Microsoft announced the new beta exam Exam AZ-700 Designing and Implementing Microsoft Azure Networking Solutions. That is why I want to share my new updated AZ-700 Microsft Azure Networking Solutions Certification Exam Study Guide with you. If you are passing the AZ-700 Designing and Implementing Microsoft Azure Networking Solutions exam, you will earn the Microsoft Certified: Azure Network Engineer Associate certification, which shows that you are an are Azure administrator with subject matter expertise in planning, delivering, and managing virtual desktop experiences and remote apps, for any device, on Azure.
To learn and prepare for the exam, I usually use a couple of online resources, mainly Microsoft Docs and Microsoft Learn, which I am going to share with you. You can find more information about how I prepare for a Microsoft Certification exam on my blog post: How to prepare and pass Microsoft Certification Exam.
Also, check out other Microsoft Azure Certification Exam Study Guides:
- Exam AZ-900: Microsoft Azure Fundamentals Exam Study Guide
- Exam AZ-104: Microsoft Azure Administrator Exam Study Guide
- Exam AZ-204: Developing Solutions for Microsoft Azure Exam Study Guide
- Exam AZ-303: Microsoft Azure Architect Technologies Exam Study Guide
- Exam AZ-304: Microsoft Azure Architect Design Certification Exam Study Guide
- Exam AZ-305: Microsoft Azure Solutions Architect Certification Exam Study Guide
- Exam AZ-500: Microsoft Azure Security Technologies Exam Study Guide
- Exam AZ-600: Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack Hub Exam Study Guide
- Exam SC-900: Microsoft Security, Compliance, and Identity Fundamentals Exam Study Guide
- Exam DP-300: Azure Database Administrator Exam Study Guide
Here is my AZ-700 Azure Networking Solutions Certification Exam Study Guide
It is essential to get familiar with the exam objectives and skills measured first. That is why I recommend reading the description of the exam and the skills measured.
Exam AZ-700 Designing and Implementing Microsoft Azure Networking Solutions
Microsoft Docs – AZ-700 Designing and Implementing Microsoft Azure Networking Solutions
Candidates for this exam should have subject matter expertise in planning, implementing, and maintaining Azure networking solutions, including hybrid networking, connectivity, routing, security, and private access to Azure services.
Responsibilities for the Azure Network Engineer include recommending, planning, and implementing Azure networking solutions. Professionals in this role manage the solution for performance, resiliency, scale, and security. They deploy networking solutions by using the Azure Portal and other methods, including PowerShell, Azure Command-Line Interface (CLI), and Azure Resource Manager templates (ARM templates).
The Azure Network Engineer works with solution architects, cloud administrators, security engineers, application developers, and DevOps engineers to deliver Azure solutions.
Candidates for this exam should have expert Azure administration skills, in addition to extensive experience and knowledge of networking, hybrid connections, and network security.
The high-level view of the skills measured in the exam:
- Design, Implement, and Manage Hybrid Networking (10–15%)
- Design and Implement Core Networking Infrastructure (20–25%)
- Design and Implement Routing (25–30%)
- Secure and Monitor Networks (15–20%)
- Design and Implement Private Access to Azure Services (10–15%)
You can find more information on the exam website.
With this exam you will earn the following certification:
Azure Network Engineer Associate
Microsoft Docs – Azure Network Engineer Associate
Candidates for the Azure Network Engineer Associate certification should have subject matter expertise in planning, implementing, and maintaining Azure networking solutions, including hybrid networking, connectivity, routing, security, and private access to Azure services.
Responsibilities for this role include recommending, planning, and implementing Azure networking solutions. Professionals in this role manage the solution for performance, resiliency, scale, and security. They deploy networking solutions by using the Azure Portal and other methods, including PowerShell, Azure Command-Line Interface (CLI), and Azure Resource Manager templates (ARM templates).
The Azure Network Engineer works with solution architects, cloud administrators, security engineers, application developers, and DevOps engineers to deliver Azure solutions.
Candidates for this certification should have expert Azure administration skills, in addition to extensive experience and knowledge of networking, hybrid connections, and network security.
