CCNA Describe cloud concepts Questions

75 of 162 questions · Page 2/3 · Describe cloud concepts · Answers revealed

76
Multi-Selecteasy

Which TWO are characteristics of the public cloud deployment model?

Select 2 answers
A.Services are owned by a third-party provider
B.Services are used by a single organization
C.Scalability is limited to existing hardware
D.Infrastructure is located on-premises
E.Multiple organizations share the same infrastructure
AnswersA, E

Public cloud is owned by a third-party cloud service provider.

Why this answer

Options B and E are correct. Public cloud is owned by a third-party provider and shared among multiple organizations. Option A (Single organization) describes private cloud.

Option C (On-premises) describes private cloud. Option D (Limited scalability) is incorrect; public cloud offers high scalability.

77
MCQhard

Your company uses Microsoft 365 Copilot to generate meeting summaries. These summaries are processed using AI models that may use customer data to improve the service. Which cloud computing responsibility model applies to data usage by the AI service?

A.Data sovereignty
B.Data residency
C.Customer data protection
D.Shared responsibility model
AnswerC

Customer data protection governs how Microsoft uses customer data for service improvement.

Why this answer

Option D is correct because in SaaS, the provider is responsible for the service's data processing, but the customer retains ownership and control over their data. Option A is wrong because shared responsibility is about security, not data usage for improvement. Option B is wrong because data sovereignty is about legal jurisdiction.

Option C is wrong because data residency is about storage location.

78
MCQmedium

A development team wants to deploy a custom web application. They choose a cloud service that provides the operating system, web server, and database management system. The team is responsible only for uploading and managing their application code. Which cloud service model does this represent?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Function as a Service (FaaS)
AnswerB

PaaS delivers a managed platform including OS, web server, and database, so the team only needs to deploy and manage their code.

Why this answer

This scenario describes Platform as a Service (PaaS) because the cloud provider manages the underlying infrastructure—operating system, web server, and database management system—while the development team is responsible only for deploying and managing their custom application code. PaaS abstracts the platform layer, allowing developers to focus on code without worrying about OS patches, web server configuration, or database administration.

Exam trap

The trap here is that candidates confuse PaaS with IaaS because both involve deploying custom applications, but IaaS requires full control and management of the OS and middleware, whereas PaaS abstracts those layers away.

How to eliminate wrong answers

Option A is wrong because Infrastructure as a Service (IaaS) would require the team to provision and manage the virtual machines, operating system, web server, and database software themselves, not just upload application code. Option C is wrong because Software as a Service (SaaS) delivers a fully functional application to end users over the internet, where the provider manages everything including the application code; the customer does not upload or manage custom code. Option D is wrong because Function as a Service (FaaS) is a serverless compute model where developers deploy individual functions that execute in response to events, not a full web application with a persistent web server and database management system.

79
MCQmedium

A marketing manager needs to provision a new virtual machine to run a temporary campaign analysis. They log into the cloud provider's web portal, select a VM size, configure settings, and start the VM within minutes—all without any human interaction with the provider's IT staff. Which essential characteristic of cloud computing does this scenario best illustrate?

A.Resource pooling
B.Rapid elasticity
C.On-demand self-service
D.Measured service
AnswerC

The user provisions the VM themselves via a portal without provider involvement, exactly matching the on-demand self-service characteristic.

Why this answer

The scenario describes a user provisioning a virtual machine independently through a web portal without any human interaction with the provider's IT staff. This directly maps to the NIST-defined essential characteristic of on-demand self-service, where a consumer can unilaterally provision computing capabilities as needed automatically without requiring human interaction with each service provider.

Exam trap

The trap here is that candidates confuse 'rapid elasticity' with the speed of initial provisioning, but rapid elasticity specifically refers to the ability to automatically scale resources up or down in response to workload changes, not the one-time act of creating a resource without human help.

How to eliminate wrong answers

Option A is wrong because resource pooling refers to the provider's multi-tenant model where physical and virtual resources are dynamically assigned and reassigned according to consumer demand, not the user's ability to provision resources without human intervention. Option B is wrong because rapid elasticity describes the ability to quickly scale resources up or down, often automatically, to meet demand; the scenario focuses on the initial provisioning action, not scaling behavior. Option D is wrong because measured service involves metering and reporting resource usage for billing and optimization (e.g., pay-per-use), which is not illustrated by the act of provisioning a VM without IT staff involvement.

80
MCQeasy

A company is evaluating moving its on-premises infrastructure to a cloud environment. They want a service that provides virtual machines, storage, and networking capabilities while retaining full control over the operating system and applications. Which cloud service model best meets this requirement?

A.Software as a Service (SaaS)
B.Platform as a Service (PaaS)
C.Infrastructure as a Service (IaaS)
D.Private Cloud
AnswerC

IaaS offers virtualized infrastructure like VMs and storage with full user control over OS and applications.

Why this answer

Infrastructure as a Service (IaaS) provides virtualized computing resources, including virtual machines, storage, and networking, over the internet. The customer retains full administrative control over the operating system, applications, and middleware, while the cloud provider manages the underlying physical hardware. This matches the requirement for full OS and application control.

Exam trap

The trap here is that candidates often confuse Private Cloud (a deployment model) with a service model, mistakenly thinking it inherently provides full OS control, when in fact the level of control depends on whether IaaS, PaaS, or SaaS is used within that private cloud.

How to eliminate wrong answers

Option A is wrong because Software as a Service (SaaS) delivers fully managed applications accessed via a browser or client, where the customer has no control over the underlying OS or infrastructure. Option B is wrong because Platform as a Service (PaaS) abstracts the OS and runtime environment, allowing the customer to deploy only custom applications without managing the OS or virtual machines. Option D is wrong because Private Cloud is a deployment model (not a service model) that can use any service model (IaaS, PaaS, SaaS) and does not inherently guarantee full OS control unless specifically implemented as IaaS.

81
MCQeasy

Refer to the exhibit. The policy assignment JSON shows an Azure Policy that requires MFA for all users. What is the effect of this policy?

A.Allow access temporarily for non-compliant users
B.Audit non-compliant users and log to Azure Monitor
C.Block the creation or modification of resources that do not have MFA enabled
D.Automatically create a support ticket for non-compliant users
AnswerC

'Deny' effect prevents non-compliant actions from being completed.

Why this answer

Option D is correct because the effect is set to 'Deny', which blocks non-compliant requests. Option A is wrong because 'Audit' is not present. Option B is wrong because 'Deny' does not allow; it blocks.

Option C is wrong because 'Deny' does not create a support ticket.

82
MCQmedium

Your organization is planning to migrate on-premises workloads to Microsoft 365. Which cloud deployment model describes using both on-premises infrastructure and Microsoft 365 services?

A.Private cloud
B.Community cloud
C.Public cloud
D.Hybrid cloud
AnswerD

Hybrid cloud combines on-premises infrastructure with public cloud services.

Why this answer

Option B is correct because a hybrid cloud combines on-premises and cloud services. Option A is wrong because public cloud uses only third-party provider services. Option C is wrong because private cloud is dedicated to a single organization.

Option D is wrong because community cloud is shared by several organizations.

83
MCQeasy

In a Software as a Service (SaaS) model, which of the following responsibilities is typically handled by the cloud provider?

A.Managing user passwords and accounts
B.Patching the underlying operating system and application
C.Configuring application settings for the organization
D.Backing up customer data
AnswerB

The provider is responsible for all infrastructure and application maintenance, including patching the OS and the application, ensuring security and stability.

Why this answer

In a SaaS model, the cloud provider is responsible for managing the underlying infrastructure, including patching the operating system and the application itself. This is a core tenet of the shared responsibility model, where the provider handles the security and maintenance of the software stack, while the customer is responsible for data and user access. For example, in Microsoft 365, Microsoft automatically applies security updates to Exchange Online and SharePoint without customer intervention.

Exam trap

The trap here is that candidates often confuse 'backing up customer data' (Option D) as a provider responsibility, but in SaaS, the provider ensures infrastructure redundancy, while the customer must configure and verify their own backup and recovery policies, such as using Microsoft 365 Backup or third-party tools.

How to eliminate wrong answers

Option A is wrong because managing user passwords and accounts is a customer responsibility, as the customer controls identity and access management (IAM) within their tenant, such as configuring Azure AD password policies or self-service password reset. Option C is wrong because configuring application settings for the organization, like setting up email retention policies or SharePoint site permissions, is performed by the customer's administrators, not the provider. Option D is wrong because while the provider may offer backup infrastructure, the customer is typically responsible for ensuring their data is backed up according to their own compliance needs; for instance, in Microsoft 365, customers must enable and manage retention policies and backup configurations.

84
MCQmedium

A service owner is comparing Microsoft 365 capabilities and needs to host custom applications on virtual machines while managing the operating system. Cloud concept or benefit best matches this requirement?

A.Platform as a Service (PaaS)
B.Infrastructure as a Service (IaaS)
C.Hybrid cloud
D.Software as a Service (SaaS)
AnswerB

IaaS provides virtual machines, storage, and networking while customers manage the operating system and applications.

Why this answer

Infrastructure as a Service (IaaS) provides virtualized computing resources over the internet, including virtual machines where the user manages the operating system and can host custom applications. This matches the requirement because the service owner needs full control over the OS and the ability to deploy custom applications without managing physical hardware.

Exam trap

The trap here is that candidates often confuse PaaS with IaaS because both involve hosting applications, but PaaS removes OS management responsibility, which is explicitly required in the question.

How to eliminate wrong answers

Option A is wrong because Platform as a Service (PaaS) abstracts the underlying infrastructure, including the operating system, so the user does not manage the OS or virtual machines; instead, they deploy applications to a managed runtime environment. Option C is wrong because Hybrid cloud is a deployment model that combines public and private clouds, not a service model that provides virtual machines with OS management. Option D is wrong because Software as a Service (SaaS) delivers fully managed applications accessed via a browser or client, with no user control over the underlying OS or virtual machines.

85
MCQeasy

An administrator is reviewing a request from users who need to let users provision resources from a portal without provider interaction. Cloud concept or benefit best matches this requirement?

A.On-demand self-service
B.Data Loss Prevention (DLP)
C.Microsoft Planner
D.Sensitivity labels
AnswerA

On-demand self-service allows consumers to provision resources automatically when needed.

Why this answer

The requirement describes users provisioning resources from a portal without provider interaction, which is the core definition of on-demand self-service as defined by NIST SP 800-145. In Microsoft 365, this maps to capabilities like users creating Teams, SharePoint sites, or Azure resources via self-service portals without IT intervention.

Exam trap

The trap here is that candidates confuse 'self-service' with any user-facing feature (like Planner or DLP policies), but the question specifically tests the NIST cloud characteristic of on-demand self-service, not a specific Microsoft tool.

How to eliminate wrong answers

Option B is wrong because Data Loss Prevention (DLP) is a security policy feature that prevents sensitive data from being shared or leaked, not a provisioning mechanism. Option C is wrong because Microsoft Planner is a task management tool for organizing work, not a cloud concept for resource provisioning. Option D is wrong because sensitivity labels are classification and protection controls applied to data (e.g., encryption, marking), not a method for users to provision resources.

