AZ-300 Microsoft Azure Architect Technologies Certification Exam 2The AZ-300 Microsoft Azure Architect Technologies certification exam tests and validates your expertise as an Azure Architect around Azure administration, Azure development, and DevOps; among a list of specific expertise categories within each of these.

Certification Target Audience

The AZ-300 Microsoft Azure Architecture Technologies certification exam is geared towards Azure Solution Architects who advise stakeholders and translate business requirements into secure, scalable, and reliable solutions.

Candidates should have advanced experience and knowledge across various aspects of IT operations, including:

  • Networking
  • Virtualization
  • Identity
  • Security
  • Business Continuity
  • Disaster Recovery
  • Data Management
  • Budgeting
  • Governance

Overall, this exam tests a cross-cutting set of expertise in the areas of Azure Administration, Azure Development, and DevOps. It is recommended to have expert-level skills in at least one of these 3 expertise areas.

Skills Measured

Here’s a very high level list of the skills and objectives measured on this AZ-300 Microsoft Azure Architect Technologies certification exam. The percentages next to each objective area represents the number of questions on the exam in that objective area.

Deploy and configure infrastructure

  • Analyze resource utilization and consumption
    • configure diagnostic settings on resources
    • create baseline for resources
    • create and rest alerts
    • analyze alerts across subscription
    • analyze metrics across subscription
    • create action groups
    • monitor for unused resources
    • monitor spend
    • report on spend
    • utilize Log Search query functions
    • view alerts in Azure Monitor logs
  • Create and configure storage accounts
    • configure network access to the storage account
    • create and configure storage account
    • generate shared access signature
    • install and use Azure Storage Explorer
    • manage access keys
    • monitor activity log by using Azure Monitor logs
    • implement Azure storage replication
  • Create and configure a Virtual Machine (VM) for Windows and Linux
    • configure high availability
    • configure monitoring, networking, storage, and virtual machine size
    • deploy and configure scale sets
  • Automate deployment of Virtual Machines (VMs)
    • Modify Azure Resource Manager template
    • configure location of new VMs
    • configure VHD template
    • deploy from template
    • save a deployment as an Azure Resource Manager template
    • deploy Windows and Linux VMs
  • Implement solutions that use virtual machines (VM)
    • provision VMs
    • create Azure Resource Manager templates
    • configure Azure Disk Encryption for VMs
  • Create connectivity between virtual networks
    • create and configure VNET peering
    • create and configure VNET to VNET
    • verify virtual network connectivity
    • create virtual network gateway
  • Implement and manage virtual networking
    • configure private and public IP addresses, network routes, network interface, subnets, and virtual network
  • Manage Azure Active Directory (AD)
    • add custom domains
    • configure Azure AD Identity Protection, Azure AD Join, and Enterprise State Roaming
    • configure self-service password reset
    • implement conditional access policies
    • manage multiple directories
    • perform an access review
  • Implement and manage hybrid identities
    • install and configure Azure AD Connect
    • configure federation and single sign-on
    • manage Azure AD Connect
    • manage password sync and writeback

Implement workloads and security

  • Migrate servers to Azure
    • migrate by using Azure Site Recovery
    • migrate using P2V
    • configure storage
    • create a backup vault
    • prepare source and target environments
    • backup and restore data
    • deploy Azure Site Recovery agent
    • prepare virtual network
  • Configure serverless computing
    • manage a Logic App resource
    • manage Azure Function app settings
    • manage Event Grid
    • manage Service Bus
  • Implement application load balancing
    • configure application gateway and load balancing rules
    • implement front end IP configurations
    • manage application load balancing
  • Integrate on-premises network with Azure virtual network
    • create and configure Azure VPN Gateway
    • create and configure site to site VPN
    • configure Express Route
    • verify on-premises connectivity
    • manage on-premises connectivity with Azure
  • Manage role-based access control (RBAC)
    • create a custom role
    • configure access to Azure resources by assigning roles
    • configure management access to Azure
    • troubleshoot RBAC
    • implement RBAC policies
    • assign RBAC roles
  • Implement Multi-Factor Authentication (MFA)
    • enable MFA for an Azure tenant
    • configure user accounts for MFA
    • configure fraud alerts
    • configure bypass options
    • configure trusted IPs
    • configure verification methods
    • manage role-based access control (RBAC)
    • implement RBAC policies
    • assign RBAC Roles
    • create a custom role
    • configure access to Azure resources by assigning roles
    • configure management access to Azure

Create and deploy apps

  • Create web apps by using PaaS
    • create an Azure App Service Web App
    • create documentation for the API
    • create an App Service Web App for containers
    • create an App Service background task by using WebJobs
    • enable diagnostics logging
  • Design and develop apps that run in containers
    • configure diagnostic settings on resources
    • create a container image by using a Docker file
    • create an Azure Kubernetes Service
    • publish an image to the Azure Container Registry
    • implement an application that runs on an Azure Container Instance
    • manage container settings by using code

Implement authentication and secure data

  • Implement authentication
    • implement authentication by using certificates, forms-based authentication, tokens, or Windows-integrated authentication
    • implement multi-factor authentication by using Azure AD
    • implement OAuth2 authentication
    • implement Managed identities for Azure resources Service Principal authentication
  • Implement secure data solutions
    • encrypt and decrypt data at rest and in transit
    • encrypt data with Always Encrypted
    • implement Azure Confidential Compute and SSL/TLS communications
    • create, read, update, and delete keys, secrets, and certificates by using the KeyVault API

Develop for the cloud and for Azure storage

  • Develop solutions that use Cosmos DB storage
    • create, read, update, and delete data by using appropriate APIs
    • implement partitioning schemes
    • set the appropriate consistency level for operations
  • Develop solutions that use a relational database
    • provision and configure relational databases
    • configure elastic pools for Azure SQL Database
    • create, read, update, and delete data tables by using code
  • Configure a message-based integration architecture
    • configure an app or service to send emails, Event Grid, and the Azure Relay Service
    • create and configure Notification Hub, Event Hub, and Service Bus
    • configure queries across multiple products
  • Develop for autoscaling

    • implement autoscaling rules and patterns (schedule, operational/system metrics, code that addresses singleton application instances)
    • implement code that addresses transient state

To view the full list of these exam objectives, and to schedule to take the exam, please reference the official AZ-300 exam page.

Azure Solutions Architect Expert Certification

This is one of a total of 2 exams required to pass in order to earn the Microsoft Certified: Azure Solutions Architect Expert certification. The other exam is the AZ-301 Microsoft Azure Architect Design exam. One you pass both individual exams, then you will earn the full Microsoft Certified: Azure Solutions Architect Expert certification.

AZ-300 Microsoft Azure Architect Technologies Certification Exam 3

This Azure Solutions Architect certification is part of a large restructuring of the Microsoft Certifications on a more job-role specific orientation.

Happy Studying!

GET MORE STUFF LIKE THIS

Subscribe to the Build Azure Weekly newsletter to receive similar updates about Microsoft Azure and related topics!


We respect your privacy and take protecting it seriously. We do not sell our email list, and you can unsubscribe at any time.

Advertisements

Posted by Chris Pietschmann

Chris is a Microsoft MVP and has nearly 20 years of experience building enterprise systems both in the cloud and on-premises. He is also a Microsoft Certified Azure Solutions Architect and developer, a Microsoft Certified Trainer (MCT), and Cloud Advocate. He has a passion for technology and sharing what he learns with others to help enable them to learn faster and be more productive.

9 Comments

  1. It seems AZ-300 Exam is more into implementation and management and not into Architecting & Designing. Plus it contains tons of Topics. AZ-301 Exam will focus on Designing & Architecting Azure Solutions.

    Reply

  2. Any recommendations for online trainings for AZ-300? I can’t find something on popular training websites (LinuxAcademy, Cousera, Cloudacademy, A Cloud Guru, Udemy,..)

    Reply

    1. Chris Pietschmann December 18, 2018 at 8:14 am

      Many organizations in the online training space have difficulty keeping up with all the latest changes in the Microsoft Azure and cloud space. I recommend you check out http://SkillMeUp.com from Opsgility. You will find lots of up-to-date content there to help you. 🙂

      Reply

  3. Looi Hong Keat March 11, 2019 at 1:20 am

    Pearson had cancelled my exam due to Microsoft has added labs test into this exam and my existing test center is not qualified to deliver this exam. Do you have any idea about the labs test? Thank you.

    Reply

    1. Chris Pietschmann March 25, 2019 at 11:19 pm

      I’m not sure what the requirements are for the testing center. You’ll just have to reschedule with a testing center that’s supported.

      Reply

  4. Typo: “Azure Solution Architects who advice stakeholders and translate business requirements”. Advice should be Advise.

    Reply

    1. Chris Pietschmann April 1, 2019 at 10:11 pm

      Thanks! It’s fixed.

      Reply

  5. Does the AZ-300 exam actually cover Azure IoT? In your list above it says it does, however on the official MS page for AZ-300 exam ‘skills covered’ it is not listed.

    Reply

    1. Chris Pietschmann April 30, 2019 at 4:09 pm

      It looks like they updated the exam objectives and IoT is no longer listed, in addition to other changes. Thanks for pointing this out! I’ve updated the article.

      Reply

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.