AZ-104T00 - Microsoft Azure Administrator

Agenda
1 - Use Azure Resource Manager

Review Azure Resource Manager benefits
Review Azure resource terminology
Create resource groups
Create Azure Resource Manager locks
Reorganize Azure resources
Remove resources and resource groups
Determine resource limits

2 - Introduction to Azure Cloud Shell

What is Azure Cloud Shell?
How does Azure Cloud Shell work?
When should you use Azure Cloud Shell?

3 - Introduction to Bash

What is Bash?
Bash fundamentals
Bash commands and operators

4 - Introduction to PowerShell

What is PowerShell?
Locate commands

5 - Configure resources with Azure Resource Manager templates

Review Azure Resource Manager template advantages
Explore the Azure Resource Manager template schema
Explore the Azure Resource Manager template parameters
Consider Bicep templates
Review QuickStart templates

6 - Understand Microsoft Entra ID

Examine Microsoft Entra ID
Compare Microsoft Entra ID and Active Directory Domain Services
Examine Microsoft Entra ID as a directory service for cloud apps
Compare Microsoft Entra ID P1 and P2 plans
Examine Microsoft Entra Domain Services

7 - Configure user and group accounts

Create user accounts
Manage user accounts
Create bulk user accounts
Create group accounts
Create administrative units

8 - Configure subscriptions

Identify Azure regions
Implement Azure subscriptions
Obtain an Azure subscription
Identify Azure subscription usage
Implement Microsoft Cost Management
Apply resource tagging
Apply cost savings

9 - Configure Azure Policy

Create management groups
Implement Azure policies
Create Azure policies
Create policy definitions
Create an initiative definition
Scope the initiative definition
Determine compliance

10 - Configure role-based access control

Implement role-based access control
Create a role definition
Create a role assignment
Compare Azure roles to Microsoft Entra roles
Apply role-based access control
Review fundamental Azure RBAC roles

11 - Create Azure users and groups in Microsoft Entra ID

What are user accounts in Microsoft Entra ID?
Manage app and resource access by using Microsoft Entra groups
Collaborate by using guest accounts and Microsoft Entra B2B

12 - Secure your Azure resources with Azure role-based access control (Azure RBAC)

What is Azure RBAC?

13 - Allow users to reset their password with Microsoft Entra self-service password reset

What is self-service password reset in Microsoft Entra ID?
Implement Microsoft Entra self-service password reset

14 - Configure virtual networks

Plan virtual networks
Create subnets
Create virtual networks
Plan IP addressing
Create public IP addressing
Associate public IP addresses
Allocate or assign private IP addresses

15 - Configure network security groups

Implement network security groups
Determine network security group rules
Determine network security group effective rules
Create network security group rules
Implement application security groups

16 - Configure Azure Virtual Network peering

Determine Azure Virtual Network peering uses
Determine gateway transit and connectivity
Create virtual network peering
Extend peering with user-defined routes and service chaining

17 - Configure network routing and endpoints

Review system routes
Identify user-defined routes
Determine service endpoint uses
Determine service endpoint services
Identify private link uses

18 - Configure Azure Load Balancer

Determine Azure Load Balancer uses
Implement a public load balancer
Implement an internal load balancer
Determine load balancer SKUs
Create back-end pools
Create health probes
Create load balancer rules

19 - Configure Azure Application Gateway

Implement Azure Application Gateway
Determine Azure Application Gateway routing
Configure Azure Application Gateway components

20 - Design an IP addressing schema for your Azure deployment

Network IP addressing and integration
Public and private IP addressing in Azure
Plan IP addressing for your networks

21 - Distribute your services across Azure virtual networks and integrate them by using virtual network peering

Connect services by using virtual network peering

22 - Host your domain on Azure DNS

What is Azure DNS?
Configure Azure DNS to host your domain
Dynamically resolve resource name by using alias record

23 - Manage and control traffic flow in your Azure deployment with routes

Identify routing capabilities of an Azure virtual network
What is an NVA?

