Question 1

Your company is migrating several legacy applications to Azure Virtual Machines.

These applications rely on LDAP read/write operations, NTLM authentication, and require servers to be joined to an Active Directory domain. The company has already synchronized their on-premises Active Directory to Microsoft Entra ID using Entra Connect.

The CIO wants to decommission the on-premises domain controllers and avoid deploying new IaaS domain controllers in Azure to minimize management overhead (patching, backups).

Which TWO actions should you take to support the legacy applications? (Select TWO)

Accepted Answer

Recognize that legacy protocols (LDAP, NTLM) require traditional AD DS. If IaaS VMs are forbidden, the PaaS alternative is Entra Domain Services.

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Confusing Entra ID Join with Entra DS Join. Entra ID Join does not support LDAP/NTLM.

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 5

More questions from this exam