High Quality AZ-220 Q&A 2020

2020 Microsoft Official New Released AZ-220 ♥♥
https://www.certifytools.com/AZ-220-exam.html


Examcollection offers free demo for AZ-220 exam. "Microsoft Azure IoT Developer", also known as AZ-220 exam, is a Microsoft Certification. This set of posts, Passing the Microsoft AZ-220 exam, will help you answer those questions. The AZ-220 Questions & Answers covers all the knowledge points of the real exam. 100% real Microsoft AZ-220 exams and revised by experts!

Also have AZ-220 free dumps questions for you:

NEW QUESTION 1

What should you do to identify the cause of the connectivity issues?

  • A. Send cloud-to-device messages to the IoT devices.
  • B. Use the heartbeat pattern to send messages from the IoT devices to iothub1.
  • C. Monitor the connection status of the device twin by using an Azure function.
  • D. Enable the collection of the Connections diagnostics logs and set up alerts for the connected devices count metric.

Answer: D

Explanation:
Scenario: You discover connectivity issues between the IoT gateway devices and iothub1, which cause IoT devices to lose connectivity and messages.
To log device connection events and errors, turn on diagnostics for IoT Hub. We recommend turning on these logs as early as possible, because if diagnostic logs aren't enabled, when device disconnects occur, you won't have any information to troubleshoot the problem with.
Step 1:
*1.Sign in to the Azure portal.
*2.Browse to your IoT hub.
*3.Select Diagnostics settings.
*4.Select Turn on diagnostics.
*5. Enable Connections logs to be collected.
*6. For easier analysis, turn on Send to Log Analytics (see pricing).
Step 2:
Set up alerts for device disconnect at scale
To get alerts when devices disconnect, configure alerts on the Connected devices (preview) metric. Reference:
https://docs.microsoft.com/bs-cyrl-ba/azure/iot-hub/iot-hub-troubleshoot-connectivity

NEW QUESTION 2

You have an Azure IoT hub that is being taken from prototype to production.
You plan to connect IoT devices to the IoT hub. The devices have hardware security modules (HSMs). You need to use the most secure authentication method between the devices and the IoT hub. Company
policy prohibits the use of internally generated certificates. Which authentication method should you use?

  • A. an X.509 self-signed certificate
  • B. a certificate thumbprint
  • C. a symmetric key
  • D. An X.509 certificate signed by a root certification authority (CA).

Answer: D

Explanation:
Purchase X.509 certificates from a root certificate authority (CA). This method is recommended for production environments.
The hardware security module, or HSM, is used for secure, hardware-based storage of device secrets, and is the most secure form of secret storage. Both X.509 certificates and SAS tokens can be stored in the HSM
Reference:
https://docs.microsoft.com/en-us/azure/iot-dps/concepts-security

NEW QUESTION 3

You have 10,000 IoT devices that connect to an Azure IoT hub. The devices do not support over-the-air (OTA) updates.
You need to decommission 1,000 devices. The solution must prevent connections and autoenrollment for the decommissioned devices.
Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

  • A. Update the connectionState device twin property on all the devices.
  • B. Blacklist the X.509 root certification authority (CA) certificate for the enrollment group.
  • C. Delete the enrollment entry for the devices.
  • D. Remove the identity certificate from the hardware security module (HSM) of the devices.
  • E. Delete the device identity from the device registry of the IoT hub.

Answer: BC

Explanation:
B: X.509 certificates are typically arranged in a certificate chain of trust. If a certificate at any stage in a chain becomes compromised, trust is broken. The certificate must be blacklisted to prevent Device Provisioning Service from provisioning devices downstream in any chain that contains that certificate.
C: Individual enrollments apply to a single device and can use either X.509 certificates or SAS tokens (in a real or virtual TPM) as the attestation mechanism. (Devices that use SAS tokens as their attestation mechanism can be provisioned only through an individual enrollment.) To blacklist a device that has an individual enrollment, you can either disable or delete its enrollment entry.
To blacklist a device that has an individual enrollment, you can either disable or delete its enrollment entry. Reference:
https://docs.microsoft.com/en-us/azure/iot-dps/how-to-revoke-device-access-portal

NEW QUESTION 4

You plan to deploy an Azure IoT hub. The IoT hub must support the following:
AZ-220 dumps exhibit Three Azure IoT Edge devices 2,500 IoT devices
AZ-220 dumps exhibit Each IoT device will spend a 6 KB message every five seconds.
You need to size the IoT hub to support the devices. The solution must minimize costs. What should you choose?