24 - Improve application scalability and resiliency by using Azure Load Balancer

Azure Load Balancer features and capabilities
Configure a public load balancer
Internal load balancer

25 - Configure storage accounts

Implement Azure Storage
Explore Azure Storage services
Determine storage account types
Determine replication strategies
Access storage
Secure storage endpoints

26 - Configure Azure Blob Storage

Implement Azure Blob Storage
Create blob containers
Assign blob access tiers
Add blob lifecycle management rules
Determine blob object replication
Upload blobs
Determine Blob Storage pricing

27 - Configure Azure Storage security

Review Azure Storage security strategies
Create shared access signatures
Identify URI and SAS parameters
Determine Azure Storage encryption
Create customer-managed keys
Apply Azure Storage security best practices

28 - Configure Azure Files and Azure File Sync

Compare storage for file shares and blob data
Manage Azure file shares
Create file share snapshots
Implement soft delete for Azure Files
Use Azure Storage Explorer
Deploy Azure File Sync

29 - Create an Azure Storage account

Decide how many storage accounts you need
Choose your account settings
Choose an account creation tool

30 - Control access to Azure Storage with shared access signatures

Authorization options for Azure Storage
Use shared access signatures to delegate access to Azure Storage
Use stored access policies to delegate access to Azure Storage

31 - Upload, download, and manage data with Azure Storage Explorer

Connect Azure Storage Explorer to a storage account
Connect Azure Storage Explorer to Azure Data Lake Storage

32 - Configure virtual machines

Review cloud services responsibilities
Plan virtual machines
Determine virtual machine sizing
Determine virtual machine storage
Create virtual machines in the Azure portal
Connect to virtual machines

33 - Configure virtual machine availability

Plan for maintenance and downtime
Create availability sets
Review update domains and fault domains
Review availability zones
Compare vertical and horizontal scaling
Implement Azure Virtual Machine Scale Sets
Create Virtual Machine Scale Sets
Implement autoscale
Configure autoscale

34 - Configure Azure App Service plans

Implement Azure App Service plans
Determine Azure App Service plan pricing
Scale up and scale out Azure App Service
Configure Azure App Service autoscale

35 - Configure Azure App Service

Implement Azure App Service
Create an app with App Service
Explore continuous integration and deployment
Create deployment slots
Add deployment slots
Secure your App Service app
Create custom domain names
Back up and restore your App Service app
Use Azure Application Insights

36 - Configure Azure Container Instances

Compare containers to virtual machines
Review Azure Container Instances
Implement container groups
Review Azure Container Apps

37 - Manage virtual machines with the Azure CLI

What is the Azure CLI?

38 - Create a Windows virtual machine in Azure

Create a Windows virtual machine in Azure
Use RDP to connect to Windows Azure virtual machines
Configure Azure virtual machine network settings

39 - Host a web application with Azure App Service

Create a web app in the Azure portal
Prepare the web application code
Deploy code to App Service

40 - Introduction to Azure Backup

What is Azure Backup?
How Azure Backup works
When to use Azure Backup

41 - Configure virtual machine backups

Explore options to protect virtual machine data
Create virtual machine snapshots in Azure Backup
Set up Azure Recovery Services vault backup options
Back up your virtual machines
Restore your virtual machines
Implement soft delete for your virtual machines
Implement Azure Site Recovery

42 - Configure Azure Monitor

Describe Azure Monitor key capabilities
Describe Azure Monitor components
Define metrics and logs
Identify monitoring data and tiers
Describe activity log events
Query the activity log

43 - Configure Log Analytics

Determine Log Analytics uses
Create a Log Analytics workspace
Create Kusto (KQL) queries
Structure Log Analytics queries

44 - Configure Network Watcher

Describe Azure Network Watcher features
Review IP flow verify diagnostics
Review next hop diagnostics
Visualize the network topology

45 - Improve incident response with Azure Monitor alerts

Explore the different alert types that Azure Monitor supports
Use metric alerts for alerts about performance issues in your Azure environment
Use log alerts to alert on events in your application
Use activity log alerts to alert on events within your Azure infrastructure
Use action groups and alert processing rules to send notifications when an alert is fired

46 - Analyze your Azure infrastructure by using Azure Monitor logs

Features of Azure Monitor logs
Create basic Azure Monitor log queries to extract information from log data

47 - Monitor your Azure virtual machines with Azure Monitor

Monitoring for Azure VMs
Monitor VM host data
Use Metrics Explorer to view detailed host metrics
Collect client performance counters by using VM insights
Collect VM client event logs