Microsoft · AZ-140
Validates expertise in designing, implementing, managing, and maintaining Microsoft Azure Virtual Desktop experiences and remote apps for any device.
Questions
517
Duration
100 minutes
Passing Score
700/1000
Difficulty
SpecialtyLast Updated
Jan 2025
Use this AZ-140 practice exam to prepare for Microsoft Certified: Azure Virtual Desktop Specialty (AZ-140) with realistic questions, detailed explanations, and focused study modes. The practice bank includes 517 questions for Microsoft AZ-140, so you can review the exam steadily instead of relying on one long cram session.
As you practice, pay extra attention to recurring topics such as Plan and implement an Azure Virtual Desktop infrastructure, Plan and implement identity and security, Plan and implement user environments and apps, and Monitor and maintain an Azure Virtual Desktop infrastructure. Start with short sessions to identify weak areas, then move into timed quizzes once your accuracy is consistent.
The explanations are especially useful when you want to connect exam wording to the responsibilities and scenarios described in the official certification guidance. Use the free preview first, then unlock the full question bank when you are ready to build a complete study routine.
The Microsoft Certified: Azure Virtual Desktop Specialty (AZ-140) validates subject matter expertise in designing, implementing, managing, and maintaining Microsoft Azure Virtual Desktop (AVD) experiences and remote apps for any device. The certification covers the full lifecycle of an AVD deployment — from planning network topology and host pool architecture, to configuring FSLogix profile containers, securing session hosts with Microsoft Defender for Endpoint, and optimizing performance through autoscaling and Azure Monitor Insights. The exam was last updated on January 14, 2026, with minor changes to the security and FSLogix domains, ensuring alignment with current Azure capabilities.
Candidates must demonstrate hands-on proficiency across Azure compute, networking, storage, identity, and resiliency as they relate to virtual desktop infrastructure. This includes working with technologies such as RDP Shortpath, Azure Private Link, Azure NetApp Files, Microsoft Entra ID (formerly Azure AD), Conditional Access, app attach for dynamic application delivery, and Azure VM Image Builder for image lifecycle management.
This certification is designed for server or desktop administrators who specialize in virtual desktop infrastructure and are transitioning to or expanding within Azure-hosted environments. Ideal candidates include desktop virtualization engineers, systems administrators, and infrastructure architects who design and operate end-user computing solutions at scale for remote or hybrid workforces.
Candidates typically collaborate cross-functionally with Azure administrators, Azure architects, Azure security engineers, Microsoft 365 administrators, and Azure Local administrators. The certification is well-suited for professionals already holding the AZ-104 (Azure Administrator Associate) credential who want to deepen their specialty in virtual desktop delivery.
There are no formal prerequisites required to sit the AZ-140 exam, but Microsoft recommends candidates have hands-on experience with Azure technologies spanning compute, networking, identity, storage, and resiliency before attempting it. Practical knowledge of managing end-user desktop environments — including deploying applications and configuring user settings via the Azure portal, PowerShell, Azure CLI, ARM templates, and Bicep — is strongly advised.
A working understanding of Active Directory Domain Services (AD DS), Microsoft Entra ID, and Microsoft Entra Domain Services is important given the identity-heavy content. Candidates without prior Azure administration experience are encouraged to first pass the AZ-104 (Azure Administrator Associate) exam. Familiarity with FSLogix, Windows Virtual Desktop concepts, and Microsoft 365 workloads such as Teams and OneDrive in multi-session environments will also be beneficial.
Exam AZ-140 is a single proctored exam that must be passed to earn the Microsoft Certified: Azure Virtual Desktop Specialty credential. Candidates are given 100 minutes to complete the assessment, which contains a variable number of questions (typically 40–60) that may include multiple-choice, scenario-based single answer, drag-and-drop, ordered-sequence, and interactive lab-style components. The exam is delivered through Pearson VUE, available both online (proctored remotely) and at in-person testing centers.
A minimum score of 700 out of 1000 is required to pass. The scoring scale is not linear — performance is evaluated against a scaled model. The exam is available in English, German, Spanish, French, Japanese, Portuguese (Brazil), and Chinese (Simplified). Non-English speakers may request an additional 30 minutes when the exam is not available in their preferred language. Candidates who fail may retake after 24 hours; subsequent retake wait times vary per Microsoft's retake policy. The certification expires annually and can be renewed at no cost via an online assessment on Microsoft Learn.
Professionals holding the Azure Virtual Desktop Specialty certification are positioned for roles such as Desktop Virtualization Engineer, End-User Computing (EUC) Architect, Azure Infrastructure Administrator, and Cloud Workspace Specialist. As organizations continue to expand hybrid and remote work infrastructure, demand for AVD expertise remains strong — particularly for enterprises migrating from on-premises Remote Desktop Services (RDS) or Citrix/VMware Horizon environments to Azure-native VDI. Average salaries for virtual desktop engineers in the United States exceed $120,000 per year, with certified professionals typically earning 10–11% more than non-certified peers according to industry salary surveys.
