
  • Add or remove role assignments using Azure RBAC and the Azure portal
• interpret effective permissions
  • What is role-based access control (RBAC) for Azure resources?
  • Quickstart: View the access a user has to Azure resources
• set up and perform an access review
  • What are Azure AD access reviews?
• implement and configure an Azure Policy
  • What is Azure Policy?
  • Quickstart: Create a policy assignment to identify non-compliant resources
  • Tutorial: Create and manage policies to enforce compliance
• implement and configure an Azure Blueprint
  • What is Azure Blueprints?
  • Quickstart: Define and assign a blueprint in the portal

Manage security for applications

• implement and configure KeyVault
  • What is Azure Key Vault?
  • About keys, secrets, and certificates
• implement and configure Azure AD Managed Identities
  • What are managed identities for Azure resources?
  • Use a Windows VM system-assigned managed identity to access Resource Manager
• register and manage applications in Azure AD
  • Tutorial: Register an application in Azure Active Directory B2C

Implement Solutions for Apps (10-15%)

Implement an application infrastructure

• create and configure Azure App Service
  • App Service overview
  • Introduction to the App Service Environments
  • Custom configuration and application settings in Azure Web Sites
  • Configure an App Service app in the Azure portal
  • Buy a custom domain name for Azure App Service
  • Create an ASP.NET Core web app in Azure
• create an App Service Web App for Containers
  • Deploy a custom Linux container to Azure App Service
• create and configure an App Service plan
  • Azure App Service plan overview
  • Manage an App Service plan in Azure
• configure an App Service
  • Custom configuration and application settings in Azure Web Sites
  • Configure an App Service app in the Azure portal
  • Buy a custom domain name for Azure App Service
• configure networking for an App Service
  • Networking considerations for an App Service Environment
  • App Service networking features
  • Integrate your app with an Azure Virtual Network
• create and manage deployment slots
  • Set up staging environments in Azure App Service
• implement Logic Apps
  • Overview – What is Azure Logic Apps?
  • Quickstart: Create your first workflow by using Azure Logic Apps – Azure portal
  • Quickstart: Create automated tasks, processes, and workflows with Azure Logic Apps – Visual Studio
  • Quickstart: Create and manage logic app workflow definitions by using Visual Studio Code
• implement Azure Functions
  • An introduction to Azure Functions
  • Azure Functions triggers and bindings concepts
  • Azure Functions trigger and binding example
  • Azure Functions triggers and bindings concepts
  • Azure Functions trigger and binding example
  • Azure Functions HTTP triggers and bindings overview
  • What are Durable Functions?

Implement container-based applications

• create a container image
  • Tutorial: Build and deploy container images in the cloud with Azure Container Registry Tasks
  • Tutorial: Create container images on a Linux Service Fabric cluster
  • Tutorial: Create a container image for deployment to Azure Container Instances
• configure Azure Kubernetes Service
  • Azure Kubernetes Service (AKS)
  • Quickstart: Deploy an Azure Kubernetes Service (AKS) cluster using the Azure portal
• publish and automate image deployment to the Azure Container Registry
  • Push your first image to a private Docker container registry using the Docker CLI
  • Tutorial: Build and deploy container images in the cloud with Azure Container Registry Tasks
• publish a solution on an Azure Container Instance
  • What is Azure Container Instances?
  • Quickstart: Deploy a container instance in Azure using the Azure portal
  • Quickstart: Deploy a container instance in Azure using the Azure CLI

Implement and Manage Data Platforms (10-15%)

Implement NoSQL databases

• configure storage account tables
  • Azure Table storage overview
  • Understanding the Table service data model
• select appropriate CosmosDB APIs
  • Choose the appropriate API for Azure Cosmos DB storage (Microsoft Learn module)
  • Welcome to Azure Cosmos DB
• set up replicas in CosmosDB
  • Choose the right consistency level
  • Consistency levels and Azure Cosmos DB APIs
  • Consistency, availability, and performance tradeoffs

Implement Azure SQL databases

• configure Azure SQL database settings
  • What is the Azure SQL Database service? 
  • Quickstart: Create a single database in Azure SQL Database using the Azure portal, PowerShell, and Azure CLI
  • Choose the right deployment option in Azure SQL
• implement Azure SQL Database managed instances
  • SQL managed instance
  • What is Azure SQL Database managed instance?
  • Quickstart: Create an Azure SQL Database managed instance
• configure HA for an Azure SQL database
  • High-availability and Azure SQL Database
• publish an Azure SQL database
  • Azure SQL database deployment
  • Tutorial: Deploy your ASP.NET app and Azure SQL Database code by using Azure DevOps Projects

AZ-304 Microsoft Azure Architect Technologies Certification Exam Study Guide

Exam AZ-304: Microsoft Azure Architect Design

Candidates for this exam are Azure Solutions Architects who advise stakeholders and translate business requirements into secure, scalable, and reliable solutions.

