How to prepare for Azure Certifications 70-532, 70-533, 70-535

It took me approx 180 days of preparations to clear following Azure Exams

70-532 Developing Azure Applications
70-533 Implementing Microsoft Azure Infrastructure Solutions
70-535 Architecting Microsoft Azure Solutions

Here is the list of all things which I referred while preparing for Azure Exams.


532book533 bookexam_ref_70-535

Amazon links:

70-532 :

70-533 :

70-535 :

Official Documentations:

70-532 Developing Azure Applications

Design and Implement a Storage and Data Strategy (25-30%)

  • Implement Azure Storage blobs and Azure Files
    • Read data; change data; set metadata on a storage container; store data using block and page blobs; stream data using blobs; access blobs securely; implement async blob copy; configure Content Delivery Network (CDN); design blob hierarchies; configure custom domains; scale blob storage and implement blob tiering; create connections to files from on-premises or cloud-based Windows or Linux machines; shard large datasets; implement blob leasing; implement Storage Events; implement Azure File Sync; implement virtual network service endpoints; implement Azure Files backup
  • Implement Azure storage tables, queues, and Azure Cosmos DB Table API
    • Implement CRUD with and without transactions; design and manage partitions; query using OData; scale tables and partitions; add and process queue messages; retrieve a batch of messages; scale queues; choose between Azure Storage Tables and Azure Cosmos DB Table API
  • Manage access and monitor storage
    • Generate shared access signatures, including client renewal and data validation; create stored access policies; regenerate storage account keys; configure and use Cross-Origin Resource Sharing (CORS); set retention policies and logging levels; analyse logs; monitor Cosmos DB storage
  • Implement Azure SQL Database
    • Choose the appropriate database tier and performance level; configure and perform point in time recovery; enable geo-replication; import and export data and schema; scale Azure SQL Database instances; manage elastic pools, including DTUs and eDTUs; manage limits and resource governor; implement Azure SQL Data Sync; implement graph database functionality in Azure SQL Database; design multi-tenant applications; secure and encrypt data; manage data integrity; enable metrics and diagnostics logs for monitoring; use adaptive query processing to improve query performance; implement sharding and elastic tools; implement SQL Server Stretch Database
  • Implement Azure Cosmos DB
    • Choose a Cosmos DB API surface; create Cosmo DB API databases and collections; query documents; run Cosmos DB queries; create Graph API databases; execute GraphDB queries; implement MongoDB database; manage scaling of Cosmos DB, including managing partitioning, consistency, and RU/m; manage multiple regions; implement stored procedures; implement JavaScript within Cosmos DB; access Cosmos DB from REST interface; manage Cosmos DB security
  • Implement Redis caching
    • Choose a cache tier; implement data persistence; implement security and network isolation; tune cluster performance; integrate Redis caching with ASP.NET session and cache providers; implement Redis data types and operations; implement geo-replication for availability and disaster recovery scenarios
  • Implement Azure Search
    • Create a service index; add data; search an index; handle search results; implement synonyms

Manage Identity, Application, and Network Services (10-15%)

  • Integrate an app with Azure Active Directory (AAD)
    • Develop apps that use WS-federation, OAuth, and SAML-P endpoints; query the directory by using Microsoft Graph API, MFA and MFA API; implement Azure Managed Service Identity
  • Design and implement a messaging strategy
    • Develop and scale messaging solutions using service bus queues, topics, relays, event hubs, Event Grid, and notification hubs; monitor service bus queues, topics, relays, event hubs and notification hubs; determine when to use Event Hubs, Service Bus, IoT Hub, Stream Analytics, and Notification Hubs; implement Azure Event Grid
  • Develop apps that use AAD B2C and AAD B2B
    • Design and implement .NET MVC, Web API, and Windows Desktop apps that leverage social identity provider authentication, including Microsoft account, Facebook, Google+, Amazon, and LinkedIn; leverage Azure AD B2B to design and implement applications that support partner-managed identities, enforce multi-factor authentication
  • Manage secrets using Azure Key Vault
    • Configure Azure Key Vault; manage access, including tenants; implement HSM protected keys; manage service limits; implement logging; implement key rotation; store and retrieve app secrets including connection strings, passwords, and cryptographic keys

