Daily updated AZ-303 questions and answers are available at killexams
Not exactly simple to finish AZ-303 test with just course readings. You eventually need killexams.com AZ-303 Exam dumps for training and further developing information about the tips and deceives utilized in AZ-303 test questions. You want to rehearse the strategies utilized in the actual test with brain dumps and afterward, you are all set for the genuine AZ-303 test.
AZ-303 Microsoft Azure Architect Technologies practice test | http://babelouedstory.com/
AZ-303 practice test - Microsoft Azure Architect Technologies Updated: 2023
killexams.com AZ-303 exam brain dumps with practice test
EXAM NAME : Microsoft Azure Architect Technologies
Candidates for this exam should have subject matter expertise in designing and implementing solutions that run on Microsoft Azure, including aspects like compute, network, storage, and security. Candidates should have intermediate-level skills for administering Azure. Candidates should understand Azure development and DevOps processes.
Responsibilities for an Azure Solution Architect include advising stakeholders and translating business requirements into secure, scalable, and reliable cloud solutions.
An Azure Solution Architect partners with cloud administrators, cloud DBAs, and clients to implement solutions.
A candidate for this exam should have advanced experience and knowledge of IT operations, including networking, virtualization, identity, security, business continuity, disaster recovery, data platform, budgeting, and governance–this role should manage how decisions in each area affect an overall solution. In addition, this role should have expert-level skills in Azure administration and have experience with Azure development and DevOps processes.
- Implement and monitor an Azure infrastructure (50-55%)
- Implement management and security solutions (25-30%)
- Implement solutions for apps (10-15%)
- Implement and manage data platforms (10-15%)
Implement and Monitor an Azure Infrastructure (50-55%)
Implement cloud infrastructure monitoring
monitor security
monitor performance
monitor health and availability
monitor cost
configure advanced logging
configure logging for workloads initiate automated responses by using Action Groups
configure and manage advanced alerts Implement storage accounts
select storage account options based on a use case
configure Azure Files and blob storage
configure network access to the storage account
implement Shared Access Signatures and access policies
implement Azure AD authentication for storage
manage access keys
implement Azure storage replication
implement Azure storage account failover
Implement VMs for Windows and Linux
configure High Availability
configure storage for VMs
select virtual machine size
implement Azure Dedicated Hosts
deploy and configure scale sets
configure Azure Disk Encryption
Automate deployment and configuration of resources
save a deployment as an Azure Resource Manager template
modify Azure Resource Manager template
evaluate location of new resources
configure a virtual disk template
deploy from a template
manage a template library
create and execute an automation runbook
Implement virtual networking
implement VNet to VNet connections
implement VNet peering
Implement Azure Active Directory
add custom domains
configure Azure AD Identity Protection
implement self-service password reset
implement Conditional Access including MFA
configure user accounts for MFA
configure fraud alerts
configure bypass options
configure Trusted IPs
configure verification methods
implement and manage guest accounts
manage multiple directories
Implement and manage hybrid identities
install and configure Azure AD Connect
identity synchronization options
configure and manage password sync and password writeback
configure single sign-on
use Azure AD Connect Health
Implement Management and Security Solutions (25-30%)
Manage workloads in Azure
migrate workloads using Azure Migrate
implement Azure Backup for VMs
implement disaster recovery
implement Azure Update Management
Implement load balancing and network security
implement Azure Load Balancer
implement an application gateway
implement a Web Application Firewall
implement Azure Firewall
implement Azure Firewall Manager
implement the Azure Front Door Service
implement Azure Traffic Manager
implement Network Security Groups and Application Security Groups
implement Bastion
Implement and manage Azure governance solutions
create and manage hierarchical structure that contains management groups,subscriptions and resource groups
assign RBAC roles
create a custom RBAC role
configure access to Azure resources by assigning roles
configure management access to Azure
interpret effective permissions
set up and perform an access review
implement and configure an Azure Policy
implement and configure an Azure Blueprint
Manage security for applications
implement and configure KeyVault
implement and configure Managed Identities
register and manage applications in Azure AD
Implement Solutions for Apps (10-15%)
Implement an application infrastructure
create and configure Azure App Service
create an App Service Web App for Containers
create and configure an App Service plan
configure an App Service
configure networking for an App Service
create and manage deployment slots
implement Logic Apps
implement Azure Functions
Implement container-based applications
create a container image
configure Azure Kubernetes Service
publish and automate image deployment to the Azure Container Registry
publish a solution on an Azure Container Instance
Implement and Manage Data Platforms (10-15%)
Implement NoSQL databases
configure storage account tables
select appropriate CosmosDB APIs
set up replicas in CosmosDB
Implement Azure SQL databases
configure Azure SQL database settings
implement Azure SQL Database managed instances
configure HA for an Azure SQL database
publish an Azure SQL database
Microsoft Azure Architect Technologies Microsoft Technologies Practice Test
We have valid and updated AZ-303 exam questions and brain dumps. killexams.com gives the correct and latest actual questions braindumps which basically contain all AZ-303 data that you have to pass the AZ-303 exam. With the guide of our online AZ-303 exam prep, you don't need to strike your head on reference books however just need to consume 10-20 hours to retain our AZ-303 actual questions and answers.
AZ-303 Dumps
AZ-303 Braindumps
AZ-303 Real Questions
AZ-303 Practice Test
AZ-303 dumps free
Microsoft
AZ-303
Microsoft Azure Architect Technologies
http://killexams.com/pass4sure/exam-detail/AZ-303 Question: 334
HOTSPOT
Your company hosts multiple websites by using Azure virtual machine scale sets (VMSS) that run Internet Information
Server (IIS).
All network communications must be secured by using end to end Secure Socket Layer (SSL) encryption. User
sessions must be routed to the same server by using cookie-based session affinity.
The image shown depicts the network traffic flow for the websites to the VMSS.
Use the drop-down menus to select the answer choice that answers each question. NOTE: Each correct selection is
worth one point. Answer:
Explanation:
Box 1: Azure Application Gateway
You can create an application gateway with URL path-based redirection using Azure PowerShell.
Box 2: Path-based redirection and Websockets
Reference: https://docs.microsoft.com/bs-latn-ba/azure//application-gateway/tutorial-url-redirect-powershell Question: 335
HOTSPOT
You have an Azure subscription that contains multiple resource groups.
You create an availability set as shown in the following exhibit.
You deploy 10 virtual machines to AS1.
Use the drop-down menus to select the answer choice that completes each statement based on the information
presented in the graphic. NOTE: Each correct selection is worth one point. Answer:
Explanation:
Box 1: 6
Two out of three update domains would be available, each with at least 3 VMs.
An update domain is a group of VMs and underlying physical hardware that can be rebooted at the same time.
As you create VMs within an availability set, the Azure platform automatically distributes your VMs across these
update domains. This approach ensures that at least one instance of your application always remains running as the
Azure platform undergoes periodic maintenance.
