Overview - XYZ is an online training provider. Current Environment - The company currently has Microsoft SQL databases that are split into different categories or tiers. Some of the databases are used by Internal users, some by external partners and external distributions. Below is the List of applications, tiers and their individual requirements: Below are the current requirements of the company: * For Tier 4 and Tier 5 databases, the...

Questions › Category: DP-200 › Overview – XYZ is an online training provider. Current Environment – The company currently has Microsoft SQL databases that are split into different categories or tiers. Some of the databases are used by Internal users, some by external partners and external distributions. Below is the List of applications, tiers and their individual requirements: Below are the current requirements of the company: * For Tier 4 and Tier 5 databases, the…

0 Vote Up Vote Down

Admin Staff asked 7 months ago

Overview -
XYZ is an online training provider.
Current Environment -
The company currently has Microsoft SQL databases that are split into different categories or tiers. Some of the databases are used by Internal users, some by external partners and external distributions.
Below is the List of applications, tiers and their individual requirements:

Below are the current requirements of the company:
* For Tier 4 and Tier 5 databases, the backup strategy must include the following:
- Transactional log backup every hour
- Differential backup every day
- Full backup every week
* Backup strategies must be in place for all standalone Azure SQL databases using methods available with Azure SQL databases
* Tier 1 database must implement the following data masking logic:
- For Data type XYZ-A `" Mask 4 or less string data type characters
- For Data type XYZ-B `" Expose the first letter and mask the domain
- For Data type XYZ-C `" Mask everything except characters at the beginning and the end
* All certificates and keys are internally managed in on-premise data stores
* For Tier 2 databases, if there are any conflicts between the data transfer from on-premise, preference should be given to on-premise data.
* Monitoring must be setup on every database
* Applications with Tiers 6 through 8 must ensure that unexpected resource storage usage is immediately reported to IT data engineers.
* Azure SQL Data warehouse would be used to gather data from multiple internal and external databases.
* The Azure SQL Data warehouse must be optimized to use data from its cache
* The below metrics must be available when it comes to the cache:
- Metric XYZ-A `" Low cache hit %, high cache usage %
- Metric XYZ-B `" Low cache hit %, low cache usage %
- Metric XYZ-C `" high cache hit %, high cache usage %
* The reporting data for external partners must be stored in Azure storage. The data should be made available during regular business hours in connecting regions.
* The reporting for Tier 9 needs to be moved to Event Hubs.
* The reporting for Tier 10 needs to be moved to Azure Blobs.
The following issues have been identified in the setup:
* The External partners have control over the data formats, types and schemas.
* For External based clients, the queries can't be changed or optimized.
* The database development staff are familiar with T-SQL language.
* Because of the size and amount of data, some applications and reporting features are not performing at SLA levels.
The data for the external applications needs to be encrypted at rest. You decide to implement the following steps:
- Use the Always Encrypted Wizard in SQL Server Management Studio
- Select the column that needs to be encrypted
- Set the encryption type to Randomized
- Configure the master key to be used from the Windows Certificate Store
- Confirm the configuration and deploy the solution
Would these steps fulfill the requirement?

A. Yes

B. No

Suggested Answer: B

As per the documentation, the encryption type needs to set as Deterministic when enabling Always Encrypted:
Column Selection -
Click Next on the Introduction page to open the Column Selection page. On this page, you will select which columns you want to encrypt, the type of encryption, and what column encryption key (CEK) to use.
Encrypt SSN and BirthDate information for each patient. The SSN column will use deterministic encryption, which supports equality lookups, joins, and group by.
The BirthDate column will use randomized encryption, which does not support operations.
Set the Encryption Type for the SSN column to Deterministic and the BirthDate column to Randomized. Click Next.

Reference: alt="Reference Image" />
Reference:
https://docs.microsoft.com/en-us/azure/sql-database/sql-database-always-encrypted

This question is in DP-200 Microsoft Azure Data Engineer Exam
For getting Microsoft Certified: Azure Data Engineer Associate Certificate

Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Microsoft.
The website does not contain actual questions and answers from Microsoft's Certification Exams.
Trademarks, certification & product names are used for reference only and belong to Microsoft.

You have an activity in an Azure Data Factory pipeline. The activity calls a stored procedure in a data warehouse in Azure Synapse Analytics and runs daily. You need to verify the duration of the activity when it ran last. What should you use?

101 Practice Test Free

101-500 Practice Test Free

102-500 Practice Test Free

Recommended

DP-100 Practice Test Free

XK0-005 Practice Test Free

XK0-004 Practice Test Free

SY0-701 Practice Test Free

SY0-601 Practice Test Free

SY0-501 Practice Test Free

Welcome Back!

Create New Account!

Retrieve your password