Design and Implement Azure Compute, Web, and Mobile Services (35-40%)

  • Design Azure App Service Web Apps
    • Define and manage App Service plans; configure Web Apps settings, certificates, and custom domains; manage Web Apps by using the API, Azure PowerShell, Azure Cloud Shell, and Xplat-CLI; implement diagnostics, monitoring, and analytics; design and configure Web Apps for scale and resilience; use Azure Managed Service Identity to access other Azure AD-protected resources including Azure Key Vault; identify usage scenarios for App Service Isolated
  • Implement Azure Functions and WebJobs
    • Create Azure Functions; implement a webhook Function; create an event processing Function; implement an Azure-connected Function; design and implement a custom binding; debug a Function; integrate a Function with storage; implement and configure proxies; integrate with App Service plan; build serverless applications including Azure Event Grid-based applications
  • Implement API Management
    • Create managed APIs; configure API Management policies; protect APIs with rate limits; add caching to improve performance; monitor APIs; customise the Developer portal; add authentication and authorisation to applications by using API Management; configure API versions by using API Management; implement git-based configuration using API Management
  • Design Azure App Service API Apps
    • Create and deploy API Apps; automate API discovery by using Swagger and Swashbuckle; use Swagger API metadata to generate client code for an API app; monitor API Apps
  • Develop Azure Logic Apps
    • Create a Logic App connecting SaaS services; create a Logic App with B2B capabilities; create a Logic App with XML capabilities; trigger a Logic App from another app; create custom and long-running actions; monitor Logic Apps; integrate a logic app with a function; access on-premises data; implement Logic Apps with Event Grid
  • Develop Azure App Service Mobile Apps
    • Create a Mobile App; add offline sync to a Mobile App; add authentication to a Mobile App; add push notifications to a Mobile App; distribute a Mobile App; add analytics to a Mobile App; collect crash data from devices; implement location-aware applications by using Azure location-based services
  • Design and implement Azure Service Fabric Applications
    • Create a Service Fabric application; build an Actors-based service; add a web front-end to a Service Fabric application; monitor and diagnose services; migrate apps from cloud services; create, secure, upgrade, and scale Service Fabric Cluster in Azure; scale a Service Fabric app; deploy an application to a Container
  • Design and implement Third Party Platform as a Service (PaaS)
    • Design and implement Third Party Platform as a Service (PaaS)”: Implement Cloud Foundry; implement OpenShift; provision applications by using Azure Quickstart Templates; build applications that leverage Azure Marketplace solutions and services; implement solutions that use Azure Bot Service; create Azure Managed Applications; implement Docker Swarm applications; implement Kubernetes applications
  • Design and Implement DevOps
    • Instrument an application with telemetry; discover application performance issues by using Application Insights; deploy Visual Studio Team Services with Continuous integration (CI) and Continuous development (CD); deploy CI/CD with third party platform tools (Jenkins, GitHub, Chef, Puppet; TeamCity); implement mobile DevOps by using HockeyApp; perform root cause analysis using Azure Time Series Insights
  • Design and implement Kubernetes applications on Azure Container Service (AKS)
    • Create container images; manage container images using Azure Container Registry or Docker Hub; build YAML application definition; scale applications; update running applications; monitor using Container Monitoring solution in Log Analytics; build development cluster; manage configuration values

70-533 Implementing Microsoft Azure Infrastructure Solutions

Design and Implement Azure App Service Apps (10-15%)