  • A. one unit of the S1 tier
  • B. one unit of the B2 tier
  • C. one unit of the B1 tier
  • D. one unit of the S3 tier

Answer: D

Explanation:
\\ 2500* 6 KB * 12 = 180,000 KB/minute = 180 MB/Minute.
B3, S3 can handle up to 814 MB/minute per unit. Incorrect Answers:
A, C: B1, S1 can only handle up to 1111 KB/minute per unit B: B2, S2 can only handle up to 16 MB/minute per unit.
Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-scaling

NEW QUESTION 5

You have an Azure IoT solution that includes several Azure IoT hubs.
A new alerting feature was recently added to the IoT devices. The feature uses a new device twin reported property named alertCondition.
You need to send alerts to an Azure Service Bus queue named MessageAlerts. The alerts must include alertCondition and the name of the IoT hub.
Which two actions should you perform? Each Answer presents part of the solution. NOTE: Each correct selection is worth one point.

  • A. Configure File upload for each IoT hu
  • B. Configure the device to send a file to an Azure Storage container that contains the device name and status message.
  • C. Add the following message enrichments: Name = iotHubNameValue = $twin.tag.location Endpoint = MessageAlert
  • D. Create an IoT Hub routing rule that has a data source of Device Twin Change Events and select the endpoint for MessageAlerts.
  • E. Add the following message enrichments: Name = iotHubName Value = $iothubnameEndpoint = MessageAlert
  • F. Create an IoT Hub routing rule that has a data source of Device Telemetry Messages and select the endpoint for MessageAlerts.

Answer: BD

Explanation:
B: Message enrichments is the ability of the IoT Hub to stamp messages with additional information before the messages are sent to the designated endpoint. One reason to use message enrichments is to include data that can be used to simplify downstream processing. For example, enriching device telemetry messages with
a device twin tag can reduce load on customers to make device twin API calls for this information. D: Applying enrichments
The messages can come from any data source supported by IoT Hub message routing, including the following examples:
-->device twin change notifications -- changes in the device twin device telemetry, such as temperature or pressure
device life-cycle events, such as when the device is created or deleted Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-message-enrichments-overview

NEW QUESTION 6

You have an Azure IoT hub.
You need to recommend a solution to scale the IoT hub automatically. What should you include in the recommendation?

  • A. Create an SMS alert in IoT Hub for the Total number of messages used metric.
  • B. Create an Azure function that retrieves the quota metrics of the IoT hub.
  • C. Configure autoscaling in Azure Monitor.
  • D. Emit custom metrics from the IoT device code and create an Azure Automation runbook alert.

Answer: B

Explanation:
Note: IoT Hub is scaled and priced based on an allowed number of messages per day across all devices connected to that IoT Hub. If you exceed the allowed message threshold for your chosen tier and number of units, IoT Hub will begin rejecting new messages. To date, there is no built-in mechanism for automatically scaling an IoT Hub to the next level of capacity if you approach or exceed that threshold.
Reference:
https://docs.microsoft.com/en-us/samples/azure-samples/iot-hub-dotnet-autoscale/iot-hub-dotnet-autoscale/

NEW QUESTION 7

You plan to deploy Azure Time Series Insights.
What should you create on iothub1 before you deploy Time Series Insights?

  • A. a new message route
  • B. a new consumer group
  • C. a new shared access policy
  • D. an IP filter rule

Answer: B

Explanation:
Create a dedicated consumer group in the IoT hub for the Time Series Insights environment to consume from. Each Time Series Insights event source must have its own dedicated consumer group that isn't shared with any other consumer. If multiple readers consume events from the same consumer group, all readers are likely to exhibit failures.
Reference:
https://docs.microsoft.com/en-us/azure/time-series-insights/time-series-insights-how-to-add-an-event-source- iothub

NEW QUESTION 8

You have 20 devices that connect to an Azure IoT hub.
You open Azure Monitor as shown in the exhibit. (Click the Exhibit tab.)
AZ-220 dumps exhibit
You discover that telemetry is not being received from five IoT devices.
You need to identify the names of the devices that are not generating telemetry and visualize the data. What should you do first?

