NEW QUESTION 1
DRAG DROP
You are developing an ASP.NET MVC application in Visual Studio 2012. The application will be viewed with browsers on desktop devices and mobile devices. The application uses the Razor View Engine to display data.
The application contains two layouts located in the /Views/Shared directory. These layouts are named:

The application must detect if the user is browsing from a mobile device. If the user is browsing from a mobile device, the application must use the _MobileLayout.cshtml file. If the user is browsing from a desktop device, the application must use .Layout, cs html.
You need to ensure that the application renders the layout that is appropriate for the browser. You have the following code:

Which code segments should you include in Target 1, Target 2 and Target 3 to complete the code of the ViewStart.cshtml file? (To answer, drag the appropriate code segments to the correct targets. Each code segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.)

Answer:

Explanation:

NEW QUESTION 2
You are developing a controller for an ASP.NET MVC application that manages blog postings. The security protection built in to ASP.NET is preventing users from saving their HTML.
You need to enable users to edit and save their HTML while maintaining existing security protection measures.
Which code segment should you use?

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: C

Explanation: Example: ValidateInput at Action Method Level
The user can submit Html for this action method successfully with the following code. public class HomeController : Controller
{
public ActionResult AddArticle()
{
return View();
}
[ValidateInput(false)] [HttpPost]
public ActionResult AddArticle(BlogModel blog)
{
if (ModelState.IsValid)
{
}
return View();
}
}
References:
http://www.dotnettricks.com/learn/mvc/html-submission-by-validateinput-and-allowhtml-attribute-in-mvc4

NEW QUESTION 3
You need to ensure that developers can connect to a Microsoft Azure role by using RDP. What should you do?

• A. Export a certificate with a private ke
• B. Upload the .pfx file to the Certificates section under the TranscodeWorkerRole hosted service on the Azure Management Portal.
• C. Export a certificate with a private ke
• D. Upload the .pfx file to the Management Certificates section on the Azure Management Portal.
• E. Export a certificate without a private ke
• F. Upload the .cer file to the Management Certificates section on the Azure Management Portal.
• G. Export a certificate without a private ke
• H. Upload the .cer file to the Certificates section under the TranscodeWorkerRole hosted service on the Azure Management Portal.

Answer: A

Explanation: In case you don’t want to use the RDP certificate created by Windows Azure Tools and want to use a custom certificate instead, the following steps will guide you. These steps can also be used in case package is not being published from Visual Studio rather it is being built locally, saved in either Local Machine's Drive or Windows Azure Blob Storage and subsequently published from there.
Here are the steps which are required to get pass the publishing error which you might be running into. You would need to upload the Certificate with Private Key to the portal (when Visual Studio is used this is done in the background).
Detailed steps.
1. In Visual Studio, go to the solution which is being developed.
2. Right click the Web Project -> Configure Remote Desktop -> click on View to see Certificate details (Since I don’t have a custom certificate I will use one create by Windows Azure Tools itself)
3. Go to Details tab on Certificate -> Click Copy to file.. -> Next -> Select ‘Yes, export the private key’ -> Next -> Continue with default setting and create a password when asked (please refer below screenshots)
4. These steps will generate a .PFX file for this certificate. Now we need to upload this certificate to the portal (for the respective cloud service)
5. Go to the Azure Management Portal -> Go to the Cloud Service in question -> Certificates Tab -> Upload the newly created certificate (.PFX file)
Note:
* The certificates that you need for a remote desktop connection are different from the certificates that you use for other Azure operations. The remote access certificate must have a private key.
* Microsoft Azure uses certificates in three ways:
/ Management certificates – Stored at the subscription level, these certificates are used to enable the use of the SDK tools, the Windows Azure Tools for Microsoft Visual Studio, or the Service Management REST API Reference. These certificates are independent of any cloud service or deployment.
/ Service certificates – Stored at the cloud service level, these certificates are used by your deployed services.
/ SSH Keys – Stored on the Linux virtual machine, SSH keys are used to authenticate remote connections to the virtual machine.
Reference: How to use Custom Certificate for RDP to Windows Azure Roles http://blogs.msdn.com/b/cie/archive/2014/02/22/how-to-use-custom-certificate-for-rdp-to- windows-azure-roles.aspx

NEW QUESTION 4
Customers download videos by using HTTP clients that support various content encodings. You need to configure caching on the DownloadVideo action to maximize performance. Which attribute should you add?