  • Deploy Web Apps
    • Define deployment slots; roll back deployments; implement pre- and post-deployment actions; create, configure, and deploy packages; create App Service plans; migrate Web Apps between App Service plans; create an app within an App Service plan; determine when to use App Service Environment (ASE); select and use appropriate deployment methods including Git, FTP, and cloud sync
  • Configure Apps
    • Define and use app settings, connection strings, handlers, and virtual directories; configure certificates and custom domains; configure SSL bindings and runtime configurations; manage Apps by using Azure PowerShell and Azure-CLI; manage App Service backups; configure authentication and authorisation for apps; configure app notifications
  • Configure diagnostics, monitoring and analytics
    • Retrieve diagnostics data; view streaming logs; configure endpoint monitoring; configure alerts; configure diagnostics; use remote debugging; monitor Web App resources; use Microsoft Operations Management Suite (OMS) workspaces
  • Configure Web Apps for scale and resilience
    • Configure auto-scale using built-in and custom schedules; configure by metric; change the size of an instance; configure Azure Traffic Manager

Create and Manage Azure Resource Manager Virtual Machines (20-25%)

  • Deploy workloads on Azure Resource Manager (ARM) virtual machines (VMs)
    • Identify workloads that can and cannot be deployed; run workloads that use Microsoft or Linux operating systems; create VMs; connect to a Windows/Linux VM; deploy workloads; deploy Bring Your Own License (BYOL) images
  • Perform configuration management
    • Automate configuration management by using PowerShell Desired State Configuration (DSC) and VM Agent (custom script extensions); enable remote debugging
  • Design and implement VM storage
    • Configure disk caching; plan storage capacity; configure operating system disk redundancy; configure shared storage using Azure File service; configure Azure File Share snapshots; configure geo-replication; encrypt disks; implement ARM VMs with Standard and Premium Storage; configure Blob-Level Tiering (Hot, Cool, Archive); manage storage encryption keys
  • Monitor ARM VMs
    • Configure ARM VM monitoring; configure alerts; configure diagnostic and monitoring storage location
  • Manage ARM VM availability
    • Configure multiple ARM VMs in an availability set for redundancy; configure each application tier into separate availability sets; combine the Load Balancer with availability sets; configure fault domains and update domains; leverage Availability Zones
  • Scale ARM VMs
    • Scale up and scale down VM sizes; deploy ARM VM Scale Sets (VMSS); configure ARM VMSS auto-scale
  • Manage Containers with Azure Container Services (AKS)
    • Deploy a Kubernetes cluster in AKS; create and manage container images; scale applications using Docker, DC/OS, Swarm, or Kubernetes; configure for open-source tooling; migrate container workloads to and from Azure; monitor Kubernetes by using Microsoft Operations Management Suite (OMS); implement Azure Container Registry

Design and Implement a Storage Strategy (10-15%)

  • Implement Azure Storage blobs and Azure Files
    • Identify appropriate blob type for specific storage requirements; read data; change data; set metadata on a container; store data using block and page blobs; stream data using blobs; access blobs securely; implement async blob copy; configure Content Delivery Network (CDN); design blob hierarchies; configure custom domains; scale blob storage; manage SMB file storage; implement Azure StorSimple
  • Manage access
    • Create and manage shared access signatures; use stored access policies; regenerate keys; encrypt keys by using Azure Key Vault integration
  • Configure diagnostics, monitoring and analytics
    • Set retention policies and logging levels; access, add, and remove logs; analyse logs
  • Implement storage encryption
    • Encrypt data as written to Azure Storage by using Azure Storage Service Encryption (SSE); implement encrypted and role-based security for data managed by Azure Data Lake Store

Implement Virtual Networks (15-20%)

