Template designed by

cert-path

70-534 – Architecting Azure Solutions

Roberto Freato – Freelance IT Consultant & Trainer

MVP on Windows Azure, Microsoft Certified Trainer

child@ocdstudio.net - @childotg

• Cos’è il cert path del DotNetCampus?

• Le certificazioni professionali, tecniche e di prodotto

• I diversi percorsi di certificazione Microsoft – MCP e MCT

• L’ esame 70-534: Architecting Microsoft Azure Solutions

cert path

• Azure come piattaforma

• Differenza dagli altri esami

• Il programma d’esame

• Il metodo d’esame

focus

70-532 - Developing Microsoft Azure Solutions

70-533 - Implementing Microsoft Azure Infrastructure Solutions

70-534 - Architecting Microsoft Azure Solutions

esami su azure

Design Microsoft Azure Infrastructure and networking (15-20%)

Secure resources (15-20%)

Design an application storage and data access strategy (15-20%)

Design an advanced application (15-20%)

Design websites (15-20%)

Design a management, monitoring, and business continuity strategy (15-20%)

agenda

Let’

s g

o Design Microsoft Azure

Infrastructure and networking

Describe how Azure uses Global Foundation Services (GFS)

datacenters

• Understand Azure datacenter architecture

• regional availability

• high availability

design Microsoft Azure Infrastructure and networking (15-20%)

Design Azure virtual networks, networking services, DNS, DHCP,

and IP addressing configuration

• Extend on-premises Active Directory

• deploy Active Directory

• define static IP reservations

• understand ACLs and Network Security Groups

design Microsoft Azure Infrastructure and networking (15-20%)

Design Azure Compute

• Design Azure virtual machines (VMs)

• understand availability sets, fault domains, and update

domains

• differentiate between machine classifications

design Microsoft Azure Infrastructure and networking (15-20%)

Describe Azure virtual private network (VPN) and ExpressRoute

architecture and design

• Describe Azure P2S and S2S VPN

• Azure VPN and ExpressRoute

design Microsoft Azure Infrastructure and networking (15-20%)

Describe Azure services

• Traffic Manager

• Azure Media Services

• CDN

• Azure Active Directory (Azure AD)

• Azure Cache

• Multi-Factor Authentication

• Service Bus

design Microsoft Azure Infrastructure and networking (15-20%)

Let’

s g

o Secure resources

Secure resources by using managed identities

• Describe the differences between Active Directory on-

premises and Azure AD

• programmatically access Azure AD using Graph API

• secure access to resources from Azure AD applications using

OAuth and OpenID Connect

secure resources (15-20%)

Secure resources by using hybrid identities

• Use SAML claims to authenticate to on-premises resources

• describe DirSync synchronization

• implement federated identities using Azure Access Control

service (ACS) and Active Directory Federation Services (ADFS)

secure resources (15-20%)

Secure resources by using identity providers

• Provide access to resources using identity providers such as

Microsoft account, Facebook, Google, and Yahoo

secure resources (15-20%)

Identify an appropriate data security solution

• Use the appropriate Access Control List (ACL)

• identify security requirements for data in transit and data at

rest

secure resources (15-20%)

Design a role-based access control strategy

• Secure resource scopes such as the ability to create VMs and

websites

secure resources (15-20%)

Let’

s g

o Design an application storage

and data access strategy

Design data storage

• Design storage options for data including Table Storage

• SQL Database, DocumentDB, Blob Storage

• MongoDB and MySQL

• design security options for SQL Database or Azure Storage

• identify the appropriate VM type and size for a solution

design an application storage and data access strategy (15-20%)

Design applications that use Mobile Services

• Create Azure Mobile Services

• consume Mobile Services from cross-platform clients

• integrate offline sync capabilities into an application

• extend Mobile Services using custom code

• implement Mobile Services using Microsoft .NET or Node.js

• secure Mobile Services using Azure AD

design an application storage and data access strategy (15-20%)

Design applications that use notifications

• Implement push notification services in Mobile Services

• send push notifications to all subscribers, specific subscribers,

or a segment of subscribers

design an application storage and data access strategy (15-20%)

