• Home
  • Blogs
  • AZ-220 Pre-Exam Practice Tests (Updated 95 Questions) [Q38-Q55]

AZ-220 Pre-Exam Practice Tests (Updated 95 Questions) [Q38-Q55]

Share

AZ-220 Pre-Exam Practice Tests | (Updated 95 Questions)

Valid AZ-220 Exam Q&A PDF - One Year Free Update

NEW QUESTION 38
You have an Azure IoT hub that uses a Device Provisioning Service instance to automate the deployment of Azure IoT Edge devices.
The IoT Edge devices have a Trusted Platform Module (TPM) 2.0 chip.
From the Azure portal, you plan to add an individual enrollment to the Device Provisioning Service that will use the TPM of the IoT Edge devices as the attestation mechanism.
Which detail should you obtain before you can create the enrollment.

  • A. the primary key of the Device Provisioning Service shared access policy and the global device endpoint
  • B. the endorsement key and the registration ID
  • C. the X.509 device certificate and the certificate chain
  • D. the scope ID and the Device Provisioning Service endpoint

Answer: B

Explanation:
The TPM simulator's Registration ID and the Endorsement key, are used when you create an individual enrollment for your device.
Reference:
https://docs.microsoft.com/en-us/azure/iot-edge/how-to-auto-provision-simulated-device-linux

 

NEW QUESTION 39
You have 100 devices that connect to an Azure IoT hub.
You need to be notified about failed local logins to a subnet of the devices.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Answer:

Explanation:

Explanation:
Step 1: Enable Azure Security Center for IoT
Security alerts, such as failed local IoT hub logins, are stored in AzureSecurityOfThings.SecurityAlert table in the Log Analytics workspace configured for the Azure Security Center for IoT solution.
Step 2: Select a device security group
Update a device security group..
Step 3: Create a custom alert rule
..by creating a custom alert rule
Reference:
https://docs.microsoft.com/bs-latn-ba/azure/asc-for-iot/how-to-security-data-access
https://docs.microsoft.com/en-us/rest/api/securitycenter/devicesecuritygroups/createorupdate

 

NEW QUESTION 40
You have 20 devices that connect to an Azure IoT hub.
You open Azure Monitor as shown in the exhibit. (Click the Exhibit tab.)

You discover that telemetry is not being received from five IoT devices.
You need to identify the names of the devices that are not generating telemetry and visualize the dat a. What should you do first?

  • A. Add the Telemetry messages sent metric and archieve the logs to an Azure Storage account.
  • B. Configure diagnostics for Routes and stream the logs to Azure Event Hubs.
  • C. Configure diagnostics for Connections and send the logs to Azure Log Analytics.
  • D. Add the Number of throttling errors metric and archive the logs to an Azure storage account.

Answer: C

Explanation:
To log device connection events and errors, turn on diagnostics for IoT Hub. We recommend turning on these logs as early as possible, because if diagnostic logs aren't enabled, when device disconnects occur, you won't have any information to troubleshoot the problem with.
Sign in to the Azure portal.
Browse to your IoT hub.
Select Diagnostics settings.
Select Turn on diagnostics.
Enable Connections logs to be collected.
For easier analysis, turn on Send to Log Analytics

Reference:
https://docs.microsoft.com/bs-cyrl-ba/azure/Iot-hub/iot-hub-troubleshoot-connectivity

 

NEW QUESTION 41
You have 100 devices that connect to an Azure IoT hub named Hub1. The devices connect by using a symmetric key.
You deploy an IoT hub named Hub2.
You need to migrate 10 devices from Hub1 to Hub2. The solution must ensure that the devices retain the existing symmetric key.
What should you do?

  • A. Add a desired property to the device twin of Hub2. Update the endpoint of the 10 devices to use Hub2.
  • B. Disable the 10 devices on Hub1. Update the endpoint of the 10 devices to use Hub2.
  • C. Add a desired property to the device twin of Hub1. Recreate the device identity on Hub2.
  • D. Recreate the device identity on Hub2. Update the endpoint of the 10 devices to use Hub2.