The AZ-140 differentiates candidates from general Azure administrators (AZ-104) by demonstrating deep, scenario-specific expertise in desktop virtualization — a niche that commands a premium in the job market. Compared to vendor-neutral VDI certifications, the Microsoft Specialty badge carries particular weight with Microsoft partner organizations and enterprise customers on Microsoft's ecosystem. The certification renews annually at no cost via a free online assessment on Microsoft Learn, keeping holders current as the AVD platform evolves.
5 sample questions with answers and explanations. Start a practice session to test yourself across all 517 questions.
Preview — answers shown1. TechSolutions Ltd wants to implement a security strategy where users authenticate with smartcards to Microsoft Entra ID for Azure Virtual Desktop access. What preliminary configuration must be completed?
Explanation
To use smartcards for authentication to Microsoft Entra ID, you must first configure either AD FS for user certificate authentication or configure Microsoft Entra certificate-based authentication. This foundational setup enables the certificate-based authentication infrastructure required for smartcard authentication. While smartcard drivers and redirection are needed for in-session smartcard use, the authentication to Microsoft Entra ID specifically requires certificate authentication configuration.
2. EnterpriseNetwork Corp has multiple branch offices that need consistent, high-performance access to their Azure Virtual Desktop environment. They want to enable all on-premises resources at each branch to access the virtual network and prefer encrypted connections over the internet. Which connectivity solution should they deploy?
Explanation
Site-to-site VPN is designed for connecting entire networks (like branch offices) to Azure virtual networks through encrypted tunnels over the internet. This enables all authorized on-premises resources at each branch to access the Azure virtual network where Azure Virtual Desktop session hosts are located. Point-to-site VPN is for individual device connections, not entire branch offices. ExpressRoute provides dedicated connections but may be cost-prohibitive for multiple branch offices and doesn't use internet encryption since it's a private connection. Multiple ExpressRoute circuits would be extremely expensive for this scenario.
3. InnovativeApps Inc. wants to configure clipboard redirection to allow copy-paste functionality between local devices and remote sessions. Which RDP property should they set?
Explanation
To enable clipboard redirection for copy-paste functionality between local devices and remote sessions, configure redirectclipboard:i:1. This setting allows users to copy content on their local device and paste it in the remote session, and vice versa. Setting redirectclipboard:i:0 would disable clipboard redirection, preventing copy-paste operations between the local and remote environments. Clipboard redirection is essential for user productivity in virtual desktop scenarios.
4. DataSync Inc. is implementing autoscaling for their pooled host pools and needs to assign the proper RBAC role to enable this functionality. Which role must be assigned to the Azure Virtual Desktop service principal, and at what scope level?
Explanation
For autoscaling to work properly, the Desktop Virtualization Power On Off Contributor RBAC role must be assigned to the Azure Virtual Desktop service principal at the Azure subscription level. Assigning this role at any lower level (resource group, host pool, or VM) will prevent autoscaling from functioning correctly. This role assignment allows Azure Virtual Desktop to manage the power state of VMs in the subscription and apply actions on both host pools and VMs when there are no active user sessions.
5. UnsupportedClient Corp has been using RemoteApp and Desktop Connections (RADC) and Remote Desktop Connection (MSTSC) clients for their current remote desktop infrastructure. As they migrate to Azure Virtual Desktop, what should they know about these existing clients?
Explanation
Azure Virtual Desktop does not support RemoteApp and Desktop Connections (RADC) client or the Remote Desktop Connection (MSTSC) client. Users must use the specific Azure Virtual Desktop client designed for the service, which provides the proper integration and functionality required for Azure Virtual Desktop connections. Neither RADC nor MSTSC clients are compatible with Azure Virtual Desktop. Organizations migrating from traditional remote desktop solutions must deploy the Azure Virtual Desktop-specific client to their users.
Microsoft Dynamics 365 Supply Chain Management Functional Consultant Expert (MB-335)
MB-335 · 2039 questions
Microsoft Dynamics 365 Business Central Functional Consultant (MB-800)
MB-800 · 1899 questions
Microsoft Certified: Azure AI Engineer Associate (AI-102)
AI-102 · 1392 questions
Microsoft Certified: Windows Server Hybrid Administrator Associate (AZ-801)
AZ-801 · 1376 questions
Microsoft Dynamics 365 Finance Functional Consultant (MB-310)
MB-310 · 1299 questions
Microsoft 365 Certified: Fundamentals (MS-900)
MS-900 · 1201 questions
$17.99
One-time access to this exam