• A. Option A
• B. Option B
• C. Option C
• D. Option D
• E. Option E

Answer: E

NEW QUESTION 5
You are developing an ASP.NET MVC application by using Microsoft Visual Studio Professional. You plan to deploy the app to a Microsoft Azure App Services Web App.
You must be able to edit files in the webjpplication directly without having to redeploy or use other means of connecting to the web application.
You need to update the Web.config file to enable remote error messages. What should you do?

• A. Download the publishsettings file from Azure porta
• B. Create an FTP connection to the Azure Web App and update the file.
• C. Use the Visual Studio Server Explorer remote view feature to update the file.
• D. Create a Web.config transform and deploy a debug build.
• E. Use Visual Studio to remotely debug and update the file.

Answer: D

NEW QUESTION 6
Your company uses Microsoft Azure DevTest Labs for testing applications.
The DevTest Labs environment must provide a preconfigured base image for a virtual machine that can be used for all development efforts. The virtual machine must be able to be reproduced m various environments.
You need to provision the virtual machine. What should you implement?

• A. custom images
• B. formulas
• C. Marketplace images
• D. artifacts

Answer: B

Explanation: References:
https://docs.microsoft.com/en-us/azure/lab-services/devtest-lab-comparing-vm-base-image-types https://blogs.msdn.microsoft.com/devtestlab/2021/04/06/custom-images-or-formulas/

NEW QUESTION 7
You are developing a new ASP.NET MVC application that will be hosted on Microsoft Azure. You need to implement caching.
The caching solution must support the following:

You need to select a cache solution.
Which caching solution should you choose?

• A. ASP.NET Caching
• B. Azure In-Role Cache
• C. Azure Redis Cache
• D. Azure Managed Cache Service

Answer: C

NEW QUESTION 8
You are designing an HTML5 website.
You need to design the interface such that the content is viewable in all types of browsers, including screen readers.
What should you do? (Each correct answer presents a complete solution. Choose all that apply.)

• A. Ensure that content elements have valid and descriptive names.
• B. Use Resource Description Framework (RDF) to describe content elements.
• C. Convert HTML forms to XForms.
• D. Use HTML5 semantic markup elements.
• E. Annotate content elements with Accessible Rich Internet Application (ARIA) attributes.

Answer: DE

NEW QUESTION 9
You updated the web.config file with the HTTP run-time value required to display an alternative version of the site.
You need to ensure that the correct page displays to the users. Which code segment should you use to update the controller?

• A. If (Request.IsTabletDevice)
• B. If (Request.Browser.IsBrowser("Mobile"))
• C. If (Request.UserAgent["Tablet"])
• D. If (Request.Browser.IsMobileDevice)

Answer: D

NEW QUESTION 10
HOTSPOT
You are developing an ASP.NET MVC 4 application. You are using IntelliTrace to debug the application. You configure IntelliTrace as shown in the screenshot below.

To answer, make the appropriate selections in the answer area.

Answer:

Explanation: Box 1:

Box 2:

NEW QUESTION 11
The GetDealPrice method must be called by using Ajax.
You need to get the price of a product by using the GetDealPrice method of the ProductController. Which code segment should you use? (Each correct answer presents a complete solution. Choose all that apply.)

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: CD

NEW QUESTION 12
You develop an ASP.NET MVC application. The application has a controller named PeopleController.cs. The controller has an action method that returns a parent view. The parent view includes the following code. Line numbers are included for the reference only.

The application also contains a partial view named People. The parent view must display the partial view. You need to add code at line 09 to display the partial view within the parent view.
Which two code segments will achieve the goal? Each correct answer presents a complete solution.

• A. @{ Html.RenderPartial(“People”, Model);}
• B. @Html.Partial(“People”, Model)
• C. @Html.Display(“People”, Model)
• D. @Html.Raw(“People”)

Answer: B

Explanation: By default, any partial view rendered by calling @Html.Partial("PartialViewName") will get the view model passed to the parent view.
References:

NEW QUESTION 13
DRAG DROP
You are developing an ASP.NET MVC application. You plan to use OAuth to authenticate users to the application.
You need to use the correct authentication data in the application.
What should you do? To answer, drag the appropriate data element to the correct location or locations. Each data element may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

Answer:

Explanation: Live Connect implements the OAuth 2.0 protocol to authenticate users.
In the authorization code grant flow, the client makes authorization requests by using request_type=code. The following diagram illustrates how the authorization code grant flow works.