Answer: C

Explanation:
Desired properties. Used along with reported properties to synchronize device configuration or conditions. The solution back end can set desired properties, and the device app can read them. The device app can also receive notifications of changes in the desired properties.
Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-devguide-device-twins Provision and manage devices Question Set 1

 

NEW QUESTION 42
You create an Azure IoT hub by running the following command.
aziot hub create --resource-group MyResourceGroup --name MyIotHub --sku B1 -- location westus --partition-count 4 What does MylotHub support?

  • A. Azure IoT Edge
  • B. Device Provisioning Service
  • C. device twins
  • D. cloud-to-device messaging

Answer: B

Explanation:
The Device Provisioning Service is included in the Basic Tiers (such as B1).
Incorrect Answers:
B, C, D: The Standard tier is needed for cloud-to-device messaging, Azure IoT Edge, and device twins.
Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-scaling

 

NEW QUESTION 43
You have an Azure IoT solution that includes a basic tier Azure IoT hub named Hub1 and a Raspberry Pi device named Device1. Device1 connects to Hub1.
You back up Device1 and restore the backup to a new Raspberry Pi device.
When you start the new Raspberry Pi device, you receive the following error message in the diagnostic logs of Hub1: "409002 LinkCreationConflict." You need to ensure that Device1 and the new Raspberry Pi device can run simultaneously without error.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. From Hub1, create a new consumer group.
  • B. Upgrade Hub1 to the standard tier.
  • C. From Hub1, create a new IoT device.
  • D. On the new Raspberry Pi device, modify the connection string.
  • E. From Hub1, modify the device shared access policy.

Answer: C,D

Explanation:
Note: Symptoms
You see the error 409002 LinkCreationConflict in logs along with device disconnection or cloud-to-device message failure.
Cause
Generally, this error happens when IoT Hub detects a client has more than one connection. In fact, when a new connection request arrives for a device with an existing connection, IoT Hub closes the existing connection with this error.
Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-troubleshoot-error-409002-linkcreationconflict#symptoms
https://devblogs.microsoft.com/iotdev/understand-different-connection-strings-in-azure-iot-hub/

 

NEW QUESTION 44
You enable Azure Security Center for IoT.
You need to onboard a device to Azure Security Center. What should you do?

  • A. Modify the connection string of the device.
  • B. Add the azureiotsecurity module identity to the Azure IoT Hub device identity.
  • C. Open incoming TCP port 8883 on the device.
  • D. Install an X.509 certificate on the hardware security module (HSM) of the device.

Answer: B

Explanation:
Use the following workflow to deploy and test your Azure Security Center for IoT security agents:
1. Enable Azure Security Center for IoT service to your IoT Hub
2. If your IoT Hub has no registered devices, Register a new device.
3. Create an azureiotsecurity security module for your devices.
Azure Security Center for IoT makes use of the module twin mechanism and maintains a security module twin named azureiotsecurity for each of your devices.
Note: To manually create a new azureiotsecurity module twin for a device use the following instructions:
1. In your IoT Hub, locate and select the device you wish to create a security module twin for.
2. Click on your device, and then on Add module identity.
3. In the Module Identity Name field, enter azureiotsecurity.
4. Click Save.
Reference:
https://docs.microsoft.com/en-us/azure/asc-for-iot/quickstart-create-security-twin

 

NEW QUESTION 45
Your company is creating a new camera security system that will use Azure IoT Hub.
You plan to use an Azure IoT Edge device that will run Ubuntu Server 18.04.
You need to configure the IoT Edge device.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Answer:

Explanation:

1 - Run the following commands
2 - From Iot Hub,create an IoT Edge device registry entry.
3 - Add the connection string to..
Reference:
https://docs.microsoft.com/en-us/azure/iot-edge/how-to-install-iot-edge-linux

 

NEW QUESTION 46
You have an Azure IoT solution that includes an Azure IoT hub.
You receive a root certification authority (CA) certificate from the security department at your company.
You need to configure the IoT hub to use the root CA certificate.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/bs-latn-ba/azure/iot-hub/iot-hub-security-x509-get-started

 

NEW QUESTION 47
During the POV phase, telemetry from IoT Hub stops flowing to the hot path. The cold path continues to work.
What should you do to restore the hot path?