86
MCQeasy

A hospital needs to ensure patient data remains in a specific geographic region due to regulatory requirements. Which cloud deployment model should they consider?

A.Community cloud
B.Private cloud
C.Hybrid cloud
D.Public cloud
AnswerB

Private cloud is dedicated to a single organization, allowing full control over data location and compliance.

Why this answer

Option C is correct because a private cloud is dedicated to a single organization and can be deployed on-premises or in a datacenter, ensuring data residency and compliance. Option A (Public cloud) may store data across regions. Option B (Hybrid cloud) combines public and private but doesn't guarantee data stays in one region.

Option D (Community cloud) is shared by several organizations, not ideal for strict data residency.

87
MCQeasy

A company wants to use a cloud service where they only manage their data and user access, while the cloud provider handles everything from the physical infrastructure to the applications. Which cloud service model is this?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.On-premises deployment
AnswerC

Correct. The provider manages everything from infrastructure to the application, and the customer only manages data and user access.

Why this answer

This scenario describes Software as a Service (SaaS), where the cloud provider manages the entire stack—physical infrastructure, operating system, middleware, runtime, data, and applications—while the customer only manages their data and user access. In SaaS, the provider delivers fully functional applications over the internet, such as Microsoft 365, where users simply log in and use the software without any infrastructure or platform management responsibilities.

Exam trap

The trap here is that candidates often confuse PaaS with SaaS because both abstract infrastructure, but PaaS still requires the customer to manage their own applications and data, whereas SaaS offloads even application management to the provider.

How to eliminate wrong answers

Option A is wrong because Infrastructure as a Service (IaaS) provides only virtualized computing resources (e.g., VMs, storage, networks), and the customer must manage the operating systems, middleware, runtime, data, and applications themselves. Option B is wrong because Platform as a Service (PaaS) abstracts the underlying infrastructure and middleware, but the customer still manages their own applications and data, not just user access and data. Option D is wrong because an on-premises deployment means the company manages everything—from physical hardware to applications—which is the opposite of the described model where the provider handles all layers.

88
Multi-Selecteasy

A company wants to ensure that their cloud resources can automatically increase during peak traffic and decrease during low usage. They also want to be billed only for the resources they consume. Which two cloud characteristics are described? (Choose two.)

Select 2 answers
A.Elasticity and Measured service
B.High availability and Disaster recovery
C.Scalability and Fault tolerance
D.Agility and Resource pooling
AnswersA, C

Elasticity enables automatic scaling; measured service enables pay-per-use billing.

Why this answer

Elasticity refers to the ability of cloud resources to automatically scale out (increase capacity) during peak traffic and scale in (decrease capacity) during low usage, matching demand in real time. Measured service means that cloud resource usage is metered, and customers are billed only for the resources they actually consume, typically on a pay-per-use basis. These two characteristics directly address the company's requirements for automatic scaling and consumption-based billing.

Exam trap

The trap here is that candidates confuse scalability (which can be manual or planned) with elasticity (which is automatic and dynamic), and they overlook that measured service is the specific characteristic for consumption-based billing, not resource pooling or agility.

89
MCQeasy

A company wants to use a cloud service where they can deploy their own custom applications without managing the underlying operating system or hardware. The cloud provider handles the runtime, middleware, and infrastructure. Which cloud service model best fits this requirement?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Desktop as a Service (DaaS)
AnswerB

PaaS offers a managed platform including runtime, middleware, and infrastructure, enabling developers to deploy custom applications without managing the underlying OS or hardware.

Why this answer

Platform as a Service (PaaS) is the correct model because it provides a managed environment where the company can deploy custom applications without managing the underlying OS, hardware, runtime, or middleware. The cloud provider handles all infrastructure and platform layers, allowing developers to focus solely on code and application logic.

Exam trap

The trap here is that candidates often confuse PaaS with IaaS because both allow custom application deployment, but IaaS requires managing the OS and middleware, whereas PaaS abstracts those layers entirely.

How to eliminate wrong answers

Option A is wrong because Infrastructure as a Service (IaaS) provides virtualized hardware resources (e.g., VMs, storage, networking) but requires the customer to manage the operating system, runtime, middleware, and applications, which contradicts the requirement of not managing the OS or hardware. Option C is wrong because Software as a Service (SaaS) delivers ready-to-use applications accessed via a browser or API, not a platform for deploying custom applications; the customer cannot control or deploy their own code. Option D is wrong because Desktop as a Service (DaaS) provides virtual desktop environments, not a platform for deploying custom applications; it focuses on delivering desktop experiences rather than application hosting and development.

90
MCQeasy

A company uses a cloud provider and is billed monthly based only on the exact amount of storage used and the number of compute hours consumed. They can increase or decrease usage at any time without upfront commitments. Which cloud computing characteristic does this billing model primarily demonstrate?

A.On-demand self-service
B.Rapid elasticity
C.Measured service
D.Resource pooling
AnswerC

Measured service is the characteristic where cloud resource usage is metered, and customers are billed accordingly. The pay-per-use model is a key expression of measured service.

Why this answer

The billing model charges only for actual storage used and compute hours consumed, with no upfront commitments and the ability to adjust usage at any time. This directly aligns with the 'measured service' characteristic, where cloud resource usage is metered, monitored, and billed based on consumption. The key is that the provider tracks and reports usage transparently, enabling a pay-per-use model.

Exam trap

The trap here is that candidates confuse 'measured service' with 'rapid elasticity' because both involve scaling, but measured service is specifically about metering and billing, not the speed of scaling.

How to eliminate wrong answers

Option A is wrong because on-demand self-service refers to a user's ability to provision resources automatically without human interaction, not the billing mechanism. Option B is wrong because rapid elasticity describes the ability to quickly scale resources up or down, which is a separate characteristic from how usage is metered and billed. Option D is wrong because resource pooling refers to the provider's multi-tenant model where physical and virtual resources are shared among customers, not the consumption-based billing approach.

91
MCQhard

A company is evaluating cloud service models for running custom line-of-business applications. They need full control over the operating system and applications, but want to avoid managing physical hardware. Which cloud service model should they choose?

A.Software as a Service (SaaS)
B.Infrastructure as a Service (IaaS)
C.Platform as a Service (PaaS)
D.Function as a Service (FaaS)
AnswerB

IaaS provides virtual machines with full control over OS and applications.

Why this answer

Option C is correct because IaaS provides virtual machines with control over OS and applications. Option A is wrong because SaaS provides pre-built applications. Option B is wrong because PaaS abstracts the OS.

Option D is wrong because FaaS is for running functions without managing servers.

92
MCQmedium

A compliance-aware administrator is selecting the right Microsoft 365 capability to explain why providers can lower unit costs by operating at large scale. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Microsoft Planner
C.Economies of scale
D.Data Loss Prevention (DLP)
AnswerC

Cloud providers operate large shared infrastructure, enabling efficiencies that individual customers may not achieve.

Why this answer

Economies of scale is the correct answer because it directly describes the cost advantage that cloud providers achieve by operating at massive scale. By aggregating compute, storage, and network resources across millions of customers, providers like Microsoft can spread fixed costs (data centers, hardware, cooling, staffing) over a larger base, reducing the per-unit cost for each tenant. This is a foundational cloud concept, not a specific security or productivity feature.

Exam trap

Microsoft often tests the distinction between cloud economic concepts (like economies of scale) and specific security or productivity features, leading candidates to pick a familiar term like 'Data Loss Prevention' instead of the correct foundational principle.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Information Protection (MIP) feature used to classify and protect data based on sensitivity, not a cost or scale concept. Option B is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365, unrelated to the economic principle of cost reduction through scale. Option D is wrong because Data Loss Prevention (DLP) is a security policy mechanism that prevents accidental sharing of sensitive data, not a cloud economics concept.

93
MCQmedium

A retail company experiences sudden traffic spikes during holiday sales. Which cloud characteristic would best help them handle this without overprovisioning?

A.Broad network access
B.Measured service
C.Rapid elasticity
D.Resource pooling
AnswerC

Rapid elasticity allows resources to scale automatically in response to demand, handling traffic spikes.

Why this answer

Option B is correct because rapid elasticity allows cloud resources to automatically scale up or down based on demand. Option A (Resource pooling) is about multi-tenant sharing, not scaling. Option C (Measured service) is about metering usage.

Option D (Broad network access) is about accessibility over the network.

94
MCQmedium

An administrator is reviewing a request from users who need to reduce maintenance of power, cooling, and server replacement. Cloud concept or benefit best matches this requirement?

A.Reduced data center management
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerA

Cloud providers manage physical data center facilities and hardware for cloud services.

Why this answer

The users' requirement to reduce maintenance of power, cooling, and server replacement directly maps to the cloud benefit of reduced data center management. By moving to a cloud model, the cloud provider assumes responsibility for the physical infrastructure, including hardware lifecycle, environmental controls, and facility upkeep, allowing the organization to offload these operational burdens.

Exam trap

The trap here is that candidates may confuse operational benefits like reduced maintenance with specific Microsoft 365 features (Planner, DLP, sensitivity labels), failing to recognize that the question is about fundamental cloud concepts and benefits, not individual product capabilities.

How to eliminate wrong answers

Option B is wrong because Microsoft Planner is a task management and planning application within Microsoft 365, not a cloud concept or benefit related to infrastructure maintenance. Option C is wrong because Data Loss Prevention (DLP) is a security policy technology that helps protect sensitive data from unauthorized sharing or leakage, not a benefit addressing physical data center maintenance. Option D is wrong because sensitivity labels are classification and protection tools applied to data and documents for governance and compliance, not a cloud concept that reduces power, cooling, or server replacement tasks.

95
MCQeasy

An e-commerce website hosted on a cloud provider automatically adds more virtual machines to handle increased traffic during Black Friday and removes them after the event. Which cloud characteristic does this illustrate?

A.Rapid elasticity
B.On-demand self-service
C.Resource pooling
D.Measured service
AnswerA

Correct. The automatic scaling of VMs up and down in response to traffic spikes demonstrates rapid elasticity.

Why this answer

Rapid elasticity is the cloud characteristic that enables resources to scale out (add VMs) automatically in response to demand spikes like Black Friday traffic, and scale in (remove VMs) when demand subsides. This is distinct from manual scaling because it happens automatically and dynamically, often using autoscaling policies tied to metrics such as CPU utilization or request count.

Exam trap

The trap here is that candidates confuse 'rapid elasticity' with 'on-demand self-service' because both involve automation, but elasticity specifically refers to automatic scaling in response to load, not just the ability to provision resources on demand.

How to eliminate wrong answers

Option B (On-demand self-service) is wrong because it refers to a user provisioning resources without human intervention, not the automatic scaling of resources in response to load. Option C (Resource pooling) is wrong because it describes the provider's multi-tenant model where physical and virtual resources are shared across customers, not the ability to scale up/down. Option D (Measured service) is wrong because it involves metering resource usage for billing and optimization, not the dynamic adjustment of capacity.