Box 2: the West Europe region and the RG1 resource group
Reference: https://docs.microsoft.com/en-us/azure/virtual-machines/windows/regions Question: 336
You have an Azure subscription that contains 100 virtual machines. You have a set of Pester tests in PowerShell that
validate the virtual machine environment. You need to run the tests whenever there is an operating system update on
the virtual machines. The solution must minimize implementation time and recurring costs.
Which three resources should you use to implement the tests? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A . Azure Automation runbook
B . an alert rule
C . an Azure Monitor query
D . a virtual machine that has network access to the 100 virtual machines
E . an alert action group Answer: ABE
Explanation:
AE: You can call Azure Automation runbooks by using action groups or by using classic alerts to automate tasks based
on alerts.
B: Alerts are one of the key features of Azure Monitor. They allow us to alert on actions within an Azure subscription
Reference:
https://docs.microsoft.com/en-us/azure/automation/automation-create-alert-triggered-runbook
https://techsnips.io/snips/how-to-create-and-test-azure-monitor-alerts/?page=13 Question: 337
HOTSPOT
You have an Azure subscription that contains the resource groups shown in the following table.
You create an Azure Resource Manager template named Template1 as shown in the following exhibit.
From the Azure portal, you deploy Template1 four times by using the settings shown in the following table.
What is the result of the deployment? To answer, select the appropriate options in the answer area. NOTE: Each
correct selection is worth one point. Answer: Question: 338
Question Set 1
You have an Azure subscription that contains 10 virtual machines on a virtual network. You need to create a graph
visualization to display the traffic flow between the virtual machines.
What should you do from Azure Monitor?
A . From Activity log, use quick insights.
B . From Metrics, create a chart.
C . From Logs, create a new query.
D . From Workbooks, create a workbook. Answer: C
Explanation:
Navigate to Azure Monitor and select Logs to begin querying the data
Reference:
https://azure.microsoft.com/en-us/blog/analysis-of-network-connection-data-with-azure-monitor-for-virtualmachines/ Question: 339
HOTSPOT
You have an Azure Active Directory (Azure AD) tenant named contoso.com.
The tenant contains the users shown in the following table.
The tenant contains computers that run Windows 10.
The computers are configured as shown in the following table.
You enable Enterprise State Roaming in contoso.com for Group1 and Group
A . For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct
selection is worth one point. Answer:
Explanation:
Enterprise State Roaming provides users with a unified experience across their Windows devices and reduces the time
needed for configuring a new device.
Box 1: Yes
Box 2: No
Box 3: Yes
Reference: https://docs.microsoft.com/en-us/azure//////active-directory/devices/enterprise-state-roaming-overview Question: 340
HOTSPOT
You plan to deploy an Azure virtual machine named VM1 by using an Azure Resource Manager template. You need
to complete the template.
What should you include in the template? To answer, select the appropriate options in the answer area. NOTE: Each
correct selection is worth one point. Answer:
Explanation:
Within your template, the dependsOn element enables you to define one resource as a dependent on one or more
resources. Its value can be a comma-separated list of resource names.
Box 1: Microsoft.Network/networkInterfaces
This resource is a virtual machine. It depends on two other resources:
Microsoft.Storage/storageAccounts
Microsoft.Network/networkInterfaces
Box 2: Microsoft.Network/virtualNetworks/
The dependsOn element enables you to define one resource as a dependent on one or more resources. The resource
depends on two other resources:
Microsoft.Network/publicIPAddresses
Microsoft.Network/virtualNetworks
Reference: https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-tutorial-create-
templates-with-dependent-resources Question: 341
You have an Azure subscription.
You have 100 Azure virtual machines.
You need to quickly identify underutilized virtual machines that can have their service tier changed to a less expensive
offering.
Which blade should you use?
A . Metrics
B . Customer sights
C . Monitor
D . Advisor Answer: D
Explanation:
Advisor helps you optimize and reduce your overall Azure spend by identifying idle and underutilized
resources. You can get cost recommendations from the Cost tab on the Advisor dashboard.
Reference: https://docs.microsoft.com/en-us/azure/advisor/advisor-cost-recommendations Question: 342
You have an Azure subscription that contains an Azure Log Analytics workspace.
You have a resource group that contains 100 virtual machines. The virtual machines run Linux.
You need to collect events from the virtual machines to the Log Analytics workspace.
Which type of data source should you configure in the workspace?
A . Syslog
B . Linux performance counters
C . custom fields Answer: A
Explanation:
Syslog is an event logging protocol that is common to Linux. Applications will send messages that may be stored on
the local machine or delivered to a Syslog collector. When the Log Analytics agent for Linux is installed, it configures
the local Syslog daemon to forward messages to the agent. The agent then sends the message to Azure Monitor where
a corresponding record is created.
Reference: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/data-sources-custom-logs Question: 343
HOTSPOT
Your network contains an Active Directory domain named adatum.com and an Azure Active Directory (Azure AD)
tenant named adatum.onmicrosoft.com.
Adatum.com contains the user accounts in the following table.
Adatum.onmicrosoft.com contains the user accounts in the following table.
You need to implement Azure AD Connect. The solution must follow the principle of least privilege.
Which user accounts should you use in Adatum.com and Adatum.onmicrosoft.com to implement Azure AD Connect?
To answer select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Answer:
Explanation:
Box 1: User5
In Express settings, the installation wizard asks for the following:
AD DS Enterprise Administrator credentials
Azure AD Global Administrator credentials
The AD DS Enterprise Admin account is used to configure your on-premises Active Directory. These credentials are
only used during the installation and are not used after the installation has completed. The Enterprise Admin, not the
Domain Admin should make sure the permissions in Active Directory can be set in all domains.
Box 2: UserA
Azure AD Global Admin credentials are only used during the installation and are not used after the installation has
completed. It is used to create the Azure AD Connector account used for synchronizing changes to Azure AD. The
account also enables sync as a feature in Azure AD.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directory-aadconnect-accounts-
permissions Question: 344
HOTSPOT
You plan to create an Azure Storage account in the Azure region of East US 2.
You need to create a storage account that meets the following requirements:
Replicates synchronously
Remains available if a single data center in the region fails
How should you configure the storage account? To answer, select the appropriate options in the answer area. NOTE:
Each correct selection is worth one point. Answer:
Explanation:
Box 1: Zone-redundant storage (ZRS)
Zone-redundant storage (ZRS) replicates your data synchronously across three storage clusters in a single region.
LRS would not remain available if a data center in the region fails
GRS and RA GRS use asynchronous replication.
Box 2: StorageV2 (general purpose V2)
ZRS only support GPv2.
Reference:
https://docs.microsoft.com/en-us/azure/storage/common/storage-redundancy
https://docs.microsoft.com/en-us/azure/storage/common/storage-redundancy-zrs Question: 345
You have a virtual network named VNet1 as shown in the exhibit. (Click the Exhibit tab.)
