ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-304 All Questions

View all questions & answers for the AZ-304 exam
Go to Exam

Exam AZ-304 topic 8 question 1 discussion

Actual exam question from Microsoft's AZ-304
Question #: 1
Topic #: 8
[All AZ-304 Questions]

HOTSPOT -
You plan to migrate App1 to Azure.
You need to recommend a storage solution for App1 that meets the security and compliance requirements.
Which type of storage should you recommend, and how should you recommend configuring the storage? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Explanation;

Box 1: BlobStorage -
BlobStorage supports NFSv3, see below.

Box 2: NFSv3 -
Blob storage now supports the Network File System (NFS) 3.0 protocol. This support provides Linux file system compatibility at object storage scale and prices and enables Linux clients to mount a container in Blob storage from an Azure Virtual Machine (VM) or a computer on-premises.
Scenario: Litware identifies the following security and compliance requirements:
✑ On-premises users and services must be able to access the Azure Storage account that will host the data in App1.
Reference:
https://docs.microsoft.com/en-us/azure/storage/blobs/network-file-system-protocol-support
by poplovic at Sept. 27, 2021, 4:53 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tteesstt
Highly Voted 3 years, 7 months ago
V2 and Hierarchical Namespaces.
upvoted 30 times
rdemontis
3 years, 5 months ago
Correct. "The Litware.com tenant contains a custom Azure role-based access control (Azure RBAC) role named Role1 that grants the DataActions read permission to the blobs and files in Azure Storage" So we need Storage V2 to support both Files and Blobs. In addition we need Hierarchical Namespace because VMs that need access to the storage account use POSIX ACL file-level permissions storage. https://docs.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control Besides NFSv3 is for legacy workloads that doedsn't support new and better Hierarchical Namespace technology. https://docs.microsoft.com/en-us/azure/storage/blobs/network-file-system-protocol-support
upvoted 7 times
...
...
syu31svc
Highly Voted 3 years, 7 months ago
https://docs.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control Azure Data Lake Storage Gen2 implements an access control model that supports both Azure role-based access control (Azure RBAC) and POSIX-like access control lists (ACLs). https://docs.microsoft.com/en-us/azure/storage/blobs/immutable-storage-overview#feature-support Data Lake Storage Gen2 and the Network File System (NFS) 3.0 protocol both require a storage account with a hierarchical namespace enabled. Account kind is v2 and Configuration is Hierarchical namespace
upvoted 14 times
...
sapien45
Most Recent 2 years, 11 months ago
The Data Lake Storage Gen2 hierarchical namespace accelerates big data analytics workloads and enables file-level access control lists (ACLs). HADOOP+ACL=hierarchical namespace
upvoted 1 times
...
reachmymind
3 years, 2 months ago
Storage V2 NFS V3 https://azure.microsoft.com/en-us/blog/modernize-largescale-nfs-workloads-and-eliminate-data-silos-with-azure-blob-storage/
upvoted 1 times
...
joehoesofat
3 years, 3 months ago
Ok it’s blob and Hierarchical namespace -blob is immutable for retention - but also blob has a cross ability to talk to adls g2.- and when you choose that option - hierarchical namespace checked by default - this answer will change as soon adfs4.1 starts working - for this solution - it may already be working - no time to test - exam Monday.
upvoted 1 times
joehoesofat
3 years, 3 months ago
Nfs4.1 not adfs lol
upvoted 1 times
...
...
joehoesofat
3 years, 3 months ago
Multiple storage accounts in this case-so skip rbac. -vms one storage, and hadoop 2nd storage account posix support is nfs 4.1 not 3.0-Compare NFS access to Azure Files, Blob Storage, and Azure NetApp Files | Microsoft Docs this requires premium storage - premium- file shares- Create an NFS share - Azure Files | Microsoft Docs… This would mean no heirarchical namespace needed- but im not happy with the answer -premium files -large file shares
upvoted 1 times
joehoesofat
3 years, 3 months ago
links - https://docs.microsoft.com/en-us/azure/storage/common/nfs-comparison https://docs.microsoft.com/en-us/azure/storage/files/storage-files-how-to-create-nfs-shares?tabs=azure-portal https://docs.microsoft.com/en-us/azure/storage/files/files-nfs-protocol