Candidates should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance. This role requires managing how decisions in each area affects an overall solution.

Candidates must have expert-level skills in Azure administration and have experience with Azure development processes and DevOps processes.

The high-level view of the skills measured in the exam:

1. Design Monitoring (10-15%)
2. Design Identity and Security (25-30%)
3. Design Data Storage (15-20%)
4. Design Business Continuity (10-15%)
5. Design Infrastructure (25-30%)

Free Online Microsoft Learn AZ-304 Exam

Microsoft Learn provides you with free online training and learning paths for different Microsoft technologies. They not just offer reading material, but also control questions and free online labs.

Design Monitoring (10-15%)

Design for cost optimization

• recommend a solution for cost management and cost reporting
  • Manage Azure costs and usage
  • What is Azure Cost Management and Billing?
  • Quickstart: Explore and analyze costs with cost analysis
• recommend solutions to minimize costs
  • Reduce service costs using Azure Advisor
  • Azure Reserved VM Instances (RIs)
  • What are Azure Reservations?
  • How to reduce the costs of your Azure IaaS VMs (Thomas Maurer)

Design a solution for logging and monitoring

• determine levels and storage locations for logs
  • Logs in Azure Monitor
  • Azure diagnostic logs
  • Enable diagnostics logging for apps in Azure App Service
  • Create diagnostic setting to collect platform logs and metrics in Azure
• plan for integration with monitoring tools including Azure Monitor and Azure Sentinel
  • Azure Monitor overview
  • Tutorial: Collect and analyze resource logs from an Azure resource
  • What is Azure Sentinel?
  • Quickstart: On-board Azure Sentinel
• recommend appropriate monitoring tool(s) for a solution
  • Azure Monitor overview
  • Best practices for monitoring cloud applications
• choose a mechanism for event routing and escalation
  • What is Azure Event Grid?
  • Stream Azure monitoring data to an event hub
  • Create and manage action groups in the Azure portal
• recommend a logging solution for compliance requirements
  • Azure security logging and auditing
  • Azure security management and monitoring overview
  • What is Azure Security Center?

Design Identity and Security (25-30%)

Design authentication

• recommend a solution for single-sign on
  • Azure Active Directory Seamless Single Sign-On
  • Single sign-on to applications in Azure Active Directory
  • Configure SaaS apps for B2B collaboration
  • Azure Active Directory Seamless Single Sign-On: Quick start
  • Azure Active Directory Seamless Single Sign-On: Frequently asked questions
• recommend a solution for authentication
  • Authentication basics
  • Authentication flows and application scenarios
• recommend a solution for Conditional Access, including multi-factor authentication
  • Conditional Access: Require MFA for all users
  • Conditional Access: Risk-based Conditional Access
  • Tutorial: Secure user sign-in events with Azure Multi-Factor Authentication
• recommend a solution for network access authentication
  • Quickstart: Configure named locations in Azure Active Directory
  • What is the location condition in Azure Active Directory Conditional Access?
• recommend a solution for a hybrid identity including Azure AD Connect and Azure AD Connect Health
  • Custom installation of Azure AD Connect
  • Select which installation type to use for Azure AD Connect
  • Azure Active Directory Connect Health operations
  • What is Azure AD Connect?
• recommend a solution for user self-service
  • Plan an Azure Active Directory self-service password reset
• recommend and implement a solution for B2B integration
  • What is guest user access in Azure Active Directory B2B?
  • Compare B2B collaboration and B2C in Azure Active Directory