  • A. Run the Test all routes action.
  • B. Disable the fallback route.
  • C. Modify cold-route to send only some telemetry data to the cold path.
  • D. Create an explicit route for the hot path.

Answer: D

 

NEW QUESTION 48
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have devices that connect to an Azure IoT hub. Each device has a fixed GPS location that includes latitude and longitude.
You discover that a device entry in the identity registry of the IoT hub is missing the GPS location.
You need to configure the GPS location for the device entry. The solution must prevent the changes from being propagated to the physical device.
Solution: You add the desired properties to the device twin.
Does the solution meet the goal?

  • A. No
  • B. Yes

Answer: B

Explanation:
Device Twins are used to synchronize state between an IoT solution's cloud service and its devices. Each device's twin exposes a set of desired properties and reported properties. The cloud service populates the desired properties with values it wishes to send to the device. When a device connects it requests and/or subscribes for its desired properties and acts on them.
Reference:
https://azure.microsoft.com/sv-se/blog/deep-dive-into-azure-iot-hub-notifications-and-device-twin/

 

NEW QUESTION 49
You enable Azure Security Center for IoT.
You need to onboard a device to Azure Security Center.
What should you do?

  • A. Modify the connection string of the device.
  • B. Add the azureiotsecurity module identity to the Azure IoT Hub device identity.
  • C. Open incoming TCP port 8883 on the device.
  • D. Install an X.509 certificate on the hardware security module (HSM) of the device.

Answer: B

Explanation:
Use the following workflow to deploy and test your Azure Security Center for IoT security agents:
1. Enable Azure Security Center for IoT service to your IoT Hub
2. If your IoT Hub has no registered devices, Register a new device.
3. Create an azureiotsecurity security module for your devices.
Azure Security Center for IoT makes use of the module twin mechanism and maintains a security module twin named azureiotsecurity for each of your devices.
Note: To manually create a new azureiotsecurity module twin for a device use the following instructions:
1. In your IoT Hub, locate and select the device you wish to create a security module twin for.
2. Click on your device, and then on Add module identity.
3. In the Module Identity Name field, enter azureiotsecurity.
4. Click Save.
Reference:
https://docs.microsoft.com/en-us/azure/asc-for-iot/quickstart-create-security-twin

 

NEW QUESTION 50
You have an Azure IoT hub.
You need to recommend a solution to scale the IoT hub automatically. What should you include in the recommendation?

  • A. Configure autoscaling in Azure Monitor.
  • B. Create an Azure function that retrieves the quota metrics of the IoT hub.
  • C. Emit custom metrics from the IoT device code and create an Azure Automation runbook alert.
  • D. Create an SMS alert in IoT Hub for the Total number of messages used metric.

Answer: B

Explanation:
Note: IoT Hub is scaled and priced based on an allowed number of messages per day across all devices connected to that IoT Hub. If you exceed the allowed message threshold for your chosen tier and number of units, IoT Hub will begin rejecting new messages. To date, there is no built-in mechanism for automatically scaling an IoT Hub to the next level of capacity if you approach or exceed that threshold.
Reference:
https://docs.microsoft.com/en-us/samples/azure-samples/iot-hub-dotnet-autoscale/iot-hub-dotnet-autoscale/

 

NEW QUESTION 51
You plan to deploy a standard tier Azure IoT hub.
You need to perform an over-the-air (OTA) update on devices that will connect to the IoT hub by using scheduled jobs.
What should you use?