No devices are connected to VNet1.
You plan to peer VNet1 to another virtual network named VNet2. VNet2 has an address space of 10.2.0.0/16.
You need to create the peering.
What should you do first?
A . Configure a service endpoint on VNet2.
B . Add a gateway subnet to VNet1.
C . Create a subnet on VNEt1 and VNet2.
D . Modify the address space of VNet1. Answer: D
Explanation:
The virtual networks you peer must have non-overlapping IP address spaces. The exhibit indicates that VNet1 has an
address space of 10.2.0.0/16, which is the same as VNet2, and thus overlaps. We need to change the address space for
VNet1.
Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-manage-peering#requirements-and-
constraints Question: 346
HOTSPOT
You have an Azure Resource Manager template named Template1 in the library as shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information
presented in the graphic. NOTE: Each correct selection is worth one point. Answer:
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/template-syntax Question: 347
DRAG DROP
You have an Azure subscription that contains two virtual networks named VNet1 and VNet2. Virtual machines
connect to the virtual networks.
The virtual networks have the address spaces and the subnets configured as shown in the following table.
You need to add the address space of 10.33.0.0/16 to VNet1. The solution must ensure that the hosts on VNet1 and
VNet2 can communicate.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions
to the answer area and arrange them in the correct order. Answer:
Explanation:
Step 1: Remove peering between Vnet1 and VNet2.
You cant add address ranges to, or delete address ranges from a virtual networks address space once a virtual
network is peered with another virtual network. To add or remove address ranges, delete the peering, add or remove
the address ranges, then re-create the peering.
Step 2: Add the 10.44.0.0/16 address space to VNet1.
Step 3: Recreate peering between VNet1 and VNet2
Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-manage-peering Question: 348
HOTSPOT
You have an Azure Resource Manager template for a virtual machine named Template1.
Template1 has the following parameters section.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct
selection is worth one point. Answer:
Explanation:
Box 1: Yes
The Resource group is not specified.
Box 2: No
The default value for the operating system is Windows 2016 Datacenter.
Box 3: Yes
Location is no default value.
Reference:
https://docs.microsoft.com/bs-latn-ba/azure/virtual-machines/windows/ps-template
For More exams visit https://killexams.com/vendors-exam-list
Kill your exam at First Attempt....Guaranteed!
Microsoft Technologies practice test - BingNews
https://killexams.com/pass4sure/exam-detail/AZ-303
Search resultsMicrosoft Technologies practice test - BingNews
https://killexams.com/pass4sure/exam-detail/AZ-303
https://killexams.com/exam_list/MicrosoftMicrosoft Certification Guide: Overview and Career Paths
Microsoft is best known for its Windows operating systems and Office software. But the company has a much broader product portfolio that includes online services (Bing, MSN, advertising), gaming (Xbox 360), hardware (tablets, PCs, keyboards and mice) and more. The company also has a sizable certification program that turns out qualified administrators and technicians to support its system and application products.
Achieving IT certifications through the Microsoft Certification Program shows a person’s competence in a specific IT role, and it can result in all kinds of work-related and personal benefits. For example, studies show that IT certifications increase the chances of landing a job (or getting a promotion), and over 80 percent of hiring managers report IT certifications are medium to high priority in hiring decisions.
Microsoft certification program overview
Currently, the Microsoft Certification Program is divided into seven main categories:
Cloud Platform and Infrastructure: This category encompasses business intelligence, Windows Server 2016, Microsoft Azure, machine learning, cloud data platform solutions, data analytics and big data, software-defined data centers, server infrastructures, private and hybrid clouds, DevOps, and more. This is the “new mainstream” for Microsoft certification.
Mobility: This category is for end-user and desktop topics, including Windows 10, desktop and enterprise applications, working with System Center Configuration Manager and Intune, and planning for and managing devices in an enterprise setting.
Data Management and Analytics: This arena now incorporates machine learning, business intelligence, business applications, and data management and analytics, along with Microsoft SQL Server 2016 and other Microsoft database technologies. Database development is also important and includes working with Transact-SQL and developing SQL databases. Business applications include extensive coverage of Microsoft Dynamics 365 and Microsoft Dynamics AX. Data management and analytics cover a range of topics, including cloud data platform solutions, big data analytics solutions, database solutions, implementing data models and reports, and various aspects of business intelligence solutions.
Productivity: This category brings the Microsoft Office Specialist (MOS) credentials together with those related to Microsoft productivity offerings, such as Exchange Server, SharePoint Server and Skype for Business, as well as Office 365 identities, requirements and services.
App Builder: This is a development-oriented category that covers the ins and outs of using Microsoft solutions and platforms to build compatible software. syllabus in this category include architecting, designing, testing and building solutions around Azure, programming in HTML5 with JavaScript and CSS3, developing ASP.NET MVC Web apps, managing development throughout the entire software lifecycle, and more
Business Applications: This category focuses on Microsoft Dynamics 365 platforms and technologies, including Dynamics 365 for Sales, Customer Service, Marketing, Distribution and Trade, Trade, financial management (Finance and Operations), Retail, Talent, and Field Service and other focused applications.
Core Infrastructure: Core Infrastructure focuses on virtualization, storage, networking, system management, identity management, and modern data centers.
Certifications within the Microsoft Certification Program include the following credentials:
Microsoft Technology Associate (MTA)
Microsoft Certified Solutions Associate (MCSA)
Microsoft Certified Solutions Expert (MCSE)
Microsoft Solutions Developer (MCSD)
Microsoft Office Specialist (MOS)
After you pass your first qualifying Microsoft certification exam, you are deemed a Microsoft Certified Professional (MCP). MCP status provides access to a benefits and exams dashboard, with certificates and transcripts, downloadable certification logos, promotional offers and lots more. You also get the MCP designation on your Microsoft transcript. It’s important to understand that only the MCSA, MCSD and MCSE qualify as MCP certifications. Neither MTA nor MOS certifications qualify for MCP status, and none of those exams are prerequisites for MCSA, MCSE or MCSD certifications.
In addition to the certifications outlined above, Microsoft offers its MCT: Microsoft Certified Trainer and MCE: Microsoft Certified Educator credentials to those interested in teaching others about Microsoft technologies and products.
Microsoft recently released a new set of role-based certifications focused on Azure and Microsoft 365 developers, administrators, and solution architects.
Microsoft Cloud certifications
The Microsoft Cloud certification track includes MTA and MCSA credentials. Within the MTA program, there is one relevant certification: Cloud Fundamentals. To earn the MTA: Cloud Fundamentals credentials, candidates must pass a single exam that validates knowledge and skills using basic Microsoft cloud services. Candidates should have experience using firewalls, network ports, Office 365, network topologies and devices, and Microsoft Intune.
