New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-305 Exam - Topic 9 Question 2 Discussion

Actual exam question for Microsoft's AZ-305 exam
Question #: 2
Topic #: 9
[All AZ-305 Questions]

Your company has the infrastructure shown in the following table.

The on-premises Active Directory domain syncs to Azure Active Directory (Azure AD).

Server1 runs an application named Appl that uses LDAP queries to verify user identities in the on-premises Active Directory domain.

You plan to migrate Server1 to a virtual machine in Subscription1.

A company security policy states that the virtual machines and services deployed to Subscription1 must be prevented from accessing the on-premises network.

You need to recommend a solution to ensure that Appl continues to function after the migration. The solution must meet the security policy.

What should you include in the recommendation?

Show Suggested Answer Hide Answer
Suggested Answer: A

https://docs.microsoft.com/en-us/azure/active-directory-domain-services/overview

Azure Active Directory Domain Services (Azure AD DS) provides managed domain services such as domain join, group policy, lightweight directory access protocol (LDAP), and Kerberos/NTLM authentication

Azure AD Domain Services (Azure AD DS) - This one could work since AAD DS will bring in the existing accounts from Azure AD which in turn are synchronised from on-premise AD over AD connect. However, you would probably need to reconfigure the app and update the LDAP connection

Azure Active Directory (Azure AD) supports LDAP Authentication via Azure AD Domain Services (AD DS). https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/auth-ldap

https://docs.microsoft.com/en-us/azure/active-directory-domain-services/synchronization


by Catarina at May 06, 2022, 09:54 PM

Limited Time Offer

25%

Off

Get Premium AZ-305 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Alesia
4 months ago
I think Azure AD Application Proxy could work too!
upvoted 0 times
...
Detra
4 months ago
Wait, can Azure AD DS really handle all that?
upvoted 0 times
...
Lasandra
4 months ago
Definitely need Azure AD DS for LDAP queries!
upvoted 0 times
...
James
5 months ago
I disagree, an Azure VPN gateway seems more secure.
upvoted 0 times
...
Delpha
5 months ago
Azure AD Domain Services is the way to go!
upvoted 0 times
...
Nettie
5 months ago
I feel like an Azure VPN gateway wouldn’t help since it would still connect to the on-premises network, which we need to avoid.
upvoted 0 times
...
Andra
5 months ago
I keep getting confused between Azure AD DS and the AD DS role on a VM. I think the role on a VM might not meet the security policy, though.
upvoted 0 times
...
Yaeko
5 months ago
This question feels similar to one we practiced about securing access to applications in Azure. I think Azure AD Application Proxy might be a good fit.
upvoted 0 times
...
Andree
5 months ago
I remember studying Azure AD Domain Services, but I'm not sure if it can work without on-premises access.
upvoted 0 times
...
Tresa
5 months ago
I'm a little confused by this question. The repeated data could be related to a few different flash memory concepts, like the FTL or LBA. I'll need to review my notes to make sure I understand the differences between these before answering.
upvoted 0 times
...
Shaniqua
5 months ago
Option D is the way to go here. If the source code isn't included, that's a big red flag and the auditor should definitely recommend a software escrow agreement to protect the client.
upvoted 0 times
...
Erinn
5 months ago
I'm a little unsure about this one. I know we need to access the CLI, but I'm not sure if the show run all command is the right approach. Maybe the export or backup options would be better? I'll have to review the details carefully.
upvoted 0 times
...
Delfina
5 months ago
Hmm, this is a tricky one. I think I'll start by reviewing my notes on the different cloud models and see if that helps me narrow it down.
upvoted 0 times
...
Gerald
5 months ago
I've got a good feeling about this one. The key is understanding how the Calling Party Transformation CSS works and what it does to the calling party number. I think I can narrow it down to the right answer.
upvoted 0 times
...
Ezekiel
5 months ago
Okay, let's see. The data plane is where the actual packet forwarding happens, so I'm thinking the answer is probably comparing the destination IP to the routing table.
upvoted 0 times
...

Save Cancel