  • Configure virtual networks
    • Deploy a VM into a virtual network; configure external and internal load balancing; implement Application Gateway; design subnets; configure static, public, and private IP addresses; set up Network Security Groups (NSGs), DNS at the virtual network level, HTTP and TCP health probes, public IPs, User Defined Routes (UDRs), firewall rules, and direct server return; connect VNets by virtual network peering; configure VMs using a configuration management tool such as Puppet or Chef
  • Design and implement multi-site or hybrid network connectivity
    • Choose the appropriate solution between Azure ExpressRoute, site-to-site, and point-to-site; choose the appropriate gateway; identify supported devices and software VPN solutions; identify networking prerequisites; configure virtual networks and multi-site virtual networks; implement virtual network peering and service chaining; implement hybrid connections to access on-premises data sources, leverage S2S VPNs to connect to on-premises infrastructure; monitor ExpressRoute
  • Configure ARM VM networking
    • Configure static IP addresses, Network Security Groups (NSGs), DNS, User Defined Routes (UDRs), external and internal load balancing with HTTP and TCP health probes, public IPs, firewall rules, and direct server return; design and implement Application Gateway; configure Accelerated Networking; configure virtual network service endpoints
  • Design and implement a connection strategy
    • Implement Hybrid Connections to access data sources on-premises; leverage S2S VPN to connect to an on-premises infrastructure

Design and Deploy ARM Templates (10-15%)

  • Implement ARM templates
    • Author ARM templates; create ARM templates to deploy multiple ARM Resource Providers resources of different types with count loops and Marketplace items; deploy templates with PowerShell, Azure CLI, Azure Portal and REST API
  • Control access
    • Leverage service principals with ARM authentication; use Azure Active Directory Authentication with ARM; set management policies; configure lock policies; lock resources
  • Design role-based access control (RBAC)
    • Secure resource scopes such as the ability to create VMs and Azure Web Apps; implement Azure RBAC standard roles; design Azure RBAC custom roles

Manage Azure Security and Recovery Services (25-30%)

  • Manage data protection and security compliance
    • Create and import encryption keys with Key Vault; automate tasks for SSL/TLS certificates; prevent and respond to security threats with Azure Security Center; Configure single sign-on with SaaS applications using federation and password based authentication; add users and groups to applications; revoke access to SaaS applications; configure access; configure federation with public consumer identity providers such as Facebook and Google
  • Implement recovery services
    • Create a backup vault; deploy a backup agent; backup and restore data, use snapshots and Geo-replication for recovery; Implement DR as service; Deploy Azure Site Recovery (ASR) agent, configure ASR; configure ASR one-click failover

Manage Azure Operations (5-10%)

  • Enhance cloud management with automation
    • Implement PowerShell runbooks; integrate Azure Automation with Web Apps; create and manage PowerShell Desired State Configurations (DSC); import DSC resources; generate DSC node configurations; monitor and automatically update machine configurations with Azure Automation DSC; implement serverless computing, including Azure Functions, Event Grid, and Service Bus
  • Collect and analyse data generated by resources in cloud and on-premises environments
    • Collect and search across data sources from multiple systems; build custom visualisations; visualise Azure resources across multiple subscriptions; transform Azure activity data and managed resource data into an insight with flexible search queries; monitor system updates and malware status; track server configuration changes by using Azure Log Analytics; configure the IT Service Management Connector (ITSMC)

Manage Azure Identities (5-10%)

  • Monitor on-premises identity infrastructure and synchronisation services with Azure AD Connect Health
    • Monitor AD FS proxy and web application proxy servers; setup email notifications for critical alerts; generate utilisation reports; monitor Sync Engine; monitor domain controllers; monitor replication
  • Manage domains with Azure Active Directory Domain Services
    • Join Azure virtual machines to a domain, securely administer domain-joined virtual machines by using Group Policy; migrate on-premises apps to Azure; handle traditional directory-aware apps along with SaaS apps
  • Integrate with Azure Active Directory (Azure AD)
    • Implement Azure AD Connect and single sign-on with on-premises Windows Server 2016; add custom domains; monitor Azure AD; configure MFA; configure Windows 10 with Azure AD join; implement Enterprise State Roaming, implement Azure AD integration in web and desktop applications; leverage Microsoft Graph API; implement Azure Managed Service Identity; implement Privileged Identity Management, implement Azure AD Identity Management, enable self-service password reset
  • Implement Azure AD B2C and Azure AD B2B
    • Create an Azure AD B2C Directory; register an application; implement social identity provider authentication; enable multi-factor authentication; set up self-service password reset; implement B2B collaboration; configure partner users; integrate with applications