Design applications that use a web API

• Implement a custom web API

• scale using Azure websites

• offload long-running applications using WebJobs

• secure a web API using Azure AD

design an application storage and data access strategy (15-20%)

Design a data access strategy for hybrid applications

• Connect to on-premises data from Azure applications using

Service Bus Relay, BizTalk Hybrid Connections, or website’s

virtual private network (VPN) capability

• identify constraints for connectivity with VPN

• identify options for joining VMs to domains or cloud services

design an application storage and data access strategy (15-20%)

Design a media solution

• Describe Media Services

• understand key components of Media Services including

streaming capabilities

• video on-demand capabilities

• monitoring services

design an application storage and data access strategy (15-20%)

Let’

s g

o Design an advanced

application

Create compute-intensive applications

• Design high-performance computing (HPC) and other

compute-intensive applications using Azure Services

design an advanced application (15-20%)

Create long-running applications

• Implement worker roles for scalable processing

• design stateless components to accommodate scale

design an advanced application (15-20%)

Select the appropriate storage option

• Use a queue-centric pattern for development

• select the appropriate storage for performance

• identify storage options for cloud services and hybrid

scenarios with compute on-premises and storage on Azure

• differentiate between cloud services and VMs interacting with

storage service and SQL Database

design an advanced application (15-20%)

Integrate Azure services in a solution

• Identify the appropriate use of machine learning, big data,

Media Services, and search services

design an advanced application (15-20%)

Let’

s g

o Design websites

Design websites for scalability and performance

• Globally scale websites

• create websites using Microsoft Visual Studio

• debug websites

• understand supported languages

• differentiate between websites to VMs and cloud services

design websites (15-20%)

Deploy websites

• Implement Azure Site Extensions

• create packages, hosting plans, deployment slots

• resource groups

• publishing options, Web Deploy, and FTP locations and

settings

design websites (15-20%)

Design websites for business continuity

• Scale up and scale out using Azure Websites and SQL Database

• configure data replication patterns

• update websites with minimal downtime

• back up and restore data

• design for disaster recovery

• deploy websites to multiple regions for high availability

• design the data tier

design websites (15-20%)

Let’

s g

o Design a management,

monitoring, and business

continuity strategy

Evaluate hybrid and Azure-hosted architectures for Microsoft

System Center deployment

• Understand at an architectural level which components are

supported in Azure

• describe design considerations for managing Azure resources

with System Center

• understand which scenarios would dictate a hybrid scenario

design a management, monitoring, and business continuity strategy (15-20%)

Design a monitoring strategy

• Identify the Microsoft products and services for monitoring Azure solutions

• understand the capabilities of System Center for monitoring an Azure solution, understand built-in Azure capabilities, identify third-party monitoring tools including open source

• describe use cases for Operations Manager, Global Service Monitor, and Application Insights

• describe the use cases for Windows Software Update Services (WSUS), Configuration Manager, and custom solutions

• describe the Azure architecture constructs such as availability groups and update domains and how they impact a patching strategy

design a management, monitoring, and business continuity strategy (15-20%)

Describe Azure business continuity/disaster recovery (BC/DR)

capabilities

• Understand the architectural capabilities of BC/DR

• describe Hyper-V Replica and Azure Site Recovery (ASR)

• describe use cases for Hyper-V Replica and ASR

design a management, monitoring, and business continuity strategy (15-20%)

Design a disaster recovery strategy

• Design and deploy Azure Backup and other Microsoft backup

solutions for Azure

• understand use cases when StorSimple and System Center

Data Protection Manager would be appropriate

design a management, monitoring, and business continuity strategy (15-20%)

Create a PowerShell script specific to Azure

• Create a PowerShell script specific to Azure

design a management, monitoring, and business continuity strategy (15-20%)

Describe the use cases for Azure Automation configuration

• Understand when to use Azure Automation

• Chef, Puppet, PowerShell

• Desired State Configuration (DSC)

design a management, monitoring, and business continuity strategy (15-20%)

Template designed by

cert-path

70-534 – Architecting Azure Solutions

Roberto Freato – Freelance IT Consultant & Trainer

MVP on Windows Azure, Microsoft Certified Trainer

child@ocdstudio.net - @childotg