├── LICENSE
├── README.md
├── .gitignore
└── Notes and definitions (AZ-900).md


/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2023 Mikko R
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Microsoft Azure Fundamentals (AZ-900) notes
 2 | This repository contains my personal "cheat sheet" for AZ-900 definitions. The exam heavily relies on knowing different Azure services and definitions, so I made my own "quick glance" file for studying.
 3 | 
 4 | I <b>HIGHLY RECOMMEND</b> checking out the extra resources below, <b>especially the Datawolf's PDF</b>. Microsoft's practice exam does not cover fully the real exam, the questions are much easier in the practice one. Datawolf's questions many times reflect and are 1:1 the real exam questions.
 5 | 
 6 | Please note that the AZ-900 certification exam syllabus can and most likely will alter in the future - these materials most likely will become obsolete over time. I still hope these notes offer some assistance - good luck with the exam!
 7 | 
 8 | ## External resources
 9 | ### Learning resources
10 | - [Microsoft's learning path](https://learn.microsoft.com/en-us/training/paths/microsoft-azure-fundamentals-describe-cloud-concepts/)
11 | - [undergroundwires' excellent bullet points of AZ-900](https://github.com/undergroundwires/Azure-in-bullet-points/tree/master/AZ-900%20Microsoft%20Azure%20Fundamentals)
12 | 
13 | ### Practice exams
14 | - [Microsoft's practice exam](https://learn.microsoft.com/en-us/certifications/exams/az-900/practice/assessment?assessmentId=23&assessment-type=practice)
15 | - [Thomas Mitchell's practice exam](https://thomasmitchell.net/az-900-mock-exam/)
16 | 
17 | ### Question dumps
18 | - [Datawolf's question dumps (check the PDF)](https://datawolfs.com/az-900-exam-questions-dumps-answer-free-pdf-download/)
19 | - [Exam Topics' questions](https://www.examtopics.com/exams/microsoft/az-900/view/)
20 | - [IT Exams' questions](https://www.itexams.com/exam/AZ-900)
21 | - [Passnexam's questions](https://www.passnexam.com/microsoft/az-900)
22 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
  1 | # Byte-compiled / optimized / DLL files
  2 | __pycache__/
  3 | *.py[cod]
  4 | *$py.class
  5 | 
  6 | # Other
  7 | *.DS_Store
  8 | .DS_Store
  9 | 
 10 | # C extensions
 11 | *.so
 12 | 
 13 | # Distribution / packaging
 14 | .Python
 15 | build/
 16 | develop-eggs/
 17 | dist/
 18 | downloads/
 19 | eggs/
 20 | .eggs/
 21 | lib/
 22 | lib64/
 23 | parts/
 24 | sdist/
 25 | var/
 26 | wheels/
 27 | *.egg-info/
 28 | .installed.cfg
 29 | *.egg
 30 | MANIFEST
 31 | 
 32 | # PyInstaller
 33 | #  Usually these files are written by a python script from a template
 34 | #  before PyInstaller builds the exe, so as to inject date/other infos into it.
 35 | *.manifest
 36 | *.spec
 37 | 
 38 | # Installer logs
 39 | pip-log.txt
 40 | pip-delete-this-directory.txt
 41 | 
 42 | # Unit test / coverage reports
 43 | htmlcov/
 44 | .tox/
 45 | .coverage
 46 | .coverage.*
 47 | .cache
 48 | nosetests.xml
 49 | coverage.xml
 50 | *.cover
 51 | .hypothesis/
 52 | .pytest_cache/
 53 | 
 54 | # Translations
 55 | *.mo
 56 | *.pot
 57 | 
 58 | # Django stuff:
 59 | *.log
 60 | local_settings.py
 61 | db.sqlite3
 62 | 
 63 | # Flask stuff:
 64 | instance/
 65 | .webassets-cache
 66 | 
 67 | # Scrapy stuff:
 68 | .scrapy
 69 | 
 70 | # Sphinx documentation
 71 | docs/_build/
 72 | 
 73 | # PyBuilder
 74 | target/
 75 | 
 76 | # Jupyter Notebook
 77 | .ipynb_checkpoints
 78 | 
 79 | # pyenv
 80 | .python-version
 81 | 
 82 | # celery beat schedule file
 83 | celerybeat-schedule
 84 | 
 85 | # SageMath parsed files
 86 | *.sage.py
 87 | 
 88 | # Environments
 89 | .env
 90 | .venv
 91 | env/
 92 | venv/
 93 | ENV/
 94 | env.bak/
 95 | venv.bak/
 96 | 
 97 | # Spyder project settings
 98 | .spyderproject
 99 | .spyproject
100 | 
101 | # Rope project settings
102 | .ropeproject
103 | 
104 | # mkdocs documentation
105 | /site
106 | 
107 | # mypy
108 | .mypy_cache/
109 | 
110 | # ruff
111 | .ruff_cache/
112 | 


--------------------------------------------------------------------------------
/Notes and definitions (AZ-900).md:
--------------------------------------------------------------------------------
  1 | # Notes and definitions / Microsoft Azure Fundamentals (AZ-900)
  2 | ## **AzCopy**  
  3 | command-line utility to be used for copying blobs or files to or from your storage account
  4 | 
  5 | ## **Azure Active Directory**  
  6 | cloud-based identity management solution: contains for example features of single sign-on (SSO), multi-factor authentication (MFA) and conditional access
  7 | 
