Microsoft AZ-400 Exam(240q)
Certification Provider: Microsoft
Exam: Microsoft Azure DevOps Solutions
Duration: 2 Hours
Number of questions in the database: 240 (194 Question #)
Exam Version: Nov. 1, 2020
Exam Topic
...
Microsoft AZ-400 Exam(240q)
Certification Provider: Microsoft
Exam: Microsoft Azure DevOps Solutions
Duration: 2 Hours
Number of questions in the database: 240 (194 Question #)
Exam Version: Nov. 1, 2020
Exam Topics:
Topic 1: Question Set 1
Topic 2: Question Set 2
Topic 3: Question Set 3
Topic 4: Question Set 4
Topic 5: Question Set 5
Topic 6: Question Set 6
Topic 7: Question Set 7
Topic 8: Testlet 1
Topic 9: Testlet 2
Topic 10: Testlet 3
Topic 11: Testlet 4
Topic 12: Testlet 5
Topic 13: Testlet 6
Topic 14: More Questions.
Topic 1 - Question Set 1
1 Question #1 Topic 1
You use Azure Artifacts to host NuGet packages that you create.
You need to make one of the packages available to anonymous users outside your organization. The solution must
minimize the number of publication points.
What should you do?2
A. Change the feed URL of the package
B. Create a new feed for the package
C. Promote the package to a release view.
D. Publish the package to a public NuGet repository.
Question #2 Topic 1
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who
work in locations around the world. The applications must meet the following requirements:
✑ Provide the ability to isolate the members of different project teams into separate communication channels and to
keep a history of the chats within those channels.
✑ Be available on Windows 10, Mac OS, iOS, and Android operating systems.
✑ Provide the ability to add external contractors and suppliers to projects.
Integrate directly with Azure DevOps.
What should you recommend?
A. Microsoft Project
B. Bamboo
C. Microsoft Lync
D. Microsoft Teams
Question #10 Topic 1
Your company plans to use an agile approach to software development.
You need to recommend an application to provide communication between members of the development team who
work in locations around the world. The applications must meet the following requirements:
✑ Provide the ability to isolate the members of different project teams into separate communication channels and to3
keep a history of the chats within those channels.
✑ Be available on Windows 10, Mac OS, iOS, and Android operating systems.
✑ Provide the ability to add external contractors and suppliers to projects.
✑ Integrate directly with Azure DevOps.
What should you recommend?
A. Microsoft Project
B. Bamboo
C. Octopus
D. Slack
Question #3 Topic 1
DRAG DROP -
You need to recommend project metrics for dashboards in Azure DevOps.
Which chart widgets should you recommend for each metric? To answer, drag the appropriate chart widgets to the
correct metrics. Each chart widget may be used once, more than once, or not at all. You may need to drag the split
bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Lead time -
Box 2: Cycle time -
Box 3: Burndown -4
Question #4 Topic 1
You manage build pipelines and deployment pipelines by using Azure DevOps.
Your company has a team of 500 developers. New members are added continually to the team.
You need to automate the management of users and licenses whenever possible.
Which task must you perform manually?
A. modifying group memberships
B. adding users
C. assigning entitlements
D. procuring licenses
Question #5 Topic 1
DRAG DROP -
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the5
appropriate security tools to the correct stages. Each security tool may be used once, more than once, or not at all.
You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Threat modeling -
Box 2: Static code analysis -
Box 3: Penetration testing -
2 Question #6 Topic 1
HOTSPOT -
Your company uses Team Foundation Server 2013 (TFS 2013).
You plan to migrate to Azure DevOps.
You need to recommend a migration strategy that meets the following requirements:
✑ Preserves the dates of Team Foundation Version Control changesets
✑ Preserves the changes dates of work items revisions
✑ Minimizes migration effort
✑ Migrates all TFS artifacts
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
Box 1: Upgrade TFS to the most recent RTM release.
Box 2: Use the TFS Database Import Service6
Question #7 Topic 1
You are developing a multi-tier application. The application will use Azure App Service web apps as the front end
and an Azure SQL database as the back end.
The application will use Azure functions to write some data to Azure Storage.
You need to send the Azure DevOps team an email message when the front end fails to return a status code of 200.
Which feature should you use?
A. Service Map in Azure Log Analytics
B. Availability tests in Azure Application Insights
C. Profiler in Azure Application Insights
D. Application Map in Azure Application Insights7
Question #8 Topic 1
During a code review, you discover many quality issues. Many modules contain unused variables and empty catch
blocks.
You need to recommend a solution to improve the quality of the code.
What should you recommend?
