πŸ”’ Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901
Guided AZ-305 Domain 4
Domain 4 β€” Module 1 of 12 8%
19 of 30 overall

AZ-305 Study Guide

Domain 1: Design Identity, Governance, and Monitoring Solutions

  • Monitoring & Logging Design
  • Choosing Authentication Methods
  • Designing Identity Management
  • Authorizing Access to Resources
  • Secrets, Keys & Certificates
  • Governance at Scale
  • Compliance & Identity Governance

Domain 2: Design Data Storage Solutions

  • Relational Data: Choosing Your SQL Platform
  • Database Performance & Scalability
  • Database Security & Compliance
  • Cosmos DB & Semi-Structured Data
  • Blob, Data Lake & Azure Files
  • Data Integration & Analytics

Domain 3: Design Business Continuity Solutions

  • Recovery Objectives: RPO, RTO & SLA Free
  • Backup & Recovery for Compute Free
  • Backup for Databases & Unstructured Data Free
  • High Availability for Compute Free
  • High Availability for Data Free

Domain 4: Design Infrastructure Solutions

  • Compute Design: VMs & When to Use Them
  • Container Solutions: AKS, ACI & Container Apps
  • Serverless & Batch Processing
  • Messaging Architecture
  • Event-Driven Architecture
  • API Integration & Caching
  • App Configuration & Automated Deployment
  • Migration Strategy & Assessment
  • Executing Migrations
  • Network Connectivity: Internet & Hybrid
  • Network Security & Performance
  • Load Balancing & Routing

AZ-305 Study Guide

Domain 1: Design Identity, Governance, and Monitoring Solutions

  • Monitoring & Logging Design
  • Choosing Authentication Methods
  • Designing Identity Management
  • Authorizing Access to Resources
  • Secrets, Keys & Certificates
  • Governance at Scale
  • Compliance & Identity Governance

Domain 2: Design Data Storage Solutions

  • Relational Data: Choosing Your SQL Platform
  • Database Performance & Scalability
  • Database Security & Compliance
  • Cosmos DB & Semi-Structured Data
  • Blob, Data Lake & Azure Files
  • Data Integration & Analytics

Domain 3: Design Business Continuity Solutions

  • Recovery Objectives: RPO, RTO & SLA Free
  • Backup & Recovery for Compute Free
  • Backup for Databases & Unstructured Data Free
  • High Availability for Compute Free
  • High Availability for Data Free

Domain 4: Design Infrastructure Solutions

  • Compute Design: VMs & When to Use Them
  • Container Solutions: AKS, ACI & Container Apps
  • Serverless & Batch Processing
  • Messaging Architecture
  • Event-Driven Architecture
  • API Integration & Caching
  • App Configuration & Automated Deployment
  • Migration Strategy & Assessment
  • Executing Migrations
  • Network Connectivity: Internet & Hybrid
  • Network Security & Performance
  • Load Balancing & Routing
Domain 4: Design Infrastructure Solutions Premium ⏱ ~20 min read

Compute Design: VMs & When to Use Them

VM sizing, SKU selection, dedicated hosts, and the big question β€” when should you even use VMs? Design compute solutions that match workload requirements without over-provisioning.

Choosing the right compute model

β˜• Simple explanation

Azure offers four compute models β€” the architect’s job is choosing the right one for each workload.

VMs (IaaS): Full control, any OS, any software β€” but you manage everything. Like renting an empty office and furnishing it yourself.

Containers: Package your app with its dependencies β€” runs anywhere consistently. Like moving with pre-packed boxes.

App Service (PaaS): Just deploy your code β€” Azure handles the infrastructure. Like renting a serviced office.

Functions (Serverless): Run code in response to events β€” pay only when it runs. Like hiring a freelancer per task.

Compute architecture decisions follow a decision tree:

  • VMs when: Full OS control needed, legacy apps, specific OS/software requirements, lift-and-shift migration
  • Containers when: Microservices, consistent deployment across environments, density/efficiency
  • App Service when: Web apps/APIs with minimal infrastructure management, CI/CD integration
  • Functions when: Event-driven, short-duration tasks, pay-per-execution cost model

The compute decision tree

Azure Compute Services Comparison
FactorVirtual MachinesAKS (Containers)App ServiceAzure Functions
ModelIaaSContainer orchestrationPaaSServerless / PaaS
ControlFull OS + runtimeContainer runtime + orchestrationRuntime onlyFunction code only
ScalingVMSS (manual/auto)Pod autoscaler + cluster autoscalerBuilt-in auto-scaleAutomatic (event-driven)
Startup timeMinutesSecondsSecondsMilliseconds (warm) to seconds (cold)
Min costPer-VM-hour (always on)Node pool VMs (always on)Free tier / B1 from ~$13/moFree tier / pay per execution
Max scale1000s of VMs (VMSS)1000s of pods30 instances (100 with zone)200 instances (Consumption)
Best forLegacy apps, OS-level control, specific softwareMicroservices, multi-container appsWeb apps, APIs, simple deploymentsEvent processing, integrations, scheduled tasks

Design principle: Start with the highest-level abstraction that meets your requirements. Functions > App Service > Containers > VMs. Only go lower when you need the control.