1. The client starts the flow by directing the resource owner's user agent to the Live Connect authorization endpoint, by using a URL in the following format.
https://login.live.com/oauth20_authorize.srf?client_id=CLIENT_ID&scope=SCOPES&response_type=code&re
2. The authorization server authenticates the resource owner via the user agent, and establishes whether the resource owner grants or denies the client's access request.
3. Assuming that the resource owner has granted access, the Live Connect authorization server redirects the user agent to the client by using the redirection URI that was provided in the initial request.
4. The user agent calls the client with the redirection URI, which includes an authorization code and any local state that was provided by the client. For example: http://contoso.com/Callback.htm?code=AUTHORIZATION_CODE.
5. The client requests an access token from the authorization server's token endpoint by using its client credentials for authentication, and includes the authorization code that was received in the previous step.
6. If the credentials are valid, the authorization server responds by returning an access token. References: https://msdn.microsoft.com/en-us/library/hh243647.aspx

NEW QUESTION 14
You are designing a distributed application that runs on the Windows Azure platform.
The application must store a small amount of insecure global information that does not change frequently. You need to configure the application to meet the requirements.
Which server-side state management option should you use? (Each correct answer presents a complete solution. Choose all that apply.)

• A. Windows Azure application state
• B. SQL Azure
• C. Profile properties of the Windows Azure application
• D. Windows Azure session state

Answer: B

Explanation: SQL Database provides a relational database management system for Windows Azure and is based on SQL Server technology. With a SQL Database instance, you can easily provision and deploy relational database solutions to the cloud, and take advantage of a distributed data center that provides enterprise-class availability, scalability, and security with the benefits of built-in data protection and self-healing.
Incorrect:
Not A: Application State does not exist in Azure.
Not C: Profile properties stores personal, not global, information.
Not D: Session state is not global. Session states handles user information such as cookies, hidden fields, and query strings are some client-side options to tracking user state

NEW QUESTION 15
You are creating a new authentication system that uses an HTTP header value. The existing authentication system must continue to operate normally.
You need to implement the custom authentication.
What should you do? (Each correct answer presents a complete solution. Choose all that apply.)

• A. Create a class derived from ActionResult and check for a valid HTTP header value in the ExecuteResult metho
• B. Change all actions to return this new class.
• C. Create an HttpHandler to check for a valid HTTP header value in the ProcessRequest method.
• D. Create an HttpModule and check for a valid HTTP header value in the AuthenticateRequest event.
• E. Create a class derived from AuthorizeAttribute and check for a valid HTTP header value in the AuthorizeCore metho
• F. Change usages of the existing AuthorizeAttribute to use the new class.

Answer: CD

NEW QUESTION 16
You need to configure session storage in the web.config file to meet the technical requirements for scalability.
Which SessionState mode should you use? (Each correct answer presents a complete solution. Choose all that apply.)

• A. StateServer
• B. InProc
• C. AutoDetect
• D. SqlServer

Answer: AD

Explanation: ASP.NET session state supports several different storage options for session data. Each option is identified by a value in the SessionStateMode enumeration. The following list describes the available session state modes:
* StateServer mode, which stores session state in a separate process called the ASP.NET state service. This ensures that session state is preserved if the Web application is restarted and also makes session state available to multiple Web servers in a Web farm.
* SQLServer mode stores session state in a SQL Server database. This ensures that session state is preserved if the Web application is restarted and also makes session state available to multiple Web servers in a Web farm.
* InProc mode, which stores session state in memory on the Web server. This is the default.
* Custom mode, which enables you to specify a custom storage provider.
* Off mode, which disables session state.
References: https://msdn.microsoft.com/en-us/library/ms178586.aspx

NEW QUESTION 17
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are developing an ASP.NET Core MVC web application.
The application must be exposed to external users over ports 80 and 443 and must meet the following requirements:
• Handle more than 1024 simultaneous connections.
• Support Windows authentication.
• Support HTTP/2 over TLS.
• Include response caching.
• Protect against denial-of-service attacks.
You need to deploy the application to an on-premises web server. Solution: You deploy the application to Kestrel with an US reverse proxy.
Does the solution meet the goal?

• A. Yes
• B. No

Answer: B