How are DP-700 questions generated?

dotCreds builds DP-700 practice questions from public exam objectives and Microsoft Learn and exam-objective references. The questions are written for realistic study practice, not copied from exam dumps.

How are explanations sourced?

Each question includes an explanation and, when available, a source link back to the provider documentation or reference used to validate the answer. That keeps the practice tied to study material you can actually review.

The page tracks today's answered count and accuracy for the 10-question daily set, then saves a 7-day score history on this device so you can see your recent practice trend.

The site is the fastest way to start DP-700 practice without installing anything. It is built for daily recall, quick weak-topic discovery, and source-backed explanations you can review immediately.

Why use the app when available?

The web page is the quick daily practice layer. If a dotCreds app is available for DP-700, the app is better for larger banks, focused weak-domain drills, longer review sessions, and mobile study routines.

Free DP-700 Practice Test (2026) - Microsoft Fabric Data Engineer Associate Questions

DP-700 Practice Test

Start today's 10-question DP-700 set with source-backed explanations, local progress, and a fresh rotation every morning.

10 daily web questions Source-backed explanations 7-day score history Questions updated at Jun 9, 2026, 9:39 PM CDT

Question 1 of 10

Objective Workspace configuration Implement and manage an analytics solution

A data engineering team is building a complex data pipeline within a Microsoft Fabric workspace that processes large volumes of streaming data and requires significant computational resources. Initial testing with the default Spark pool reveals frequent timeouts and slow processing speeds, particularly during peak hours. The team anticipates increased data volume and complexity in the future. As the workspace administrator, what is the MOST effective strategy to optimize the Spark pool configuration for this workload and ensure consistent performance?

Concept tested: Implement and manage an analytics solution (Workspace configuration)

Source:Workspace administration settings in Microsoft Fabric

Question 2 of 10

Objective Security and governance Implement and manage an analytics solution

A financial services company is implementing Microsoft Fabric to analyze customer transaction data. The 'CustomerSSN' column in the 'Transactions' table contains sensitive Social Security Numbers. To comply with data privacy regulations, the company wants to restrict direct access to the raw SSN data for most users while still allowing analysts to view masked versions for reporting and analysis. Which configuration method should a data engineer implement to achieve this within a Fabric Warehouse?

Concept tested: Implement and manage an analytics solution (Security and governance)

Source:Dynamic data masking in Fabric data warehousing

Question 3 of 10

Objective Capacity management Implement and manage an analytics solution

A data engineering team is building a Microsoft Fabric workspace to process large volumes of data for a critical business intelligence dashboard. Initial testing reveals that the workspace is frequently timing out during data loading and transformation processes, impacting dashboard refresh times. The team has observed that the workspace is currently using a 'Free' license. What is the MOST appropriate action to resolve this performance bottleneck and ensure reliable dashboard operation?

Concept tested: Implement and manage an analytics solution (Capacity management)

Source:Microsoft Fabric licenses

Question 4 of 10

Objective OneLake Shortcuts Implement and manage an analytics solution

A data engineering team at 'Contoso Retail' needs to provide a reporting workspace ('Sales Insights') access to cleansed customer data residing in a separate 'Data Refinery' workspace. The 'Data Refinery' workspace contains a curated lakehouse with sensitive customer information, and direct access to this lakehouse from the 'Sales Insights' workspace is restricted due to security policies. To enable the reporting team to access the necessary data without compromising security, what is the MOST appropriate approach?

Concept tested: Implement and manage an analytics solution (OneLake Shortcuts)

Source:OneLake shortcuts in Microsoft Fabric

Question 5 of 10

Objective Lifecycle management Implement and manage an analytics solution

A data engineering team wants to integrate their Fabric deployments into their existing Azure DevOps organization's CI/CD automation. They want to run a pipeline in Azure DevOps that automates the deployment of Fabric workspace items from their Git repository to their production workspace. What tool should they use in their Azure DevOps pipeline?

Concept tested: Implement and manage an analytics solution (Lifecycle management)

Source:Manage deployment in Microsoft Fabric

Question 6 of 10

Objective Security and governance Implement and manage an analytics solution

A data engineering team is building a Microsoft Fabric workspace for a retail client. The client has a sensitive 'Sales Data' folder within OneLake containing personally identifiable information (PII). The marketing team needs read-only access to aggregated sales data within this folder for reporting purposes, while the finance team requires full read and write access for reconciliation. The data engineering team wants to implement the most granular and secure access control possible. Which action should the team take to achieve this?

Concept tested: Implement and manage an analytics solution (Security and governance)

Source:OneLake data access roles (Preview)

Question 7 of 10

Objective Workspace configuration Implement and manage an analytics solution

A data engineering team needs to grant a third-party Azure Databricks workspace direct read-only access to Parquet files stored inside a Microsoft Fabric Lakehouse named 'SalesLake'. The security administrator wants to grant the minimum necessary permissions to read the OneLake files directly via the Azure Data Lake Storage Gen2 APIs, without granting any workspace management or admin privileges. How should the administrator configure access on the 'SalesLake' item?

Concept tested: Implement and manage an analytics solution (Workspace configuration)

Source:OneLake security overview

Question 8 of 10

Objective Workspace configuration Implement and manage an analytics solution

A data engineer is configuring Git integration for a Microsoft Fabric workspace to connect it to an Azure DevOps repository. The organization requires that all connections to Azure DevOps be authenticated without using individual personal user accounts to ensure security and prevent access interruption when developers leave. What is the most appropriate authentication method to configure in the workspace Git integration settings?