96
MCQeasy

A company uses a cloud service that provides virtual machines. The company manages the operating system, middleware, and applications, while the cloud provider manages the physical hardware, networking, and data center security. Which cloud service model does this represent?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Desktop as a Service (DaaS)
AnswerA

IaaS provides virtualized computing resources where the customer has control over the operating system and applications, and the provider manages the physical infrastructure.

Why this answer

This scenario describes Infrastructure as a Service (IaaS) because the customer manages the operating system, middleware, and applications, while the cloud provider is responsible for the physical hardware, networking, and data center security. In IaaS, the provider delivers virtualized computing resources over the internet, and the customer retains control over the guest OS, storage, and deployed applications, which matches the division of responsibilities given.

Exam trap

The trap here is that candidates confuse IaaS with PaaS because both involve virtual machines, but PaaS abstracts the OS and middleware, so the key differentiator is who manages the operating system and middleware—if the customer manages them, it is IaaS.

How to eliminate wrong answers

Option B (PaaS) is wrong because in Platform as a Service, the provider manages the operating system, middleware, and runtime environment, leaving the customer to only deploy and manage their own applications and data, not the OS or middleware. Option C (SaaS) is wrong because in Software as a Service, the provider manages the entire application stack, including the operating system, middleware, and applications, and the customer only uses the software via a web browser or client, with no management of the underlying infrastructure. Option D (DaaS) is wrong because Desktop as a Service delivers virtual desktops to end users, where the provider manages the desktop OS and underlying infrastructure, and the customer typically does not manage the OS or middleware as described.

97
MCQeasy

While preparing a Microsoft 365 adoption plan, a consultant is asked to avoid buying servers upfront and pay monthly based on usage. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Data Loss Prevention (DLP)
C.Operational expenditure (OpEx) model
D.Microsoft Planner
AnswerC

Cloud services commonly shift spending from upfront capital purchases to ongoing operational spending based on consumption.

Why this answer

The operational expenditure (OpEx) model is correct because it aligns with the requirement to avoid upfront capital investment (CapEx) and instead pay monthly based on usage. In Microsoft 365, this is delivered through subscription-based licensing (e.g., per-user per-month plans), which shifts costs from large upfront server purchases to predictable monthly payments that scale with consumption.

Exam trap

The trap here is that candidates may confuse 'operational expenditure' with a specific tool or feature (like Planner or DLP) because they focus on the word 'plan' in the question, rather than recognizing that OpEx is a fundamental cloud financial model distinct from any product or security feature.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data (e.g., encrypt emails or mark documents as confidential), not a financial or deployment model. Option B is wrong because Data Loss Prevention (DLP) is a policy-based security feature that detects and prevents accidental sharing of sensitive information (e.g., credit card numbers), not a cost or procurement model. Option D is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365 (part of the Power Platform and Teams), not a cloud concept or benefit related to payment or infrastructure.

98
MCQeasy

A company uses a cloud provider that hosts multiple customers on the same physical servers. Each customer's data and applications are isolated, but customers have no knowledge or control over the exact physical location of their resources. Which cloud characteristic does this describe?

A.Resource pooling
B.Rapid elasticity
C.On-demand self-service
D.Measured service
AnswerA

Correct. Resource pooling allows the provider to serve multiple customers from shared infrastructure while isolating each customer's data.

Why this answer

Resource pooling is the correct answer because the scenario describes a multi-tenant model where the cloud provider's physical and virtual resources are pooled to serve multiple customers, with isolation between tenants. Customers have no knowledge or control over the exact physical location of their resources, which is a defining characteristic of resource pooling as defined by NIST SP 800-145.

Exam trap

The trap here is that candidates often confuse resource pooling with rapid elasticity because both involve shared infrastructure, but resource pooling specifically focuses on multi-tenancy and location transparency, not dynamic scaling.

How to eliminate wrong answers

Option B (Rapid elasticity) is wrong because it refers to the ability to quickly scale resources up or down based on demand, not to multi-tenant isolation or location transparency. Option C (On-demand self-service) is wrong because it describes the capability for a user to provision computing capabilities automatically without requiring human interaction with the provider, not the pooling of resources across customers. Option D (Measured service) is wrong because it involves metering and billing based on usage (e.g., pay-per-use), not the sharing of physical infrastructure among multiple tenants.

99
MCQmedium

A company subscribes to a cloud service where they can provision virtual machines, choose the operating system, install any software, and manage all applications. The cloud provider is responsible for the underlying physical hardware and network infrastructure. Which cloud service model is being used?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.On-premises
AnswerA

IaaS provides virtual machines and infrastructure where the customer controls the OS and applications, and the provider manages physical hardware.

Why this answer

This scenario describes Infrastructure as a Service (IaaS) because the customer provisions virtual machines, chooses the operating system, installs software, and manages applications, while the cloud provider is responsible for the underlying physical hardware and network infrastructure. In IaaS, the provider delivers virtualized computing resources over the internet, and the customer retains control over the OS, storage, and deployed applications, which matches the description exactly.

Exam trap

The trap here is that candidates often confuse IaaS with PaaS because both involve virtual machines, but PaaS abstracts the OS and runtime, whereas IaaS gives the customer full control over the OS and software installation, as explicitly stated in the question.

How to eliminate wrong answers

Option B (PaaS) is wrong because PaaS provides a managed platform where the provider handles the OS, runtime, and middleware, and the customer only deploys and manages applications—not the OS or full software stack. Option C (SaaS) is wrong because SaaS delivers fully managed applications accessed via a browser or client, with no customer control over the underlying infrastructure, OS, or software installation. Option D (On-premises) is wrong because on-premises deployment means the customer owns and manages all hardware, software, and networking within their own data center, contradicting the cloud provider's responsibility for physical infrastructure.

100
MCQmedium

While preparing a Microsoft 365 adoption plan, a consultant is asked to reduce maintenance of power, cooling, and server replacement. Cloud concept or benefit best matches this requirement?

A.Reduced data center management
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerA

Cloud providers manage physical data center facilities and hardware for cloud services.

Why this answer

Reduced data center management is the correct answer because the requirement to reduce maintenance of power, cooling, and server replacement directly maps to the cloud benefit of offloading physical infrastructure responsibilities to the cloud provider. In Microsoft 365, this is realized through the shared responsibility model where Microsoft manages the underlying hardware, facilities, and environmental controls, allowing the organization to focus on application and data management rather than data center operations.

Exam trap

The trap here is that candidates may confuse operational benefits (like reduced maintenance) with productivity tools (Planner) or security features (DLP, sensitivity labels), rather than recognizing that the question is testing the foundational cloud concept of offloading infrastructure management to the provider.

How to eliminate wrong answers

Option B (Microsoft Planner) is wrong because it is a task management and planning tool within Microsoft 365, not a cloud concept or benefit related to reducing physical infrastructure maintenance. Option C (Data Loss Prevention or DLP) is wrong because it is a security feature that helps prevent accidental sharing of sensitive data, not a cloud concept that reduces power, cooling, or server replacement efforts. Option D (Sensitivity labels) is wrong because they are classification and protection mechanisms for data governance, not a cloud benefit addressing data center operational overhead.

101
MCQmedium

A company is migrating its on-premises workloads to Microsoft 365. The IT team wants to minimize latency for users in Europe while ensuring data residency requirements are met. Which cloud concept should the team consider?

A.Geography
B.Hybrid deployment
C.Redundancy
D.Multi-tenancy
AnswerA

Geography determines the specific Azure region where data is stored, affecting latency and compliance with data residency.

Why this answer

Option B is correct because geography determines the data residency region. Option A is wrong because redundancy is about high availability, not latency or residency. Option C is wrong because multi-tenancy is a shared infrastructure model.

Option D is wrong because hybrid deployment combines cloud and on-premises, not specifically addressing latency or residency.

102
MCQmedium

A compliance-aware administrator is selecting the right Microsoft 365 capability to use Microsoft 365 and another public cloud provider for different workloads. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Sensitivity labels
C.Multi-cloud
D.Data Loss Prevention (DLP)
AnswerC

Multi-cloud means using cloud services from more than one public cloud provider.

Why this answer

Multi-cloud is the correct answer because the requirement explicitly involves using Microsoft 365 alongside another public cloud provider for different workloads. Multi-cloud refers to the strategy of leveraging services from multiple cloud providers (e.g., Microsoft Azure and AWS) to avoid vendor lock-in, optimize costs, or meet compliance needs. This directly matches the scenario of using Microsoft 365 and another public cloud provider together.

Exam trap

The trap here is that candidates may confuse 'multi-cloud' with 'hybrid cloud' (which combines public and private cloud) or mistakenly think a specific Microsoft 365 feature like DLP or Sensitivity labels is the answer, when the question is about the overarching cloud concept of using multiple public providers.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management and planning tool within Microsoft 365, not a cloud concept or benefit that addresses multi-provider workload distribution. Option B is wrong because Sensitivity labels are a Microsoft Information Protection feature used to classify and protect data based on sensitivity, not a cloud deployment model or strategy for using multiple providers. Option D is wrong because Data Loss Prevention (DLP) is a security policy mechanism to prevent accidental sharing of sensitive data, not a cloud concept describing the use of multiple cloud providers.

103
MCQeasy

A company uses a cloud storage service that automatically increases its storage capacity without any manual intervention as new files are added. This behavior is an example of which cloud computing characteristic?

A.On-demand self-service
B.Broad network access
C.Resource pooling
D.Rapid elasticity
AnswerD

Rapid elasticity enables resources to scale automatically in response to demand, which is exactly what the storage service does.

Why this answer

The scenario describes storage capacity automatically increasing as new files are added, which is the essence of rapid elasticity. This cloud characteristic allows resources to scale out and in automatically, often to the point where the user perceives unlimited capacity, without requiring manual provisioning or intervention.

Exam trap

The trap here is that candidates often confuse 'resource pooling' (the multi-tenant sharing of resources) with 'rapid elasticity' (the ability to scale resources up/down automatically), because both involve dynamic allocation, but pooling is about sharing among tenants while elasticity is about scaling for a single tenant's demand.

How to eliminate wrong answers

Option A is wrong because on-demand self-service refers to a user's ability to provision computing resources (e.g., spinning up a VM) through a web portal or API without human interaction with the provider, not the automatic scaling of capacity. Option B is wrong because broad network access describes the ability to access cloud services over standard network protocols (e.g., HTTPS, SSH) from a wide variety of devices (laptops, phones, tablets), not the dynamic adjustment of storage. Option C is wrong because resource pooling means the provider's computing resources are pooled to serve multiple customers using a multi-tenant model, with physical and virtual resources dynamically assigned and reassigned according to demand; it does not describe the automatic increase in capacity for a single customer's storage.

104
MCQeasy

Refer to the exhibit. A Contoso user tries to send an email containing a credit card number to an external recipient. What will happen?

A.The email is blocked and the user receives a notification.
B.The credit card number is removed and the email is sent.
C.The email is sent and an alert is generated for admin.
D.The email is delivered to the external recipient but placed in quarantine.
AnswerA

The policy blocks access and displays a message.

