AZ-400 Free Practice Test

- (Exam Topic 4)
You need to increase the security of your team's development process.
Which type of security tool should you recommend for each stage of the development process? To answer, drag the appropriate security toots to the correct stages. Each security tool may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content
NOTE: Each correct selection is worth one point.

Solution:
https://docs.microsoft.com/en-us/azure/devops/migrate/security-validation-cicd-pipeline?view=azure-devops&v So:
PR: Static Code Analysis CI: Static Code Analysis CD: PenTest

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 4)
You are automating the build process for a Java-based application by using Azure DevOps. You need to add code coverage testing and publish the outcomes to the pipeline.
What should you use?

1. A. Cobertura
2. B. JUnit
3. C. Coverage.py
4. D. Bullseye Coverage

Correct Answer: A

- (Exam Topic 4)
You configure Azure Application Insights and the shared service plan tier for a web app.
You enable Smart Detection.
You confirm that standard metrics are visible in the logs, but when you test a failure, you do not receive a Smart Detection notification
What prevents the Smart Detection notification from being sent?

1. A. You must restart the web app before Smart Detection is enabled.
2. B. Smart Detection uses the first 24 hours to establish the normal behavior of the web app.
3. C. You must enable the Snapshot Debugger for the web app.
4. D. The web app is configured to use the shared service plan tier.

Correct Answer: B

- (Exam Topic 4)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
The lead developer at your company reports that adding new application features takes longer than expected due to a large accumulated technical debt.
You need to recommend changes to reduce the accumulated technical debt. Solution: You recommend increasing the test coverage.
Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: B
Instead reduce the code complexity. Reference:
https://dzone.com/articles/fight-through-the-pain-how-to-deal-with-technical

- (Exam Topic 4)
You use a Git repository in Azure Repos to manage the source code of a web application. Developers commit changes directly to the master branch.
You need to implement a change management procedure that meets the following requirements: The master branch must be protected, and new changes must be built in the feature branches first. Changes must be reviewed and approved by at least one release manager before each merge. Changes must be brought into the master branch by using pull requests.
What should you configure in Azure Repos? D18912E1457D5D1DDCBD40AB3BF70D5D

1. A. branch policies of the master branch
2. B. Services in Project Settings
3. C. Deployment pools in Project Settings
4. D. branch security of the master branch

Correct Answer: A
Branch policies help teams protect their important branches of development. Policies enforce your team's code quality and change management standards.
Reference:
https://docs.microsoft.com/en-us/azure/devops/repos/git/branch-policies