This article is still in progress but feel free to use the resources or contact me to give feedback. As i will learn for the exam i will update this article.


My Goal is to get MCSD certified. I was inspirated by, i used his guides to pass 70-480 and 70-486.



So what’s in the Exam?

To first get an idea what’s in the exam view the exam page:

  • Create and Manage Azure Resource Manager Virtual Machines (20% – 25%)
  • Design and implement a Storage and Data Strategy (25% – 30%)
  • Manage Identity, Application, and Network Services (10% -15%)
  • Design and Implement Azure Compute, Web and Mobile Services (35%-40%)

For the exam i used the following resources to study:

Create and Manage Azure Resource Manager Virtual Machines (20%-25%)

  • Deploy workloads on Azure Resource Manager (ARM) virtual machines (VMs)
    • Identify workloads that can and cannot be deployed; run workloads including Microsoft and Linux; create and provision VMs, including custom VM images; deploy workloads using Terraform
  • Perform configuration management
    • Automate configuration management by using PowerShell Desired State Configuration (DSC) or VM Agent (custom script extensions); enable remote debugging; implement VM template variables to configure VMs
  • Scale ARM VMs
    • Scale up and scale down VM sizes; deploy ARM VM Scale Sets (VMSS); configure ARM VMSS auto-scale
    • When
  • Design and implement ARM VM storage
    • Configure disk caching; plan for storage capacity; configure shared storage; configure geo-replication; implement ARM VMs with Standard and Premium Storage; implement Azure Disk Encryption for Windows and Linux ARM VMs; implement Azure Disk Storage; implement StorSimple
  • Monitor ARM VMs
    • Configure ARM VM monitoring; configure alerts; configure diagnostic and monitoring storage location; enable Application Insights at runtime; monitor VM workloads by using Azure Application Insights; monitor VMs using Azure Log Analytics and OMS; monitor Linux and Windows VMs by using the Azure Diagnostics Extension; monitor VMs by using Azure Monitor
  • Manage ARM VM availability
    • Configure multiple ARM VMs in an availability set for redundancy; configure each application tier into separate availability sets; combine the Load Balancer with availability sets; perform automated VM maintenance
  • Design and Implement DevTest Labs

Terminology used

User Defined Routes (UDR)

Azure Resource Manager (ARM)

(PowerShell) Desired State Configuration (DSC)

VM Scale Sets (VMSS)

Application Delivery Controller (ADC)

Application Gateway VS Load Balancer

Application Gateway operates on level 7, it only supports ports for http(s) and Websockets. The load balancer also supports other ports.


Application Gateway offers

  • Firewall
  • Round Robin request handling
  • Health monitoring

Design and implement a Storage and Data Strategy (25% – 30%)

  • Implement Azure Storage blobs and Azure Files
    • Read data; change data; set metadata on a storage container; store data using block and page blobs; stream data using blobs; access blobs securely; implement async blob copy; configure Content Delivery Network (CDN); design blob hierarchies; configure custom domains; scale blob storage and implement blob tiering; create connections to files from on-premises or cloud-based Windows or Linux machines; shard large datasets; implement blob leasing; implement Storage Events; implement Azure File Sync
  • Implement Azure storage tables, queues, and Azure Cosmos DB Table API
    • Implement CRUD with and without transactions; design and manage partitions; query using OData; scale tables and partitions; add and process queue messages; retrieve a batch of messages; scale queues; choose between Azure Storage Tables and Azure Cosmos DB Table API
  • Manage access and monitor storage
    • Generate shared access signatures, including client renewal and data validation; create stored access policies; regenerate storage account keys; configure and use Cross-Origin Resource Sharing (CORS); set retention policies and logging levels; analyze logs; monitor Cosmos DB storage
  • Implement Azure SQL Databases
    • Choose the appropriate database tier and performance level; configure and perform point in time recovery; enable geo-replication; import and export data and schema; scale Azure SQL databases; manage elastic pools, including DTUs and eDTUs; manage limits and resource governor; implement Azure SQL Data Sync; implement graph database functionality in Azure SQL; design multi-tenant applications; secure and encrypt data; manage data integrity; enable metrics and diagnostics logs for monitoring; use adaptive query processing to improve query performance; implement sharding and elastic tools; implement SQL Server Stretch Database
  • Implement Azure Cosmos DB
    • Choose a Cosmos DB API surface; create Cosmo DB API databases and collections; query documents; run Cosmos DB queries; create Graph API databases; execute GraphDB queries; implement MongoDB database; manage scaling of Cosmos DB, including managing partitioning, consistency, and RU/m; manage multiple regions; implement stored procedures; implement JavaScript within Cosmos DB; access Cosmos DB from REST interface; manage Cosmos DB security
  • Implement Redis caching
  • Implement Azure Search
    • Create a service index; add data; search an index; handle search results

Binary Large (BLOB)

Content Delivery Network (CDN)


Understanding Block Blobs, Append Blobs, and Page Blobs

Fun fact about Microsofts page about blobs, counts 108 times the word “blob”.

Manage Identity, Application, and Network Services (10% -15%)

  • Integrate an app with Azure Active Directory (AAD)
    • Develop apps that use WS-federation, OAuth, and SAML-P endpoints; query the directory by using Microsoft Graph API, MFA and MFA API
  • Design and implement a messaging strategy
    • Develop and scale messaging solutions using service bus queues, topics, relays, event hubs, Event Grid, and notification hubs; monitor service bus queues, topics, relays, event hubs and notification hubs; determine when to use Event Hubs, Service Bus, IoT Hub, Stream Analytics, and Notification Hubs; implement Azure Event Grid
  • Develop apps that use AAD B2C and AAD B2B
    • Design and implement .NET MVC, Web API, and Windows Desktop apps that leverage social identity provider authentication, including Microsoft account, Facebook, Google+, Amazon, and LinkedIn; leverage Azure AD B2B to design and implement applications that support partner-managed identities, enforce multi-factor authentication
  • Manage secrets using Azure Key Vault
    • Configure Azure Key Vault; manage access, including tenants; implement HSM protected keys; manage service limits; implement logging; implement key rotation; store and retrieve app secrets including connection strings, passwords, and cryptographic keys; implement Azure Managed Service Identity
    • HSL keys only in Premium plan

Installing KeyVault via Nuget package manager

Install-Package Microsoft.Azure.KeyVault -Version 2.3.2
Install-Package Microsoft.Azure.Services.AppAuthentication -Version 1.1.0-preview

Azure Active Directory (AAD)

Business to consumer (B2C)

Business to business (B2B)

Multi-Factor Authentication (MFA)

Managed Service Identity (MSI)


Everything on Graph API

AAD vs AD (on-premise)


Event Hub vs Service Bus


Event Hub vs IoT Hub


Design and Implement Azure Compute, Web and Mobile Services (35%-40%)

Continuous Delivery (CD)

Continuous Integration (CI)









Stream Analytics Jobs



Categories: Microsoft

Leave a Reply

Your email address will not be published.