πŸ”’ Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901
Guided DP-300 Domain 5
Domain 5 β€” Module 4 of 6 67%
26 of 28 overall

DP-300 Study Guide

Domain 1: Plan and Implement Data Platform Resources

  • Choose Your Azure SQL Platform Free
  • Deploy and Configure Azure SQL Free
  • Scale, Performance, and Compression Free
  • Migration Planning: Online vs Offline Free
  • Execute and Troubleshoot Migrations Free

Domain 2: Implement a Secure Environment

  • Entra Authentication for Azure SQL
  • Security Principals, Permissions, and T-SQL
  • Encryption: TDE, Always Encrypted, and VBS Enclaves
  • Network Security: Firewalls, Private Links, and Endpoints
  • Data Classification and Auditing
  • Data Masking, Ledger, and Row-Level Security

Domain 3: Monitor, Configure, and Optimize Database Resources

  • Performance Baselines and Monitoring Tools
  • Database Watcher and Extended Events
  • Query Store: Configure and Monitor
  • Blocking, DMVs, and Execution Plans
  • Index and Query Optimization
  • Database Maintenance: Indexes, Statistics, and Integrity
  • Automatic Tuning and Performance Settings

Domain 4: Configure and Manage Automation of Tasks

  • Automation Landscape: What Runs Where
  • SQL Server Agent Jobs
  • Deploy with ARM, Bicep, PowerShell, and CLI
  • Elastic Jobs and Azure Automation

Domain 5: Plan and Configure an HA/DR Environment

  • HA/DR Strategy: RPO, RTO, and Architecture
  • Backup and Restore: Strategy and Native Tools
  • Point-in-Time Restore, LTR, and Cloud Backup
  • Geo-Replication and Failover Groups
  • Always On: Availability Groups and FCIs
  • Log Shipping and HA/DR Operations

DP-300 Study Guide

Domain 1: Plan and Implement Data Platform Resources

  • Choose Your Azure SQL Platform Free
  • Deploy and Configure Azure SQL Free
  • Scale, Performance, and Compression Free
  • Migration Planning: Online vs Offline Free
  • Execute and Troubleshoot Migrations Free

Domain 2: Implement a Secure Environment

  • Entra Authentication for Azure SQL
  • Security Principals, Permissions, and T-SQL
  • Encryption: TDE, Always Encrypted, and VBS Enclaves
  • Network Security: Firewalls, Private Links, and Endpoints
  • Data Classification and Auditing
  • Data Masking, Ledger, and Row-Level Security

Domain 3: Monitor, Configure, and Optimize Database Resources

  • Performance Baselines and Monitoring Tools
  • Database Watcher and Extended Events
  • Query Store: Configure and Monitor
  • Blocking, DMVs, and Execution Plans
  • Index and Query Optimization
  • Database Maintenance: Indexes, Statistics, and Integrity
  • Automatic Tuning and Performance Settings

Domain 4: Configure and Manage Automation of Tasks

  • Automation Landscape: What Runs Where
  • SQL Server Agent Jobs
  • Deploy with ARM, Bicep, PowerShell, and CLI
  • Elastic Jobs and Azure Automation

Domain 5: Plan and Configure an HA/DR Environment

  • HA/DR Strategy: RPO, RTO, and Architecture
  • Backup and Restore: Strategy and Native Tools
  • Point-in-Time Restore, LTR, and Cloud Backup
  • Geo-Replication and Failover Groups
  • Always On: Availability Groups and FCIs
  • Log Shipping and HA/DR Operations
Domain 5: Plan and Configure an HA/DR Environment Premium ⏱ ~13 min read

Geo-Replication and Failover Groups

Configure active geo-replication for Azure SQL Database and failover groups for automatic cross-region disaster recovery.

Cross-region disaster recovery

β˜• Simple explanation

Active geo-replication is like having a live copy of your office in another city. Everything you write in your primary office is instantly copied to the remote office. If your primary burns down, the remote office has everything.

Failover groups take it further β€” they add a shared phone number (listener endpoint). Callers always reach the active office automatically. When you fail over, the phone number follows the active office.

Active geo-replication creates readable secondary databases in different Azure regions with asynchronous replication. Manual failover only. SQL Database only.

Failover groups extend this with automatic failover, a listener endpoint that redirects connections, and support for both SQL Database and Managed Instance.