A. In a Grunt build task, select Enabled from Control Options.
B. In a Maven build task, select Run PMD.
C. In a Xcode build task, select Use xcpretty from Advanced.
D. In a Gradle build task, select Run Checkstyle.
Question #9 Topic 1
Your company has an on-premises Bitbucket Server that is used for Git-based source control. The server is
protected by a firewall that blocks inbound Internet traffic.
You plan to use Azure DevOps to manage the build and release processes.
Which two components are required to integrate Azure DevOps and Bitbucket? Each correct answer presents part of
the solution.
NOTE: Each correct selection is worth one point.
A. a deployment group
B. a Microsoft-hosted agent
C. service hooks
D. a self-hosted agent
E. an External Git service connection8
3 Question #11 Topic 1
DRAG DROP -
You are planning projects for three customers. Each customer's preferred process for work items is shown in the
following table.
The customers all plan to use Azure DevOps for work item management.
Which work item process should you use for each customer? To answer, drag the appropriate work item process to
the correct customers. Each work item process may be used once, more than once, or not at all. You may need to
drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Scrum -
Box 2: Agile -
Box 3: CMMI -9
Question #12 Topic 1
Your development team is building a new web solution by using the Microsoft Visual Studio integrated
development environment (IDE).
You need to make a custom package available to all the developers. The package must be managed centrally, and
the latest version must be available for consumption in Visual Studio automatically.
Which three actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Publish the package to a feed.
B. Create a new feed in Azure Artifacts.
C. Upload a package to a Git repository.
D. Add the package URL to the Environment settings in Visual Studio.
E. Add the package URL to the NuGet Package Manager settings in Visual Studio.
F. Create a Git repository in Azure Repos.10
Question #13 Topic 1
You have a GitHub repository.
You create a new repository in Azure DevOps.
You need to recommend a procedure to clone the repository from GitHub to Azure DevOps.
What should you recommend?
A. Create a pull request.
B. Create a webhook.
C. Create a service connection for GitHub.
D. From Import a Git repository, click Import.
E. Create a personal access token in Azure DevOps.
Question #14 Topic 1
Your company is concerned that when developers introduce open source libraries, it creates licensing compliance
issues.
You need to add an automated process to the build pipeline to detect when common open source libraries are added
to the code base.
What should you use?
A. SourceGear Vault
B. Jenkins
C. Microsoft Visual SourceSafe
D. WhiteSource Bolt11
Question #2 Topic 5
Your company is concerned that when developers introduce open source libraries, it creates licensing compliance
issues.
You need to add an automated process to the build pipeline to detect when common open source libraries are added
to the code base.
What should you use?
A. Microsoft Visual SourceSafe
B. PDM
C. WhiteSource
D. OWASP ZAP
Question #3 Topic 5
Your company is concerned that when developers introduce open source libraries, it creates licensing compliance
issues.
You need to add an automated process to the build pipeline to detect when common open source libraries are added
to the code base.
What should you use?
A. Microsoft Visual SourceSafe
B. Code Style
C. Black Duck
D. Jenkins
E. SourceGea
F. OWASP ZAP12
New Question
Your company is concerned that when developers introduce open source libraries, it creates
licensing compliance issues.
You need to add an automated process to the build pipeline to detect when common open source
libraries are added to the code base.
What should you use?
A. PDM
B. OWASPZAP
C. WhiteSource
D. Jenkins
Answer: C
Topic 2 - Question Set 2
Question #1 Topic 2
DRAG DROP -
You need to recommend a solution for deploying charts by using Helm and Tiller to Azure Kubernetes Service
(AKS) in an RBAC-enabled cluster.
Which three commands should you recommend be run in sequence? To answer, move the appropriate commands
from the list of commands to the answer area and arrange them in the correct order.
Select and Place:
Step 1: Kubectl create -
Step 2: helm init -
Step 3: helm install -13
4 Question #2 Topic 2
DRAG DROP -
Your company has a project in Azure DevOps.
You plan to create a release pipeline that will deploy resources by using Azure Resource Manager templates. The
templates will reference secrets stored in Azure
Key Vault.
You need to recommend a solution for accessing the secrets stored in the key vault during deployments. The
solution must use the principle of least privilege.
What should you include in the recommendation? To answer, drag the appropriate configurations to the correct
targets. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar
between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Box 1: A key Vault advanced access policy
Box 2: RBAC -
Select and Place:14
13 @Question #17 Topic 3
DRAG DROP -
Your company has a project in Azure DevOps.
You plan to create a release pipeline that will deploy resources by using Azure Resource Manager templates. The
templates will reference secrets stored in Azure
Key Vault.