  • A. Add the Number of throttling errors metric and archive the logs to an Azure storage account.
  • B. Configure diagnostics for Routes and stream the logs to Azure Event Hubs.
  • C. Add the Telemetry messages sent metric and archieve the logs to an Azure Storage account.
  • D. Configure diagnostics for Connections and send the logs to Azure Log Analytics.

Answer: D

Explanation:
To log device connection events and errors, turn on diagnostics for IoT Hub. We recommend turning on these logs as early as possible, because if diagnostic logs aren't enabled, when device disconnects occur, you won't have any information to troubleshoot the problem with.
AZ-220 dumps exhibit Sign in to the Azure portal.
AZ-220 dumps exhibit Browse to your IoT hub.
AZ-220 dumps exhibit Select Diagnostics settings.
AZ-220 dumps exhibit Select Turn on diagnostics.
AZ-220 dumps exhibit Enable Connections logs to be collected.
AZ-220 dumps exhibit For easier analysis, turn on Send to Log Analytics
AZ-220 dumps exhibit
Reference:
https://docs.microsoft.com/bs-cyrl-ba/azure/Iot-hub/iot-hub-troubleshoot-connectivity

NEW QUESTION 9

You have an Azure IoT hub.
You plan to attach three types of IoT devices as shown in the following table.
AZ-220 dumps exhibit
You need to select the appropriate communication protocol for each device.
What should you select? To answer, drag the appropriate protocols to the correct devices. Each protocol may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
AZ-220 dumps exhibit

  • A. Mastered
  • B. Not Mastered

Answer: A

Explanation:
Box 1: AMQP
Use AMQP on field and cloud gateways to take advantage of connection multiplexing across devices. Box 2: MQTT
MQTT is used on all devices that do not require to connect multiple devices (each with its own per-device credentials) over the same TLS connection.
Box 3: HTTPS
Use HTTPS for devices that cannot support other protocols.
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-devguide-protocols

NEW QUESTION 10

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have devices that connect to an Azure IoT hub. Each device has a fixed GPS location that includes latitude and longitude.
You discover that a device entry in the identity registry of the IoT hub is missing the GPS location.
You need to configure the GPS location for the device entry. The solution must prevent the changes from being propagated to the physical device.
Solution: You add tags to the device twin. Does the solution meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Instead add the desired properties to the device twin.
Note: Device Twins are used to synchronize state between an IoT solution's cloud service and its devices. Each device's twin exposes a set of desired properties and reported properties. The cloud service populates the
desired properties with values it wishes to send to the device. When a device connects it requests and/or subscribes for its desired properties and acts on them.
Reference:
https://azure.microsoft.com/sv-se/blog/deep-dive-into-azure-iot-hub-notifications-and-device-twin/

NEW QUESTION 11

You have an Azure IoT hub that uses a Device Provisioning Service instance to automate the deployment of Azure IoT Edge devices.
The IoT Edge devices have a Trusted Platform Module (TPM) 2.0 chip.
From the Azure portal, you plan to add an individual enrollment to the Device Provisioning Service that will use the TPM of the IoT Edge devices as the attestation mechanism.
Which detail should you obtain before you can create the enrollment.

  • A. the scope ID and the Device Provisioning Service endpoint
  • B. the primary key of the Device Provisioning Service shared access policy and the global device endpoint
  • C. the X.509 device certificate and the certificate chain
  • D. the endorsement key and the registration ID

Answer: D

Explanation:
The TPM simulator's Registration ID and the Endorsement key, are used when you create an individual enrollment for your device.
Reference:
https://docs.microsoft.com/en-us/azure/iot-edge/how-to-auto-provision-simulated-device-linux