Why this answer

Option A is correct because the DLP policy enforces blocking of credit card numbers. Option B is wrong because the policy is enforced, not just audit. Option C is wrong because it blocks, not removes.

Option D is wrong because it blocks, not quarantines.

105
MCQeasy

While preparing a Microsoft 365 adoption plan, a consultant is asked to add and remove capacity quickly when demand changes. Cloud concept or benefit best matches this requirement?

A.Rapid elasticity
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerA

Rapid elasticity is the cloud characteristic that allows resources to scale quickly in response to demand.

Why this answer

Rapid elasticity is a core cloud computing concept defined by NIST (SP 800-145) that allows resources to be provisioned and released elastically, often automatically, to scale rapidly outward and inward commensurate with demand. In Microsoft 365, this means the consultant can quickly add or remove user licenses, storage, or service capacity via the admin center or PowerShell without manual hardware provisioning, directly matching the requirement to adjust capacity on demand.

Exam trap

The trap here is that candidates confuse a specific Microsoft 365 tool (like Planner) with a fundamental cloud characteristic (rapid elasticity), because the question asks for a 'cloud concept or benefit' but lists product names as distractors, testing whether you can distinguish between abstract cloud attributes and concrete service features.

How to eliminate wrong answers

Option B is wrong because Microsoft Planner is a task management and planning tool within Microsoft 365, not a cloud concept or benefit related to scaling capacity. Option C is wrong because Data Loss Prevention (DLP) is a security feature that helps protect sensitive data from being shared inappropriately, not a mechanism for adding or removing capacity. Option D is wrong because sensitivity labels are classification and protection controls for data (e.g., encrypting or marking documents), unrelated to the elastic scaling of cloud resources.

106
MCQmedium

A financial services company uses a public cloud provider for its development and testing environments, but keeps its production data and applications on-premises due to strict regulatory requirements. Which cloud deployment model is the company using?

A.Hybrid cloud
B.Public cloud
C.Private cloud
D.Community cloud
AnswerA

Correct. The company uses both public cloud (dev/test) and on-premises (production), which is the definition of hybrid cloud.

Why this answer

The company uses a hybrid cloud model because it combines on-premises infrastructure (private cloud) for production workloads with a public cloud provider for development and testing. This allows the organization to meet strict regulatory requirements for data residency and security while leveraging the scalability and cost benefits of the public cloud for non-sensitive workloads.

Exam trap

The trap here is that candidates may confuse 'hybrid cloud' with 'public cloud' because the company uses a public provider, but the key distinction is the combination of on-premises and public resources, not exclusive use of one.

How to eliminate wrong answers

Option B (Public cloud) is wrong because the company keeps production data and applications on-premises, not entirely in the public cloud; a pure public cloud model would have all workloads hosted by a third-party provider. Option C (Private cloud) is wrong because the company uses a public cloud provider for development and testing, which is not part of a solely private cloud deployment. Option D (Community cloud) is wrong because the infrastructure is not shared among multiple organizations with common concerns (e.g., regulatory compliance); instead, it is a mix of private and public resources tailored to a single organization.

107
MCQeasy

A marketing manager can access the company's cloud resources from her laptop at home, her tablet while traveling, and her smartphone. Which essential characteristic of cloud computing does this describe?

A.Resource pooling
B.Scalability
C.Broad network access
D.Measured service
AnswerC

Broad network access allows users to connect from various devices (laptops, tablets, phones) over the network, which matches the marketing manager's ability to use multiple devices.

Why this answer

Broad network access means cloud resources can be accessed over standard network protocols (e.g., HTTPS, TLS) from a wide range of client devices, such as laptops, tablets, and smartphones. The scenario explicitly describes access from multiple device types and locations, which is the defining characteristic of broad network access as per NIST SP 800-145.

Exam trap

The trap here is that candidates confuse 'broad network access' with 'resource pooling' because both involve multiple users or devices, but resource pooling is about the provider's shared infrastructure, not the consumer's ability to use different device types.

How to eliminate wrong answers

Option A is wrong because resource pooling refers to the provider's multi-tenant model where physical and virtual resources are dynamically assigned and reassigned according to consumer demand, not to the ability to access resources from various devices. Option B is wrong because scalability (or rapid elasticity) is the capability to automatically scale resources up or down based on demand, not the cross-device access described. Option D is wrong because measured service involves metering and billing for resource usage (e.g., pay-per-use), not the device-agnostic access pattern.

108
MCQeasy

A company wants to use a cloud service that provides ready-to-use business applications such as email, collaboration, and customer relationship management without managing the underlying infrastructure. Which cloud service model is this?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Private cloud
AnswerC

Correct. SaaS delivers applications like email (Exchange Online) and CRM (Dynamics 365) that are managed completely by the provider.

Why this answer

Option C (SaaS) is correct because Software as a Service delivers ready-to-use business applications like Microsoft 365 (Exchange Online for email, Teams for collaboration, Dynamics 365 for CRM) over the internet, with the provider managing all underlying infrastructure, including servers, storage, and networking. The customer simply accesses the software via a web browser or client app without any responsibility for patching, scaling, or hardware maintenance.

Exam trap

The trap here is that candidates often confuse PaaS with SaaS because both abstract infrastructure, but PaaS requires the customer to develop and manage the application code, whereas SaaS provides fully functional, ready-to-use applications—a distinction Microsoft emphasizes in the MS-900 by focusing on the 'what you manage' vs. 'what the provider manages' model.

How to eliminate wrong answers

Option A (IaaS) is wrong because it provides virtualized computing resources (e.g., virtual machines, storage, networks) but requires the customer to deploy and manage their own operating systems, middleware, and applications—not ready-to-use business apps. Option B (PaaS) is wrong because it offers a platform for developing, testing, and deploying custom applications (e.g., Azure App Services) but does not include pre-built business applications like email or CRM; the customer still writes and manages the application code. Option D (Private cloud) is wrong because it refers to a deployment model where cloud resources are used exclusively by a single organization, either on-premises or hosted, and does not inherently provide ready-to-use business applications; it still requires the organization to manage or procure the software layer.

109
MCQmedium

A company needs a dedicated, private network connection between its on-premises data center and Microsoft's cloud infrastructure to support a hybrid deployment with low latency and high reliability. The connection must not traverse the public internet. Which service should they use?

A.Azure ExpressRoute
B.Azure VPN Gateway
C.Azure Virtual WAN
D.Microsoft Entra ID Application Proxy
AnswerA

ExpressRoute creates a private, dedicated connection from the customer's network to Microsoft's cloud, ensuring traffic does not go over the public internet. It is ideal for hybrid deployments requiring low latency and reliability.

Why this answer

Azure ExpressRoute is the correct choice because it provides a dedicated, private network connection from an on-premises data center directly into Microsoft's cloud infrastructure, bypassing the public internet entirely. This ensures low latency, high reliability, and consistent performance for hybrid deployments, as the traffic traverses a private MPLS or Ethernet link rather than the unpredictable internet.

Exam trap

The trap here is that candidates often confuse Azure VPN Gateway with a private connection because it uses encryption, but the key differentiator is that VPN traffic still traverses the public internet, whereas ExpressRoute bypasses it entirely for a truly private, dedicated link.

How to eliminate wrong answers

Option B (Azure VPN Gateway) is wrong because it creates an encrypted tunnel over the public internet, which means traffic traverses the internet and cannot guarantee the low latency, high reliability, or complete privacy required by the scenario. Option C (Azure Virtual WAN) is wrong because it is a networking service that aggregates branch connectivity and can use ExpressRoute or VPN, but by itself it does not provide a dedicated private connection; it is a management and routing overlay, not a direct private link. Option D (Microsoft Entra ID Application Proxy) is wrong because it is an identity and access proxy for publishing on-premises web applications to external users via the internet, not a private network connection between data centers and Azure.

110
MCQmedium

A service owner is comparing Microsoft 365 capabilities and needs to use a dedicated environment controlled by one organization. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Private cloud
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerB

A private cloud is dedicated to one organization, whether hosted on-premises or by a provider.

Why this answer

A private cloud is a dedicated environment controlled by a single organization, providing exclusive access and management over resources. This matches the requirement for a dedicated environment, as opposed to public cloud or hybrid models where control is shared or distributed.

Exam trap

The trap here is that candidates confuse Microsoft 365 service features (like Planner, DLP, or sensitivity labels) with cloud deployment models, failing to recognize that 'dedicated environment controlled by one organization' is the textbook definition of a private cloud.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management tool within Microsoft 365, not a cloud deployment model or concept. Option C is wrong because Data Loss Prevention (DLP) is a security policy feature that helps prevent data leaks, not a cloud environment type. Option D is wrong because sensitivity labels are classification tools for data protection, not a cloud concept describing dedicated infrastructure control.

111
Multi-Selecthard

Which THREE are key characteristics of cloud computing as defined by NIST?

Select 3 answers
A.High availability
B.Broad network access
C.Resource pooling
D.On-demand self-service
E.Reserved capacity
AnswersB, C, D

Resources are accessible over the network via standard mechanisms.

Why this answer

Options A, D, and E are correct. On-demand self-service, broad network access, and resource pooling are NIST characteristics. Option B is wrong because high availability is a benefit but not a NIST characteristic.

Option C is wrong because reserved instances are a pricing model.

112
MCQmedium

A company runs a critical application on-premises but wants to extend capacity to the cloud during peak demand without purchasing additional hardware. Which cloud deployment model best describes this strategy?

A.Public cloud
B.Private cloud
C.Hybrid cloud
D.Multi-cloud
AnswerC

Hybrid cloud connects on-premises with public cloud, enabling cloud bursting during peak loads.

Why this answer

A hybrid cloud model combines on-premises infrastructure (private cloud) with public cloud resources, enabling a company to 'burst' into the public cloud during peak demand without purchasing additional hardware. This strategy, often called cloud bursting, allows the critical application to run locally under normal conditions and seamlessly extend capacity to a public cloud provider like Azure during spikes.

Exam trap

The trap here is that candidates confuse 'hybrid cloud' with 'multi-cloud,' but hybrid cloud specifically involves a mix of on-premises and public cloud, while multi-cloud involves multiple public clouds without any on-premises component.

How to eliminate wrong answers

Option A is wrong because a pure public cloud model would require migrating the entire critical application off-premises, which contradicts the requirement to keep it on-premises and only extend capacity during peak demand. Option B is wrong because a private cloud is entirely on-premises and would still require purchasing additional hardware to handle peak loads, defeating the goal of avoiding hardware purchases. Option D is wrong because multi-cloud refers to using multiple public cloud providers (e.g., AWS and Azure) simultaneously, not extending an on-premises environment to the cloud.

113
MCQeasy

A company wants to run a workload that requires the highest level of physical security and control over hardware. They have the budget to purchase and maintain their own data center. Which cloud deployment model should they choose?

A.Public cloud
B.Private cloud
C.Hybrid cloud
D.Community cloud
AnswerB

Private cloud offers dedicated hardware and full control, ideal for workloads requiring high security and compliance.