You need to recommend a solution for accessing the secrets stored in the key vault during deployments. The
solution must use the principle of least privilege.
What should you include in the recommendation? To answer, drag the appropriate configurations to the correct
targets. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar
between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: RBAC -
Box 2: RBAC -15
Question #3 Topic 2
DRAG DROP -
You need to configure access to Azure DevOps agent pools to meet the following requirements:
✑ Use a project agent pool when authoring build or release pipelines.
✑ View the agent pool and agents of the organization.
✑ Use the principle of least privilege.
Which role memberships are required for the Azure DevOps organization and the project? To answer, drag the
appropriate role memberships to the correct targets. Each role membership may be used once, more than once, or
not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Reader -
Box 2: Service account -
Question #4 Topic 2
You have a branch policy in a project in Azure DevOps. The policy requires that code always builds successfully.
You need to ensure that a specific user can always merge changes to the master branch, even if the code fails to16
compile. The solution must use the principle of least privilege.
What should you do?
A. Add the user to the Build Administrators group.
B. Add the user to the Project Administrators group.
C. From the Security settings of the repository, modify the access control for the user.
D. From the Security settings of the branch, modify the access control for the user.
Question #5 Topic 2
Your company uses a Git repository in Azure Repos to manage the source code of a web application. The master
branch is protected from direct updates.
Developers work on new features in the topic branches.
Because of the high volume of requested features, it is difficult to follow the history of the changes to the master
branch.
You need to enforce a pull request merge strategy. The strategy must meet the following requirements:
✑ Consolidate commit histories.
✑ Merge the changes into a single commit.
Which merge strategy should you use in the branch policy?
A. squash merge
B. fast-forward merge
C. Git fetch
D. no-fast-forward merge
Question #6 Topic 2
Your company uses cloud-hosted Jenkins for builds.
You need to ensure that Jenkins can retrieve source code from Azure Repos.17
Which three actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A. Create a webhook in Jenkins.
B. Add the Team Foundation Server (TFS) plug-in to Jenkins.
C. Add a domain to your Jenkins account.
D. Create a personal access token in your Azure DevOps account.
E. Create a service hook in Azure DevOps.
5 Question #7 Topic 2
DRAG DROP -
Your company has four projects. The version control requirements for each project are shown in the following table.
You plan to use Azure Repos for all the projects.
Which version control system should you use for each project? To answer, drag the appropriate version control
systems to the correct projects. Each version control system may be used once, more than once, or not at all. You
may need to drag the split bar between panes or scroll to view content.18
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Team Foundation Version Control
Box 2: Git -
Box 3: Subversion -
Box 4: Git -
Question #8 Topic 2
You have an Azure Resource Manager template that deploys a multi-tier application.
You need to prevent the user who performs the deployment from viewing the account credentials and connection
strings used by the application.
What should you use?
A. Azure Key Vault
B. a Web.config file
C. an Appsettings.json file
D. an Azure Storage table
E. an Azure Resource Manager parameter file19
Question #9 Topic 2
HOTSPOT -
Your company is creating a suite of three mobile applications.
You need to control access to the application builds. The solution must be managed at the organization level.
What should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
Box 1: Microsoft Visual Studio App Center distribution Groups
Box 2: Shared –
Question #10 Topic 2
DRAG DROP -
You are configuring Azure DevOps build pipelines.
You plan to use hosted build agents.
Which build agent pool should you use to compile each application type? To answer, drag the appropriate build
agent pools to the correct application types. Each build agent pool may be used once, more than once, or not at all.20
You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Box 1: Hosted macOS -
Box 2: Hosted -
Question #11 Topic 2
Note: This question is part of a series of questions that present the same scenario. Each question in the series
contains a unique solution that might meet the stated goals. Some question sets might have more than one correct
solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps deployment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure
Repos.
Solution: You create an email subscription to an Azure DevOps notification.
Does this meet the goal?
A. Yes
B. No21
6 Question #12 Topic 2
Note: This question is part of a series of questions that present the same scenario. Each question in the series
contains a unique solution that might meet the stated goals. Some question sets might have more than one correct
solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps deployment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure
Repos.
Solution: You create a service hook subscription that uses the code pushed event.
Does this meet the goal?
A. Yes
B. No
Question #13 Topic 2
Note: This question is part of a series of questions that present the same scenario. Each question in the series
contains a unique solution that might meet the stated goals. Some question sets might have more than one correct
solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps deployment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to a branch in Azure
Repos.
Solution: You add a trigger to the build pipeline.
Does this meet the goal?
A. Yes
B. No22
New Question
Note: This question is part of a series of questions that present the same scenario. Each
question in the series contains a unique solution that m.ght meet the stated goals. Some
question sets might have more than one correct solution, while others might not have a
correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result
these questions will not appear in the review screen.
You integrate a cloud-hosted Jenkins server and a new Azure DevOps deployment.
You need Azure DevOps to send a notification to Jenkins when a developer commits changes to
a branch in Azure Repos.
Solution: You create a service hook subscription that uses the build completed event
Does this meet the goal?
A. Yes
B. No
Answer: A
Question #14 Topic 2
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?
A. Cobertura
B. Bullseye Coverage
C. MSTest
D. Coverlet
E. NUnit
F. Coverage.py23
29 Question #9 Topic 14
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?
A. Cobertura
B. Bullseye Coverage
C. MSTest
D. Coverlet
@Question #47 Topic 14
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?
A. Cobertura
B. Bullseye Coverage
C. MSTest
D. Coverlet
QUESTION 174
You are automating the build process for a Java-based application by using Azure DevOps.
You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?24
A. Bullseye Coverage
B. JUnit
C. JaCoCo
D. NUnit
Answer: C
Explanation:
Use Publish Code Coverage Results task in a build pipeline to publish code coverage results to Azure Pipelines or
TFS, which were produced by a build in Cobertura or JaCoCo format.
Incorrect Answers:
A: Bullseye Coverage is used for C++ code, and not for Java.
Reference:
https://docs.microsoft.com/en-us/azure/devops/pipelines/tasks/test/publish-code-coverage-results
Question #15 Topic 2
Your company uses Azure DevOps.
Only users who have accounts in Azure Active Directory can access the Azure DevOps environment.
You need to ensure that only devices that are connected to the on-premises network can access the Azure DevOps
environment.
What should you do?
A. Assign the Stakeholder access level all users.
B. In Azure Active Directory, configure risky sign-ins.
C. In Azure DevOps, configure Security in Project Settings.
D. In Azure Active Directory, configure conditional access.
Question #16 Topic 2
You are automating the testing process for your company.
You need to automate UI testing of a web application.
Which framework should you use?
A. JaCoco25
B. Selenium
C. Xamarin.UITest
D. Microsoft.CodeAnalysis
7 Question #17 Topic 2
You have an Azure DevOps organization named Contoso, an Azure DevOps project named Project1, an Azure
subscription named Sub1, and an Azure key vault named vault1.
You need to ensure that you can reference the values of the secrets stored in vault1 in all the pipelines of Project1.
The solution must prevent the values from being stored in the pipelines.
What should you do?
A. Create a variable group in Project1.
B. Add a secure file to Project1.
C. Modify the security settings of the pipelines.
D. Configure the security policy of Contoso.
Question #18 Topic 2
DRAG DROP -
You are configuring Azure Pipelines for three projects in Azure DevOps as shown in the following table.26
Which version control system should you recommend for each project? To answer, drag the appropriate version
control systems to the correct projects. Each version control system may be used once, more than once, or not at all.
You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Project1:Git in Azure Repos -
Project2: Github Enterprise -
Project3: Bitbucket cloud -27
Question #19 Topic 2
Your team uses an agile development approach.
You need to recommend a branching strategy for the team's Git repository. The strategy must meet the following
requirements.
✑ Provide the ability to work on multiple independent tasks in parallel.
✑ Ensure that checked-in code remains in a releasable state always.
✑ Ensure that new features can be abandoned at any time.
✑ Encourage experimentation.
What should you recommend?
A. a single long-running branch
B. multiple long-running branches
C. a single fork per team member
D. a single-running branch with multiple short-lived topic branches
Question #20 Topic 2
Your company has a project in Azure DevOps for a new web application.
The company identifies security as one of the highest priorities.
You need to recommend a solution to minimize the likelihood that infrastructure credentials will be leaked.
What should you recommend?
A. Add a Run Inline Azure PowerShell task to the pipeline.
B. Add a PowerShell task to the pipeline and run Set-AzureKeyVaultSecret.
C. Add a Azure Key Vault task to the pipeline.
D. Add Azure Key Vault references to Azure Resource Manger templates.28
Question #21 Topic 2
DRAG DROP -
You provision an Azure Kubernetes Service (AKS) cluster that has RBAC enabled. You have a Helm chart for a
client application.
You need to configure Helm and Tiller on the cluster and install the chart.
Which three commands should you recommend be run in sequence? To answer, move the appropriate commands
from the list of commands to the answer area and arrange them in the correct order.
Select and Place:
Step 1: Kubectl create -
Step 2: helm init -
Step 3: helm install
[Show More]