Common AZ-900 Exam Scenarios and Practice

Quick Answer: Scenario questions are keyword puzzles. Most cost-effective → Reserved Instances / Spot / serverless. Enforce a rule → Azure Policy. Who can do what → RBAC. Prevent deletion → resource lock. Secure RDP without a public IP → Azure Bastion. Decode the keyword, ignore the impressive-but-wrong distractor.

Pattern 1: "Which service should you use?"

These give a requirement and ask for the best-fit service. Match on the verb and the constraint:

Trap: App Service vs. VMs hinges on OS access. If the scenario says they do not need OS-level control, choose App Service; VMs are the trap that requires managing the OS.

Pattern 2: "Most cost-effective solution"

The cheapest answer depends on the workload shape, not raw power:

Worked example: A nightly report job tolerates interruption and restart and must cost as little as possible. The eviction-tolerant batch cue points to Spot VMs, not Reserved Instances (which suit always-on workloads).

Pattern 3: "Compliance and governance"

Trap: Azure Policy vs. RBAC. Policy governs what a resource may be/do (region, SKU, encryption); RBAC governs who may act. A question about allowed configurations is Policy; a question about user permissions is RBAC.

Pattern 4: "Security and identity"

How to decode a scenario stem under time pressure

With roughly 40-60 questions in 45 minutes you have well under a minute per item, so a fast, repeatable decoding habit matters more than memorizing every service. First, find the goal keyword — the phrase that ranks the answers. "Most cost-effective" tells you to optimize price, so you weigh Reserved Instances, Spot, and serverless rather than the most powerful VM. "Minimum administrative effort" pushes you toward managed and SaaS options and away from raw VMs. "Maximum availability" steers you toward zones, region pairs, and geo-redundant storage.

Second, find the constraint — an OS-access requirement, an interruption-tolerance note, a compliance mandate — because the constraint usually eliminates two of the four options outright.

Third, beware the distractor pattern. AZ-900 reliably offers one impressive-sounding service that is wrong for the stated need: AKS when no orchestration is required, a three-year Reserved Instance for an interruptible batch job, or Azure Firewall when the question is really about who-can-do-what (RBAC). When two answers both look plausible, re-read the last sentence of the stem; the deciding detail is frequently parked there.

Finally, if you are genuinely unsure, eliminate the clearly wrong options, make your best choice, flag the item, and move on — every question is worth the same, there is no penalty for guessing, and leaving an item blank can only cost points. Banking the easy questions first protects your time for the few that need real thought.

Migration vocabulary (the four R's)

Migration scenarios test which strategy fits the goal:

• Rehost — "lift-and-shift" VMs as-is; fastest, least change.
• Refactor — minor changes to move onto PaaS (e.g., App Service).
• Rearchitect — redesign into cloud-native pieces (containers, microservices).
• Rebuild — discard and rewrite from scratch.

Final practice tips

1. Read the whole stem — the decisive constraint often hides in the last sentence.
2. Read all options — eliminate clear losers before choosing.
3. Anchor on the business need, not the flashiest service.
4. Hunt for keywords — "most cost-effective", "minimum administrative effort", "maximum availability" each steer toward a specific answer.
5. Manage time — about 45 minutes for 40-60 items means under a minute each; flag and move on.

Final Reminder: AZ-900 is foundational. You never configure services or write code — you decode the requirement, map the keyword to the right service, and pick the best business fit. Eliminate distractors, trust your preparation, and answer every question.