ExpertMinds LogoExpertMinds
Medium1 markMultiple Choice
Domain 1.1: Logging and MonitoringDomain 1Logging and MonitoringCost OptimizationLog Analytics

AZ-305 · Question 03 · Domain 1.1: Logging and Monitoring

A financial institution generates 5 TB of telemetry and audit logs daily across its Azure environment.

The company has the following requirements for log data:

  1. Security audit logs must be queried frequently for the first 30 days for immediate incident response.
  2. Application debug logs are rarely queried but must be retained for 7 years to meet compliance regulations.
  3. The overall cost of log ingestion and retention must be minimized.

Which TWO actions should you recommend to optimize the architecture? (Select TWO)

Answer options:

A.

Configure the Log Analytics workspace to use the Basic Logs data plan for application debug logs.

B.

Export all logs immediately to an Azure Storage account using the Hot access tier.

C.

Configure a data retention policy to move logs to Archive tier after 30 days.

D.

Use Azure Data Explorer (Kusto) as the primary ingestion point for all security audit logs.

E.

Configure the Log Analytics workspace to use the Analytics data plan for all log types.

How to approach this question

Look for cost-optimization features in Azure Monitor: Basic Logs for high-volume/low-query data, and Archive tier for long-term compliance retention.

Full Answer

Configure the Log Analytics workspace to use the Basic Logs data plan for application debug logs., Configure a data retention policy to move logs to Archive tier after 30 days.
Azure Monitor offers different log data plans. 'Analytics' is the default for interactive querying. 'Basic Logs' is a lower-cost tier for high-volume, verbose logs (like debug logs) that are infrequently queried. For long-term retention, Log Analytics supports an 'Archive' tier that stores data for up to 7 years at a fraction of the cost of interactive retention.

Common mistakes

Recommending exporting to Storage Accounts was the legacy way to handle this, but native Log Analytics Archive tier is now the recommended architectural approach for compliance retention.
02All questions04

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 3

55 questions · hints · full answers · grading

Sign up freeTake the exam

More questions from this exam

Q01Contoso Ltd is a global manufacturing company with 50,000 employees across 30 countries. They cur...MediumQ02Fabrikam Inc. is a Managed Service Provider (MSP) managing Azure environments for 50 different en...HardQ04A retail company has recently migrated several workloads to Azure. The IT Director wants a centra...EasyQ05A healthcare organization with 10,000 employees uses on-premises Active Directory. They are migra...HardQ06An enterprise company is implementing a Zero Trust security model for its Azure environment and M...Medium
View all 55 questions →