The MCSA Cloud track includes BI Reporting, SQL 2016 BI Development certs, Windows Server 2012, and Windows Server 2016 credentials. The Windows Server certifications require three exams each while BI Reporting and SQL 2016 BI Development require only two exams.
Microsoft Mobility certifications
The Microsoft Mobility certification track includes MTA, MCSA and MCSE certifications. The MTA program has just one relevant certification – MTA: Mobility and Device Fundamentals. —The MTA: Mobility and Device Fundamentals certification is earned by passing a single exam that attests to a candidate’s knowledge of mobility and Windows devices. Candidates should possess practical experience with Active Directory, Windows devices, Windows-based networking, network topologies and ports, firewalls, and antimalware products.
MCSA: Windows 10 is the only MCSA Mobility track credential available. Earning the MCSA: Windows 10 requires passing two exams.
The remaining credential in this track is the MCSE: Mobility. This requires earning the MCSA: Windows 10 plus passing one more exam, from a list of two possibilities that deal with Windows desktops and enterprise applications, or administering System Center Configuration Manager and Cloud Services Integration.
Both the MCSA: Mobility and MCSE: Mobility credentials retire on March 31, 2019. If earned prior to the retirement date, the credentials will continue to show as “active” certifications on your transcript. The MCSA: Windows 10 will be replaced by a new role-based credential – the Microsoft Certified: Modern Desktop Administrator Associate. Two exams are required to earn this credential. At present, no announcement has been made regarding whether the Modern Desktop Administrator Associate credential will become a prereq to the MCSE: Mobility. There’s a lot of ongoing ferment in MS certification programs right now. We expect 2019 to see major changes in MS’s cert programs and offerings. Next year’s update should be a big one!
Microsoft Data certifications
Microsoft’s Data certification track includes the MTA, MCSA and MCSE. (To see the Data track, go to the Microsoft Certification page and click Data from the Category dropdown menu.) The MTA program requires one exam on database fundamentals. There are six certifications in the MCSA Data track– namely, Data Engineering with Azure, Machine Learning, SQL 2016 BI Development, SQL 2016 Database Administration, SQL 2016 Database Development, and SQL Server 2012/2014. All certs require two exams except for SQL Server 2012/2014, which requires three. The Data Engineering with Azure and Machine Learning certifications both retire on June 30, 2019.
The prerequisite MCSAs that qualify for MCSE: Data Management and Analytics are SQL Server 2012/2014, SQL 2016 Database Administration, Database Development, BI Development, Machine Learning, BI Reporting, or Data Engineering with Azure. One additional exam from a list of 13 possibilities must be passed to earn this credential. syllabus covered include cloud data platform solutions, big data analytics solutions, developing or designing SQL Server databases, implementing data models and reports, designing business intelligence solutions, implementing a data warehouse, developing SQL data models, analyzing big data with Microsoft R, cloud data science with Azure machine learning, data engineering with Azure HDInsight, and implementing with Azure Cosmos DB solutions.
Microsoft Productivity certifications
Certifications in the Microsoft Productivity category vary widely, from proving competency in using a single Office product to managing Office 365 services and user login credentials. This track is also fairly large; it includes an MCSA and MCSE certification as well as Microsoft Office Specialist (MOS) offerings.
The MCSA Productivity track includes a single certification – the MCSA: Office 365. Two exams are required to obtain the credential. This credential is targeted to retire on Mach 30, 2019. The MCSE: Productivity certification requires candidates possess either the MCSA Office 365, Windows Server 2012, or Windows Server 2016 credential as a prerequisite. Candidates must also pass one additional exam, from a list of eight possibilities. syllabus covered include Exchange Server, SharePoint Server and Skype for Business, for multiple versions of these platforms.
Microsoft offers a MOS Office 2016 certification for each Office application (Word, Excel, PowerPoint, Outlook, Access, and Outlook). Office 2013 credentials are still available, but unless you have a specific reason for achieving them, focus on Office 2016.
The MOS 2016 Expert certification identifies individuals with advanced Office skills and requires candidates to pass two exams. The MOS 2016 Master certification is the pinnacle of the MOS Certification Program and requires successful completion of six exams.
Microsoft App Builder certifications
The Microsoft Developer certification path includes MTA, MCSA and MCSD certifications. The MTA program recognizes individuals who are entry-level software developers. The certification requires candidates to pass one of five exams. Possible syllabus include software development fundamentals, HTML5 app development fundamentals, and intro to programming using block-based languages, Python or JavaScript, and using HTML and CSS.
There are two credentials in the Microsoft App Builder MSCA track. The MCSA: Universal Windows Platform(UWP) credential prepares candidates to tackle professional development projects. They must pass two exams, one on programming in C#, the other on developing mobile apps. The MCSA: Web Applications credential prepares candidates for building web-based applications. They must pass two exams, one of which is required while candidates may choose from two possibilities for the second exam. All candidates must take the exam relating to developing ASP.NET MVC Web applications. syllabus for the second exam include programming in HTML5 with JavaScript and CSS3 or programming in C#.
The MCSD Developer track consists of the MCSD: App Builder certification. It requires earning either the MSCA: Web Applications or MCSA: UWP as its prerequisite, followed by your choice of one exam from a list of five possible options. syllabus covered in include architecting and developing Azure solutions, developing Azure and web services, developing mobile apps, programming in HTML5 with JavaScript and CSS3, programming in C#, developing ASP.NET MVC Web apps, or developing MS Azure and Web services.
Microsoft Business Applications certifications
The Microsoft Business Applications certifications include MCSA and MCSE certifications. There are two MCSA options: MCSA: Microsoft Dynamics 365 and MCSA: Microsoft Dynamics 365 for Operations. Each requires passing two exams. The plain vanilla Dynamics 365 certification draws from a list of two exams, both of which are needed to meet its requirements. One exam covers Dynamics 365 customer engagement online deployment, while the other covers Dynamics 365 customization and configuration. The MCSA: Microsoft Dynamics 365 credential retires on April 30, 2019.
The Dynamics 365 for Operations draws from a list of three exams, one of which is required while candidates may choose the course for the second exam. syllabus covered include administering a Microsoft SQL database infrastructure, provisioning SQL databases, and development, extensions and deployment for Microsoft Dynamics 365 for Finance and Operations (required).
The MSCE: Business Applications credential is the sole MCSE item for this certification track. It takes either of the Microsoft Dynamics MCSAs covered in the preceding paragraph as its prerequisite, then requires candidates to pass another exam drawn from a list of eight possibilities. syllabus covered include Microsoft Dynamics 365 for Sales, customer service, marketing, distribution and trade, trade, financial management (finance and operations), retail, talent, and field service.