  8 | ## **Azure Active Directory Domain Services**  
  9 | service that provides managed domain services
 10 | 
 11 | ## **Azure Advanced Threat Protection (ATP)**  
 12 | cloud-based solution for detecting and investigating security incidents across networks
 13 | 
 14 | ## **Azure Advisor**  
 15 | service which recommends suggestions for example about high availability, security, performance, operational excellence and cost
 16 | 
 17 | ## **Azure Application Insights**  
 18 | feature of Azure Monitor that allows the user to monitor running applications, automatically detect performance anomalies and use built-in analytics tools to see what users do on an app
 19 | 
 20 | ## **Azure App Service**  
 21 | HTTP-based service for hosting web applications, REST APIs and mobile back ends
 22 | 
 23 | ## **Azure Arc**  
 24 | delivers a consistent multi-cloud and on-premises management platform
 25 | 
 26 | ## **Azure Bastion**  
 27 | service for connecting to virtual machine via browser and Azure portal (remote access for virtual machines)
 28 | 
 29 | ## **Azure Batch**  
 30 | large-scale job scheduling and compute management
 31 | 
 32 | ## **Azure Blob Storage**  
 33 | object storage solution for the cloud, optimised for massive amounts of unstructured data
 34 | 
 35 | ## **Azure Blueprints**  
 36 | defined repeatable set of Azure resources which adheres to organisation’s standards, patterns and requirements
 37 | 
 38 | ## **Azure Compute**  
 39 | cloud compute capacity, virtualization and scale on demand, provides infrastructure for your apps
 40 | 
 41 | ## **Azure Container Instances**  
 42 | your app in a container without managing virtual machines
 43 | 
 44 | ## **Azure Content Delivery Network (CDN)**  
 45 | distributed network of servers which efficiently deliver web content to users
 46 | 
 47 | ## **Azure Cost Management tool**  
 48 | tool for checking Azure resource costs, creating alerts based on resource spend and creating budgets that can be used to automate management of resources
 49 | 
 50 | ## **Azure CycleCloud**  
 51 | tool for orchestrating and managing High Performance Computing (HPC) environments
 52 | 
 53 | ## **Azure Data Box**  
 54 | physical migration service: transferring data by Microsoft-provided physical device
 55 | 
 56 | ## **Azure DevOps**  
 57 | set of collaborative development tools built for the cloud
 58 | 
 59 | ## **Azure DevTest Labs**  
 60 | development and/or test environments with reusable templates and artifacts
 61 | 
 62 | ## **Azure DNS**  
 63 | hosting service for Domain Name System (DNS) domains that provides name resolution by using Azure infrastructure
 64 | 
 65 | ## **Azure ExpressRoute**  
 66 | connects on-premises networks to Microsoft cloud with the help of a connectivity provider (ExpressRoute Circuit)
 67 | 
 68 | ## **Azure Files**  
 69 | serverless cloud file sharing system, accessible via SMB, NFS or Azure Files REST API
 70 | 
 71 | ## **Azure File Sync**  
 72 | tool which lets the user to centralize file shares in Azure Files
 73 | 
 74 | ## **Azure Firewall**  
 75 | threat protection service for cloud workloads running in Azure
 76 | 
 77 | ## **Azure Functions**  
 78 | event-driven, readily available blocks of code, a serverless solution
 79 | 
 80 | ## **Azure Information Protection (AIP)**  
 81 | controlling security properties of data, for example with classification
 82 | 
 83 | ## **Azure Key Vault**  
 84 | tool for managing secrets
 85 | 
 86 | ##**Azure Kubernetes Service (AKS)**  
 87 | tool for deploying and scaling containers
 88 | 
 89 | ## **Azure Load Balancer**  
 90 | distributes evenly load of incoming network traffic
 91 | 
 92 | ## **Azure Log Analytics**  
 93 | tool for writing log queries on the data gathered by Azure Monitor
 94 | 
 95 | ## **Azure Migrate**  
 96 | service that helps migrating from an on-premises environment to the cloud
 97 | 
 98 | ## **Azure Monitor**  
 99 | tool for collecting, analysing and responding to telemetry from cloud and on-premises environments, supports also autoscaling
100 | 
101 | ## **Azure Monitor activity log**  
102 | insights about subscription-level events, for example when resource is modified or virtual machine is started
103 | 
104 | ## **Azure Pipelines**  
105 | tool for continuous building, testing and deploying
106 | 
107 | ## **Azure Policy**  
108 | tool for evaluating resources against sets of business rules (given in JSON format) - helps you to manage and prevent IT issues with policy definitions that enforce rules and affect for your resources
109 | 
110 | ## **Azure Repos**  
111 | git repositories
112 | 