Free Online Microsoft Learn AZ-700 Exam Study Guide resources
Microsoft Learn provides you with free online training and learning paths for different Microsoft technologies. They not just offer reading material, but also control questions and free online labs. Here are some relevant Microsoft Learn modules and learning paths for the AZ-700 Designing and Implementing Microsoft Azure Networking Solutions Certification Exam. Microsoft Learn is an important part of my AZ-700 Azure Networking solutions exam study guide.
The team also just made it easier to prepare with the new AZ-700 related learning paths on Microsoft Learn. I highly recommend that you take these for your AZ-700 exam preparation.
- Explore Azure networking services
- Configure the network for your virtual machines
- Monitor and troubleshoot your end-to-end Azure network infrastructure by using network monitoring tools
- Secure network connectivity on Azure
Microsoft Docs AZ-700 Azure Networking Solutions study guide resources
One thing I always used to prepare for my Microsoft exams is Microsoft Docs. Here are the relevant Microsoft Docs which I used to prepare and study for the AZ-700 exam.
Design, Implement, and Manage Hybrid Networking (10–15%)
Design, implement, and manage a site-to-site VPN connection
- Design a site-to-site VPN connection for high availability
- Select an appropriate virtual network (VNet) gateway SKU
- Identify when to use policy-based VPN versus route-based VPN
- Create and configure a local network gateway
- Create and configure an IPsec/IKE policy
- Create and configure a virtual network gateway
- Diagnose and resolve VPN gateway connectivity issues
Design, implement, and manage a point-to-site VPN connection
- Select an appropriate virtual network gateway SKU
- Plan and configure RADIUS authentication
- Plan and configure certificate-based authentication
- Plan and configure OpenVPN authentication
- Plan and configure Azure Active Directory (Azure AD) authentication
- Implement a VPN client configuration file
- Diagnose and resolve client-side and authentication issues
Design, implement, and manage Azure ExpressRoute
- Choose between provider and direct model (ExpressRoute Direct)
- Design and implement Azure cross-region connectivity between multiple ExpressRoute locations
- Select an appropriate ExpressRoute SKU and tier
- Design and implement ExpressRoute Global Reach
- Design and implement ExpressRoute FastPath
- Choose between private peering only, Microsoft peering only, or both
- Configure private peering
- Configure Microsoft peering
- Create and configure an ExpressRoute gateway
- Connect a virtual network to an ExpressRoute circuit
- Recommend a route advertisement configuration
- Configure encryption over ExpressRoute
- Implement Bidirectional Forwarding Detection
- Diagnose and resolve ExpressRoute connection issues
Design and Implement Core Networking Infrastructure (20–25%)
Design and implement private IP addressing for VNets
- Create a VNet
- Plan and configure subnetting for services, including VNet gateways, private endpoints, firewalls, application gateways, and VNet-integrated platform services
- Plan and configure subnet delegation
Design and implement name resolution
- Design public DNS zones
- Design private DNS zones
- Design name resolution inside a VNet
- Configure a public or private DNS zone
- Link a private DNS zone to a VNet
Design and implement cross-VNet connectivity
- Design service chaining, including gateway transit
- Design VPN connectivity between VNets
- Implement VNet peering
Design and implement an Azure Virtual WAN architecture
- Design an Azure Virtual WAN architecture, including selecting SKUs and services
- Connect a VNet gateway to Azure Virtual WAN
- Create a hub in Virtual WAN
- Create a network virtual appliance (NVA) in a virtual hub
- Configure virtual hub routing
- Create a connection unit
Design and Implement Routing (25–30%)
Design, implement, and manage VNet routing
- Design and implement user-defined routes (UDRs)
- Associate a route table with a subnet
- Configure forced tunneling
- Diagnose and resolve routing issues
Design and implement an Azure Load Balancer
- Choose an Azure Load Balancer SKU (Basic versus Standard)
- Choose between public and internal
- Create and configure an Azure Load Balancer (including cross-region)
- Implement a load balancing rule
- Create and configure inbound NAT rules
- Create explicit outbound rules for a load balancer
Design and implement Azure Application Gateway
- Recommend Azure Application Gateway deployment options
- Choose between manual and autoscale
- Create a back-end pool
- Configure health probes
- Configure listeners
- Configure routing rules
- Configure HTTP settings
- Configure Transport Layer Security (TLS)