Why this answer

A private cloud deployment model is correct because it provides dedicated infrastructure for a single organization, offering the highest level of physical security and full control over hardware. This model allows the company to purchase, own, and manage its own data center, ensuring compliance with stringent security requirements and complete hardware isolation.

Exam trap

The trap here is that candidates often confuse 'hybrid cloud' with 'best of both worlds' and overlook that the question explicitly demands the highest physical security and hardware control, which only a private cloud with dedicated on-premises hardware can provide.

How to eliminate wrong answers

Option A is wrong because the public cloud model shares physical hardware among multiple tenants via hypervisors, which reduces direct control over hardware and cannot guarantee the highest level of physical security. Option C is wrong because the hybrid cloud model combines public and private clouds, but the public cloud component inherently lacks the dedicated hardware control required, and the model does not mandate exclusive hardware ownership. Option D is wrong because the community cloud model shares infrastructure among several organizations with common concerns, which still involves shared hardware and does not provide the exclusive physical control and security of a single-tenant private cloud.

114
MCQmedium

A healthcare organization must keep sensitive patient data on-premises due to regulatory compliance, but wants to use cloud services for other applications like customer relationship management and collaboration. Which cloud deployment model best meets this requirement?

A.Public cloud
B.Private cloud
C.Hybrid cloud
D.Community cloud
AnswerC

A hybrid cloud combines on-premises infrastructure with public cloud services, enabling data to remain on-premises while using the cloud for other needs.

Why this answer

The hybrid cloud model is correct because it allows the healthcare organization to keep sensitive patient data on-premises (private cloud) for regulatory compliance (e.g., HIPAA), while leveraging public cloud services for customer relationship management and collaboration tools like Microsoft Dynamics 365 and Microsoft 365. This deployment model provides a unified environment where workloads can be distributed across on-premises and cloud infrastructure, ensuring data sovereignty and compliance without sacrificing scalability or cost efficiency.

Exam trap

The trap here is that candidates often confuse 'private cloud' as the only compliant option for sensitive data, overlooking that hybrid cloud allows the organization to meet compliance for specific workloads while still benefiting from public cloud economics for others.

How to eliminate wrong answers

Option A is wrong because a public cloud model would require all workloads, including sensitive patient data, to run on shared infrastructure managed by a third-party provider, which violates regulatory compliance requirements for data residency and control. Option B is wrong because a private cloud model, while secure and compliant, would force the organization to host all applications—including CRM and collaboration tools—on-premises, negating the cost and scalability benefits of cloud services for non-sensitive workloads. Option D is wrong because a community cloud is designed for organizations with shared compliance concerns (e.g., multiple healthcare entities), but it still requires all participants to adhere to a common regulatory framework and does not inherently allow selective placement of sensitive data on-premises while using public cloud for other apps.

115
MCQeasy

Which cloud computing characteristic allows users to provision resources such as virtual machines and storage without requiring human interaction with the service provider?

A.Measured service
B.On-demand self-service
C.Resource pooling
D.Rapid elasticity
AnswerB

On-demand self-service allows users to provision resources automatically without human interaction.

Why this answer

On-demand self-service is one of the five essential characteristics of cloud computing defined by NIST. It enables users to automatically provision computing resources as needed through a web portal or API, without requiring manual intervention from the service provider.

116
MCQmedium

A company uses Infrastructure-as-a-Service (IaaS) from a cloud provider. They have deployed virtual machines running a custom application. The cloud provider supplies the physical hardware, networking, and storage. Who is responsible for patching the operating system of the virtual machines?

A.The cloud provider
B.The customer
C.Both the provider and the customer share equally
D.A third-party managed security service provider
AnswerB

In IaaS, the customer is responsible for securing and patching the operating system and applications on the virtual machines.

Why this answer

In an IaaS model, the cloud provider is responsible for the physical infrastructure (hardware, networking, storage), but the customer retains responsibility for the guest OS and application stack. Patching the operating system of virtual machines is a customer task because the customer controls the OS image and has full administrative access to the VM. This follows the shared responsibility model where the provider secures the hypervisor and physical layer, while the customer secures the OS and applications.

Exam trap

The trap here is that candidates confuse IaaS with PaaS or SaaS, assuming the cloud provider patches everything, but in IaaS the customer is explicitly responsible for the guest OS and applications.

How to eliminate wrong answers

Option A is wrong because the cloud provider patches only the hypervisor and physical infrastructure, not the guest OS inside the VM; the customer manages the OS. Option C is wrong because responsibility is not shared equally for OS patching—the provider handles the underlying platform, and the customer handles the OS and applications. Option D is wrong because a third-party MSSP is an optional service the customer could contract, but it is not the default responsibility assignment in the IaaS shared responsibility model.

117
MCQmedium

A department head asks which Microsoft 365 option should be used to review uptime commitments for Microsoft cloud services. Cloud concept or benefit best matches this requirement?

A.Data Loss Prevention (DLP)
B.Microsoft Planner
C.Sensitivity labels
D.Service Level Agreement (SLA)
AnswerD

An SLA describes availability commitments and related service terms.

Why this answer

The Service Level Agreement (SLA) is the correct choice because it is the formal document published by Microsoft that defines the uptime commitments, availability guarantees, and financial remedies for Microsoft cloud services. The department head needs to review uptime commitments, which is exactly what the SLA covers, not a security or project management feature.

Exam trap

The trap here is that candidates often confuse operational features (like DLP or sensitivity labels) with contractual documents, assuming any Microsoft 365 tool that 'protects' or 'manages' something could cover uptime, when only the SLA provides legally binding availability commitments.

How to eliminate wrong answers

Option A is wrong because Data Loss Prevention (DLP) is a security policy that prevents sensitive information from being shared or leaked, not a document that defines uptime commitments. Option B is wrong because Microsoft Planner is a task management and project planning tool within Microsoft 365, not a source of service availability guarantees. Option C is wrong because sensitivity labels are used to classify and protect data based on its sensitivity level, not to provide uptime or service-level commitments.

118
MCQmedium

A company wants to run a critical application that requires dedicated hardware to comply with regulatory isolation requirements. However, they want to avoid the upfront cost of building their own data center. Which cloud deployment model meets these needs?

A.Private cloud
B.Public cloud
C.Hybrid cloud
D.Community cloud
AnswerA

A hosted private cloud provides dedicated resources with full control and regulatory compliance, while avoiding the capital expense of building an on-premises data center.

Why this answer

A private cloud is the correct deployment model because it provides dedicated hardware and infrastructure for a single organization, ensuring regulatory isolation without requiring the company to build and maintain its own on-premises data center. In Azure, a private cloud can be implemented via Azure Stack Hub or Azure VMware Solution, which run in the customer's own environment or a dedicated hosted environment, meeting compliance needs while avoiding upfront capital expenditure.

Exam trap

The trap here is that candidates often confuse 'private cloud' with 'on-premises only,' forgetting that a private cloud can be hosted by a third-party provider like Azure Stack Hub, which offers dedicated hardware without the upfront cost of building a data center.

How to eliminate wrong answers

Option B (Public cloud) is wrong because it uses shared multi-tenant infrastructure that cannot guarantee the dedicated hardware isolation required for strict regulatory compliance. Option C (Hybrid cloud) is wrong because it combines public and private clouds but does not inherently provide dedicated hardware; the public cloud portion still lacks isolation. Option D (Community cloud) is wrong because it is shared among several organizations with common concerns, not dedicated to a single company, and thus cannot meet the requirement for exclusive hardware isolation.

119
MCQeasy

A business stakeholder asks how Microsoft 365 can help them create a short-term test environment and delete it after the pilot. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Agility
C.Data Loss Prevention (DLP)
D.Microsoft Planner
AnswerB

Cloud agility allows teams to provision and remove resources quickly.

Why this answer

Agility is the correct answer because it refers to the ability to rapidly provision and deprovision resources, such as creating a short-term test environment and deleting it after a pilot. Microsoft 365's cloud-based infrastructure enables on-demand scaling and resource lifecycle management, allowing organizations to spin up environments quickly and tear them down without long-term commitments or hardware procurement delays.

Exam trap

The trap here is that candidates confuse agility with data protection features (sensitivity labels or DLP) or productivity tools (Planner), because the question mentions 'test environment' and 'delete' which superficially sounds like data management or task tracking, but the core cloud concept is rapid provisioning and deprovisioning.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are used to classify and protect data based on sensitivity (e.g., confidential or restricted), not to manage temporary environments. Option C is wrong because Data Loss Prevention (DLP) policies prevent unauthorized sharing or leakage of sensitive data, not environment lifecycle management. Option D is wrong because Microsoft Planner is a task management and collaboration tool for organizing work, not for provisioning or deleting cloud test environments.

120
MCQeasy

A business stakeholder asks how Microsoft 365 can help them use hosted email without managing mail servers. Cloud concept or benefit best matches this requirement?

A.Platform as a Service (PaaS)
B.Community cloud
C.Software as a Service (SaaS)
D.Infrastructure as a Service (IaaS)
AnswerC

SaaS delivers a complete application operated by the provider; Exchange Online is a SaaS example.

Why this answer

Microsoft 365 delivers hosted email (Exchange Online) as a Software as a Service (SaaS) offering, where Microsoft manages the mail servers, patches, and infrastructure. The stakeholder simply uses the service via a web browser or client without any server administration. This aligns with the SaaS model, which provides ready-to-use applications over the internet.

Exam trap

The trap here is that candidates confuse PaaS with SaaS because both involve managed services, but PaaS still requires the customer to deploy and manage the application code (e.g., a custom email server), whereas SaaS delivers the fully functional application itself.

How to eliminate wrong answers

Option A is wrong because PaaS provides a platform (runtime, database, middleware) for developers to build and deploy custom applications, not a ready-to-use hosted email service. Option B is wrong because a community cloud is a deployment model shared by several organizations with common concerns (e.g., compliance), not a service model that delivers hosted email without server management. Option D is wrong because IaaS provides virtualized computing resources (VMs, storage, networking) that still require the customer to manage operating systems and mail server software, contradicting the requirement to avoid managing mail servers.

121
MCQeasy

A company runs a virtual machine in Azure that hosts a web application. The company is responsible for configuring the operating system, installing web server software, and managing application updates. The cloud provider is responsible for the physical hardware, networking, and data center security. Which cloud service model does this represent?

A.Software as a Service (SaaS)
B.Platform as a Service (PaaS)
C.Infrastructure as a Service (IaaS)
D.Function as a Service (FaaS)
AnswerC

IaaS provides virtual machines where the customer installs and configures the OS and applications, matching the described responsibilities.

Why this answer

This scenario describes Infrastructure as a Service (IaaS) because the customer manages the operating system, web server software, and application updates, while the cloud provider handles the physical hardware, networking, and data center security. In IaaS, the provider offers virtualized computing resources over the internet, and the customer retains control over the guest OS and installed software, which matches the responsibilities outlined.