113 | ## **Azure Resource Manager (ARM) template**  
114 | block of code which defines the infrastructure and configuration for a project
115 | 
116 | ## **Azure Security Center**  
117 | base layer of security for monitoring security configuration and health of workloads, Cloud Security Posture Management (CSPM) solution for checking misconfigurations
118 | 
119 | ## **Azure Sentinel**  
120 | Security Information and Event Manager (SIEM) tool for responding to threats
121 | 
122 | ## **Azure Serverless**  
123 | application platform without managing the infrastructure
124 | 
125 | ## **Azure Service Health**  
126 | alert system for notifications of Azure service incidents and planned maintenance
127 | 
128 | ## **Azure Sphere**  
129 | Internet of Things (IoT) device platform
130 | 
131 | ## **Azure Storage Explorer**  
132 | GUI-based app where the user can manage files and blobs in Azure Storage Account
133 | 
134 | ## **Azure Subscriptions**  
135 | container for everything related to Azure, for example all virtual machines and databases
136 | 
137 | ## **Azure Virtual Machines (VMs)**  
138 | virtual machines running on Azure
139 | 
140 | ## **Azure VMware Solution**  
141 | runs VMware workloads in Azure with seamless integration and scalability
142 | 
143 | ## **Azure Virtual Desktop**  
144 | cloud-hosted version of Windows
145 | 
146 | ## **Azure Virtual Network (vNet)**  
147 | building block which enables private network in Azure: for example, virtual machines can securely communicate with each other, representation of own network in the cloud
148 | 
149 | ## **Azure VPN Gateway**  
150 | virtual network gateway which sends encrypted traffic between Azure virtual network and on-premises location over the public internet
151 | 
152 | ## **application security group**  
153 | configuration of application’s network security as a group of virtual machines
154 | 
155 | ## **availability set**  
156 | logical grouping of virtual machines, used to ensure maximum availability – each availability set is consisted by update domain and fault domain
157 | 
158 | ## **availability zone**  
159 | zones of data centers in a region, for example if one zone suffers from malfunction the two other zones in the region continue to work normally
160 | 
161 | ## **Cloud Solution Provider (CSP)**  
162 | Microsoft Partner organization which offers Azure services
163 | 
164 | ## **compliance manager**  
165 | template tool to assess compliance requirements
166 | 
167 | ## **conditional access**  
168 | allow or deny access to resources based on identity signals, such as the device being used
169 | 
170 | ## **elasticity**  
171 | automatic increase or decrease of resources by need
172 | 
173 | ## **fabric controller**  
174 | special software which runs in a server: connected to the orchestrator
175 | 
176 | ## **Failure Mode Analysis (FMA)**  
177 | tool to identify possible points of failure
178 | 
179 | ## **gateway subnet**  
180 | IP address range of virtual network where the resources and services operate
181 | 
182 | ## **geography**  
183 | area which contains one or more regions
184 | 
185 | ## **geo-redundant storage (GRS)**  
186 | replicates data in two regions in LRS (see definition) way
187 | 
188 | ## **geo-zone-redundant storage (GZRS)**  
189 | replicates data so that it runs ZRS (see definitions) in the primary region and LRS in the secondary region
190 | 
191 | ## **horizontal scaling**  
192 | if the current resources are not enough even with extra CPUs or RAM, adding more of them (for example, additional virtual machines or containers) can help
193 | 
194 | ## **hypervisor**  
195 | layer which enables creating virtual machines and servers
196 | 
197 | ## **Infrastructure as a Service (IaaS)**  
198 | cloud provider is responsible for maintaining the hardware, network connectivity and physical security, basically renting the hardware but it is up to you what you do with it
199 | 
200 | ## **internal load balancer**  
201 | tool for balancing traffic inside a virtual network
202 | 
203 | ## **Kubernetes cluster**  
204 | a set of nodes which run containerized applications
205 | 
206 | ## **lift-and-shift migration**  
207 | moving resources from on-premises datacenter to cloud infrastructure
208 | 
209 | ## **locally redundant storage (LRS)**  
210 | replicates data three times within a single data center in the primary region
211 | 
212 | ## **local network gateway**  
213 | object which represents the on-premises location for routing purposes: connecting on-premises to cloud
214 | 
215 | ## **management group**  
216 | multiple subscriptions
217 | 
218 | ## **management in the cloud**  
219 | the ability to manage cloud environment and resources, for example through a web portal or command line interface
220 | 
221 | ## **management of the cloud**  
222 | cloud management, for example automatically scaling resource deployments based on need
223 | 
224 | ## **Microsoft Defender for Cloud**  
225 | monitoring tool for cloud security posture management and threat protection, provides guidance and notifications aimed at strenghtening the security posture
226 | 
227 | ## **Microsoft Managed Desktop**  
228 | subscription-based desktop as a service (DaaS) cloud platform
229 | 
230 | ## **Microsoft Service Trust portal**  
231 | portal which has various content, tools and other resources about Microsoft security, privacy and compliance practices
232 | 
233 | ## **multi-cloud**  
234 | using multiple public cloud providers
235 | 
236 | ## **network security group**  
237 | tool for filtering network traffic between Azure resources in an Azure virtual network
238 | 
239 | ## **orchestrator**  
240 | manages everything in Azure: for example, responds to user requests and forwards them to fabric controller
241 | 
242 | ## **peering**  
243 | linking virtual networks together
244 | 
245 | ## **Platform as a Service (PaaS)**  
246 | in addition to IaaS, cloud provider is also responsible for maintaining operating systems, databases and development tools
247 | 
248 | ## **PowerShell CLI**  
249 | command line interface (CLI) for PowerShell
250 | 
251 | ## **public load balancer**  
252 | provides outbound connections for virtual machines inside a virtual network
253 | 
254 | ## **queue storage**  
255 | storage for large number of messages
256 | 
257 | ## **Role-Based Access Control (RBAC)**  
258 | tool for managing access and write rights of resources, for example one user can manage virtual machines and another can manage virtual networks
259 | 
260 | ## **region**  
261 | unit of datacenter locations, geography contains many regions
262 | 
263 | ## **resiliency**  
264 | ability of system to recover from failures and continue to function, consists of high availability and disaster recovery
265 | 
266 | ## **resource group**  
267 | grouping of resource: one resource can only be in one group, groups cannot be nested
268 | 
269 | ## **resource lock**  
270 | protection measurement for Azure resources, for example can prevent accidental user deletions and modifications
271 | 
272 | ## **resource tag**  
273 | metadata for Azure resources as key-value pairs
274 | 
275 | ## **service endpoint**  
276 | exposes and connects Azure services to a virtual network
277 | 
278 | ## **Service Trust Portal**  
279 | Microsoft’s definitions how they manage and protect user data
280 | 
281 | ## **scalability**  
282 | ability to increase or decrease resources
283 | 
284 | ## **Software as a Service (SaaS)**  
285 | most responsibility with the cloud provider – the user basically uses a fully developed application
286 | 
287 | ## **sovereign region**  
288 | region which is isolated from the main instance of Azure
289 | 
290 | ## **subscription**  
291 | isolated area where your Azure works – for example, you can create Azure resources here
292 | 
293 | ## **(virtual machine) scale set**  
294 | group of identical, load balanced virtual machines
295 | 
296 | ## **table storage**  
297 | service which stores non-relational structured data, providing a key/attribute store with a schemaless design
298 | 
299 | ## **Total Cost of Ownership (TCO) Calculator**  
300 | tool for calculating the cost savings over time of operating a solution in Azure compared to operating in an on-premises datacenter
301 | 
302 | ## **vertical scaling**  
303 | scaling virtual machine resources, for example CPUs or RAM
304 | 
305 | ## **virtual machine availability set**  
306 | sets of virtual machines which stagger updates and have varied power and network connectivity, ensuring not losing all virtual machines in case of network or power failure
307 | 
308 | ## **virtual machine scale set**  
309 | group of identical load-balanced virtual machines
310 | 
311 | ## **virtual network gateway (Azure VPN Gateway)**  
312 | tool which connects for example on-premises network to Azure virtual networks
313 | 
314 | ## **VPN connection point (point-to-site VPN)**  
315 | tool used to create a secure connection to a virtual network from an individual client computer
316 | 
317 | ## **zone-redundant storage (ZRS)**  
318 | replicates Azure Storage data across three Azure availability zones in the primary region
319 | 


--------------------------------------------------------------------------------