Core Infrastructure
Microsoft offers a single credential focused on core infrastructure – MCSE: Core Infrastructure. The MCSE: Core Infrastructure certification validates a candidate’s knowledge and skills related to data centers, virtualization, systems management, storage, networking and identity management. The credential requires either the MCSA: Windows Server 2016 or MCSA: Windows Server 2012 as a prerequisite. In addition to the MCSA, candidates must pass a single exam from seven topics. exam syllabus include designing and implementing Cloud Data Platform solutions, designing and implementing Big Data Analytics solutions, securing Windows Server 2016, implementing software-defined datacenters, designing and implementing server infrastructures, implementing advanced server infrastructures, and configuring and operating a hybrid cloud with Microsoft Azure Stack.
Microsoft Trainer and Educator certifications
MCT: Microsoft Certified Trainer
Folks who teach others about Microsoft technologies and products should consider (and are often required to have) the Microsoft Certified Trainer (MCT) certification. The MCT can be obtained by submitting an application to Microsoft that proves that you hold a current Microsoft certification, one year of instruction experience (supporting reference required), plus verifiable instructional skills in the form of an acceptable instructor certification (such as CompTIA CTT+, Microsoft Certified Trainer Instructional Skills Certification (MCT-ISC) or IAMCT Approved Technical Trainer).
To renew, credential holders must possess at least one current Microsoft credential, meet the minimum instruction requirements of teaching at least one class, and maintain a Metrics that Matter quality score of at least seven. (Check the MCT website for a list of qualifying certifications and instructor certifications.)
As an MCT, you have access to the MCP benefits and exams dashboard, prep kits, the MCT community, Microsoft Online Labs and much more.
MCE: Microsoft Certified Educator
The Microsoft Certified Educator (MCE) credential is aimed at educators in academia, such as colleges, universities and training facilities. To become an MCE, you must demonstrate technology literacy by passing at least one exam.
The literacy competency is mapped to the UNESCO ITC Competency Framework for Teachers, Technology Literacy and includes education policy, curriculum and assessment, pedagogy, ICT/technology tools, organization and administration, and professional development.
Related jobs and careers
IT professionals who earn Microsoft certification often receive extra recognition from hiring and supervising managers, and enjoy improved on-the-job success and promotion opportunities. Companies that negotiate large volume purchase or subscription agreements with Microsoft (or its partner resellers) often include funding for official curriculum training and Microsoft certification exam vouchers as part of what’s covered therein.
Here are how the various Microsoft certification areas shake out, job- and career-wise:
A Microsoft Cloud certification is ideal for the IT professional who designs, deploys, configures and/or manages a Windows Server environment, stand-alone or cloud-based, which may include various desktops and devices. Folks who achieve this type of certification work as systems administrators, systems analysts, technical specialists (often with a platform focus such as SQL Server, Skype for Business or Exchange Server), and the like.
A Microsoft Mobility certification is designed for those who deploy, configure and/or manage a Windows desktop environment and related devices, whether on-premises or in the cloud. IT professionals with this type of certification usually fill positions such as help desk technicians, support personnel and systems administrators, to name a few.
Of late, Microsoft Productivity credentials have been gathering interest, coverage and momentum. People who pursue these certifications work with key Windows platforms such as Office, Office 365 and Microsoft Dynamics 365, which covers CRM, ERP and more. They are usually responsible for making sure that rank-and-file employees are able to work effectively and productively, and that technology provides a boost to the bottom line.
Microsoft Data certifications cover a lot of ground. Database design, creation and maintenance are particularly important to organizations today, considering that data storage is key to most business computing, and nearly every website is supported by one or more databases running in the background. A database administrator is in charge of all kinds of database-related functions, from development to storage and retrieval, troubleshooting and security. Now, Microsoft’s database coverage also integrates business intelligence and big data/data analytics components, too, so IT professionals interested in these subject matters will find a lot to chase down and learn here.
Microsoft App Builder certifications aim at application and mobile app developers who use programming languages and source code to create software. A developer may work independently or, more often, with a team, to develop, prototype, deploy, test, and modify applications for computers and many types of electronic devices. This certification portfolio also includes development for Microsoft’s cloud-based Azure environment and for software lifecycle management as well.
Microsoft Business Applications certifications aim at those involved with back-office, line of business systems and applications built around Microsoft Dynamics 365 (including the “for operations” version of that platform). This credential aims at those who upgrade, configure, and customize such systems as well as those who develop custom applications for specific, proprietary uses in-house or on behalf of clients. Such professionals also support customized configurations for various organizational units, including sales, field service, retail operations, finance, distribution and trade and more.
Trainers (MCTs) and educators (MCEs) also play a vital role in the Microsoft ecosystem as well. MCTs populate the front lines of key training for IT professionals across all of its platforms, tools and technologies with an emphasis on cultivating workplace readiness and imparting skills and knowledge suitable for on-the-job deployment. Arguably, MCEs are even more important, by helping students at all levels of education – primary, secondary and beyond – to understand and make the most of Microsoft tools, technologies, platforms, and development environments.
Training and certification preparation materials
Microsoft offers training to candidates directly, both in the classroom and online. The company’s Microsoft Virtual Academy (MVA) is a great place to start poking around: it offers a huge range of free training courses, many of them at least relevant to various certification syllabus if not directly focused on such topics.
There’s also a huge aftermarket for Microsoft training, self-study and certification preparation. Pearson operates Microsoft Press on Microsoft’s behalf, where you can find self-study guides for all the popular Microsoft cert exams (and many of the not-so-popular exams as well). Pearson’s IT Certification imprint (online at PearsonITCertification.com) also offers study guides, exam crams (a series I invented), practice tests, video training materials and much more for Microsoft certification candidates. Wiley/Sybex and Osborne/McGraw-Hill also offer certification focused imprints, book series and generally provide good coverage of major cert syllabus as well, also including most popular Microsoft certifications and related exams. Pearson’s mindhub online store also offers “official” practice exams approved by Microsoft.
There’s a wealth of excellent material available to help candidates prepare. Look to online and peer reviews, study groups and rating sites to separate the wheat from the chaff.
Thu, 09 Nov 2023 10:01:00 -0600entext/htmlhttps://www.businessnewsdaily.com/10736-microsoft-certification-guide.htmlMicrosoft tests support for hearing aids in Windows 11
Microsoft tests support for hearing aids in Windows 11
Microsoft tests support for hearing aids in Windows 11
/
Some users can now pair compatible hearing aids with their Windows PCs and take calls.
BySheena Vasani, a writer covering commerce, e-readers, and tech news. She previously wrote about everything from web development to AI at Inside.
Share this story
Illustration: The Verge
Windows 11 will soon let some users with hearing aids take calls, listen to music, and stream audio from their PCs, Microsoft announced on Wednesday.
The recently rolled out Windows 11 Insider Preview Build 25977 now supports hearing aids equipped with Bluetooth LE Audio technology, Microsoft revealed. Consequently, people can directly pair hearing aids with Windows 11 PCs.