Exam trap

The trap here is that candidates confuse PaaS with IaaS because both involve deploying applications, but the key differentiator is whether the customer manages the OS and installed software—PaaS abstracts the OS, while IaaS does not.

How to eliminate wrong answers

Option A is wrong because Software as a Service (SaaS) would have the provider manage the entire application stack, including the OS and software, leaving the customer only to use the application—here the customer configures the OS and installs web server software. Option B is wrong because Platform as a Service (PaaS) abstracts the OS and runtime, with the provider managing the underlying OS and middleware, but the customer is responsible for configuring the OS and installing web server software, which is not typical for PaaS. Option D is wrong because Function as a Service (FaaS) is a serverless compute model where the provider manages all infrastructure and the customer only deploys individual functions, not a full VM with OS and web server management.

122
MCQmedium

A tenant administrator is advising a department that wants to keep services available during a hardware failure. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Data Loss Prevention (DLP)
C.High availability
D.Sensitivity labels
AnswerC

High availability focuses on keeping services accessible despite component failure.

Why this answer

High availability (C) is the correct answer because it directly addresses the requirement to keep services available during a hardware failure. High availability refers to a system's ability to remain operational and accessible despite component failures, typically achieved through redundancy, failover clustering, and load balancing. In Microsoft 365, this is implemented via redundant infrastructure across multiple datacenters and automatic failover mechanisms, ensuring service continuity without manual intervention.

Exam trap

The trap here is that candidates confuse high availability with disaster recovery or data protection features like DLP, but high availability specifically focuses on minimizing downtime during failures, not on preventing data loss or classifying data.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management application, not a cloud concept or benefit; it does not provide infrastructure-level availability during hardware failures. Option B is wrong because Data Loss Prevention (DLP) is a security feature that helps prevent sensitive information from being shared inappropriately, but it has no role in maintaining service availability during hardware outages. Option D is wrong because sensitivity labels are used for data classification and protection (e.g., encryption, marking), not for ensuring uptime or resilience against hardware failures.

123
MCQeasy

A colleague says, 'The public cloud is cheaper because you only pay for the resources you use, like compute hours or storage space.' Which cloud computing characteristic directly supports this pay-as-you-go model?

A.Rapid elasticity
B.Broad network access
C.Measured service
D.On-demand self-service
AnswerC

Measured service allows the provider to meter usage and charge only for what is consumed, enabling the pay-as-you-go model.

Why this answer

Option C is correct because measured service is the cloud computing characteristic that enables a pay-as-you-go model by metering resource usage (e.g., compute hours, storage GB-months, outbound data transfer) and providing transparent billing based on actual consumption. This allows providers like Azure to charge only for what is used, directly supporting the colleague's statement that the public cloud is cheaper because you pay only for resources consumed.

Exam trap

The trap here is that candidates often confuse on-demand self-service (the ability to provision resources without waiting) with the billing model, but on-demand self-service does not inherently include usage metering or pay-as-you-go pricing.

How to eliminate wrong answers

Option A is wrong because rapid elasticity refers to the ability to automatically scale resources up or down quickly based on demand, not to the metering or billing mechanism that supports pay-as-you-go. Option B is wrong because broad network access describes the ability to access cloud services over the network via standard protocols (e.g., HTTPS, SSH), which enables connectivity but does not involve usage tracking or cost allocation. Option D is wrong because on-demand self-service allows users to provision resources without human interaction (e.g., via the Azure portal or CLI), but it does not inherently include the metering or billing logic that makes pay-as-you-go possible.

124
MCQhard

A multinational corporation needs to design a cloud strategy that allows them to keep sensitive financial data on-premises while using public cloud for customer-facing apps. Which deployment model should they adopt?

A.Hybrid cloud
B.Private cloud
C.Public cloud
D.Multi-cloud
AnswerA

Hybrid cloud enables keeping sensitive data on-premises while using public cloud for customer apps.

Why this answer

Option B is correct because hybrid cloud combines on-premises (private) and public cloud, allowing sensitive data to remain on-premises while leveraging public cloud for other apps. Option A (Public cloud) stores everything in public cloud, violating data residency. Option C (Private cloud) only uses on-premises, missing public cloud benefits.

Option D (Multi-cloud) uses multiple public clouds but not necessarily on-premises.

125
MCQmedium

Your company is moving to Microsoft 365 and wants to reduce capital expenditure (CapEx) on hardware and software licenses. Which cloud benefit is most directly related to this goal?

A.Scalability
B.Consumption-based pricing
C.Agility
D.Security
AnswerB

Consumption-based pricing converts capital expenditure to operational expenditure.

Why this answer

Option B is correct because moving from CapEx to OpEx is a key financial benefit of cloud. Option A is wrong because agility is about speed, not cost structure. Option C is wrong because scalability is about adjusting resources.

Option D is wrong because security is about protection.

126
Multi-Selecteasy

A business wants to use a cloud solution where they can scale computing resources up or down automatically based on demand and only pay for what they use. The cloud provider manages the underlying hardware. Which two cloud characteristics are being described? (Choose two.)

Select 2 answers
A.Elasticity
B.Measured service
C.Scalability
D.High availability
AnswersA, B

Correct. Elasticity allows automatic scaling of resources to match demand, which is described in the scenario.

Why this answer

Elasticity is correct because it describes the ability to automatically scale computing resources up or down based on demand, which is a key characteristic of cloud computing. The scenario explicitly states that resources scale automatically, which aligns with elasticity rather than just the ability to scale (scalability). Measured service is correct because the business pays only for what they use, which is the pay-per-use billing model enabled by metering resource consumption.

Exam trap

The trap here is that candidates confuse scalability (the ability to scale) with elasticity (automatic scaling based on demand), and they overlook measured service as a distinct characteristic because they focus only on the scaling aspect rather than the pay-per-use billing model explicitly stated in the question.

127
MCQeasy

A help desk lead is documenting the correct Microsoft 365 approach to use hosted email without managing mail servers. Cloud concept or benefit best matches this requirement?

A.Platform as a Service (PaaS)
B.Community cloud
C.Software as a Service (SaaS)
D.Infrastructure as a Service (IaaS)
AnswerC

SaaS delivers a complete application operated by the provider; Exchange Online is a SaaS example.

Why this answer

Option C is correct because Microsoft 365's Exchange Online delivers hosted email as a Software as a Service (SaaS) offering. This means Microsoft manages the mail servers, software updates, and infrastructure, while the help desk lead simply configures user mailboxes and policies via the admin center. SaaS is the cloud model where the provider hosts and manages the entire application, aligning perfectly with the requirement to avoid managing mail servers.

Exam trap

The trap here is that candidates confuse PaaS with SaaS because both involve managed services, but PaaS requires you to manage the application code and runtime, whereas SaaS delivers a fully finished application like Exchange Online, eliminating all server management tasks.

How to eliminate wrong answers

Option A is wrong because Platform as a Service (PaaS) provides a runtime environment for deploying custom applications, not a ready-to-use hosted email service; you would still need to build and manage the email application code. Option B is wrong because Community cloud is a deployment model where infrastructure is shared among several organizations with common concerns (e.g., compliance), not a service model that delivers hosted email without server management. Option D is wrong because Infrastructure as a Service (IaaS) provides virtualized servers, storage, and networking, requiring the customer to install, configure, and manage the email server software (e.g., Exchange Server) themselves, which contradicts the 'without managing mail servers' requirement.

128
Multi-Selecteasy

Which two statements correctly describe SaaS in a cloud computing model? (Choose 2.)

Select 2 answers
A.Users access a complete application provided by the cloud service provider.
B.The provider manages the underlying infrastructure and application platform.
C.Customers manage the operating system patching.
D.Customers deploy their own runtime environment.
AnswersA, B

That is the defining characteristic of SaaS.

Why this answer

Option A is correct because in the SaaS model, users access a complete application—such as Microsoft 365—that is hosted and managed entirely by the cloud service provider. The provider handles all aspects of the application, including availability, performance, and security, while the user simply consumes the software via a web browser or client. This aligns with the NIST definition of SaaS, where the consumer does not manage or control the underlying cloud infrastructure or even individual application capabilities.

Exam trap

The trap here is that candidates confuse SaaS with PaaS or IaaS, mistakenly thinking customers are responsible for OS patching (Option C) or deploying their own runtime (Option D), when in fact SaaS abstracts all underlying layers away from the consumer.

129
MCQeasy

A cloud provider allows customers to provision virtual machines, storage, and other resources through a web portal without requiring human interaction with the provider's staff. Which cloud computing characteristic does this best illustrate?

A.Rapid elasticity
B.Measured service
C.Resource pooling
D.On-demand self-service
AnswerD

This is the definition of on-demand self-service: consumers can unilaterally provision computing capabilities without requiring human interaction with the provider.

Why this answer

The scenario describes a user provisioning resources through a web portal without any human interaction from the provider. This directly matches the NIST SP 800-145 definition of on-demand self-service, where a consumer can unilaterally provision computing capabilities as needed automatically without requiring human interaction with each service provider.

Exam trap

The trap here is that candidates confuse the 'self-service' aspect of provisioning with 'rapid elasticity' because both involve speed, but the question specifically highlights the lack of human interaction, which is the defining feature of on-demand self-service, not the scaling behavior.

How to eliminate wrong answers

Option A is wrong because rapid elasticity refers to the ability to quickly scale resources up or down, often automatically, not the method of provisioning without human contact. Option B is wrong because measured service involves monitoring, controlling, and reporting resource usage for billing and optimization, not the self-provisioning capability. Option C is wrong because resource pooling describes the provider's multi-tenant model where physical and virtual resources are dynamically assigned to serve multiple consumers, not the consumer's ability to provision without staff interaction.

130
MCQmedium

A company needs to ensure that their cloud data and applications remain available even if an entire Azure region experiences an outage. They also want to minimize latency by hosting resources in multiple geographic locations. Which cloud concept addresses these requirements?

A.Scalability
B.Geo-redundancy
C.Measured service
D.Resource pooling
AnswerB

Geo-redundancy replicates data across multiple geographic regions, providing disaster recovery and enabling users to access resources from a region closer to them for lower latency.

Why this answer

Geo-redundancy (Option B) is correct because it specifically addresses the requirement for data and application availability during an entire Azure region outage by replicating resources across multiple geographically separated regions, such as Azure paired regions (e.g., East US and West US). This also minimizes latency by allowing traffic to be routed to the nearest available region, leveraging Azure Traffic Manager or Azure Front Door for global load balancing.

Exam trap

The trap here is that candidates often confuse geo-redundancy with high availability within a single region (e.g., Availability Zones) or mistakenly think scalability or resource pooling can provide region-level disaster recovery, but only geo-redundancy ensures data and app availability across entire regions.

How to eliminate wrong answers

Option A is wrong because scalability refers to the ability to increase or decrease resources (e.g., compute or storage) to handle demand, not to maintain availability during a region-wide outage or to reduce latency across geographic locations. Option C is wrong because measured service is a cloud characteristic where usage is metered and billed (e.g., pay-as-you-go), which does not address disaster recovery or geographic latency. Option D is wrong because resource pooling describes the multi-tenant model where provider resources are shared among customers (e.g., Azure's hypervisor isolation), not the replication of data across regions for high availability.

