Microsoft DevOps Gold Competency Assessment – Passed!

Today I passed the new Azure DevOps Assessment (18473), happy!

After taking and passing the exams a couple of years ago, the requirements are changed for achieving Gold DevOps Partner status. The current exams are going to retire and are replaced by a new online assessment which I passed today.

More info on: https://partner.microsoft.com/cs-cz/membership/devops-competency#simple-tab-content-2

23 Replies to “Microsoft DevOps Gold Competency Assessment – Passed!”

        1. No I don’t have the answers. I believe that anyone who wishes to pass the assessment needs to study and/or have the knowledge. The assessment is not that hard for people in the DevOps business working with Microsoft tools on a daily basis. Good luck following the courses and taking the assessment. You can retry at least a couple of times.

  1. Hi, I passed the assessment after around 10 attempts. I was trying to find answers for the questions and then this question popped up for which i could not find answer at all.I feel the question itself is wrong.
    The question is :

    9) Your team has designed and delivered several applications into Azure using a variety of Azure resources. The operations team would like to use native Azure capabilities to improve their monitoring. Which of the following data types can be consumed in the Azure Monitor pipeline? Select seven answers.
    A. Storage logs.
    B. Azure Security Center alerts.
    C. Billing data.
    D. Azure platform-level metrics.
    E. Azure Resource Center Updates.
    F. Azure App Service logs.
    G. OS metrics and logs from guest VMs.
    H. Custom/application-level metrics.
    I. Azure Trust Center violations.
    J. VSTS Git Commits.

    According to https://docs.microsoft.com/en-us/azure/azure-monitor/platform/data-sources-reference#next-steps
    there are 7 sources which are mentioned above. I tried giving all the combinations. still i did not get the answer. Are you aware of it? Just curious to know the answer.

      1. I also stumbled upon this question for my 3 attempts. I never got this one correct. Do you know what is the passing score for the assessment please? Thanks

  2. Hi there, in order to pass the assessment from Microsoft, you should also pass the exam from training course(EDX mandatory material-Dev Ops Practices and Principles)?

  3. I have passed the exam and am willing to sell you some sample questions, if you’re interested.

  4. Hi, I passed exam with 28 correct answers. I would like to know correct answers for
    Your team is using VSTS to manage build and release for your web application. Which of the following steps could improve the security of your code? Select four answers.
    A. Enable the CodeCheck option in the Azure Security Center.
    B. Add the Microsoft Security Scanner build task to your VSTS build definitions and configure it with the .js and .java file extensions.
    C. Implement a branch policy that requires an automated build which includes appropriate security analysis components.
    D. Configure a SonarQube server, install the SonarQube extension from the VSTS Marketplace, add it to your build pipeline, and monitor the static analysis.
    E. Implement a branch policy that requires reviewer sign-off and instruct reviewers to consider security vulnerabilities.
    F. License and configure third-party security scanners then install and configure the appropriate extension from the VSTS Marketplace.

    AND
    Your team is starting to use Azure Alerts to provide notifications on an application deployed on Azure. Which of the following statements are true about current (that is, not “classic”) alerts in the Azure Monitor?
    A. Alerts must trigger exactly one action group.
    B. Alerts can execute custom automation using Azure Functions, Logic Apps, and Automation Runbooks.
    C. Action groups consolidate actions that can be fired from any alert.
    D. Target resources can specify any Azure resource except for Resource Groups.
    E. When triggered, alerts can be sent to third-party ITSM tools using the Azure IT Service Management Connector.

  5. Hi…I passed with 28 correct answers.
    I am still interested in correct answers for below questions. Can someone please help me out.
    Your team is starting to use Azure Alerts to provide notifications on an application deployed on Azure. Which of the following statements are true about current (that is, not “classic”) alerts in the Azure Monitor?
    A. Alerts must trigger exactly one action group.
    B. Alerts can execute custom automation using Azure Functions, Logic Apps, and Automation Runbooks.
    C. Action groups consolidate actions that can be fired from any alert.
    D. Target resources can specify any Azure resource except for Resource Groups.
    E. When triggered, alerts can be sent to third-party ITSM tools using the Azure IT Service Management Connector.

    AND

    Your organization is building a mobile application and plans to host the back end on Azure. Which of the following statements are true about CI/CD with mobile applications? Select three answers.
    A. You can use Visual Studio App Center to automate the full CI/CD pipelines of your mobile app but will need to use Xamarin and Visual Studio to author the app.
    B. You can use Visual Studio App Center to automate the build, device testing, and staged deployment.
    C. You can use VSTS to automate the full CI/CD pipelines of both your mobile application and your back-end services.
    D. You can use Visual Studio App Center or VSTS to automate the CI/CD for your iOS apps but will need to provide your own Mac build agent.
    E. You can use Visual Studio App Center but will need to manually manage deployment to the Google Play store and the Apple Store.
    F. You can use Visual Studio App Center to automate the full CI/CD pipelines of your mobile app but will need to use other tools to deploy the back end to Azure.

    1. Your team is using VSTS to manage build and release for your web application. Which of the following steps could improve the security of your code? Select four answers. 

      License and configure third-party security scanners then install and configure the appropriate extension from the VSTS Marketplace.

      Implement a branch policy that requires reviewer sign-off and instruct reviewers to consider security vulnerabilities.

      Configure a SonarQube server, install the SonarQube extension from the VSTS Marketplace, add it to your build pipeline, and monitor the static analysis.

      Implement a branch policy that requires an automated build which includes appropriate security analysis components.

Leave a Reply