The feature is currently only available on select Windows devices with Bluetooth LE Audio support, though Microsoft says more PCs will offer it in the future. The tech giant also says it will add more capabilities for hearing aids over time, such as the ability to control audio presets within Windows.
Microsoft announced it was adding support for Bluetooth LE in Windows 11 during its Build conference in May. The audio specification uses the LC3 audio codec, which makes it possible to deliver high-quality audio while conserving battery power. It also allows for features like the ability to transmit audio to multiple devices simultaneously.
In addition to new accessibility features, Build 25977 also introduced some privacy updates. The company announced that users will now receive notifications when an app attempts to access their location or Wi-Fi information.
Sat, 11 Nov 2023 10:00:00 -0600entext/htmlhttps://www.medpagetoday.com/practicemanagement/informationtechnologyMicrosoft Tests New Version of Outlook for Windows 11: Offline Support Included
We use technologies like cookies to store and/or access device information. We do this to Strengthen browsing experience and to show personalized ads. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Tue, 17 Oct 2023 12:00:00 -0500en-UStext/htmlhttps://www.gizchina.com/2023/10/18/outlook-windows-11-offline-support/Microsoft Azure AI, data, and application innovations help turn your AI ambitions into realityNo result found, try new keyword!Welcome to Microsoft Ignite 2023! The past year has been one of true transformation. Companies are seeing real benefits today and are eager to explore what’s next—including how they can do more with ...Wed, 15 Nov 2023 02:00:00 -0600en-ustext/htmlhttps://www.msn.com/Automation Tech to Form Central Part of Effort in Australia to Operationalise AI in 2024
Automation use cases like intelligent document processing and communications mining could help organisations fast-track artificial intelligence operationalisation in 2024, according to a report from UiPath, as businesses seek to combine AI with automation to Strengthen processes.
Mark Fioretto, area vice president and managing director at UiPath
Mark Fioretto, area vice president and managing director at AI-powered automation software company UiPath, said 2024 would see businesses in the Australasian region taking advantage of technologies in the traditional automation space but using AI to supercharge their results.
UiPath also predicts automation will drive process improvements in a number of areas together with AI, including improving AI safety processes by keeping humans in the loop and enabling environmental, social and governance data capture and reporting to be streamlined.
Jump to:
C-suite sees operationalisation of AI as leading priority for 2024
The drive to commercialise generative AI capabilities inside products or processes inside organisations is the biggest AI trend UiPath is seeing among Australia’s C-level executives.
This comes as organisations struggle to adopt AI across their enterprises. A global report from McKinsey, for example, found almost half of organisations (45%) have no AI at scale (Figure A).
Figure A: Organisations are yet to adopt AI across multiple functions. Source: McKinsey
Fioretto said operationalisation required businesses to put AI-sourced information into practice, which was likely to increase the market’s embrace of AI and automation combinations in 2024.
“The C-suite really wants to operationalise AI and drive productivity in different ways within their organisations, as well as servicing customers in an improved manner,” Fioretto said. “This is making the combination of AI and automation really top of mind in C-suites right now.”
AI-powered automation to deliver productivity advantages
A global UiPath-commissioned survey of 200 companies, conducted by Bain & Company, found 70% of executives think AI-driven automation — combining both AI and automation components — would be “very important” or “critical” in fulfilling their business’ strategic objectives.
Most executives (85%) singled out higher productivity and efficiency as the primary advantages. McKinsey’s research estimates that, when generative AI is combined with other technologies, work automation could boost annual productivity growth by 0.2 to 3.3 percentage points.
“Having generative AI available in a more consumable way for the broader market means we are now seeing a combination of generative AI with specialised AI as customers adapt or use generative AI and different commercial models to commercialise AI inside processes,” Fioretto said.
Multiple AI and automation combinations are expected to rise
With executives seeking to implement use cases that can quickly generate value from AI, UiPath expects an uptick in Australian companies using AI and automation opportunities in 2024.
Intelligent document processing
UiPath singles out intelligent document processing as a key use case. IDP allows industries using lots of documents, such as the banking, healthcare, insurance and legal sectors, to Strengthen their speed, capacity and costs.
“IDP is a great example of creating a huge amount of efficiency combining generative AI and specialist AI with automation,” Fioretto said.
For example, Heritage Bank’s 2017 commitment to go digital and scale back- and middle-office processes has led to 90% process automation in some areas, including the compiling of living expense reports for loan applications. The bank, which is a UiPath customer, has also achieved a 98% accuracy in machine learning across its banking and wealth management businesses.
Communications mining
AI and automation can be paired to help organisations understand and act on emails, texts and unstructured data. For example, many organisations have contact centres with general or unmanned inboxes for inquiries, which need to be categorised and routed to the right person.
“You are able to take the logic generated by large language models and through available information in the marketplace, but then, you are using specialised AI to route or enable the processing of the customer request efficiently within an organisation,” Fioretto said.
Automating automation
The natural language processing power of AI will “automate automation.” In the coming year, UiPath said developers and business users will increasingly ask their automation platform to build automations using natural language or no-code inputs. The platforms will be able to convert these prompts into real workflows, test cases, process mining and individual tasks.
AI safety success will lean on practical automation capabilities
The push to enhance AI safety will continue during 2024, according to UiPath, as the market seeks to mitigate the potential for misuse and miscalculation in the use of the technology. Fioretto said this will require guardrails and controls, supported by automation capabilities.
Human in the loop
Organisations are likely to expand “human in the loop” capabilities through “exception tagging,” which creates automated notifications if a process is not followed by flagging it as an exception. Humans can either be brought into the loop, or a reason can be captured for the exception.
Task mining
Task mining can be used to unearth or identify processes that are aged or not constructed correctly. This can create a “hidden floor” ensuring problem processes can be identified for discussion and uplifting the way AI governance processes or policies will be applied.
ESG reporting another application for AI-powered automation
The requirement for Australian organisations to report under new ESG standards from the International Sustainability Standards Board beginning on July 1, 2024, could drive further use of AI-powered data and reporting automations within organisations.
Fioretto said new sustainability-related disclosures would require the collection, compilation, validation and reporting of ESG data across complex organisations, including supply chains, in an environment where managing this ESG data collection process is proving challenging.
AI-powered automation could help monitor metrics like carbon emissions, streamline data collection, processing, analysis and reporting, and reduce the likelihood of mistakes. Data could also be extracted, interpreted and processed from structured and unstructured documents.
AI and automation to redefine work as we know it
A exact report from the Australian Computer Society found that up to 90% of workers could be affected by artificial intelligence. UiPath expects 2024 to be characterised by a growing understanding of how humans will work collaboratively together with machines in the future.
“If I go back in time and think about when the internet was made usable and accessible to the general public, no one would have guessed the impact that was going to have in our work lives over time, or the way we interacted with each other,” Fioretto said. “We are in a similar situation now in terms of how AI will coexist with how we operate as humans.