VM-based solution design

When VMs are the right choice, design decisions include:

VM sizing and SKU families

FamilyOptimised ForExample SKUsUse Case
B-seriesBurstableB2s, B4msDev/test, low-traffic web servers
D-seriesGeneral purposeD4s_v5, D8s_v5Most production workloads
E-seriesMemory-optimisedE4s_v5, E16s_v5Databases, in-memory caching
F-seriesCompute-optimisedF4s_v2, F16s_v2Batch processing, gaming, analytics
N-seriesGPUNC6s_v3, ND40rs_v2ML training, rendering, HPC
L-seriesStorage-optimisedL8s_v3, L16s_v3Big data, data warehousing, large databases
M-seriesMemory-intensiveM128s, M416s_v2SAP HANA, extremely large in-memory databases

πŸ—οΈ Priya’s VM selection: GlobalTech’s migration:

  • Web servers: D4s_v5 (general purpose, good balance of CPU/memory)
  • SQL Servers: E16s_v5 (memory-optimised for in-memory queries)
  • Batch processing: F8s_v2 (compute-optimised, short-lived workloads)
  • Dev/test: B2s (burstable, cheap when idle)

Dedicated hosts and isolation

OptionIsolation LevelUse Case
Standard VMsShared hardware (hypervisor isolation)Most workloads
Isolated VM sizesDedicated hardware (single-tenant)Compliance requiring hardware isolation
Azure Dedicated HostEntire physical server dedicated to youMaximum control, licensing compliance (BYOL)

🏦 Elena’s requirement: PCI DSS requires hardware isolation for payment processing VMs. Elena uses Azure Dedicated Host β€” the entire physical server hosts only FinSecure’s VMs, with visibility into maintenance schedules.

ℹ️ Cost Optimisation: Reserved Instances and Spot VMs

Reserved Instances (1 or 3 year): Save 30-72% vs pay-as-you-go for predictable workloads. Commit to a VM size and region.

Spot VMs: Save up to 90% by using surplus Azure capacity. VMs can be evicted with 30-second notice. Perfect for batch processing, dev/test, and fault-tolerant workloads.

Azure Hybrid Benefit: Use existing Windows Server or SQL Server licenses on Azure VMs β€” save up to 85% when combined with reserved instances.

Design pattern: Production = Reserved Instances. Batch = Spot VMs. Dev/test = B-series + Spot.

Knowledge check

Question

What's the compute decision tree priority order?

Click or press Enter to reveal answer

Answer

Functions (serverless) β†’ App Service (PaaS) β†’ Containers (AKS/ACI) β†’ VMs (IaaS). Start with the highest abstraction that meets requirements. Only go lower when you need more control. Each step down adds management overhead but provides more control.

Click to flip back
Question

When should you recommend VMs over PaaS options?

Click or press Enter to reveal answer

Answer

Four scenarios: (1) Full OS-level access needed, (2) Legacy applications that can't be containerised or modernised, (3) Specific software that requires OS installation, (4) Regulatory requirement for dedicated hardware (Dedicated Hosts). If none of these apply, prefer PaaS.

Click to flip back
Question

What's the difference between Reserved Instances and Spot VMs?

Click or press Enter to reveal answer

Answer

Reserved: commit to 1-3 years for 30-72% savings β€” for predictable, always-on workloads. Spot: use surplus capacity for up to 90% savings β€” can be evicted anytime, for fault-tolerant batch workloads. You can combine both: reserved for baseline + spot for burst.

Click to flip back
Question

How do you choose between Standard HDD, Standard SSD, Premium SSD, and Ultra Disk?

Click or press Enter to reveal answer

Answer

Standard HDD: dev/test, backups (cheapest, highest latency). Standard SSD: light production, web servers (consistent IOPS). Premium SSD: production databases, enterprise apps (guaranteed IOPS/throughput). Ultra Disk: IO-intensive workloads like SAP HANA, top-tier databases (configurable IOPS up to 160K). Match disk tier to workload IOPS requirements β€” oversizing wastes money, undersizing throttles performance.

Click to flip back
Knowledge Check

πŸ—οΈ GlobalTech is migrating a legacy application that requires Windows Server 2019, custom COM+ components, and direct disk access. The application cannot be refactored. Which compute option should Priya recommend?
Knowledge Check

πŸš€ NovaSaaS runs a memory-intensive analytics engine on Azure VMs that processes 500 GB datasets in RAM. The workload is steady Monday-Friday but idle on weekends. Marcus wants to minimise cost while ensuring consistent performance during business hours. Which approach should he recommend?

🎬 Video coming soon

Next up: When VMs are too heavy β€” Container Solutions: AKS, ACI & Container Apps.

← Previous

High Availability for Data

Next β†’

Container Solutions: AKS, ACI & Container Apps

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.