Microsoft Certified: Azure Solutions Architect Expert Intermediate Practice Exam: Medium Difficulty 2025

A multinational corporation is implementing Azure AD for identity management across three subsidiaries. Each subsidiary requires autonomous control over user provisioning and application access, but the parent company needs visibility into all authentication events for compliance. The solution must minimize administrative overhead. What identity architecture should you recommend?

Your organization stores sensitive customer data in Azure SQL Database and must implement a solution that allows the security team to audit all access attempts while ensuring database administrators cannot view the actual sensitive data. Compliance requires that encryption keys are never exposed to Microsoft. Which combination of features should you implement?

A SaaS application stores user profile data that must be replicated across three Azure regions for low-latency reads. Write operations are infrequent but must be immediately consistent across all regions when they occur. The data model is document-based with complex queries. Annual growth is predictable at 20% per year. Which storage solution best meets these requirements?

An e-commerce platform generates 500 GB of transaction logs daily that must be retained for 7 years for regulatory compliance. The data is frequently accessed for the first 30 days for fraud analysis, occasionally accessed for 1 year for customer service inquiries, and rarely accessed afterward. Cost optimization is a priority. What storage strategy should you implement?

A financial services application deployed in Azure requires an RTO of 1 hour and RPO of 15 minutes. The application consists of Azure App Service, Azure SQL Database, and Azure Storage. During a disaster, the solution must fail over to a secondary region with minimal manual intervention. What business continuity architecture should you recommend?

A healthcare application stores patient records in Azure SQL Database. The compliance team requires the ability to restore any accidentally deleted or modified record to its state at any point within the last 14 days. The solution must not impact production performance and must be cost-effective. What backup strategy should you implement?

An organization is migrating a three-tier application to Azure. The web tier experiences variable load (10-100 instances), the application tier requires stateful sessions with predictable performance, and the database tier needs 99.99% availability. The solution must optimize costs while meeting performance requirements. What compute architecture should you design?

Your company operates a hybrid cloud environment where an on-premises data center hosts legacy applications that must communicate with Azure-hosted microservices. Communication requires low latency (<10ms), predictable bandwidth (1 Gbps), and must not traverse the public internet. The connection must support access to multiple Azure virtual networks across different subscriptions. What connectivity solution should you implement?

A development team deploys microservices across 15 Azure subscriptions within the organization. The security team needs to enforce a policy that prevents creation of public IP addresses on virtual machines in production environments while allowing them in development subscriptions. The policy must be enforceable across current and future subscriptions automatically. How should you implement this requirement?

An IoT solution ingests telemetry from 50,000 devices every 5 seconds. The data must be processed to detect anomalies in real-time (within 5 seconds), stored for batch analytics for 30 days, and archived for 3 years. The solution must scale automatically and minimize operational overhead. What data processing architecture should you design?