“Over time, we will see an evolution in how it gets applied to how we work, but I think AI will be embedded in the way we interact with each other on a personal level and business level.”
Automation and AI will augment our human capacities
AI and automation is not about replacing humans, Fioretto said, but augmenting our capacities with data from the internet and other models. Human logic will still need to be applied to ensure AI models are responsible and fit within the parameters of how we interact with each other.
“Take no-code or low-code applications and technology and how they will apply in the workplace — the opportunity is enormous, not just in terms of efficiency but in creating a more satisfying time at work, where we are more focused on high value tasks,” Fioretto said.
Thu, 16 Nov 2023 10:41:00 -0600en-UStext/htmlhttps://www.techrepublic.com/article/uipath-australia-automation-ai-predictions-2024/Microsoft pioneers use of generative AI in software — at a price
For most of its 48 years, Microsoft has been known as the tech industry’s most effective fast-follower — a company that perfected inventions made elsewhere, rather than coming up with its own.
But this week has brought something different, according to Barry Briggs, a former chief technology officer at the US company: Microsoft has become the first in the industry to make the technology behind ChatGPT available as a standard feature in a widely used software product, potentially transforming the working lives of millions.
After nearly a year of soaring hopes for generative AI, the software industry will be watching the outcome for signs of whether the technology is ready to move from hype to business reality. Microsoft’s move will also be the first test of companies’ willingness to pay a high price for a technology that draws heavily on expensive computing resources such as the advanced chips needed to train AI models, and that make it costly to deliver.
On Wednesday, Microsoft officially declared “general availability” of a generative AI assistant, dubbed Copilot, in enterprise versions of its widely used Microsoft 365 suite of productivity apps, which includes Word, PowerPoint and Excel.
The move potentially puts new AI tools at the fingertips of an estimated 150mn workers, according to analysts, and helping them automatically generate documents and emails or create spreadsheets more easily. The software is designed to make it simple to draw on all the data a company holds in its Microsoft applications. Eventually, connections to other data stores are meant to make Copilot a “smart” front end for working with all of a company’s most valuable data.
Tech Tonic podcast: Superintelligent AI
Madhumita Murgia and John Thornhill look at the concerns around the rise of AI. Listen here for the new season
To judge from the price tag, Microsoft expects the technology to mark a profound advance in the everyday software applications used by many white-collar workers. The Copilot feature has been priced at $30 a month per user and is available as an upgrade to customers who already pay for the E3 or E5 editions of the company’s productivity apps. These cost $36 and $57 a month, respectively — meaning that the upgrade will add as much as 83 per cent to the monthly software bill.
“At that price point customers are going to be reluctant to adopt it enterprise-wide straight away,” said Derrick Wood, an analyst at TD Cowen. Instead, he added, they are likely to test it carefully before rolling it out, searching for the particular types of work that benefit the most from the technology.
Despite this, the sheer number of workers who use its software and its early lead in generative AI has put Microsoft in pole position as the fast-evolving technology makes it into everyday use.
At a exact Gartner event attended by 9,000 corporate chief information officers and others, Microsoft’s AI dominated much of the conversation, said Jason Wong, an analyst at the IT research firm. One early sign of that came last week with an unexpected pick-up in growth at Microsoft’s Azure cloud platform, which the company attributed to AI.
“Microsoft has done well to generate mind share,” said Wong. “But it is not market share yet.” Other software companies “will be watching very closely” to see if it can turn the promise into real revenue gains, he added.
Unlike a normal product launch, there is much about the arrival of generative AI in mass-market software that looks experimental. It is not yet clear what types of work will benefit most from the technology or how easily workers will take to the new tools, analysts say.
There are also “risks of errors and misinterpretations and misuse”, said JP Gownder, an analyst at Forrester Research. A lazy worker, for instance, might send an AI-generated email without checking it for accuracy, or rely on an automated recap of a meeting without checking with one of the humans who was there to pick up nuances the AI failed to grasp. If AI makes it easier to produce more emails, it may add to the overload felt by many workers who are already drowning in electronic communications.
Microsoft executives admit there are many things they do not know about how workers will use the new technology or what unexpected side effects it may have.
“Certainly we’re in the early innings and we’re just learning,” said Jared Spataro, the Microsoft corporate vice-president in charge of bringing new features to its business applications. “I’m sure there are things we’re not thinking about right now.” But he predicted that positive surprises would outweigh the negative ones as the versatility of generative AI brings new and unexpected uses.
Spataro added that Microsoft has already collected enough data from its trials to show the new Copilot delivers big productivity gains. It plans to disclose the findings at its annual Ignite conference on November 14.
Besides measuring the time workers save by doing tasks such as automatically generating text and analysing numbers, Microsoft says its tests have included running control groups to validate the findings and developing ways to measure the quality of the generative AI output, rather than just its quantity.
Until customers see the results and get a chance to validate them with their own tests, however, such claims have to be taken on trust. “Right now, there aren’t a lot of facts,” said Wong. “Companies are either investing on faith, or fear: fear they’ll fall behind.”
The $30 a month figure was set after researching what customers would be prepared to pay for the sort of assistance the AI can deliver, said Spataro. Microsoft also looked at the “cost-per-head math” — how much $30 a month represented in terms of the overall cost of hiring a knowledge worker, and what kind of productivity gains would be needed to justify the extra software cost.
Gownder at Forrester calculated that the extra spending would be justified even with “pretty modest assumptions”, for instance assuming the software saved a high-priced worker as little as two hours a month.
Despite making big claims for the AI, Microsoft executives have sought to lower expectations about its revenue impact in the short term, and Wall Street forecasts are tempered. Even a successful rollout of the technology might only add 1 per cent to Microsoft’s revenue growth in its 2025 fiscal year, which starts next July, calculated TD Cowen analyst Wood. That is the equivalent to about $2-2.5bn, Wood added.
Competition with other software companies could also limit the potential. The APIs offered by OpenAI and other makers of large language models, which make it easy for programs to tap into their services, have opened the way for generative AI to become a standard feature of many software applications.
Microsoft will still have a number of advantages over other companies, said Wood, such as being able to tap into data held in Microsoft applications and its close relationship with OpenAI. But it is not clear how much of a premium it will be able to command if automatically generating emails or summarising documents become routine activities available from many different applications. “We’ll see if Microsoft can hold these price points,” he added.
Tue, 31 Oct 2023 12:00:00 -0500en-GBtext/htmlhttps://www.ft.com/content/81db7c36-f9ae-496b-9dd4-971aefe6f9a9Dell Technologies Launches New Services for Microsoft 365 Copilot to Speed Productivity and EfficiencyNo result found, try new keyword!With Dell's technology expertise ... organizations develop the strategy, deploy and test the solution and prepare teams to capitalize on Microsoft 365 Copilot functionality.Wed, 08 Nov 2023 03:48:00 -0600https://www.nasdaq.com/press-release/dell-technologies-launches-new-services-for-microsoft-365-copilot-to-speedCIOs Assess Whether Microsoft’s AI Copilot Justifies Premium Price
After months of speculation about how generative AI might transform business, Microsoft is poised to make its AI Copilot available through its 365 platform, a test of whether CIOs believe the technology will generate enough value to justify a premium price.
