Question 1

You are designing an Azure Landing Zone architecture for a multinational corporation. The company uses a 'Subscription Vending Machine' process to automatically provision new subscriptions for application teams.

The security team requires that every new subscription automatically has Microsoft Defender for Cloud enabled, specific Azure Policies assigned, and a standard VNet deployed and peered to the central Hub VNet.

Which Azure native approach provides the most scalable and declarative way to achieve this during the subscription creation process?

Accepted Answer

Identify the modern, recommended Infrastructure-as-Code tool for Azure Landing Zones. Note that Blueprints are deprecated.

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Choosing Azure Blueprints. While it historically did exactly this, it is now deprecated and not the correct answer for modern AZ-305 designs.

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 5

More questions from this exam