Design authorization

• choose an authorization approach
  • Authentication basics
• recommend a hierarchical structure that includes management groups, subscriptions and resource groups
  • Overview of Management services in Azure
  • Azure Resource Manager overview
  • Organize your resources with Azure management groups
  • Create management groups for resource organization and management
  • Manage Azure Resource Manager resource groups by using the Azure portal
  • Azure subscription and service limits, quotas, and constraints
• recommend an access management solution including RBAC policies, access reviews, role assignments, physical access, Privileged Identity Management (PIM), Azure AD Identity Protection, Just In Time (JIT) access
  • Add or remove role assignments using Azure RBAC and the Azure portal
  • What is role-based access control (RBAC) for Azure resources?
  • Quickstart: View the access a user has to Azure resources
  • What are Azure AD access reviews?
  • What is Azure Active Directory Identity Protection?
  • Secure your management ports with just-in-time access
  • What is Azure AD Privileged Identity Management?

Design governance

• recommend a strategy for tagging
  • Use tags to organize your Azure resources
  • Use Azure Tags to organize Resources (Thomas Maurer)
• recommend a solution for using Azure Policy
  • What is Azure Policy?
  • Tutorial: Create and manage policies to enforce compliance
• recommend a solution for using Azure Blueprint
  • What is Azure Blueprints?
  • Quickstart: Define and assign a blueprint in the portal

Design security for applications

• recommend a solution that includes KeyVault
  • What is Azure Key Vault?
  • About keys, secrets, and certificates
• recommend a solution that includes Azure AD Managed Identities
  • What are managed identities for Azure resources?
  • Use a Windows VM system-assigned managed identity to access Resource Manager
• recommend a solution for integrating applications into Azure AD
  • Tutorial: Register an application in Azure Active Directory B2C

Design Data Storage (15-20%)

Choose the right data store

Design a solution for databases

• select an appropriate data platform based on requirements
  • What is the Azure SQL Database service?
  • Choose the right deployment option in Azure SQL
• recommend database service tier sizing
  • Azure SQL Database service tiers
  • General purpose service tier – Azure SQL Database
• recommend a solution for database scalability
  • Scalability
• recommend a solution for encrypting data at rest, data in transmission, and data in use
  • Azure Data Encryption-at-Rest
  • Azure encryption overview
  • Transparent data encryption for SQL Database and Azure Synapse

Design data integration

• recommend a data flow to meet business requirements
  • Create Azure Data Factory Data Flow
  • Source transformation in mapping data flow
• recommend a solution for data integration, including Azure Data Factory, Azure Data Bricks, Azure Data Lake, Azure Synapse Analytics
  • What is Azure Data Factory?
  • What is Azure Databricks?
  • What is Azure Data Lake Storage Gen1?
  • Introduction to Azure Data Lake Storage Gen2
  • What is Azure Synapse Analytics (formerly SQL DW)?

Select an appropriate storage account

• choose between storage tiers
  • Azure Blob storage: hot, cool, and archive access tiers
• recommend a storage access solution
  • Manage storage account access keys
  • Introduction to Azure Storage
  • Authorize access to blobs and queues using Azure Active Directory
• recommend storage management tools
  • Microsoft client tools for working with Azure Storage
  • Get started with AzCopy

Design Business Continuity (10-15%)

Design a solution for backup and recovery

• recommend a recovery solution for Azure hybrid and on-premises workloads that meets recovery objectives (RTO, RLO, RPO)
  • About Site Recovery
  • General questions about Azure Site Recovery
  • Common questions about VMware to Azure replication
  • Common questions – Hyper-V to Azure disaster recovery
  • What is the Azure Backup service?
  • Azure Backup architecture and components
  • Azure Backup Server protection matrix
• design and Azure Site Recovery solution
  • About Site Recovery
  • General questions about Azure Site Recovery
• recommend a solution for recovery in different regions
  • Set up disaster recovery to a secondary Azure region for an Azure VM
  • Azure Storage redundancy
  • Disaster recovery and account failover (preview)
  • Designing highly available applications using read-access geo-redundant storage
• recommend a solution for Azure Backup management
  • Monitor and manage Recovery Services vaults
  • Azure Backup architecture and components
• design a solution for data archiving and retention
  • Manage the Azure Blob storage lifecycle
  • Azure Blob storage: hot, cool, and archive access tiers