70-535 Architecting Microsoft Azure Solutions

Design Compute Infrastructure (20-25%)

  • Design solutions using virtual machines
    • Design VM deployments by leveraging availability sets, fault domains, and update domains in Azure; use web app for containers; design VM Scale Sets; design for compute-intensive tasks using Azure Batch; define a migration strategy from cloud services; recommend use of Azure Backup and Azure Site Recovery
  • Design solutions for serverless computing
    • Use Azure Functions to implement event-driven actions; design for serverless computing using Azure Container Instances; design application solutions by using Azure Logic Apps, Azure Functions, or both; determine when to use API management service
  • Design microservices-based solutions
    • Determine when a container-based solution is appropriate; determine when container-orchestration is appropriate; determine when Azure Service Fabric (ASF) is appropriate; determine when Azure Functions is appropriate; determine when to use API management service; determine when Web API is appropriate; determine which platform is appropriate for container orchestration; consider migrating existing assets versus cloud native deployment; design lifecycle management strategies
  • Design web applications
    • Design Azure App Service Web Apps; design custom web API; secure Web API; design Web Apps for scalability and performance; design for high availability using Azure Web Apps in multiple regions; determine which App service plan to use; design Web Apps for business continuity; determine when to use Azure App Service Environment (ASE); design for API apps; determine when to use API management service; determine when to use Web Apps on Linux; determine when to use a CDN; determine when to use a cache, including Azure Redis cache
  • Create compute-intensive application
    • Design high-performance computing (HPC) and other compute-intensive applications using Azure Services; determine when to use Azure Batch; design stateless components to accommodate scale; design lifecycle strategy for Azure Batch

Design Data Implementation (15-20%)

  • Design for Azure Storage solutions
    • Determine when to use Azure Blob Storage, blob tiers, Azure Files, disks, and StorSimple
  • Design for Azure Data Services
    • Determine when to use Data Catalog, Azure Data Factory, SQL Data Warehouse, Azure Data Lake Analytics, Azure Analysis Services, and Azure HDInsight
  • Design for relational database storage
    • Determine when to use Azure SQL Database and SQL Server Stretch Database; design for scalability and features; determine when to use Azure Database for MySQL and Azure Database for PostgreSQL; design for HA/DR, geo-replication; design a backup and recovery strategy
  • Design for NoSQL storage
    • Determine when to use Azure Redis Cache, Azure Table Storage, Azure Data Lake, Azure Search, Time Series Insights
  • Design for CosmosDB storage
    • Determine when to use MongoDB API, DocumentDB API, Graph API, Azure Tables API; design for cost, performance, data consistency, availability, and business continuity

Design Networking Implementation (15-20%)

  • Design Azure virtual networks
    • Design solutions that use Azure networking services: design for load balancing using Azure Load Balancer and Azure Traffic Manager; define DNS, DHCP, and IP strategies; determine when to use Azure Application Gateway; determine when to use multi-node application gateways, Traffic Manager and load balancers
  • Design external connectivity for Azure Virtual Networks
    • Determine when to use Azure VPN, ExpressRoute and Virtual Network Peering architecture and design; determine when to use User Defined Routes (UDRs); determine when to use VPN gateway site-to-site failover for ExpressRoute
  • Design security strategies
    • Determine when to use network virtual appliances; design a perimeter network (DMZ); determine when to use a Web Application Firewall (WAF), Network Security Group (NSG), and virtual network service tunneling
  • Design connectivity for hybrid applications
    • Design connectivity to on-premises data from Azure applications using Azure Relay Service, Azure Data Management Gateway for Data Factory, Azure On-Premises Data Gateway, Hybrid Connections, or Azure Web App’s virtual private network (VPN) capability; identify constraints for connectivity with VPN; identify options for joining VMs to domains