Active geo-replication

Available for Azure SQL Database only (not MI, not VMs):

How it works

  1. Primary database in Region A
  2. Create up to 4 readable secondary databases in other regions
  3. Asynchronous replication β€” RPO typically under 5 seconds
  4. Secondaries are readable (offload read queries)
  5. Failover is manual β€” you initiate it
# Create a geo-secondary
az sql db replica create \
  --resource-group NorthStarRG \
  --server northstar-sql-primary \
  --name NorthStarERP \
  --partner-server northstar-sql-secondary \
  --partner-resource-group NorthStarRG-DR
-- Check replication status
SELECT
    partner_server, partner_database, replication_state_desc,
    last_replication, replication_lag_sec
FROM sys.dm_geo_replication_link_status;

Failover

# Manual failover (secondary becomes primary)
az sql db replica set-primary \
  --resource-group NorthStarRG-DR \
  --server northstar-sql-secondary \
  --name NorthStarERP

Failover groups

Failover groups provide automatic failover and a listener endpoint that applications use β€” no connection string changes needed during failover.

Geo-replication vs failover groups

Geo-Replication vs Failover Groups
FeatureActive Geo-ReplicationFailover Groups
PlatformSQL Database onlySQL Database and Managed Instance
Automatic failoverNo (manual only)Yes (configurable)
Listener endpointNoYes β€” read-write and read-only endpoints
Max secondaries4 per database1 secondary region
Multiple databasesIndividual databaseGroup of databases fail over together
Connection stringMust update on failoverNo change β€” listener redirects
Grace periodN/AConfigurable (min 1 hour)
RPO< 5 seconds< 5 seconds

Setting up a failover group

# Create failover group for SQL Database
az sql failover-group create \
  --resource-group NorthStarRG \
  --server northstar-sql-primary \
  --name northstar-fog \
  --partner-server northstar-sql-secondary \
  --partner-resource-group NorthStarRG-DR \
  --failover-policy Automatic \
  --grace-period 1

# Add databases to the group
az sql failover-group update \
  --resource-group NorthStarRG \
  --server northstar-sql-primary \
  --name northstar-fog \
  --add-db NorthStarERP

Failover group endpoints

EndpointPatternConnects To
Read-write listenernorthstar-fog.database.windows.netCurrent primary
Read-only listenernorthstar-fog.secondary.database.windows.netCurrent secondary

Priya’s setup at ScaleWave: Application connection strings point to the failover group listener, not the individual server. When failover happens, the listener automatically routes to the new primary β€” zero application changes.

Failover policies

PolicyBehaviour
AutomaticAzure detects primary outage and fails over after grace period
ManualYou initiate failover explicitly
Grace periodMinimum time before automatic failover (1+ hours) β€” prevents false positives

Managed Instance failover groups

MI failover groups work similarly but with key differences:

  • Secondary MI must be in a different region
  • VNet peering or VPN required between MI subnets
  • All databases on the MI fail over together (instance-level, not per-database)
  • DNS alias handles connection redirection
πŸ’‘ Exam tip: failover group vs geo-replication

The exam loves this comparison. Quick decision:

  • Need automatic failover? β†’ Failover group
  • Need listener endpoint (no connection string change)? β†’ Failover group
  • Need 4 readable secondaries? β†’ Geo-replication
  • Need MI DR? β†’ Failover group (geo-replication doesn’t support MI)
  • Need per-database granularity? β†’ Geo-replication (failover groups are all-or-nothing)
Question

What does a failover group listener endpoint provide?

Click or press Enter to reveal answer

Answer

A stable DNS name that always points to the current primary. Applications connect to the listener, and it automatically redirects to whichever server is currently primary β€” no connection string changes during failover.

Click to flip back
Question

Active geo-replication vs failover groups: which supports Managed Instance?

Click or press Enter to reveal answer

Answer

Failover groups support both SQL Database and Managed Instance. Active geo-replication is SQL Database only.

Click to flip back
Question

What is the grace period in a failover group?

Click or press Enter to reveal answer

Answer

The minimum time Azure waits before triggering automatic failover after detecting a primary outage. Default is 1 hour. Prevents false positives from transient network issues.

Click to flip back
Knowledge Check

Priya needs Azure SQL Database DR that fails over automatically with no application connection string changes. Which solution should she configure?

🎬 Video coming soon

Next up: Always On: Availability Groups and FCIs β€” configure Always On for SQL Managed Instance and Azure VMs.

← Previous

Point-in-Time Restore, LTR, and Cloud Backup

Next β†’

Always On: Availability Groups and FCIs

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.