Concept tested: Implement and manage an analytics solution (Workspace configuration)

Source:Git integration process in Microsoft Fabric

Question 9 of 10

Objective Workspace configuration Implement and manage an analytics solution

A data engineering team is building a Microsoft Fabric workspace to process large volumes of streaming data from IoT devices. The team anticipates varying workloads throughout the day, with peak loads occurring during business hours. To optimize cost and performance, they want to configure the workspace's default Spark pool. Which of the following configurations best aligns with the team's requirements, considering both cost efficiency and responsiveness to fluctuating workloads?

Concept tested: Implement and manage an analytics solution (Workspace configuration)

Source:Workspace administration settings in Microsoft Fabric

Question 10 of 10

Objective Workspace configuration Implement and manage an analytics solution

A data engineering team is collaborating on a new dataflow within a Microsoft Fabric workspace. Sarah, a data engineer, needs to review and make minor adjustments to the dataflow. David, the team lead, wants to ensure Sarah can make these changes but prevent her from deleting or modifying other workspace items. What is the least permissive permission level you should assign to Sarah for the dataflow?

Concept tested: Implement and manage an analytics solution (Workspace configuration)

Source:Share items in Microsoft Fabric

Unlock the full DP-700 bank. No ads.

Get the full bank, Exam Mode, Practice Mode, question sets, random tests, readiness tracking, saved box scores, and review tools for this exam.

The PDF versions keep questions first and move the answer review, explanations, and distractor notes to the back of the file.

150 full-bank questions Every choice explained Exam Mode and Practice Mode Question sets and random tests Readiness score and trends Previous test box scores

You've answered 0/10 questions in today's set.

Locked: 140 more questions in the full bank.

Locked: exam simulation mode, practice mode, readiness tracking, and saved review history.

Checkout stays on this page, so you can keep practicing, unlock the full bank, and start Exam Mode or Practice Mode when you are ready.

No ads

Question 1 A data engineering team is building a complex data pipeline within a Microsoft Fabric workspace that processes large volumes of streaming data and requires significant computational resources. Initial testing with the default Spark pool reveals frequent timeouts and slow processing speeds, particularly during peak hours. The team anticipates increased data volume and complexity in the future. As the workspace administrator, what is the MOST effective strategy to optimize the Spark pool configuration for this workload and ensure consistent performance?

Answer choices

A. Create a new, dedicated Spark pool with a larger number of driver nodes and a higher memory allocation per executor, and then assign this pool to all existing data pipelines.
B. Increase the auto-scaling limits of the default Spark pool to dynamically adjust the number of executors based on workload demand, while maintaining the existing memory allocation per executor.
C. Configure a custom Spark pool with a fixed number of executors and a higher memory allocation per executor, based on the observed peak resource utilization during initial testing, and assign this pool to the data pipeline.
D. Implement a cost-saving strategy by reducing the number of executors in the default Spark pool and monitoring performance; if issues arise, increase the number of executors as needed.

Correct answer

Configure a custom Spark pool with a fixed number of executors and a higher memory allocation per executor, based on the observed peak resource utilization during initial testing, and assign this pool to the data pipeline.

The most effective strategy is to create a custom Spark pool with a fixed number of executors and increased memory per executor. Streaming workloads often benefit from predictable resource allocation to avoid unpredictable performance fluctuations. While auto-scaling can be useful, it introduces latency as the cluster scales up and down, which can negatively impact streaming data processing. A fixed, appropriately sized pool provides consistent performance and avoids the overhead of dynamic scaling. The team's initial testing provides valuable data to determine the optimal number of executors and memory allocation. Assigning this custom pool to the specific data pipeline ensures it receives the necessary resources without impacting other workloads in the workspace.

Wrong-answer review

A. Create a new, dedicated Spark pool with a larger number of driver nodes and a higher memory allocation per executor, and then assign this pool to all existing data pipelines.: Create a new, dedicated Spark pool with a larger number of driver nodes and a higher memory allocation per executor, and then assign this pool to all existing data pipelines. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The most effective strategy is to create a custom Spark pool with a fixed number of executors and increased memory per executor. Streaming workloads often benefit from predictable resource allocation to avoid unpredictable performance fluctuations. Although auto-scaling can be useful, it introduces latency as the cluster scales up and down, which can negatively impact streaming data processing. A fixed, appropriately sized pool provides consistent performance and avoids the overhead of dynamic scaling. The team's initial testing provides valuable data to determine the optimal number of executors and memory allocation. Assigning this custom pool to the specific data pipeline ensures it receives the necessary resources without impacting other workloads in the workspace.
B. Increase the auto-scaling limits of the default Spark pool to dynamically adjust the number of executors based on workload demand, while maintaining the existing memory allocation per executor.: Increase the auto-scaling limits of the default Spark pool to dynamically adjust the number of executors based on workload demand, while maintaining the existing memory allocation per executor. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The most effective strategy is to create a custom Spark pool with a fixed number of executors and increased memory per executor. Streaming workloads often benefit from predictable resource allocation to avoid unpredictable performance fluctuations. Although auto-scaling can be useful, it introduces latency as the cluster scales up and down, which can negatively impact streaming data processing. A fixed, appropriately sized pool provides consistent performance and avoids the overhead of dynamic scaling. The team's initial testing provides valuable data to determine the optimal number of executors and memory allocation. Assigning this custom pool to the specific data pipeline ensures it receives the necessary resources without impacting other workloads in the workspace.
D. Implement a cost-saving strategy by reducing the number of executors in the default Spark pool and monitoring performance; if issues arise, increase the number of executors as needed.: Implement a cost-saving strategy by reducing the number of executors in the default Spark pool and monitoring performance; if issues arise, increase the number of executors as needed. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The most effective strategy is to create a custom Spark pool with a fixed number of executors and increased memory per executor. Streaming workloads often benefit from predictable resource allocation to avoid unpredictable performance fluctuations. Although auto-scaling can be useful, it introduces latency as the cluster scales up and down, which can negatively impact streaming data processing. A fixed, appropriately sized pool provides consistent performance and avoids the overhead of dynamic scaling. The team's initial testing provides valuable data to determine the optimal number of executors and memory allocation. Assigning this custom pool to the specific data pipeline ensures it receives the necessary resources without impacting other workloads in the workspace.

Objective/domain: Implement and manage an analytics solution (Workspace configuration)

Question 2 A financial services company is implementing Microsoft Fabric to analyze customer transaction data. The 'CustomerSSN' column in the 'Transactions' table contains sensitive Social Security Numbers. To comply with data privacy regulations, the company wants to restrict direct access to the raw SSN data for most users while still allowing analysts to view masked versions for reporting and analysis. Which configuration method should a data engineer implement to achieve this within a Fabric Warehouse?

A. Configure Row-Level Security (RLS) using T-SQL functions to filter the 'CustomerSSN' column based on user roles.
B. Implement Dynamic Data Masking (DDM) rules on the 'CustomerSSN' column to mask the data based on user roles and data classifications.
C. Create a data access role with read permissions only on a masked view of the 'Transactions' table, excluding direct access to the base table.
D. Apply a sensitivity label to the 'Transactions' table and configure data loss prevention (DLP) policies to prevent the export of the 'CustomerSSN' column.

Implement Dynamic Data Masking (DDM) rules on the 'CustomerSSN' column to mask the data based on user roles and data classifications.

Dynamic Data Masking (DDM) is the most appropriate solution for this scenario. DDM allows you to define rules that mask sensitive data based on user roles or data classifications without modifying the underlying data. This enables analysts to work with masked versions of the data while protecting the raw SSN values from unauthorized access. The configuration is directly within the Fabric Warehouse, aligning with the requirement. RLS would filter rows, not mask columns. Creating a masked view is a viable option, but DDM is more flexible and centrally managed. DLP policies are for preventing data exfiltration, not for controlling access within the Fabric environment.

A. Configure Row-Level Security (RLS) using T-SQL functions to filter the 'CustomerSSN' column based on user roles.: Configure Row-Level Security (RLS) using T-SQL functions to filter the 'CustomerSSN' column based on user roles. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Dynamic Data Masking (DDM) is the most appropriate solution for this scenario. DDM allows you to define rules that mask sensitive data based on user roles or data classifications without modifying the underlying data. This enables analysts to work with masked versions of the data while protecting the raw SSN values from unauthorized access. The configuration is directly within the Fabric Warehouse, aligning with the requirement. RLS would filter rows, not mask columns. Creating a masked view is a viable option, but DDM is more flexible and centrally managed. DLP policies are for preventing data exfiltration, not for controlling access within the Fabric environment.
C. Create a data access role with read permissions only on a masked view of the 'Transactions' table, excluding direct access to the base table.: Create a data access role with read permissions only on a masked view of the 'Transactions' table, excluding direct access to the base table. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Dynamic Data Masking (DDM) is the most appropriate solution for this scenario. DDM allows you to define rules that mask sensitive data based on user roles or data classifications without modifying the underlying data. This enables analysts to work with masked versions of the data while protecting the raw SSN values from unauthorized access. The configuration is directly within the Fabric Warehouse, aligning with the requirement. RLS would filter rows, not mask columns. Creating a masked view is a viable option, but DDM is more flexible and centrally managed. DLP policies are for preventing data exfiltration, not for controlling access within the Fabric environment.
D. Apply a sensitivity label to the 'Transactions' table and configure data loss prevention (DLP) policies to prevent the export of the 'CustomerSSN' column.: Apply a sensitivity label to the 'Transactions' table and configure data loss prevention (DLP) policies to prevent the export of the 'CustomerSSN' column. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Dynamic Data Masking (DDM) is the most appropriate solution for this scenario. DDM allows you to define rules that mask sensitive data based on user roles or data classifications without modifying the underlying data. This enables analysts to work with masked versions of the data while protecting the raw SSN values from unauthorized access. The configuration is directly within the Fabric Warehouse, aligning with the requirement. RLS would filter rows, not mask columns. Creating a masked view is a viable option, but DDM is more flexible and centrally managed. DLP policies are for preventing data exfiltration, not for controlling access within the Fabric environment.

Objective/domain: Implement and manage an analytics solution (Security and governance)

Question 3 A data engineering team is building a Microsoft Fabric workspace to process large volumes of data for a critical business intelligence dashboard. Initial testing reveals that the workspace is frequently timing out during data loading and transformation processes, impacting dashboard refresh times. The team has observed that the workspace is currently using a 'Free' license. What is the MOST appropriate action to resolve this performance bottleneck and ensure reliable dashboard operation?

A. Upgrade the workspace to a 'Trial' license to gain access to more compute resources and monitor performance.
B. Upgrade the workspace to a 'Premium' license and allocate a Fabric capacity node (F SKU) to provide dedicated compute resources.
C. Configure the workspace to use a default Spark pool with auto-scaling enabled to dynamically adjust compute resources based on workload.
D. Migrate the data loading and transformation processes to a different workspace with a 'Standard' license to distribute the workload.

Upgrade the workspace to a 'Premium' license and allocate a Fabric capacity node (F SKU) to provide dedicated compute resources.

Upgrading the workspace to a 'Premium' license and allocating an F SKU is the correct solution. The 'Free' license severely limits compute resources, leading to timeouts. 'Trial' licenses also have limitations. 'Premium' licenses unlock the ability to allocate dedicated F SKUs, providing the necessary compute power for demanding workloads. While auto-scaling can be beneficial, it's not a guaranteed solution for immediate performance issues and requires careful configuration. Migrating to another workspace introduces unnecessary complexity and doesn't address the root cause of the resource constraints.

A. Upgrade the workspace to a 'Trial' license to gain access to more compute resources and monitor performance.: Upgrade the workspace to a 'Trial' license to gain access to more compute resources and monitor performance. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Upgrading the workspace to a 'Premium' license and allocating an F SKU is the correct solution. The 'Free' license severely limits compute resources, leading to timeouts. 'Trial' licenses also have limitations. 'Premium' licenses unlock the ability to allocate dedicated F SKUs, providing the necessary compute power for demanding workloads. Although auto-scaling can be beneficial, it's not a guaranteed solution for immediate performance issues and requires careful configuration. Migrating to another workspace introduces unnecessary complexity and doesn't address the root cause of the resource constraints.
C. Configure the workspace to use a default Spark pool with auto-scaling enabled to dynamically adjust compute resources based on workload.: Configure the workspace to use a default Spark pool with auto-scaling enabled to dynamically adjust compute resources based on workload. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Upgrading the workspace to a 'Premium' license and allocating an F SKU is the correct solution. The 'Free' license severely limits compute resources, leading to timeouts. 'Trial' licenses also have limitations. 'Premium' licenses unlock the ability to allocate dedicated F SKUs, providing the necessary compute power for demanding workloads. Although auto-scaling can be beneficial, it's not a guaranteed solution for immediate performance issues and requires careful configuration. Migrating to another workspace introduces unnecessary complexity and doesn't address the root cause of the resource constraints.
D. Migrate the data loading and transformation processes to a different workspace with a 'Standard' license to distribute the workload.: Migrate the data loading and transformation processes to a different workspace with a 'Standard' license to distribute the workload. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Upgrading the workspace to a 'Premium' license and allocating an F SKU is the correct solution. The 'Free' license severely limits compute resources, leading to timeouts. 'Trial' licenses also have limitations. 'Premium' licenses unlock the ability to allocate dedicated F SKUs, providing the necessary compute power for demanding workloads. Although auto-scaling can be beneficial, it's not a guaranteed solution for immediate performance issues and requires careful configuration. Migrating to another workspace introduces unnecessary complexity and doesn't address the root cause of the resource constraints.

Objective/domain: Implement and manage an analytics solution (Capacity management)

Question 4 A data engineering team at 'Contoso Retail' needs to provide a reporting workspace ('Sales Insights') access to cleansed customer data residing in a separate 'Data Refinery' workspace. The 'Data Refinery' workspace contains a curated lakehouse with sensitive customer information, and direct access to this lakehouse from the 'Sales Insights' workspace is restricted due to security policies. To enable the reporting team to access the necessary data without compromising security, what is the MOST appropriate approach?

A. Grant the 'Sales Insights' workspace 'Contributor' access to the 'Data Refinery' workspace, allowing them to directly query the lakehouse.
B. Create an internal OneLake shortcut in the 'Sales Insights' workspace that points to the specific curated lakehouse folder within the 'Data Refinery' workspace.
C. Configure a data access role in the 'Data Refinery' workspace and assign it to users in the 'Sales Insights' workspace, granting them direct access to the lakehouse.
D. Copy the data from the 'Data Refinery' workspace to a new folder within the 'Sales Insights' workspace, creating a duplicate dataset.

Create an internal OneLake shortcut in the 'Sales Insights' workspace that points to the specific curated lakehouse folder within the 'Data Refinery' workspace.

Creating an internal OneLake shortcut is the correct approach. Shortcuts allow you to access data residing in another workspace without granting direct access or duplicating data. This maintains the security boundaries of the 'Data Refinery' workspace while providing the 'Sales Insights' workspace with a secure, logical view of the required data. Shortcuts inherit the access controls of the source data, ensuring that only authorized users can access the data through the shortcut. This aligns with the principle of least privilege and simplifies data governance.

A. Grant the 'Sales Insights' workspace 'Contributor' access to the 'Data Refinery' workspace, allowing them to directly query the lakehouse.: Grant the 'Sales Insights' workspace 'Contributor' access to the 'Data Refinery' workspace, allowing them to directly query the lakehouse. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Creating an internal OneLake shortcut is the correct approach. Shortcuts allow you to access data residing in another workspace without granting direct access or duplicating data. This maintains the security boundaries of the 'Data Refinery' workspace while providing the 'Sales Insights' workspace with a secure, logical view of the required data. Shortcuts inherit the access controls of the source data, ensuring that only authorized users can access the data through the shortcut. This aligns with the principle of least privilege and simplifies data governance.
C. Configure a data access role in the 'Data Refinery' workspace and assign it to users in the 'Sales Insights' workspace, granting them direct access to the lakehouse.: Configure a data access role in the 'Data Refinery' workspace and assign it to users in the 'Sales Insights' workspace, granting them direct access to the lakehouse. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Creating an internal OneLake shortcut is the correct approach. Shortcuts allow you to access data residing in another workspace without granting direct access or duplicating data. This maintains the security boundaries of the 'Data Refinery' workspace while providing the 'Sales Insights' workspace with a secure, logical view of the required data. Shortcuts inherit the access controls of the source data, ensuring that only authorized users can access the data through the shortcut. This aligns with the principle of least privilege and simplifies data governance.
D. Copy the data from the 'Data Refinery' workspace to a new folder within the 'Sales Insights' workspace, creating a duplicate dataset.: Copy the data from the 'Data Refinery' workspace to a new folder within the 'Sales Insights' workspace, creating a duplicate dataset. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Creating an internal OneLake shortcut is the correct approach. Shortcuts allow you to access data residing in another workspace without granting direct access or duplicating data. This maintains the security boundaries of the 'Data Refinery' workspace while providing the 'Sales Insights' workspace with a secure, logical view of the required data. Shortcuts inherit the access controls of the source data, ensuring that only authorized users can access the data through the shortcut. This aligns with the principle of least privilege and simplifies data governance.

Objective/domain: Implement and manage an analytics solution (OneLake Shortcuts)

Question 5 A data engineering team wants to integrate their Fabric deployments into their existing Azure DevOps organization's CI/CD automation. They want to run a pipeline in Azure DevOps that automates the deployment of Fabric workspace items from their Git repository to their production workspace. What tool should they use in their Azure DevOps pipeline?

A. Install and run the fabric-cicd npm package within a pipeline task to deploy the workspace items.
B. Use the native Azure DevOps Release Pipelines task for Power BI Service deployment.
C. Create a pipeline that copies the JSON definition files directly into the OneLake system folders via the Azure CLI.
D. Enable the 'Auto-Deploy to Workspace' option in the Azure DevOps repository settings.

Install and run the fabric-cicd npm package within a pipeline task to deploy the workspace items.

For automated CI/CD using Azure DevOps, you can run a script using the fabric-cicd tool (available as an npm package) to deploy workspace items from a Git repository to a Fabric workspace. The fabric-cicd tool compiles and deploys the Fabric item definitions. Power BI service deployment tasks do not support Fabric-native items like lakehouses. You cannot copy JSON definition files directly into OneLake system folders via Azure CLI to create items. There is no 'Auto-Deploy to Workspace' option in Azure DevOps repository settings for Fabric.

B. Use the native Azure DevOps Release Pipelines task for Power BI Service deployment.: Use the native Azure DevOps Release Pipelines task for Power BI Service deployment. is incorrect here because it conflicts with the supported Fabric approach for this scenario. For automated CI/CD using Azure DevOps, you can run a script using the fabric-cicd tool (available as an npm package) to deploy workspace items from a Git repository to a Fabric workspace. The fabric-cicd tool compiles and deploys the Fabric item definitions. Power BI service deployment tasks do not support Fabric-native items like lakehouses. You cannot copy JSON definition files directly into OneLake system folders via Azure CLI to create items. There is no 'Auto-Deploy to Workspace' option in Azure DevOps repository settings for Fabric.
C. Create a pipeline that copies the JSON definition files directly into the OneLake system folders via the Azure CLI.: Create a pipeline that copies the JSON definition files directly into the OneLake system folders via the Azure CLI. is incorrect here because it conflicts with the supported Fabric approach for this scenario. For automated CI/CD using Azure DevOps, you can run a script using the fabric-cicd tool (available as an npm package) to deploy workspace items from a Git repository to a Fabric workspace. The fabric-cicd tool compiles and deploys the Fabric item definitions. Power BI service deployment tasks do not support Fabric-native items like lakehouses. You cannot copy JSON definition files directly into OneLake system folders via Azure CLI to create items. There is no 'Auto-Deploy to Workspace' option in Azure DevOps repository settings for Fabric.
D. Enable the 'Auto-Deploy to Workspace' option in the Azure DevOps repository settings.: Enable the 'Auto-Deploy to Workspace' option in the Azure DevOps repository settings. is incorrect here because it conflicts with the supported Fabric approach for this scenario. For automated CI/CD using Azure DevOps, you can run a script using the fabric-cicd tool (available as an npm package) to deploy workspace items from a Git repository to a Fabric workspace. The fabric-cicd tool compiles and deploys the Fabric item definitions. Power BI service deployment tasks do not support Fabric-native items like lakehouses. You cannot copy JSON definition files directly into OneLake system folders via Azure CLI to create items. There is no 'Auto-Deploy to Workspace' option in Azure DevOps repository settings for Fabric.

Objective/domain: Implement and manage an analytics solution (Lifecycle management)

Question 6 A data engineering team is building a Microsoft Fabric workspace for a retail client. The client has a sensitive 'Sales Data' folder within OneLake containing personally identifiable information (PII). The marketing team needs read-only access to aggregated sales data within this folder for reporting purposes, while the finance team requires full read and write access for reconciliation. The data engineering team wants to implement the most granular and secure access control possible. Which action should the team take to achieve this?

A. Grant the 'Reader' role at the OneLake root level to the marketing team and the 'Contributor' role to the finance team.
B. Create a custom Spark pool with specific permissions and assign it to the workspace, then configure access to the 'Sales Data' folder through the Spark pool’s settings.
C. Create a data access role named 'Marketing Analysts' with the 'Reader' permission and assign it to the marketing team. Create a data access role named 'Finance Team' with the 'Contributor' permission and assign it to the finance team, both scoped to the 'Sales Data' folder.
D. Modify the workspace's default data access settings to allow read-only access for all users and then grant the finance team explicit write permissions on the 'Sales Data' folder.

Create a data access role named 'Marketing Analysts' with the 'Reader' permission and assign it to the marketing team. Create a data access role named 'Finance Team' with the 'Contributor' permission and assign it to the finance team, both scoped to the 'Sales Data' folder.

The correct answer is to create data access roles scoped to the 'Sales Data' folder. Data access roles in OneLake (Preview) provide granular control over access permissions at the folder level. This allows the data engineering team to define specific roles ('Marketing Analysts' and 'Finance Team') with precisely the required permissions (read-only and contributor, respectively) and assign them to the appropriate teams. This approach minimizes the risk of unintended access and adheres to the principle of least privilege. Folder-level access control is a key feature for securing sensitive data within OneLake.

A. Grant the 'Reader' role at the OneLake root level to the marketing team and the 'Contributor' role to the finance team.: Grant the 'Reader' role at the OneLake root level to the marketing team and the 'Contributor' role to the finance team. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The correct answer is to create data access roles scoped to the 'Sales Data' folder. Data access roles in OneLake (Preview) provide granular control over access permissions at the folder level. This allows the data engineering team to define specific roles ('Marketing Analysts' and 'Finance Team') with precisely the required permissions (read-only and contributor, respectively) and assign them to the appropriate teams. This approach minimizes the risk of unintended access and adheres to the principle of least privilege. Folder-level access control is a key feature for securing sensitive data within OneLake.
B. Create a custom Spark pool with specific permissions and assign it to the workspace, then configure access to the 'Sales Data' folder through the Spark pool’s settings.: Create a custom Spark pool with specific permissions and assign it to the workspace, then configure access to the 'Sales Data' folder through the Spark pool’s settings. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The correct answer is to create data access roles scoped to the 'Sales Data' folder. Data access roles in OneLake (Preview) provide granular control over access permissions at the folder level. This allows the data engineering team to define specific roles ('Marketing Analysts' and 'Finance Team') with precisely the required permissions (read-only and contributor, respectively) and assign them to the appropriate teams. This approach minimizes the risk of unintended access and adheres to the principle of least privilege. Folder-level access control is a key feature for securing sensitive data within OneLake.
D. Modify the workspace's default data access settings to allow read-only access for all users and then grant the finance team explicit write permissions on the 'Sales Data' folder.: Modify the workspace's default data access settings to allow read-only access for all users and then grant the finance team explicit write permissions on the 'Sales Data' folder. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The correct answer is to create data access roles scoped to the 'Sales Data' folder. Data access roles in OneLake (Preview) provide granular control over access permissions at the folder level. This allows the data engineering team to define specific roles ('Marketing Analysts' and 'Finance Team') with precisely the required permissions (read-only and contributor, respectively) and assign them to the appropriate teams. This approach minimizes the risk of unintended access and adheres to the principle of least privilege. Folder-level access control is a key feature for securing sensitive data within OneLake.

Question 7 A data engineering team needs to grant a third-party Azure Databricks workspace direct read-only access to Parquet files stored inside a Microsoft Fabric Lakehouse named 'SalesLake'. The security administrator wants to grant the minimum necessary permissions to read the OneLake files directly via the Azure Data Lake Storage Gen2 APIs, without granting any workspace management or admin privileges. How should the administrator configure access on the 'SalesLake' item?

A. Share the 'SalesLake' item and grant only the 'Read' permission.
B. Share the 'SalesLake' item and grant the 'Read all OneLake data (ReadAll)' permission.
C. Assign the third-party service principal to the workspace 'Contributor' role.
D. Configure a OneLake data access role with 'ReadWrite' permissions at the folder level.

Share the 'SalesLake' item and grant the 'Read all OneLake data (ReadAll)' permission.

The Read all OneLake data (ReadAll) permission allows external clients and compute engines, such as Azure Databricks, to read the underlying data in OneLake directly using ADLS Gen2 APIs. Granting only the 'Read' permission allows querying the SQL endpoint and the default semantic model, but does not grant direct file-level access. Assigning the 'Contributor' role provides workspace-level item management privileges, which violates the principle of least privilege. OneLake data access roles are used for granular folder-level permissions for workspace viewers, but ReadAll is the standard item sharing option for direct OneLake API access.

A. Share the 'SalesLake' item and grant only the 'Read' permission.: Share the 'SalesLake' item and grant only the 'Read' permission. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The Read all OneLake data (ReadAll) permission allows external clients and compute engines, such as Azure Databricks, to read the underlying data in OneLake directly using ADLS Gen2 APIs. Granting only the 'Read' permission allows querying the SQL endpoint and the default semantic model, but does not grant direct file-level access. Assigning the 'Contributor' role provides workspace-level item management privileges, which violates the principle of least privilege. OneLake data access roles are used for granular folder-level permissions for workspace viewers, but ReadAll is the standard item sharing option for direct OneLake API access.
C. Assign the third-party service principal to the workspace 'Contributor' role.: Assign the third-party service principal to the workspace 'Contributor' role. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The Read all OneLake data (ReadAll) permission allows external clients and compute engines, such as Azure Databricks, to read the underlying data in OneLake directly using ADLS Gen2 APIs. Granting only the 'Read' permission allows querying the SQL endpoint and the default semantic model, but does not grant direct file-level access. Assigning the 'Contributor' role provides workspace-level item management privileges, which violates the principle of least privilege. OneLake data access roles are used for granular folder-level permissions for workspace viewers, but ReadAll is the standard item sharing option for direct OneLake API access.
D. Configure a OneLake data access role with 'ReadWrite' permissions at the folder level.: Configure a OneLake data access role with 'ReadWrite' permissions at the folder level. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The Read all OneLake data (ReadAll) permission allows external clients and compute engines, such as Azure Databricks, to read the underlying data in OneLake directly using ADLS Gen2 APIs. Granting only the 'Read' permission allows querying the SQL endpoint and the default semantic model, but does not grant direct file-level access. Assigning the 'Contributor' role provides workspace-level item management privileges, which violates the principle of least privilege. OneLake data access roles are used for granular folder-level permissions for workspace viewers, but ReadAll is the standard item sharing option for direct OneLake API access.

Question 8 A data engineer is configuring Git integration for a Microsoft Fabric workspace to connect it to an Azure DevOps repository. The organization requires that all connections to Azure DevOps be authenticated without using individual personal user accounts to ensure security and prevent access interruption when developers leave. What is the most appropriate authentication method to configure in the workspace Git integration settings?

A. Configure the Git connection using a Personal Access Token (PAT) generated by the workspace administrator.
B. Authenticate the Git connection using a Service Principal registered in Microsoft Entra ID and configured in Azure DevOps.
C. Enable Tenant-level Single Sign-On (SSO) and delegate access via Azure DevOps organization-level access policies.
D. Generate an SSH key pair in Microsoft Fabric and add the public key to the Azure DevOps user profile.

Authenticate the Git connection using a Service Principal registered in Microsoft Entra ID and configured in Azure DevOps.

Microsoft Fabric Git integration supports authenticating using a Service Principal. This method allows organizations to connect workspaces to Azure DevOps repositories without relying on individual user accounts. To implement this, the service principal must be registered in Microsoft Entra ID, added as a user in Azure DevOps with appropriate repository permissions, and its application ID and secret configured in the Fabric workspace Git settings. Personal Access Tokens (PATs) and SSH keys are tied to individual user profiles, which violates the requirement to avoid individual accounts. Tenant-level SSO still routes access through the logged-in user's credentials.

A. Configure the Git connection using a Personal Access Token (PAT) generated by the workspace administrator.: Configure the Git connection using a Personal Access Token (PAT) generated by the workspace administrator. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Microsoft Fabric Git integration supports authenticating using a Service Principal. This method allows organizations to connect workspaces to Azure DevOps repositories without relying on individual user accounts. To implement this, the service principal must be registered in Microsoft Entra ID, added as a user in Azure DevOps with appropriate repository permissions, and its application ID and secret configured in the Fabric workspace Git settings. Personal Access Tokens (PATs) and SSH keys are tied to individual user profiles, which violates the requirement to avoid individual accounts. Tenant-level SSO still routes access through the logged-in user's credentials.
C. Enable Tenant-level Single Sign-On (SSO) and delegate access via Azure DevOps organization-level access policies.: Enable Tenant-level Single Sign-On (SSO) and delegate access via Azure DevOps organization-level access policies. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Microsoft Fabric Git integration supports authenticating using a Service Principal. This method allows organizations to connect workspaces to Azure DevOps repositories without relying on individual user accounts. To implement this, the service principal must be registered in Microsoft Entra ID, added as a user in Azure DevOps with appropriate repository permissions, and its application ID and secret configured in the Fabric workspace Git settings. Personal Access Tokens (PATs) and SSH keys are tied to individual user profiles, which violates the requirement to avoid individual accounts. Tenant-level SSO still routes access through the logged-in user's credentials.
D. Generate an SSH key pair in Microsoft Fabric and add the public key to the Azure DevOps user profile.: Generate an SSH key pair in Microsoft Fabric and add the public key to the Azure DevOps user profile. is incorrect here because it conflicts with the supported Fabric approach for this scenario. Microsoft Fabric Git integration supports authenticating using a Service Principal. This method allows organizations to connect workspaces to Azure DevOps repositories without relying on individual user accounts. To implement this, the service principal must be registered in Microsoft Entra ID, added as a user in Azure DevOps with appropriate repository permissions, and its application ID and secret configured in the Fabric workspace Git settings. Personal Access Tokens (PATs) and SSH keys are tied to individual user profiles, which violates the requirement to avoid individual accounts. Tenant-level SSO still routes access through the logged-in user's credentials.

Question 9 A data engineering team is building a Microsoft Fabric workspace to process large volumes of streaming data from IoT devices. The team anticipates varying workloads throughout the day, with peak loads occurring during business hours. To optimize cost and performance, they want to configure the workspace's default Spark pool. Which of the following configurations best aligns with the team's requirements, considering both cost efficiency and responsiveness to fluctuating workloads?

A. Configure the default Spark pool with a small number of compute nodes and auto-scaling enabled, setting the minimum nodes to 1 and the maximum to 5.
B. Configure the default Spark pool with a large number of compute nodes (e.g., 20) to ensure consistent performance regardless of workload.
C. Configure the default Spark pool with a medium number of compute nodes (e.g., 8) and disable auto-scaling to maintain predictable resource allocation.
D. Configure the default Spark pool with a small number of compute nodes (e.g., 2) and disable auto-scaling to minimize costs during periods of low activity.

Configure the default Spark pool with a small number of compute nodes and auto-scaling enabled, setting the minimum nodes to 1 and the maximum to 5.

The optimal solution is to configure the default Spark pool with auto-scaling enabled and a reasonable range of nodes. Auto-scaling allows the pool to dynamically adjust the number of compute nodes based on workload demands. Setting a minimum of 1 ensures some resources are always available for immediate responsiveness, while a maximum of 5 provides a cost-effective upper limit during peak periods. This approach balances performance and cost by scaling up when needed and scaling down when demand decreases, avoiding unnecessary resource consumption.

B. Configure the default Spark pool with a large number of compute nodes (e.g., 20) to ensure consistent performance regardless of workload.: Configure the default Spark pool with a large number of compute nodes (e.g., 20) to ensure consistent performance regardless of workload. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The optimal solution is to configure the default Spark pool with auto-scaling enabled and a reasonable range of nodes. Auto-scaling allows the pool to dynamically adjust the number of compute nodes based on workload demands. Setting a minimum of 1 ensures some resources are always available for immediate responsiveness, while a maximum of 5 provides a cost-effective upper limit during peak periods. This approach balances performance and cost by scaling up when needed and scaling down when demand decreases, avoiding unnecessary resource consumption.
C. Configure the default Spark pool with a medium number of compute nodes (e.g., 8) and disable auto-scaling to maintain predictable resource allocation.: Configure the default Spark pool with a medium number of compute nodes (e.g., 8) and disable auto-scaling to maintain predictable resource allocation. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The optimal solution is to configure the default Spark pool with auto-scaling enabled and a reasonable range of nodes. Auto-scaling allows the pool to dynamically adjust the number of compute nodes based on workload demands. Setting a minimum of 1 ensures some resources are always available for immediate responsiveness, while a maximum of 5 provides a cost-effective upper limit during peak periods. This approach balances performance and cost by scaling up when needed and scaling down when demand decreases, avoiding unnecessary resource consumption.
D. Configure the default Spark pool with a small number of compute nodes (e.g., 2) and disable auto-scaling to minimize costs during periods of low activity.: Configure the default Spark pool with a small number of compute nodes (e.g., 2) and disable auto-scaling to minimize costs during periods of low activity. is incorrect here because it conflicts with the supported Fabric approach for this scenario. The optimal solution is to configure the default Spark pool with auto-scaling enabled and a reasonable range of nodes. Auto-scaling allows the pool to dynamically adjust the number of compute nodes based on workload demands. Setting a minimum of 1 ensures some resources are always available for immediate responsiveness, while a maximum of 5 provides a cost-effective upper limit during peak periods. This approach balances performance and cost by scaling up when needed and scaling down when demand decreases, avoiding unnecessary resource consumption.

Question 10 A data engineering team is collaborating on a new dataflow within a Microsoft Fabric workspace. Sarah, a data engineer, needs to review and make minor adjustments to the dataflow. David, the team lead, wants to ensure Sarah can make these changes but prevent her from deleting or modifying other workspace items. What is the *least* permissive permission level you should assign to Sarah for the dataflow?

A. Read
B. ReadAll
C. Write
D. Contributor

Write

The 'Write' permission level is the appropriate choice for this scenario. It allows users to modify existing items, which aligns with Sarah's need to make adjustments to the dataflow. 'Read' only allows viewing, 'ReadAll' grants access to all items in the workspace, and 'Contributor' provides broader permissions than necessary, potentially allowing Sarah to modify items she shouldn't. The principle of least privilege dictates granting only the permissions required to perform a specific task.

A. Read: Read is incorrect here because it conflicts with the supported Fabric approach for this scenario. The 'Write' permission level is the appropriate choice for this scenario. It allows users to modify existing items, which aligns with Sarah's need to make adjustments to the dataflow. 'Read' only allows viewing, 'ReadAll' grants access to all items in the workspace, and 'Contributor' provides broader permissions than necessary, potentially allowing Sarah to modify items she shouldn't. The principle of least privilege dictates granting only the permissions required to perform a specific task.
B. ReadAll: ReadAll is incorrect here because it conflicts with the supported Fabric approach for this scenario. The 'Write' permission level is the appropriate choice for this scenario. It allows users to modify existing items, which aligns with Sarah's need to make adjustments to the dataflow. 'Read' only allows viewing, 'ReadAll' grants access to all items in the workspace, and 'Contributor' provides broader permissions than necessary, potentially allowing Sarah to modify items she shouldn't. The principle of least privilege dictates granting only the permissions required to perform a specific task.
D. Contributor: Contributor is incorrect here because it conflicts with the supported Fabric approach for this scenario. The 'Write' permission level is the appropriate choice for this scenario. It allows users to modify existing items, which aligns with Sarah's need to make adjustments to the dataflow. 'Read' only allows viewing, 'ReadAll' grants access to all items in the workspace, and 'Contributor' provides broader permissions than necessary, potentially allowing Sarah to modify items she shouldn't. The principle of least privilege dictates granting only the permissions required to perform a specific task.

DP-700 Practice Test

DP-700

Why this page works

Unlock the full DP-700 bank

You finished today’s free 10.

You are viewing today’s free 10. Unlock 140 more questions.

Questions first. Answers and explanations later.

Build a DP-700 session

Tell dotCreds what you are aiming for.

Unlock the full DP-700 bank. No ads.

7-day score keeper

Keep today’s practice moving

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

Answer choices

Correct answer

Wrong-answer review

How are DP-700 questions generated?

How are explanations sourced?

What score do I get?

Why use this site?

Why use the app when available?