CIOs say they are eager to test out the AI assistant, even though the cost is a consideration for some. Copilot leverages generative AI across the Microsoft 365 suite by doing most things you might ask a business assistant to do, like summarizing video calls, writing draft responses to emails and transforming Word documents into PowerPoint presentations, said Jared Spataro, corporate vice president of Modern Work and Business Applications at Microsoft.
Tue, 31 Oct 2023 03:50:00 -0500en-UStext/htmlhttps://www.wsj.com/articles/microsofts-hotly-anticipated-generative-ai-work-assistant-set-to-debut-aa263a18Five big Microsoft changes to Strengthen its security
Microsoft is rolling out an array of major changes to its software engineering process aimed at improving the security of its widely used platforms, the company announced Thursday.
In a pair of blog posts, top executives from the tech giant outlined updates that are meant to enable its software to be secure by default while also improving key areas such as identity security and cloud vulnerability mitigation.
The changes are a part of Microsoft’s newly announced Secure Future Initiative, the company said.
While the new initiative also aims to use AI in a bigger way to address evolving cyberthreats, the changes around Microsoft’s software engineering will potentially impact the company’s largest platforms including Azure, Windows and Office 365.
The changes come just a few months after a high-profile Microsoft cloud breach that impacted US government email accounts, and prompted an inquiry into Microsoft’s security practices by US Senator Ron Wyden.
Separately, industry executives including Tenable chief executive Amit Yoran have recently accused Microsoft of responding slowly and inadequately to vulnerability disclosures.
And federal cybersecurity officials such as CISA Director Jen Easterly have slammed Microsoft’s monthly “Patch Tuesday” software release, which typically reveals scores of vulnerabilities, saying it represents the opposite of a “secure by default” approach to software development.
"New standard for security"
In one of the blog posts announcing the changes this week, Microsoft president Brad Smith wrote that its new initiative will “bring together every part of Microsoft to advance cybersecurity protection.”
The initiative will set “a new standard for security” at Microsoft through evolving “the way we design, build, test, and operate our technology,” Smith said.
In the second post, Microsoft’s top security executive Charlie Bell wrote that “a more secure future will require new advances in fundamental software engineering.”
Notably, Bell’s blog post references Bill Gates’ famous 2002 memo on “Trustworthy Computing,” in which Gates committed Microsoft to bringing a stronger focus on the security of its products.
Bell included one of Gates’ lines from the memo: “if we don’t do this, people simply won’t be willing — or able — to take advantage of all the other great work we do.”
For Microsoft, Bell wrote, that notion “still holds true over two decades later.”
Enabling "Secure By Default" software development
Microsoft’s software development lifecycle (SDL) approach, Smith wrote, is now going to evolve into what the company is calling “dynamic SDL.”
The new approach — which will be powered in part by increased usage of automation and AI — will “continuously integrate cybersecurity protection against emerging threat patterns as our engineers code, test, deploy, and operate our systems and services,” he wrote.
Bell wrote that AI-powered “dynamic SDL” will enable Microsoft to “deliver software that is secure by design, by default, and in deployment.”
“Our goal is to accelerate the deployment of CodeQL integrated with GitHub Copilot learnings,” Bell wrote, referring to Microsoft-owned GitHub’s generative AI coding assistant tool.
“Principles like the Security Development Lifecycle will continue to guide our software supply chain, while we expand automation and build with memory safe languages,” Bell wrote.
“We will also use threat modelling and Code QL as complementary techniques to identify and mitigate security risks and vulnerabilities in our products and services."
"We will use Code QL to perform static and dynamic code analysis, helping our teams find and fix bugs in our code at AI speed and scale.”
Microsoft does still plan to keep SDL “front and center,” but the company will “continue expanding [its] use of memory safe languages (MSLs) in our products whenever possible, so that we keep building security in at the language level, helping to eliminate classes of traditional software vulnerabilities.”
Expansion of default MFA settings
Another update from Microsoft is that the company plans to “enable customers with more secure default settings for Multi-Factor Authentication (MFA) out-of-the-box.”
This expansion — which will take place “over the next year” — will bring Microsoft’s “current default policies to a wider band of customer services,” Smith (pictured) wrote.
In his post, Bell said that Microsoft has concluded that when it comes to MFA, which is considered more secure than typical password-only authentication, the practice “must scale where our customers need them most to provide protection.”
“Over the past year, we have learned a great deal from customers in the process of making MFA on by default for new customers, for example,” he wrote.
“To continue the identity example - those learnings and communications with customers helped pave the way for our introduction of wider MFA default policies for wider bands of customer tenants."
"By focusing on communications as well as engineering - explaining where we were focused on defaults and how customers benefit – we achieved more durable security for our customers.”
Additionally, Bell noted that MFA “is just one area of defaults for us” — adding that “over the next year you will see us accelerate security defaults.”
Faster cloud vulnerability mitigation
As part of the new security initiative announced Thursday, Microsoft will be “pushing the envelope in vulnerability response and security updates for our cloud platforms,” Smith wrote in his blog post.
Notably, Microsoft plans to “cut the time it takes to mitigate cloud vulnerabilities by 50 per cent,” he wrote.
The company also plans to “take new steps to ensure more transparent reporting by Microsoft and will encourage more transparent reporting in a more consistent manner across the tech sector,” he wrote.
Bell added in his post that “we are in a position to achieve this because of our investment and learnings in automation, orchestration, and intelligence-driven tools and processes.”
Improved identity protection
Microsoft executives said in the announcements this week that it will “strengthen” the identity protection capabilities in its products, amid the surge in identity-based attacks.
Bell described the move as Microsoft adopting a “new identity system.”
The new system, he wrote, “will provide a unified and consistent way of managing and verifying the identities and access rights of our users, devices, and services, across all our products and platforms.”
Microsoft also plans to “make these advanced capabilities freely available to non-Microsoft application developers,” Smith wrote in his blog post.
Confidential computing migration
As part of boosting its identity security, Microsoft will also move its identity platforms into confidential computing infrastructure.
Confidential computing provides hardware-based isolation of data while it’s in use, reducing the risk of compromise due to the decryption of data for usage.
“In this architecture, data governing identities is encrypted not only at rest and transit but during computational processes as well,” Bell wrote in his post.
“This means that even if an attacker gets through our layered defenses in the course of targeting encryption keys, the key data is designed to be inaccessible within automated systems that do not require human touch.”
Thu, 02 Nov 2023 07:56:00 -0500text/htmlhttps://www.crn.com.au/news/five-big-microsoft-changes-to-improve-its-security-602000