  • A. a cloud-to-device message
  • B. a device-to-cloud message
  • C. the device twin reported properties
  • D. a direct method

Answer: D

Explanation:
Releases via the REST API.
All of the operations that can be performed from the Console can also be automated using the REST API. You might do this to automate your build and release process, for example.
You can build firmware using the Particle CLI or directly using the compile source code API.
Note: Over-the-air (OTA) firmware updates are a vital component of any IoT system. Over-the-air firmware updates refers to the practice of remotely updating the code on an embedded device.
Reference:
https://docs.particle.io/tutorials/device-cloud/ota-updates/

 

NEW QUESTION 52
What should you do to identify the cause of the connectivity issues?

  • A. Send cloud-to-device messages to the IoT devices.
  • B. Use the heartbeat pattern to send messages from the IoT devices to iothub1.
  • C. Monitor the connection status of the device twin by using an Azure function.
  • D. Enable the collection of the Connections diagnostics logs and set up alerts for the connected devices count metric.

Answer: D

Explanation:
Scenario: You discover connectivity issues between the IoT gateway devices and iothub1, which cause IoT devices to lose connectivity and messages.
To log device connection events and errors, turn on diagnostics for IoT Hub. We recommend turning on these logs as early as possible, because if diagnostic logs aren't enabled, when device disconnects occur, you won't have any information to troubleshoot the problem with.
Step 1:
1. Sign in to the Azure portal.
2. Browse to your IoT hub.
3. Select Diagnostics settings.
4. Select Turn on diagnostics.
5. Enable Connections logs to be collected.
6. For easier analysis, turn on Send to Log Analytics (see pricing).
Step 2:
Set up alerts for device disconnect at scale
To get alerts when devices disconnect, configure alerts on the Connected devices (preview) metric.
Reference:
https://docs.microsoft.com/bs-cyrl-ba/azure/iot-hub/iot-hub-troubleshoot-connectivity Provision and manage devices Question Set 2

 

NEW QUESTION 53
You need to enable telemetry message tracing through the entire IoT solution.
What should you do?

  • A. Upload IoT device logs by using the File upload feature.
  • B. Monitor device lifecycle events.
  • C. Implement distributed tracing.
  • D. Enable the DeviceTelemetry diagnostic log and stream the log data to an Azure event hub.

Answer: C

Explanation:
IoT Hub is one of the first Azure services to support distributed tracing. As more Azure services support distributed tracing, you'll be able trace IoT messages throughout the Azure services involved in your solution.
Note:
Enabling distributed tracing for IoT Hub gives you the ability to:
Precisely monitor the flow of each message through IoT Hub using trace context. This trace context includes correlation IDs that allow you to correlate events from one component with events from another component. It can be applied for a subset or all IoT device messages using device twin.
Automatically log the trace context to Azure Monitor diagnostic logs.
Measure and understand message flow and latency from devices to IoT Hub and routing endpoints. Start considering how you want to implement distributed tracing for the non-Azure services in your IoT solution.
Reference:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-distributed-tracing

 

NEW QUESTION 54
You have an Azure IoT hub that uses a Device Provisioning Service instance.
You create a new individual device enrollment that uses symmetric key attestation.
Which detail from the enrollment is required to auto provision the device by using the Device Provisioning Service?

  • A. the primary key of the enrollment
  • B. the hostname of the IoT hub
  • C. the registration ID of the enrollment
  • D. the device identity of the IoT hub

Answer: D

 

NEW QUESTION 55
......

Microsoft Azure IoT Developer Free Update Certification Sample Questions: https://www.exam4labs.com/AZ-220-practice-torrent.html

Trend for Microsoft AZ-220 pdf dumps before actual exam: https://drive.google.com/open?id=1ZTRfkQ3x9KK5qAoakhYEIyukA1es-u9J

Related Blogs

more
Microsoft AZ-220 Certification Practice Exam

Copyright © 2026 EXAM4LABS.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.