Azure 104 notes

Last updated Aug 22, 2022 Published Aug 22, 2022

The content here is under the Attribution 4.0 International (CC BY 4.0) license

Before we start, this is a collection on what I went through to get the 204 certification from azure. The process was similar to the one I did for AWS. The idea is to get some structure on how to get started with the subjects needed to pass the exam.

This is a hands on exam so prepare to get things into the theory in practice.


  • Manage Azure identities and governance
  • Implement and manage storage
  • Deploy and manage azure resources
  • Configure and manage virtual networking
  • Monitor and troubleshoot networking
  • Monitor and backup azure resources

Introduction to Azure AD

Use Azure AD to implement Single-Sign On

AzureAD is the cloud version of Active directory

External resources

  • Microsoft 365
  • Azure portal
  • SaaS applications

Internal resources

  • Applications within your internal networking
  • Access to workstation on-premise


  • Free
    • MFA
    • SSO
    • Basic security and usage reports
    • User management
  • Office 365 Apps
    • Company branding
    • SLA
    • Two sync between on-premise and cloud
  • Premium 1
    • Hybrid architecture
    • Advanced groups access
    • Conditional access
  • Premium 2
    • Identity protection
    • Identity governance

Networking (Azure VNet)

  • why Azure VNets
    • isolation
    • communicating with other vnets
    • broad network access - outbout access to the internet and control over services to not access the internet
    • allow/deny flow in the network
  • azure networking resides within a subscription and a certain region it connet expand subscriptions or reagions
    • i can breakdown into subnets
    • virtual network is always an ip v4 or ipv6
    • ip range should be unique
    • each subnet you loose 5 ips - .255 broadcast, .0 for the networking, .1 gateway, .2 and .3 for dns - 5 in total
    • subnet is private
    • first resource will .4 available - it is a private ip
  • nics
  • network security groups (NSGs)