Az-400 Exam Tips



  • Octopus is mainly used for Continuous Delivery and Deployment. In Azure DevOps you can make use of Release Pipelines https://azuredevopslabs.com/labs/vstsextend/octopus/
  • Steps to carry out code quality validation are
    1. Prepare Analysis Configuration – First you prepare the analysis configuration for SonarCloud
    2. Visual Studio Build – Next you need to build your .Net project
    3. Visual Studio Test – Next run the unit tests
    4. Run Code Analysis – Then you run the code analysis using the SonarCloud tools
  • Git in Azure Repos supports use of YAML files for Azure Pipelines
  • GitHub Enterprise allows you to host a Git repository on your on-premise environment to keep it private.
  • Subversion is a centralized source code versioning system.
  • Selenium is a web testing tool that can be used to automate the User Interface testing for a web application.
  • Use Conditional access in Azure AD to allow access to only devices that are connected to the on-premises network can access the Azure DevOps environment
  • Project Vs Process

  • Microsoft teams allows you to create multiple channels for communication and can be easily integrated into Azure DevOps.
  • With the squash merge , the changes would be merged into a single commit and also consolidate the entire commit history.
  • Version Control System Vs Process

  • The lead time helps to focus on the time taken from the creation of work items to their completion
  • Cycle time measures the time it takes for your team to complete work items once they begin actively working on them.
  • The Burndown chart helps to focus on the remaining work within a specified time period.
  • To increase the security of the development team processes
  • Cobertura can be used to provide code coverage for your Java based applications.
  • To deploy most recent build use below option

  • IT Service Management connector to used to connect to the Service Now system.
  • In Gitflow strategy
    1. The master branch is used for the production code
    2. The develop branch is used for the pre-production code
  • Smart Detection automatically warns you of potential performance problems and failure anomalies in your web application. It performs proactive analysis of the telemetry that your app sends to Application Insights.
  • Notify other applications on events that occur in Azure DevOps is to use service hooks subscriptions example teams notifiation

  • Packages you host in Azure Artifacts are stored in a feed. Setting permissions on the feed allows you to share your packages with as many or as few people as your scenario requires.
    Feeds have four levels of access: Owners, Contributors, Collaborators, and Readers.
  • To authenticate git without credentials, use personal access tokens (PATs) in Azure DevOps
  • Authentications types
  • Service connections available in Azure DevOps are:
    1.      - Azure Classic
    2.      - Azure Resource Manager
    3.      - Azure Service Bus
    4.      - Bitbucket Cloud
    5.      - Chef
    6.      - Docker Host
    7.      - Docker Registry
    8.      - External Git
    9.      - Generic
    10.      - GitHub
    11.      - GitHub Enterprise Server
    12.      - Jenkins
    13.      - Kubernetes
    14.      - Maven
    15.      - npm
    16.      - NuGet
    17.      - Python package download
    18.      - Python package upload
    19.      - Service Fabric
    20.      - SSH
    21.      - Subversion
    22.      - Team Foundation Server/Azure Pipelines
    23.      - Visual Studio App Center
  • Azure Pipeline commands

  • Black Duck is plugin that allows automatic identification of open source security vulnerabilities, license compliance, and operational risks when a build process is triggered. Using this integration we can enforce policies to receive alerts and failed builds when violations occur, which can be leveraged in our case. Black Duck is powered by the world’s largest open-source Knowledge base containing information from over 13,000 unique sources and support for over 80 programming languages. (https://azuremarketplace.microsoft.com/en-us/marketplace/apps/black-duck-software.blackduck_hub_431)
  • Security Tool Vs Development stage

  • PMD is a source code analyzer. It finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth. There is an Apache Maven PMD Plugin which allows you to automatically run the PMD code analysis tool on your project's source code and generate a site report with its results.(https://pmd.github.io/)
  • Steps to use Azure Automation State Configuration to manage the ongoing consistency of virtual machine configurations
    1. Onboard a VM to be managed by Azure Automation DSC
    2. Upload a configuration to Azure Automation
    3. Compile a configuration into a node configuration
    4. Assign a node configuration to a managed node
    5. Check the compliance status of a managed node
  • For containerized applications that serve traffic, you might want to verify that your container is ready to handle incoming requests. Azure Container Instances supports readiness probes to include configurations so that your container can't be accessed under certain conditions. The readiness probe behaves like a Kubernetes readiness probe. For example, a container app might need to load a large data set during startup, and you don't want it to receive requests during this time. YAML is used to setup a liveness probe. (https://docs.microsoft.com/en-us/azure/container-instances/container-instances-readiness-probe)


Previous Post Next Post