- Configure rewrite policies
Implement Azure Front Door
- Choose an Azure Front Door SKU
- Configure health probes, including customization of HTTP response codes
- Configure SSL termination and end-to-end SSL encryption
- Configure multisite listeners
- Configure back-end targets
- Configure routing rules, including redirection rules
Implement an Azure Traffic Manager profile
- Configure a routing method (mode)
- Configure endpoints
- Create HTTP settings
Design and implement an Azure Virtual Network NAT
- Choose when to use a Virtual Network NAT
- Allocate public IP or public IP prefixes for a NAT gateway
- Associate a Virtual Network NAT with a subnet
Secure and Monitor Networks (15–20%)
Design, implement, and manage an Azure Firewall deployment
- Design an Azure Firewall deployment
- Create and implement an Azure Firewall deployment
- Configure Azure Firewall rules
- Create and implement Azure Firewall Manager policies
- Create a secure hub by deploying Azure Firewall inside an Azure Virtual WAN hub
- Integrate an Azure Virtual WAN hub with a third-party NVA
Implement and manage network security groups (NSGs)
- Create an NSG
- Associate an NSG to a resource
- Create an application security group (ASG)
- Associate an ASG to a NIC
- Create and configure NSG rules
- Interpret NSG flow logs
- Validate NSG flow rules
- Verify IP flow
Implement a Web Application Firewall (WAF) deployment
- Configure detection or prevention mode
- Configure rule sets for Azure Front Door, including Microsoft managed and user defined
- Configure rule sets for Application Gateway, including Microsoft managed and user defined
- Implement a WAF policy
- Associate a WAF policy
Monitor networks
- Configure network health alerts and logging by using Azure Monitor
- Create and configure a Connection Monitor instance
- Configure and use Traffic Analytics
- Configure NSG flow logs
- Enable and configure diagnostic logging
- Configure Azure Network Watcher
Design and Implement Private Access to Azure Services (10–15%)
Design and implement Azure Private Link service and Azure Private Endpoint
- Create a Private Link service
- Plan private endpoints
- Create private endpoints
- Configure access to private endpoints
- Integrate Private Link with DNS
- Integrate a Private Link service with on-premises clients
Design and implement service endpoints
- Create service endpoints
- Configure service endpoint policies
- Configure service tags
- Configure access to service endpoints
Configure VNet integration for dedicated platform as a service (PaaS) services
- Configure App Service for regional VNet integration
- Configure Azure Kubernetes Service (AKS) for regional VNet integration
- Configure clients to access App Service Environment
Additional Tips and Resources
I hope this AZ-700 Microsoft Azure Networking Solutions Certification Exam Study Guide helps you pass the exam and gain the Azure Network Engineer Certification. I also recommend that you open a free Azure account if you don’t have one yet. You can create your free Azure account here. Also, check out my blog posts about Microsoft Azure Certification:
- Why you should become Microsoft Azure certified
- How to pick the right Azure exam certification path
- How to prepare and pass a Microsoft Azure exam
I hope you enjoyed my AZ-700 Azure Networking Solutions Study Guide. Did I miss any link, or do you have any recommended AZ-700 Designing and Implementing Microsoft Azure Networking Solutions Certification Exam Study resources? Let me know in the comments.
Tags: AZ-700, Azure, Azure Network Engineer, Certification, Certified, Engineer, Exam, Learn, Learning, Microsoft, Network, Networking, Study Guide Last modified: October 13, 2021
Have a nice course and content i like very much i want to learn this course also want certification.
I was just starting to notice how more an more of the jobs that I would call my “next step” that is Software Architect tend to want you to be an expert on AWS or Azure and since my stack is C#/.NET Azure is my obvious first choice… so this guide is just what I was looking for, thanks!
Hi Thomas
This is really appreciated that you are doing an extremely informative and helpful article on azure networking. I’m really thankful to you for the opportunity you have created to enhance the networking knowledge of cloud networking. Many thanks
You forgot to update this part:
Microsoft Certified: Azure Network Engineer Associate certification, which shows that you are an are Azure administrator with subject matter expertise in planning, delivering, and managing virtual desktop experiences and remote apps, for any device, on Azure.
thanks for sharing. I found the az-700 practice test designed by p2pexams very helpful while preparing for my exam. It helped me understand key concepts of the exam.