131
MCQeasy

Your organization uses Microsoft 365 and wants to provide employees with access to corporate resources from their personal devices without managing the entire device. Which cloud service model is being used?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Desktop as a Service (DaaS)
D.Software as a Service (SaaS)
AnswerD

Microsoft 365 is a SaaS offering.

Why this answer

Option A is correct because SaaS delivers software over the internet, accessed via subscription. Option B is wrong because PaaS provides a platform for application development. Option C is wrong because IaaS provides virtualized computing resources.

Option D is wrong because DaaS delivers virtual desktops.

132
Multi-Selecteasy

A company uses a cloud service where they pay only for the compute hours their virtual machines run. They can increase or decrease the number of VMs instantly based on demand. Which two cloud computing characteristics are demonstrated? (Choose two.)

Select 2 answers
A.On-demand self-service
B.Rapid elasticity
C.Measured service
D.Resource pooling
AnswersB, C

The ability to quickly increase or decrease the number of VMs based on demand is a direct example of rapid elasticity.

Why this answer

B is correct because rapid elasticity allows the company to instantly increase or decrease the number of virtual machines based on demand, scaling resources up or down automatically. C is correct because measured service ensures that the company pays only for the compute hours their VMs run, with usage metered and billed accordingly.

Exam trap

The trap here is that candidates often confuse 'on-demand self-service' with the ability to instantly scale resources, but on-demand self-service specifically refers to the user's ability to provision resources without provider intervention, not the elasticity of scaling.

133
MCQeasy

An administrator is reviewing a request from users who need to avoid buying servers upfront and pay monthly based on usage. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Data Loss Prevention (DLP)
C.Operational expenditure (OpEx) model
D.Microsoft Planner
AnswerC

Cloud services commonly shift spending from upfront capital purchases to ongoing operational spending based on consumption.

Why this answer

The requirement to avoid upfront server purchases and pay monthly based on usage directly aligns with the operational expenditure (OpEx) model, a key cloud computing benefit. In cloud services, OpEx shifts costs from capital expenditure (CapEx) to a pay-as-you-go or subscription-based model, eliminating the need for large upfront hardware investments. This is a fundamental concept in Microsoft Azure and other cloud platforms, where resources like virtual machines are billed monthly based on actual consumption.

Exam trap

The trap here is that candidates often confuse OpEx with other cloud benefits like scalability or elasticity, but the question specifically tests the financial distinction between paying upfront (CapEx) versus paying monthly based on usage (OpEx).

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data based on sensitivity (e.g., confidential, public), not a financial or deployment model. Option B is wrong because Data Loss Prevention (DLP) is a security policy mechanism that detects and prevents unauthorized sharing of sensitive data, unrelated to cost models or server procurement. Option D is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365, designed for organizing work, not for financial planning or infrastructure purchasing.

134
MCQmedium

A development team wants to build a custom web application. They choose a cloud service that provides the runtime environment, operating system, and middleware, but the team is responsible for writing and deploying their own code. The provider automatically applies patches to the underlying infrastructure. Which cloud service model best describes this approach?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Function as a Service (FaaS)
AnswerB

Correct. PaaS provides the platform infrastructure (runtime, OS, middleware) and manages it, allowing the team to focus on code deployment.

Why this answer

Platform as a Service (PaaS) provides the runtime environment, operating system, and middleware, allowing developers to focus on writing and deploying their own code while the cloud provider manages the underlying infrastructure, including automatic patching. This model abstracts the hardware and OS layer, giving the team full control over application code but not the platform stack.

Exam trap

The trap here is that candidates confuse IaaS with PaaS because both involve deploying custom code, but IaaS requires the team to manage the OS and middleware patching, whereas PaaS automates that responsibility.

How to eliminate wrong answers

Option A (IaaS) is wrong because it provides virtualized computing resources (e.g., VMs, storage, networking) where the team is responsible for managing the operating system, middleware, and runtime, including patching, which contradicts the automatic patching described. Option C (SaaS) is wrong because it delivers fully functional software applications over the internet, where the provider manages everything, and the team would not write or deploy their own code. Option D (FaaS) is wrong because it is a serverless compute model where code runs in response to events, and the provider manages the runtime environment, but it does not include middleware or a full runtime environment like a web server; it is a subset of PaaS focused on individual functions.

135
Multi-Selectmedium

An e-commerce company hosts its website on a public cloud IaaS platform. The site experiences varying traffic throughout the year. The cloud provider automatically adds more virtual servers during peak traffic and removes them when demand drops. The company only pays for the resources used during each period. Which two cloud characteristics are demonstrated? (Choose two.)

Select 2 answers
A.Rapid elasticity
B.Measured service
C.On-demand self-service
D.Resource pooling
AnswersA, B

Correct. The automatic addition and removal of VMs based on traffic demonstrates rapid elasticity.

Why this answer

Rapid elasticity is demonstrated because the cloud provider automatically scales virtual servers up or down in response to varying traffic, which is a key characteristic of cloud computing where resources can be provisioned and released elastically to match demand. Measured service is demonstrated because the company only pays for the resources used during each period, meaning the provider meters resource usage (e.g., CPU hours, memory, bandwidth) and bills accordingly, which is a core attribute of cloud services.

Exam trap

The trap here is that candidates often confuse 'on-demand self-service' with automatic scaling, but on-demand self-service is about manual provisioning without provider interaction, not about the system's ability to scale automatically based on load.

136
MCQhard

A company runs a legacy application that requires a fixed amount of dedicated hardware resources for compliance reasons. However, they want to benefit from cloud-based backup and disaster recovery to reduce on-premises hardware costs. Which cloud deployment model best aligns with this requirement?

A.Public cloud
B.Private cloud
C.Hybrid cloud
D.Community cloud
AnswerC

Hybrid cloud allows the legacy app to run in a private environment with dedicated resources while using public cloud for backup and DR, reducing on-premises cost.

Why this answer

Hybrid cloud is correct because it allows the company to keep the legacy application on dedicated on-premises hardware for compliance, while leveraging cloud-based backup and disaster recovery services (e.g., Azure Backup and Azure Site Recovery) to reduce on-premises hardware costs. This model combines private cloud (or on-premises infrastructure) with public cloud resources, enabling data replication and failover to the cloud without migrating the application itself.

Exam trap

The trap here is that candidates often confuse 'hybrid cloud' with 'private cloud' because both involve on-premises resources, but the key differentiator is the use of public cloud services for backup/DR to reduce hardware costs, which only hybrid cloud enables.

How to eliminate wrong answers

Option A is wrong because public cloud would require running the legacy application entirely on shared cloud infrastructure, which cannot guarantee the fixed amount of dedicated hardware resources needed for compliance. Option B is wrong because private cloud, while providing dedicated resources, does not inherently reduce on-premises hardware costs as it still requires maintaining all hardware on-site or in a dedicated data center. Option D is wrong because community cloud is designed for organizations with shared compliance concerns (e.g., government or healthcare), but it does not specifically address the need for dedicated hardware for a single company's legacy application while also reducing on-premises costs via cloud backup.

137
MCQmedium

During requirements gathering, an IT manager says the organization must keep services available during a hardware failure. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Data Loss Prevention (DLP)
C.High availability
D.Sensitivity labels
AnswerC

High availability focuses on keeping services accessible despite component failure.

Why this answer

High availability (C) is the correct cloud concept because it directly addresses the requirement to keep services operational during hardware failure. In Microsoft 365, high availability is achieved through redundant infrastructure, such as multiple server instances across different Azure availability zones, and automatic failover mechanisms that ensure service continuity without manual intervention.

Exam trap

The trap here is that candidates may confuse high availability with disaster recovery, but the question specifically asks about keeping services available during a hardware failure, which is the definition of high availability, not the broader recovery from a major outage.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management application within Microsoft 365, not a cloud concept or benefit related to service availability during hardware failure. Option B is wrong because Data Loss Prevention (DLP) is a security feature that helps prevent sensitive information from being shared or leaked, focusing on data protection rather than infrastructure resilience. Option D is wrong because Sensitivity labels are classification and protection tools for data governance, used to apply encryption and access restrictions, not to maintain service uptime during hardware failures.

138
MCQmedium

Refer to the exhibit. A Microsoft 365 admin configures an update policy for Microsoft 365 Apps for enterprise. The channel is set to 'CurrentChannel'. What is the expected behavior for users?

A.Users receive feature updates monthly.
B.Users receive feature updates twice a year.
C.Users receive feature updates as soon as they are released.
D.Users receive updates only after the deadline.
AnswerC

CurrentChannel provides the latest features immediately.

Why this answer

Option C is correct because CurrentChannel receives new features as soon as they are released. Option A is wrong because Semi-Annual Channel provides twice-yearly updates. Option B is wrong because Monthly Channel is a different channel.

Option D is wrong because the update deadline is a deadline, not immediate.

139
MCQeasy

A company uses a cloud provider that charges them based solely on the exact number of gigabytes of storage used and the number of virtual machine hours consumed. They can increase or decrease usage at any time without any upfront commitment. Which essential characteristic of cloud computing does this billing model demonstrate?

A.Measured service
B.Rapid elasticity
C.Resource pooling
D.On-demand self-service
AnswerA

Measured service means cloud resources are metered and billed based on consumption, like storage and compute hours.

Why this answer

The billing model charges based on exact gigabytes of storage used and virtual machine hours consumed, which directly aligns with the 'measured service' characteristic of cloud computing. Measured service means cloud providers meter and bill customers precisely for the resources they consume, often using a pay-as-you-go model. This allows the company to pay only for what they use without upfront commitments, as described in the scenario.

Exam trap

The trap here is that candidates often confuse 'measured service' with 'on-demand self-service' because both involve user control and flexibility, but measured service specifically focuses on the metering and billing aspect, not the ability to provision resources without human interaction.

How to eliminate wrong answers

Option B (Rapid elasticity) is wrong because rapid elasticity refers to the ability to automatically scale resources up or down quickly in response to demand, not to the billing or metering of those resources. Option C (Resource pooling) is wrong because resource pooling describes how the provider's computing resources are pooled to serve multiple customers using a multi-tenant model, with physical and virtual resources dynamically assigned and reassigned according to consumer demand; it does not directly relate to billing granularity. Option D (On-demand self-service) is wrong because on-demand self-service allows a consumer to provision computing capabilities automatically without requiring human interaction with each service provider; while the scenario mentions the ability to increase or decrease usage at any time, the key billing aspect of 'pay per exact usage' is specifically measured service, not the provisioning mechanism.

140
MCQmedium

During a Microsoft 365 planning workshop, explain why Microsoft 365 is cloud-based despite local Office apps. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Cloud-hosted service backend
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerB

The local Office apps connect to cloud services such as Exchange Online, OneDrive, SharePoint, Teams, and identity services.