Design for high availability

• recommend a solution for application and workload redundancy, including compute, database, and storage
  • What are Availability Zones in Azure?
  • Tutorial: Create and deploy highly available virtual machines with Azure PowerShell
  • Azure Storage redundancy
  • High-availability and Azure SQL Database
  • Overview of business continuity with Azure SQL Database
• recommend a solution for autoscaling
  • What are virtual machine scale sets?
  • Autoscaling
  • Overview of autoscale in Microsoft Azure Virtual Machines, Cloud Services, and Web Apps
  • Dynamically scale database resources with minimal downtime
  • Scaling out with Azure SQL Database
• identify resources that require high availability
  • Review your data options
  • Achieving Compliant Data Residency and Security with Azure (White Paper)
• identify storage types for high availability
  • Disaster recovery and account failover (preview)
• recommend a solution for geo-redundancy of workloads
  • Azure Storage redundancy
  • What is Traffic Manager?

Design Infrastructure (25-30%)

Design a compute solution

• recommend a solution for compute provisioning
  • Choose an Azure compute service for your application
• determine appropriate compute technologies, including virtual machines, App Services, Service Fabric, Azure Functions, Windows Virtual Desktop, and containers
  • Choose an Azure compute service for your application
  • App Service
  • Azure Kubernetes Service (AKS)
  • Batch
  • Container Instances
  • Functions
  • Service Fabric
  • Virtual machines
  • What is Windows Virtual Desktop?
• recommend a solution for containers
  • Azure Kubernetes Service (AKS)
  • What is Azure Container Instances?
  • Introduction to private Docker container registries in Azure
• recommend a solution for automating compute management
  • An introduction to Azure Automation
  • Overview – What is Azure Logic Apps?

Design a network solution

• recommend a solution for network addressing and name resolution
  • Name resolution for resources in Azure virtual networks
  • Use Azure DNS to provide custom domain settings for an Azure service
  • Tutorial: Host your domain in Azure DNS
  • Quickstart: Create an Azure private DNS zone using the Azure portal
• recommend a solution for network provisioning
  • What is Azure Virtual Network?
  • Virtual network service endpoint policies for Azure Storage
  • Virtual Network service endpoints
• recommend a solution for network security
  • Network security groups
  • Application security groups
  • Virtual network service endpoints
  • Virtual network security FAQ
  • What is Azure Firewall?
• recommend a solution for network connectivity to the Internet, on-premises networks, and other Azure virtual networks
  • What is VPN Gateway?
  • ExpressRoute overview
• recommend a solution for automating network management
  • What is Azure Virtual Network?
• recommend a solution for load balancing and traffic routing
  • Overview of load-balancing options in Azure
  • Front Door
  • Traffic Manager
  • Application Gateway
  • Azure Load Balancer

Design an application architecture

• recommend a microservices architecture including Event Grid, Event Hubs, Service Bus, Storage Queues, Logic Apps, Azure Functions, and webhooks
  • Microservices architecture style
  • Event Grid
  • Event Hub
  • Service Bus
  • Storage Queues
  • Logic Apps
  • Azure Functions
  • webhooks
• recommend an orchestration solution for deployment of applications including ARM templates, Logic Apps, or Azure Functions
  • Extend Azure Resource Manager template functionality
  • Azure Resource Manager templates overview
  • Tutorial: Create and deploy your first Azure Resource Manager template
  • Logic Apps
  • Azure Functions
• recommend a solution for API integration
  • Basic enterprise integration on Azure
  • API Management
  • Integration Services

Design migrations

• assess and interpret on-premises servers, data, and applications for migration
  • Azure migration center
  • About Azure Migrate
  • Prepare VMware VMs for assessment and migration to Azure
  • Assess VMware VMs by using Azure Migrate Server Assessment
  • About assessments in Azure Migrate
  • Assess the readiness of a SQL Server data estate migrating to Azure SQL Database using the Data Migration Assistant
• recommend a solution for migrating applications and VMs
  • About Azure Migrate
  • Select a VMware migration option
• recommend a solution for migration of databases
  • Assess the readiness of a SQL Server data estate migrating to Azure SQL Database using the Data Migration Assistant
  • SQL Server Migration Assistant

Conclusion

In this blog post, I shared with web readers way of gain exam objective. Of course, this is my learning path, someone may have another approach to manage the exam objective. But sharing the thoughts is very much helpful to the global readers.