upvoted 1 times
joehoesofat
3 years, 3 months ago
Ok Blob now supports nfs3 and nfs3 is compliant with data lake v2 under protocols- i really hate this answer- https://docs.microsoft.com/en-us/azure/storage/common/nfs-comparison but blob storage and heirarcal namesppace- but... it looks like its very close to - file storage- as the answer as soon as soon as hadoop supports nfs 4.1
upvoted 1 times
...
...
...
Limburg2020
3 years, 3 months ago
- BlobStorage - Hierachical namespace From the On-premises Environment section we know, that App1 uses an external storage solution that provides Apache Hadoop-compatible storage.Azure Blob Storage provides an Hadoop compatible interface that supports two kinds of blobs, block blobs and page blobs. The Hadoop File System (HDFS) supports a traditional hierarchical file organization.The Hadoop File System (HDFS) supports a traditional hierarchical file organization. Cloud storage services are focused on object storage that have a flat namespace and extensive metadata instead of file systems that provide a hierarchical namespace. To support compatibility we have to enable hierarchical namespace when creating the BlobStorage account.
upvoted 2 times
...
[Removed]
3 years, 4 months ago
V2 storage Hierarchical namespace. Blob is service, not account type. Blob storage on available in storage if hierarchical selected.
upvoted 1 times
...
Dpejic
3 years, 4 months ago
Appere on exam 23-dec-2021
upvoted 1 times
...
rafpullo
3 years, 6 months ago
Blob Storage and GPv2 support immutable but blob minimize costs NFS to make storage accessible from on premise data center
upvoted 1 times
...
student22
3 years, 6 months ago
V2 and Hierarchical Namespaces
upvoted 2 times
...
waqas
3 years, 7 months ago
Blob and NSV3.
upvoted 1 times
waqas
3 years, 7 months ago
NFSv3*
upvoted 1 times
yyuryyucicuryyforme
3 years, 4 months ago
It is not NFSv3 because security can only be provided at the network layer, not using Azure AD https://docs.microsoft.com/en-us/azure/storage/blobs/network-file-system-protocol-support#network-security it is a requirement that App1 use VM managed identity to access Azure resources.
upvoted 1 times
...
...
...
jppdks
3 years, 7 months ago
Blob Storage is correct : Once App1 is migrated to Azure, you must ensure that new data can be written to the app, and the modification of new and existing data is prevented for a period of three years. This means immutable storage that is only available in Blob Storage https://docs.microsoft.com/en-us/azure/storage/blobs/immutable-storage-overview
upvoted 4 times
...
leo_az300
3 years, 7 months ago
Azure Data Lake Storage Gen2 is an Apache Hadoop file system that is compatible with Hadoop Distributed File System (HDFS) and works with the Hadoop ecosystem. It implements an access control model that supports both Azure role-based access control (Azure RBAC) and POSIX-like access control lists (ACLs). The answer should be Azure Data Lake Storage Gen2 WHAT! NO SUCH AN OPTION!!! Remember that if you try searching for “Azure Data Lake Storage Gen2” in the Azure portal, you will not find what you’re looking for! ADLS Gen2 accounts are provisioned by configuring the “enable hierarchical namespace” option in the creation process of an Azure Storage Account. I've tested in my lab. Select GEN V2 in Performance seciont in Basic tab, then you will find “enable hierarchical namespace” is enabled by default in Advanced tab.
upvoted 5 times
poplovic
3 years, 7 months ago
Good point to bring up DataLakeStorag. The first question is asking about "the type of storage accounts". The Storage v2 supports DataLakeStorage Gen2. The Other two are not. The answer to the second question will be "Hierarchical namespace". The Other two options are NFS and SMB. They are not recommended (but might work). https://docs.microsoft.com/en-us/azure/hdinsight/hdinsight-hadoop-compare-storage-options https://docs.microsoft.com/en-us/azure/storage/common/storage-account-overview#types-of-storage-accounts
upvoted 5 times
...
...
poplovic
3 years, 7 months ago
NFSv3 is the right choice because App1 is hosted on Server1,2,3 and App1 uses an external storage solution (see Server1,2,3 configuration table) for account type, v2 should be recommended and it supports nfsv3
upvoted 4 times
jjdevine
3 years, 7 months ago
But you can't configure NFSv3 without also enabling hierarchical namespaces?
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago