The AZ-400 Microsoft Azure DevOps Solutions certification exam tests and validates a candidates expertise as a DevOps Professional around the use of Microsoft Azure technologies for designing and implementing DevOps practices. This exam is a part of the required exams needed to earn the larger Microsoft Certified: Azure DevOps Engineer Expert certification.
Table of Contents
AZ-400 Exam Target Audience
The AZ-400 Microsoft Azure DevOps Solutions certification exam is geared towards DevOps Professionals (or Site Reliability Engineers / SREs) who combine people, process, and tools to continuously deliver value to meet users needs and business objectives. These candidates streamline delivery by optimizing practices, improve communication and collaboration, and create automation. They design and implement strategies for app code and infrastructure that allows for continuous integration, continuous testing, continuous delivery, and continuous monitoring and feedback.
Exam candidates are expected to be proficient with Agile practices, and must be familiar with both Azure Administration and Azure Development, and should be experts in one of these areas. They must be able to design and implement DevOps practices for version control, compliance, infrastructure as code (IaC), configuration management, build, release, and testing by using Microsoft Azure technologies.
AZ-400 Exam Objective Domains
Here’s a very high level list of the skills and objectives measured on the AZ-400 Microsoft Azure DevOps Solutions certification exam. The percentages for each objective area represents the number of questions on the exam for that particular exam objective.
Configure processes and communications (10—15%)
- Configure activity traceability and flow of work
- plan and implement a structure for the flow of work and feedback cycles
- identify appropriate metrics related to flow of work, such as cycle times, time to recovery, and lead time
- integrate pipelines with work item tracking tools, such as Azure DevOps and GitHub • implement traceability policies decided by development
- integrate a repository with Azure Boards
- Configure collaboration and communication
- communicate actionable information by using custom dashboards in Azure DevOps • document a project by using tools, such as wikis and process diagrams
- configure release documentation, including release notes and API documentation
- automate creation of documentation from Git history
- configure notifications by using webhooks
Design and implement source control (15—20%)
- Design and implement a source control strategy
- design and implement an authentication strategy
- design a strategy for managing large files, including Git LFS and git-fat
- design a strategy for scaling and optimizing a Git repository, including Scalar and crossrepository sharing
- implement workflow hooks
- Plan and implement branching strategies for the source code
- design a branch strategy, including trunk-based, feature branch, and release branch
- design and implement a pull request workflow by using branch policies and branch protections
- implement branch merging restrictions by using branch policies and branch protections
- Configure and manage repositories
- integrate GitHub repositories with Azure Pipelines, one of the services in Azure DevOps
- configure permissions in the source control repository
- configure tags to organize the source control repository
- recover data by using Git commands • purge data from source control
Design and implement build and release pipelines (40—45%)
- Design and implement pipeline automation
- integrate pipelines with external tools, including dependency scanning, security scanning, and code coverage
- design and implement quality and release gates, including security and governance
- design integration of automated tests into a pipeline
- design and implement a comprehensive testing strategy
- implement orchestration of tools, such as GitHub Actions and Azure Pipelines
- Design and implement a package management strategy
- design a package management implementation that uses Azure Artifacts, GitHub Packages, NuGet, and npm
- design and implement package feeds, including upstream sources
- design and implement a dependency versioning strategy for code assets and packages, including semantic versioning and date-based
- design and implement a versioning strategy for pipeline artifacts
- Design and implement pipelines
- select a deployment automation solution, including GitHub Actions and Azure Pipelines
- design and implement an agent infrastructure, including cost, tool selection, licenses, connectivity, and maintainability
- develop and implement pipeline trigger rules
- develop pipelines, including classic and YAML • design and implement a strategy for job execution order, including parallelism and multi-stage
- develop complex pipeline scenarios, such as containerized agents and hybrid
- configure and manage self-hosted agents, including virtual machine (VM) templates and containerization
- create reusable pipeline elements, including YAML templates, task groups, variables, and variable groups
- design and implement checks and approvals by using YAML environments
- Design and implement deployments
- design a deployment strategy, including blue/green, canary, ring, progressive exposure, feature flags, and A/B testing
- design a pipeline to ensure reliable order of dependency deployments
- plan for minimizing downtime during deployments by using VIP swap, load balancer, and rolling deployments
- design a hotfix path plan for responding to high-priority code fixes
- implement load balancing for deployment, including Azure Traffic Manager and the Web Apps feature of Azure App Service
- implement feature flags by using Azure App Configuration Feature Manager
- implement application deployment by using containers, binary, and scripts
- Design and implement infrastructure as code (IaC)
- recommend a configuration management technology for application infrastructure
- implement a configuration management strategy for application infrastructure, including IaC
- define an IaC strategy, including source control and automation of testing and deployment
- design and implement desired state configuration for environments, including Azure Automation State Configuration, Azure Resource Manager, Bicep, and Azure Policy guest configuration
- Maintain pipelines
- monitor pipeline health, including failure rate, duration, and flaky tests
- optimize pipelines for cost, time, performance, and reliability
- analyze pipeline load to determine agent configuration and capacity
- design and implement a retention strategy for pipeline artifacts and dependencies
Develop a security and compliance plan (10—15%)
- Design and implement a strategy for managing sensitive information in automation
- implement and manage service connections
- implement and manage personal access tokens
- implement and manage secrets, keys, and certificates by using Azure Key Vault, GitHub secrets, and Azure Pipelines secrets
- design and implement a strategy for managing sensitive files during deployment
- design pipelines to prevent leakage of sensitive information
- Automate security and compliance scanning
- automate analysis of source code by using GitHub code scanning, GitHub secrets scanning, pipeline-based scans, and SonarQube
- automate security scanning, including container scanning and OWASP ZAP
- automate analysis of licensing, vulnerabilities, and versioning of open-source components by using WhiteSource and GitHub Dependency Scanning
Implement an instrumentation strategy (10—15%)
- Configure monitoring for a DevOps environment
- configure and integrate monitoring by using Azure Monitor
- configure and integrate with monitoring tools, such as Azure Monitor and Application Insights
- manage access control to the monitoring platform
- configure alerts for pipeline events
- Analyze metrics
- inspect distributed tracing by using Application Insights
- inspect application performance indicators
- inspect infrastructure performance indicators, including CPU, memory, disk, and network
- identify and monitor metrics for business value
- analyze usage metrics by using Application Insight
- interrogate logs using basic Kusto Query Language (KQL) queries
To view the most up-to-date list of these exam objectives, please reference the official AZ-400 exam page.
AZ-400 Exam Study Resources
The first resource that is really great at learning and referencing how to use Azure DevOps is the official documentation. However, if you are new to Azure DevOps that can be a bit difficult to use without a more guided approach. Many of the Microsoft certification exams do have official Exam Reference books published from Microsoft Press, however, the AZ-400 DevOps Engineer is not one of them.
Here are some FREE learning and study resources that you’ll find useful when preparing for this exam:
- Azure DevOps Labs – This is a great collection of Azure DevOps lab guides that you can follow using your own subscription and account.
- AZ-400 Microsoft Official Courseware Hands-on Labs – These are FREE hands-on labs maintained by Microsoft. These are the Official Microsoft Curriculum labs used in paid Microsoft training courses for this certification, and you can access these labs completely free as they are hosted on GitHub.
- Microsoft Learn DevOps Modules – Microsoft Learn has a few modules around the topics of Azure DevOps that you can use to study.
- Continuous Delivery in Azure DevOps Microsoft Cloud Workshop – This MCW is a great learning resource that can be used to learn more about Azure DevOps. It includes a Whiteboard design session that you can use to run through designing a DevOps solution, and it includes a Hands-on Lab that you can use to get in there and work with Azure DevOps for yourself.
