In a scenario where resources must be deployed while complying with a security policy that restricts access to the on-premises network, what should be chosen for the migration?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your skills for the Microsoft Azure AZ-305 exam. Study with our quizzes filled with flashcards and multiple-choice questions with detailed explanations. Prepare thoroughly for your certification test!

Multiple Choice

In a scenario where resources must be deployed while complying with a security policy that restricts access to the on-premises network, what should be chosen for the migration?

Explanation:
The most suitable choice for deploying resources while adhering to a security policy that restricts access to the on-premises network would be Azure ExpressRoute. Azure ExpressRoute establishes a private connection between your on-premises infrastructure and Azure, bypassing the public Internet. This not only enhances security by preventing exposure to the public network, but it also provides higher reliability and lower latency, making it a preferred solution for sensitive data transfer and compliance with stringent security policies. This connection ensures that there is no direct access to the on-premises network, aligning with the requirement for restricted access. In contrast, Azure Virtual Networks provide connectivity within Azure and can integrate with on-premises environments, but they may still expose certain aspects to the internet depending on configuration. A VPN Gateway offers a secure connection over the public Internet; however, it wouldn't be the best option when strict compliance with a security policy is essential because it cannot guarantee the same level of reliability and performance as ExpressRoute. Public-facing virtual machines would typically be accessible from the Internet, which directly contradicts the need for restricted access to the on-premises network, making them unsuitable for scenarios governed by strict security policies.

The most suitable choice for deploying resources while adhering to a security policy that restricts access to the on-premises network would be Azure ExpressRoute.

Azure ExpressRoute establishes a private connection between your on-premises infrastructure and Azure, bypassing the public Internet. This not only enhances security by preventing exposure to the public network, but it also provides higher reliability and lower latency, making it a preferred solution for sensitive data transfer and compliance with stringent security policies. This connection ensures that there is no direct access to the on-premises network, aligning with the requirement for restricted access.

In contrast, Azure Virtual Networks provide connectivity within Azure and can integrate with on-premises environments, but they may still expose certain aspects to the internet depending on configuration.

A VPN Gateway offers a secure connection over the public Internet; however, it wouldn't be the best option when strict compliance with a security policy is essential because it cannot guarantee the same level of reliability and performance as ExpressRoute.

Public-facing virtual machines would typically be accessible from the Internet, which directly contradicts the need for restricted access to the on-premises network, making them unsuitable for scenarios governed by strict security policies.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy