AZ-400 Exam - Microsoft Azure DevOps Solutions (beta)

NEW QUESTION 1

Your company implements an Agile development methodology. You plan to implement retrospectives at the end of each sprint.
Which three questions should you include? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

• A. Who performed well?
• B. Who should have performed better?
• C. What could have gone better?
• D. What went well?
• E. What should we try next?

Answer: CDE

Explanation:
https://www.scrum.org/resources/what-is-a-sprint-retrospective

NEW QUESTION 2
DRAG DROP
You need to implement the code flow strategy for Project2 in Azure DevOps.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange in the correct order.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 3
DRAG DROP
You have an Azure Repos repository named repo1.
You need to clone repo1. The solution must clone only a directory named src/web.
How should you complete the script? To answer, drag the appropriate values to the correct targets,Each value may be used once, more than once, or not at all. You may need to drag the spirt bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 4

You configure Azure Application Insights and the shared service plan tier for a web app. You enable Smart Detection.
You confirm that standard metrics are visible in the logs, but when you test a failure, you do not receive a Smart Detection notification
What prevents the Smart Detection notification from being sent?

• A. You must restart the web app before Smart Detection is enabled.
• B. Smart Detection uses the first 24 hours to establish the normal behavior of the web app.
• C. You must enable the Snapshot Debugger for the web app.
• D. The web app is configured to use the shared service plan tier.

Answer: B

NEW QUESTION 5

You have a GitHub repository that contains multiple versions of an Azure Pipelines template. You plan to deploy multiple pipelines that will use a template stored in the repository. You need to ensure that you use a fixed version of the template. What should you use to reference which version of the template repository to use?

• A. the runner
• B. the branch
• C. the SHA-based hashes
• D. the serial

Answer: B

NEW QUESTION 6

Your company creates a new Azure DevOps team. D18912E1457D5D1DDCBD40AB3BF70D5D
You plan to use Azure DevOps for sprint planning.
You need to visualize the flow of your work by using an agile methodology. Which Azure DevOps component should you use?

• A. Kanban boards
• B. sprint planning
• C. delivery plans
• D. portfolio backlogs

Answer: A

Explanation:
Customizing Kanban boards
To maximize a team’s ability to consistently deliver high quality software, Kanban emphasize two main practices. The first, visualize the flow of work, requires you to map your team’s workflow stages and configure your Kanban board to match. Your Kanban board turns your backlog into an interactive signboard, providing a visual flow of work.
Reference: https://azuredevopslabs.com/labs/azuredevops/agile/

NEW QUESTION 7

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You plan to update the Azure DevOps strategy of your company.
You need to identify the following issues as they occur during the company’s development process:
✑ Licensing violations
✑ Prohibited libraries
Solution: You implement pre-deployment gates. Does this meet the goal?

• A. Yes
• B. No

Answer: B

Explanation:
Instead use implement continuous integration.
Note: WhiteSource is the leader in continuous open source software security and compliance management. WhiteSource integrates into your build process, irrespective of your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking the security, licensing, and quality of your open source components against WhiteSource constantly-updated denitive database of open source repositories.
Reference: https://azuredevopslabs.com/labs/vstsextend/whitesource/

NEW QUESTION 8

Your company has an Azure DevOps project,
The source code for the project is stored in an on-premises repository and uses on an on- premises build
server.
You plan to use Azure DevOps to control the build process on the build server by using a self-hosted agent.
You need to implement the self-hosted agent.
You download and install the agent on the build server.
Which two actions should you perform next? Each correct answer presents part of the solution.

• A. From Azure, create a shared access signature (SAS).
• B. From the build server, create a certificate, and then upload the certificate to Azure Storage.
• C. From the build server, create a certificate, and then upload the certificate to Azure Key Vault.
• D. From DevOps, create a personal access token (PAT).
• E. From the build server, run config.cmd.

Answer: DE

Explanation:
https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/v2-windows?view=azure-devops (Get PAT, run config)

NEW QUESTION 9
HOTSPOT
You have a project in Azure DevOps that includes two users named User1 and User2. You plan to use Azure Monitor to manage logs.
You need to ensure that the users can perform the actions shown in following the table.