NEW QUESTION 12

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure IoT solution that includes an Azure IoT hub, a Device Provisioning Service instance, and 1,000 connected IoT devices.
All the IoT devices are provisioned automatically by using one enrollment group. You need to temporarily disable the IoT devices from the connecting to the IoT hub. Solution: You delete the enrollment group from the Device Provisioning Service. Does the solution meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Instead, from the Device Provisioning Service, you disable the enrollment group, and you disable device entries in the identity registry of the IoT hub to which the IoT devices are provisioned.
Reference:
https://docs.microsoft.com/bs-latn-ba/azure/iot-dps/how-to-unprovision-devices

NEW QUESTION 13

You have an Azure IoT solution that includes a standard tier Azure IoT hub and an IoT device. The device sends one 100-KB device-to-cloud message every hour.
You need to calculate the total daily message consumption of the device. What is the total daily message consumption of the device?

  • A. 24
  • B. 600
  • C. 2,400
  • D. 4,800

Answer: B

Explanation:
\\100 KB * 24 is around 2,400 bytes.
The 100 KB message is divided into 4 KB blocks, and it is billed for 25 messages. 25 times 24 is 600
Note: The maximum message size for messages sent from a device to the cloud is 256 KB. These messages are metered in 4 KB blocks for the paid tiers so for instance if the device sends a 16 KB message via the paid tiers it will be billed as 4 messages.
Reference:
https://azure.microsoft.com/en-us/pricing/details/iot-hub/

NEW QUESTION 14

You have an Azure IoT hub that uses a Device Provisioning Service instance.
You create a new individual device enrollment that uses symmetric key attestation.
Which detail from the enrollment is required to auto provision the device by using the Device Provisioning Service?

  • A. the registration ID of the enrollment
  • B. the primary key of the enrollment
  • C. the device identity of the IoT hub
  • D. the hostname of the IoT hub

Answer: C

Explanation:
An enrollment is the record of devices or groups of devices that may register through auto-provisioning. The enrollment record contains information about the device or group of devices, including:
the attestation mechanism used by the device
the optional initial desired configuration desired IoT hub the desired device ID
Note: Azure IoT auto-provisioning can be broken into three phases:
*1. Service configuration - a one-time configuration of the Azure IoT Hub and IoT Hub Device Provisioning Service instances, establishing them and creating linkage between them.
*2. Device enrollment - the process of making the Device Provisioning Service instance aware of the devices that will attempt to register in the future. Enrollment is accomplished by configuring device identity information in the provisioning service, as either an "individual enrollment" for a single device, or a "group enrollment" for multiple devices.
*3. Device registration and configuration Reference:
https://docs.microsoft.com/en-us/azure/iot-dps/concepts-service#enrollment

NEW QUESTION 15

You have an Azure IoT solution that includes an Azure IoT hub, 100 Azure IoT Edge devices, and 500 leaf devices.
You need to perform a key rotation across the devices.
Which three types of entities should you update? Each Answer presents part of the solution. NOTE: Each correct selection is worth one point.

  • A. the $edgeHub module identity
  • B. the $edgeAgent module identity
  • C. the leaf module identities
  • D. the IoT Edge device identities
  • E. the iothubowner policy credentials
  • F. the leaf device identities

Answer: ADF

Explanation:
To get authorization to connect to IoT Hub, devices and services must send security tokens signed with either a shared access or symmetric key. These keys are stored with a device identity in the identity registry.
An IoT Hub identity registry can be accessed like a dictionary, by using the deviceId or moduleId as the key. Reference:
https://docs.microsoft.com/bs-latn-ba/azure/iot-dps/how-to-control-access https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-devguide-identity-registry

NEW QUESTION 16

You have an existing Azure IoT hub.
You need to connect physical IoT devices to the IoT hub.
You are connecting the devices through a firewall that allows only port 443 and port 80.
Which three communication protocols can you use? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

  • A. MQTT over WebSocket
  • B. AMQP
  • C. AMQP over WebSocket
  • D. MQTT
  • E. HTTPS

Answer: ACE

Explanation:
MQTT over WebSockets, AMQP over WebSocket, and HTTPS use port 443. Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-devguide-protocols

NEW QUESTION 17
......

P.S. Exambible now are offering 100% pass ensure AZ-220 dumps! All AZ-220 exam questions have been updated with correct answers: https://www.exambible.com/AZ-220-exam/ (0 New Questions)