Design Security and Identity Solutions (20-25%)

  • Design an identity solution
    • Design AD Connect synchronisation; design federated identities using Active Directory Federation Services (AD FS); design solutions for Multi-Factor Authentication (MFA); design an architecture using Active Directory on-premises and Azure Active Directory (AAD); determine when to use Azure AD Domain Services; design security for Mobile Apps using AAD
  • Secure resources by using identity providers
    • Design solutions that use external or consumer identity providers such as Microsoft account, Facebook, Google, and Yahoo; determine when to use Azure AD B2C and Azure AD B2B; design mobile apps using AAD B2C or AAD B2B
  • Design a data security solution
    • Design data security solutions for Azure services; determine when to use Azure Storage encryption, Azure Disk Encryption, Azure SQL Database security capabilities, and Azure Key Vault; design for protecting secrets in ARM templates using Azure Key Vault; design for protecting application secrets using Azure Key Vault; design a solution for managing certificates using Azure Key Vault; design solutions that use Azure AD Managed Service Identity
  • Design a mechanism of governance and policies for administering Azure resources
    • Determine when to use Azure RBAC standard roles and custom roles; define an Azure RBAC strategy; determine when to use Azure resource policies; determine when to use Azure AD Privileged Identity Management; design solutions that use Azure AD Managed Service Identity; determine when to use HSM-backed keys
  • Manage security risks by using an appropriate security solution
    • Identify, assess, and mitigate security risks by using Azure Security Centre, Operations Management Suite Security and Audit solutions, and other services; determine when to use Azure AD Identity Protection; determine when to use Advanced Threat Detection; determine an appropriate endpoint protection strategy

Design Solutions by using Platform Services (10-15%)

  • Design for Artificial Intelligence Services
    • Determine when to use the appropriate Cognitive Services, Azure Bot Service, Azure Machine Learning, and other categories that fall under cognitive AI
  • Design for IoT
    • Determine when to use Stream Analytics, IoT Hubs, Event Hubs, real-time analytics, Time Series Insights, IoT Edge, Notification Hubs, Event Grid, and other categories that fall under IoT
  • Design messaging solution architectures
    • Design a messaging architecture; determine when to use Azure Storage Queues, Azure Service Bus, Azure Event Hubs, Event Grid, Azure Relay, Azure Functions, and Azure Logic Apps; design a push notification strategy for Mobile Apps; design for performance and scale
  • Design for media service solutions
    • Define solutions using Azure Media Services, video indexer, video API, computer vision API, preview, and other media related services

Design for Operations (10-15%)

  • Design an application monitoring and alerting strategy
    • Determine the appropriate Microsoft products and services for monitoring applications on Azure; define solutions for analysing logs and enabling alerts using Azure Log Analytics; define solutions for analysing performance metrics and enabling alerts using Azure Monitor; define a solution for monitoring applications and enabling alerts using Application Insights
  • Design a platform monitoring and alerting strategy
    • Determine the appropriate Microsoft products and services for monitoring Azure platform solutions; define a monitoring solution using Azure Health, Azure Advisor, and Activity Log; define a monitoring solution for Azure Networks using Log Analytics and Network Watcher service; monitor security with Azure Security Centre
  • Design an operations automation strategy
    • Determine when to use Azure Automation, Chef, Puppet, PowerShell, Desired State Configuration (DSC), Event Grid, and Azure Logic Apps; define a strategy for auto-scaling; define a strategy for enabling periodic processes and tasks

Happy Learning..

All the best !!

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.