The solution must follow the principle of least privilege.
Which role should you assign to each user? To answer select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 10

You have an Azure DevOps project that uses many package feeds.
You need to simplify the project by using a single feed that stores packages produced by your company and packages consumed from remote feeds. The solution must support public feeds and authenticated feeds.
What should you enable in DevOps?

• A. Universal Packages
• B. views in Azure Artifacts
• C. upstream sources
• D. a symbol server

Answer: C

NEW QUESTION 11

You have a brand policy in a project in Azure DevOps. The policy requires that code always builds successfully.
You need to ensure that a specific user can always merge change to the master branch, even if the code fails to compile. The solution must use the principle of least privilege.
What should you do?

• A. From the Security setting of the repository, modify the access control tor the user.
• B. From the Security settings of the branch, modify the access control for the user.
• C. Add the user to the Build Administrators group,
• D. Add the user to the Project Administrators group

Answer: B

Explanation:
In some cases, you need to bypass policy requirements so you can push changes to the branch directly or complete a pull request even if branch policies are not satisfied. For these situations, grant the desired permission from the previous list to a user or group. You can scope this permission to an entire project, a repo, or a single branch. Manage this permission along the with other Git permissions.
References: https://docs.microsoft.com/en-us/azure/devops/repos/git/branch-policies

NEW QUESTION 12

You manage code by using GitHub.
You need to ensure that repository owners are notified if a new vulnerable dependency or malware is found in their repository.
What should you do?

• A. Configure branch protection rules for each repository.
• B. Configure Dependabot alerts.
• C. Configure CodeQL scanning actions.
• D. Subscribe all the repository owners to the GitHub Advisory Database.

Answer: B

NEW QUESTION 13

You are creating a build pipeline in Azure Pipelines.
You define several tests that might fail due to third-party applications.
You need to ensure that the build pipeline completes successfully if the third-party applications are unavailable.
What should you do?

• A. Configure the build pipeline to use parallel jobs
• B. Configure flaky tests
• C. Increase the test pass percentage
• D. Add the Requirements quality widget to your dashboard

Answer: B

NEW QUESTION 14

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these
questions will not appear in the review screen.
You need to recommend an integration strategy for the build process of a Java application.
The solution must
meet the following requirements:
✑ The builds must access an on-premises dependency management system.
✑ The build outputs must be stored as Server artifacts in Azure DevOps.
✑ The source code must be stored in a Git repository in Azure DevOps.
Solution: Configure an Octopus Tentacle on an on-premises machine. Use the Package Application task in the build pipeline.
Does this meet the goal?

• A. Yes
• B. No

Answer: A

Explanation:
Octopus Deploy is an automated deployment server that makes it easy to automate deployment of ASP.NET web applications, Java applications, NodeJS application and custom scripts to multiple environments.
Octopus can be installed on various platforms including Windows, Mac and Linux. It can also be integrated with most version control tools including VSTS and GIT.
When you deploy software to Windows servers, you need to install Tentacle, a lightweight agent service, on your Windows servers so they can communicate with the Octopus server.
When defining your deployment process, the most common step type will be a package step. This step deploys your packaged application onto one or more deployment targets.
When deploying a package you will need to select the machine role that the package will be deployed to.
References:
https://octopus.com/docs/deployment-examples/package-deployments https://explore.emtecinc.com/blog/octopus-for-automated-deployment-in-devops-models

NEW QUESTION 15

You have a build pipeline in Azure Pipelines. You create a Slack App Integration.
You need to send build notifications to a Slack channel named #Development. What should you do first?

• A. Configure a service connection.
• B. Create a service hook subscription.
• C. Create a project-level notification.
• D. Create a global notification.

Answer: B

Explanation:
Create a service hook for Azure DevOps with Slack to post messages to Slack in response to events in your Azure DevOps organization, such as completed builds, code changes, pull requests, releases, work items changes, and more.
Note:
* 1. Go to your project Service Hooks page: https://{orgName}/{project_name}/_settings/serviceHooksSelect Create Subscription.
* 3. Choose the types of events you want to appear in your Slack channel.
* 4. Paste the Web Hook URL from the Slack integration that you created and select Finish.
* 5. Now, when the event you configured occurs in your project, a notification appears in your team's Slack channel.
Reference:
https://docs.microsoft.com/en-us/azure/devops/service-hooks/services/slack

NEW QUESTION 16
......