Microsoft Certified: Azure DevOps Engineer Expert
The AZ-400 Microsoft Azure DevOps Solutions certification exam is among the required exams necessary to earn the larger Microsoft Certified: Azure DevOps Engineer Expert certification. Prior to taking this exam, candidates will need to take a couple exams previously and have earned either the Microsoft Certified: Azure Administrator Associate or Microsoft Certified: Azure Developer Associate certification. As the prerequisites show, candidates can be either Azure Administrator or Azure Developer experts, then take the AZ-400 Microsoft Azure DevOps Solutions exam to prove their skills as a Microsoft Azure DevOps Expert!
About the Author
Chris Pietschmann
Chris Pietschmann is a Microsoft MVP, HashiCorp Ambassador, and Microsoft Certified Trainer (MCT) with 20+ years of experience designing and building Cloud & Enterprise systems. He has worked with companies of all sizes from startups to large enterprises. He has a passion for technology and sharing what he learns with others to help enable them to learn faster and be more productive.
Benefits of Convention over Configuration for IaC Deployment Projects
Analyzing IBM’s Acquisition of HashiCorp: A Game-Changer in Hybrid Cloud Management
Terraform: Modules using Git Branch as Source
Azure CDN POP Locations: Interactive Map of Azure CDN Points of Presence
Azure Functions: Extend Execution Timeout Past 5 Minutes
when will AZ-400 exam go live ?
MS paused registration for it due to the feedback they’ve received. As a result I think this one may be delayed a bit more than most Beta exams. However, the truth is I don’t really know, so we’ll have to wait to find out together. 🙂
i have done 70-534 exam is there any transition exam for this exam ?
Regards
Gopa
No transition for 70-534, it’s too outdated.
when Microsoft Azure AZ-400 exam will release
The AZ-400 exam has been released and is available to take.
May I know when did they release ?
AZ-400 is available now.
Do we need any other exam to be cleared before taking this, like AZ-100 or 101.
If you’re new to the cloud it’s recommended to take the AZ-900 Azure Fundamental exam but that’s optional. The AZ-100 and AZ-101 do not have any required prerequisites.
Is there any prerequisites for AZ-400 as i am new in devops and azure.
This exam is meant to build on top of the Microsoft Certified: Azure Administrator or Microsoft Certified: Azure Developer certifications. You’ll really want to earn either of those first before taking the AZ-400 exam as it’s an Expert level certification exam.
I could not find a official Microsoft page with study material relevant to Az-400, could you please share
The page is live. Try again 🙂
Hi Chris, great post thank you, a quick question for you: i’m a Microsoft Solution Architect certified and Azure Administrator Associate i’m more in to the infrastructure than development but i’m interested on the devops (no experience), based on your experience how difficult for someone with my background to pass the AZ-400? thanks again for your great effort on writing this post.
DevOps disciplines definitely require you to have some scripting ability, and having dev experience certain can help here. However, if you just study everything I’m certain you can do it. As an admin you’re used to command-line scripting, so you’ll just need to build on that expertise to learn what’s necessary for the AZ-400 DevOps Expert exam. You can do it!!
Hi Chris, Is the exam Az-400 still in Beta?
No, AZ-400 is no longer in Beta. The exam has been fully released and is available to take.
Hi Chris, Do we have any practice page trial page for AZ-400?
There are training materials available from multiple sources for the AZ-400 Azure DevOps certification exam.
Hi Chris, is AZ-400 Microsoft Azure DevOps Solutions and Microsoft Certified: Azure DevOps Engineer Expert
are same or different? Because I have registered for AZ-400 Microsoft Azure DevOps Solutions but there no information about the Pre-requisites in this page https://www.microsoft.com/en-us/learning/exam-az-400.aspx and my exam is in couple of days. please advice
The AZ-400 exam is the required exam to upgrade a Microsoft Certified: Azure Administrator Associate or Microsoft Certified: Azure Developer Associate certification to the Microsoft Certified: Azure DevOps Engineer Expert level certification.