Why this answer

Microsoft 365 is considered cloud-based because its core services—such as Exchange Online, SharePoint Online, and the Microsoft 365 admin portal—are hosted and managed in Microsoft's cloud datacenters. Even though local Office apps (e.g., Word, Excel) run on the client device, they rely on a cloud-hosted service backend for licensing validation, data synchronization, and feature updates. This backend enables centralized management, automatic updates, and seamless integration with cloud services like OneDrive and Teams, which is the defining characteristic of a cloud-based platform.

Exam trap

The trap here is that candidates mistakenly think local Office apps mean the solution is not cloud-based, but Microsoft 365 is defined by its cloud-hosted backend that manages licensing, data, and updates, not by where the application code executes.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a specific cloud-based task management application within Microsoft 365, not a general cloud concept or benefit that explains why the platform is cloud-based despite local apps. Option C is wrong because Data Loss Prevention (DLP) is a security feature that helps prevent sensitive data from being shared inappropriately, but it does not address the foundational cloud architecture or the reason local apps still qualify as cloud-based. Option D is wrong because sensitivity labels are classification and protection tools for data, not a cloud concept that describes the backend infrastructure enabling local apps to function as part of a cloud service.

141
Multi-Selecteasy

Which TWO cloud deployment models involve using public cloud services?

Select 2 answers
A.Public cloud
B.Private cloud
C.Community cloud
D.Hybrid cloud
E.Multi-cloud
AnswersA, D

Uses public cloud services exclusively.

Why this answer

Options A and C are correct. Public cloud uses only public cloud. Hybrid cloud uses a mix of public and private.

Option B is wrong because private cloud is dedicated. Option D is wrong because community cloud may be public or private. Option E is wrong because multi-cloud uses multiple public clouds.

142
MCQeasy

A startup wants to focus only on developing and deploying its application code without managing underlying servers or operating systems. Which cloud service model best fits this need?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.On-premises deployment
AnswerB

PaaS provides a complete platform including OS, runtime, and tools, so the startup can deploy and manage applications without server-level maintenance.

Why this answer

Platform as a Service (PaaS) is the correct choice because it abstracts the underlying infrastructure, including servers, operating systems, and runtime environments, allowing the startup to focus solely on developing and deploying application code. With PaaS, the cloud provider manages the OS patching, hardware scaling, and middleware, while the customer only manages the application and data. This directly matches the requirement of not managing servers or operating systems.

Exam trap

The trap here is that candidates often confuse PaaS with IaaS, mistakenly thinking that IaaS also abstracts the OS, but IaaS only abstracts the hardware while leaving OS management to the customer.

How to eliminate wrong answers

Option A is wrong because Infrastructure as a Service (IaaS) provides virtualized servers, storage, and networking, but the customer is still responsible for managing the operating system, middleware, and runtime—contradicting the requirement to avoid managing servers or OS. Option C is wrong because Software as a Service (SaaS) delivers fully managed applications (e.g., Office 365, Salesforce) where the customer does not develop or deploy code, only consumes the software—this does not fit the need to develop and deploy custom application code. Option D is wrong because on-premises deployment requires the startup to own and manage all hardware, servers, and operating systems, which is the opposite of the stated goal of not managing underlying infrastructure.

143
MCQmedium

An e-commerce application runs in the cloud and automatically adjusts the number of virtual machines based on real-time traffic. When traffic spikes, more VMs are added; when traffic drops, VMs are removed. Which cloud computing characteristic does this behavior exemplify?

A.Rapid elasticity
B.Measured service
C.Resource pooling
D.On-demand self-service
AnswerA

Elasticity allows resources to be automatically scaled out (added) and scaled in (removed) to match workload changes.

Why this answer

Rapid elasticity is the cloud characteristic that enables resources to scale out (add VMs) and scale in (remove VMs) automatically in response to real-time demand. In this e-commerce scenario, the application adjusts VM count based on traffic spikes and drops, which directly matches the definition of rapid elasticity as defined by NIST SP 800-145.

Exam trap

The trap here is that candidates confuse 'on-demand self-service' (manual provisioning by the user) with 'rapid elasticity' (automatic scaling), because both involve responding to demand, but only elasticity handles real-time, automated adjustments without user intervention.

How to eliminate wrong answers

Option B (Measured service) is wrong because measured service refers to the metering and billing of cloud resource usage (e.g., pay-per-hour or per-GB), not the automatic scaling of resources. Option C (Resource pooling) is wrong because resource pooling describes the multi-tenant model where physical and virtual resources are dynamically assigned to multiple customers, not the ability to scale out/in based on demand. Option D (On-demand self-service) is wrong because on-demand self-service allows a user to provision resources without human interaction, but it does not inherently include automatic scaling based on real-time traffic.

144
MCQeasy

A service owner is comparing Microsoft 365 capabilities and needs to meter compute and storage usage for consumption-based billing. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Measured service
AnswerD

Measured service tracks usage so customers can be charged according to consumption.

Why this answer

Measured service is a core cloud computing concept where resource usage (such as compute and storage) is metered, tracked, and billed based on actual consumption. This directly matches the service owner's requirement for consumption-based billing, as Microsoft 365 uses metering for services like Azure Active Directory and Exchange Online to enable pay-as-you-go models.

Exam trap

The trap here is that candidates confuse operational features (like DLP or sensitivity labels) with cloud service model characteristics, mistakenly thinking data protection tools are related to billing rather than recognizing measured service as a fundamental cloud attribute.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data based on sensitivity, not to meter compute or storage usage. Option B is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365, not a billing or metering mechanism. Option C is wrong because Data Loss Prevention (DLP) is a security policy feature that prevents unauthorized sharing of sensitive data, not a consumption-based billing capability.

145
MCQeasy

A tenant administrator is advising a department that wants to stop maintaining local file servers by using managed cloud storage. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Reduced infrastructure maintenance
C.Microsoft Planner
D.Data Loss Prevention (DLP)
AnswerB

Managed cloud storage reduces the need to operate local file server infrastructure.

Why this answer

Option B is correct because moving from on-premises file servers to managed cloud storage (e.g., Microsoft OneDrive, SharePoint Online, or Azure Files) eliminates the need for the department to handle hardware procurement, patching, backups, and physical maintenance. This directly aligns with the cloud benefit of reduced infrastructure maintenance, a core concept in the MS-900 exam's 'Describe cloud concepts' domain.

Exam trap

The trap here is that candidates confuse security or compliance features (like sensitivity labels or DLP) with cloud benefits, when the question specifically asks for the cloud concept or benefit that matches reducing local server maintenance.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data based on sensitivity, not a cloud concept or benefit for reducing infrastructure maintenance. Option C is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365, unrelated to replacing local file servers or reducing maintenance overhead. Option D is wrong because Data Loss Prevention (DLP) is a security policy feature that helps prevent accidental sharing of sensitive data, not a cloud benefit that addresses the requirement of stopping local file server maintenance.

146
MCQhard

Refer to the exhibit. A tenant administrator runs this PowerShell command in Exchange Online. Which behavior will result?

A.The mailbox will have no retention policy applied
B.The retention policy will be applied but processing is suspended
C.The retention policy will be deleted from the mailbox
D.The mailbox will be placed on litigation hold
AnswerB

RetentionHoldEnabled suspends the policy processing, so items are not deleted or archived according to the policy.

Why this answer

Option D is correct. The command sets a retention policy and enables retention hold, which suspends the processing of the retention policy for the mailbox. This means retention actions like deletion are suspended.

Option A is incorrect because the retention policy is applied immediately. Option B is incorrect because the policy is applied, but hold is enabled. Option C is incorrect because the retention hold suspends policy processing, not deletes it.

147
MCQeasy

Refer to the exhibit. An administrator is configuring a new Azure subscription with this ARM template snippet for Microsoft Defender for Cloud. What will be the immediate result?

A.All virtual machines will be automatically onboarded to Microsoft Defender for Endpoint
B.The subscription will be monitored for security issues and receive recommendations
C.The subscription will be protected by the highest security tier
D.No changes will occur until a security policy is manually created
AnswerB

Enabling Defender for Cloud provides continuous security assessment and actionable recommendations.

Why this answer

Option C is correct. Enabling Microsoft Defender for Cloud on a subscription activates the basic (free) tier, which provides security assessments and recommendations. Option A is incorrect because there are multiple pricing tiers.

Option B is incorrect because the free tier does not include the full suite of advanced protections. Option D is incorrect because manual configuration is not required for basic protection.

148
MCQhard

Your company is experiencing high costs for maintaining an on-premises email server and wants to reduce IT management overhead. Which Microsoft 365 service provides enterprise-grade email with minimal infrastructure management?

A.Microsoft Entra ID
B.SharePoint Online
C.Microsoft Intune
D.Exchange Online
AnswerD

Exchange Online is the cloud-hosted email service in Microsoft 365.

Why this answer

Option D is correct because Exchange Online is the cloud-based email service. Option A is wrong because Microsoft Entra ID is identity management. Option B is wrong because SharePoint Online is for collaboration and document management.

Option C is wrong because Microsoft Intune is for device management.

149
MCQeasy

A company uses a cloud service where administrators can add or remove virtual machine instances through a web portal without contacting the provider. The provider bills only for the exact resources consumed. Which cloud computing characteristic does this scenario best demonstrate?

A.Rapid elasticity
B.On-demand self-service
C.Measured service
D.Resource pooling
AnswerB

The ability to provision and de-provision VMs via a web portal without interacting with the provider exemplifies on-demand self-service. Combined with consumption-based billing, this is the primary characteristic demonstrated.

Why this answer

On-demand self-service allows users to provision compute capabilities without requiring human interaction with the service provider. Measured service refers to metering resource usage; rapid elasticity is about scaling; resource pooling is about multi-tenancy. The combination of self-provisioning and usage-based billing points primarily to on-demand self-service.

150
MCQmedium

During a Microsoft 365 planning workshop, understand which security tasks Microsoft handles and which remain with the customer. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Data Loss Prevention (DLP)
C.Sensitivity labels
D.Shared responsibility model
AnswerD

The shared responsibility model explains provider and customer responsibilities in cloud services.

Why this answer

The shared responsibility model defines which security tasks are managed by Microsoft (e.g., physical security, hypervisor patching) and which remain with the customer (e.g., user access, data classification). This directly matches the requirement to understand task ownership during a planning workshop. Options like Microsoft Planner, DLP, and sensitivity labels are specific features, not the overarching cloud concept that clarifies responsibility boundaries.

Exam trap

The trap here is that candidates confuse specific security features (like DLP or sensitivity labels) with the overarching shared responsibility model, which is the foundational cloud concept that defines who owns each security task.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a project management tool for task assignment and scheduling, not a security concept or model for defining responsibility boundaries. Option B is wrong because Data Loss Prevention (DLP) is a specific security policy feature that helps prevent data leaks, but it does not explain which security tasks Microsoft handles versus the customer. Option C is wrong because sensitivity labels are a classification and protection mechanism for data, not a model that delineates shared security responsibilities between provider and tenant.

← PreviousPage 2 of 3 · 162 questions totalNext →

Ready to test yourself?

Try a timed practice session using only Describe cloud concepts questions.