Microsoft · AZ-400
Expert-level exam that measures your ability to design and implement processes, source control strategies, build and release pipelines, security and compliance plans, and instrumentation strategies for DevOps solutions.
Questions
622
Duration
150 minutes
Passing Score
700/1000
Difficulty
ExpertLast Updated
Jun 2026
This AZ-400 practice exam prepares you for Designing and Implementing Microsoft DevOps Solutions, the exam behind the DevOps Engineer Expert certification. It is built around the way Microsoft weights the real exam, where designing and implementing build and release pipelines alone makes up 50 to 55 percent of your score, so the questions give you heavy, repeated exposure to CI/CD across Azure DevOps and GitHub.
Beyond pipelines, you will practice source control strategy, process and communication design, security and compliance planning, and instrumentation. Remember that passing AZ-400 only grants the Expert title once you also hold AZ-104 or AZ-204, so plan your certification path accordingly. The explanations connect each answer back to the tooling and tradeoffs you face when running production DevOps.
Use the free preview to benchmark yourself, then work through the full bank until you can consistently clear 700 out of 1000. The certification is valid for one year and renews free online, so treat this practice as the start of an ongoing DevOps learning routine.
The AZ-400 exam validates expert-level proficiency in designing and implementing DevOps solutions on Microsoft Azure, covering the full software delivery lifecycle from source control and CI/CD pipelines to security, compliance, and observability. The exam was last updated on July 26, 2024, and spans five major domains: processes and communications, source control strategy, build and release pipelines (the heaviest domain at 50–55%), security and compliance, and instrumentation. Candidates are assessed on both Azure DevOps and GitHub as delivery platforms, with a strong emphasis on YAML-based pipeline authoring, infrastructure as code using Bicep and Azure Resource Manager, and integration with Microsoft security tooling such as GitHub Advanced Security and Microsoft Defender for Cloud.
The certification leads to the Microsoft Certified: DevOps Engineer Expert credential, one of Microsoft's highest-tier role-based certifications. It reflects the breadth of skills required to bridge development and operations teams, automate software delivery pipelines, implement scalable IaC strategies, and embed security and monitoring throughout the development lifecycle. The exam content spans multiple Azure services including Azure Pipelines, Azure Repos, Azure Artifacts, Azure Boards, Azure Key Vault, Azure Monitor, Application Insights, and Azure App Configuration, making it one of the broadest Azure expert-level exams available.
This exam is aimed at experienced developers and infrastructure administrators who operate at the intersection of software engineering and cloud operations. Ideal candidates hold hands-on experience with both Azure DevOps and GitHub, have already earned either the Azure Administrator Associate (AZ-104) or Azure Developer Associate (AZ-204) certification, and work—or aspire to work—on cross-functional teams alongside developers, site reliability engineers, Azure administrators, and security engineers.
Typical job roles that benefit from this certification include DevOps Engineer, Release Engineer, Platform Engineer, Cloud Infrastructure Engineer, and Site Reliability Engineer. Candidates should be comfortable designing branching strategies, authoring multi-stage YAML pipelines, managing secrets and service connections, configuring deployment patterns such as blue-green and canary releases, and integrating security scanning tools into pipelines. A background in scripting, cloud-native tooling, and agile delivery methodologies is strongly recommended.
Microsoft does not impose formal prerequisites to register for the AZ-400 exam, but earning the resulting Microsoft Certified: DevOps Engineer Expert certification requires holding either the Microsoft Certified: Azure Administrator Associate (AZ-104) or Microsoft Certified: Azure Developer Associate (AZ-204) credential. These associate certifications ensure candidates have foundational competence in either Azure infrastructure management or Azure application development before attempting the expert-level exam.
Beyond formal certification requirements, candidates are strongly advised to have practical, hands-on experience implementing both Azure DevOps and GitHub solutions in production or near-production environments. Microsoft recommends proficiency in at least one of the two core disciplines (administration or development) along with experience designing CI/CD pipelines, managing Git repositories at scale, working with Azure Key Vault, and implementing Infrastructure as Code using Bicep or Azure Resource Manager templates. Familiarity with Kusto Query Language (KQL) for log analysis and with GitHub Advanced Security features is also beneficial given the breadth of the exam's security and instrumentation domains.
The AZ-400 exam is administered by Pearson VUE and can be taken via online proctoring or at an authorized testing center. The time limit is 150 minutes, and a passing score of 700 on a 1–1000 scale is required. The exam is available in ten languages: English, Japanese, Chinese (Simplified), Chinese (Traditional), Korean, German, French, Spanish, Portuguese (Brazil), and Italian; candidates taking a non-English version may request 30 additional minutes. Pricing varies by country and region.
The exam uses a variety of question formats typical of Microsoft expert-level exams, including multiple choice, multiple select, drag-and-drop, case studies, and lab-based or scenario-driven questions. Microsoft does not publish an exact question count, but the exam is structured around the five scored domains listed in the official study guide. A free Practice Assessment is available on Microsoft Learn (Assessment ID 56) that closely mirrors the style and difficulty of actual exam questions. The certification renews annually via a free online assessment on Microsoft Learn.
Earning the Microsoft Certified: DevOps Engineer Expert via AZ-400 positions professionals for senior-level roles including DevOps Engineer, Platform Engineer, Site Reliability Engineer, and Cloud Automation Architect. In the United States, certified Azure DevOps engineers typically command annual salaries ranging from $100,000 to $160,000 depending on experience, geography, and industry vertical. The certification serves as a strong differentiator in organizations that have standardized on the Microsoft Azure and GitHub ecosystem, which includes a large share of enterprise environments undergoing cloud-native transformation.
The DevOps Engineer Expert is one of Microsoft's most comprehensive expert-level credentials and is frequently cited by hiring managers as evidence of end-to-end delivery competence rather than narrow tool expertise. Unlike associate-level certifications, AZ-400 demonstrates proficiency that spans security engineering, infrastructure automation, release management, and observability—making certified professionals valuable contributors to platform, infrastructure, and application teams alike. The certification must be renewed annually via a free online assessment on Microsoft Learn, ensuring certified individuals stay current with the platform's evolving capabilities.
5 sample questions with answers and explanations. Start a practice session to test yourself across all 622 questions.
Preview — answers shown1. A client has three very different project teams. Team A follows a strict, formal process with requirements, change requests, and formal reviews. Team B uses an agile approach focused on user stories and bug tracking. Team C uses the Scrum framework and tracks work in a product backlog. Which Azure Boards process templates should be used for A, B, and C respectively?
Explanation
The correct mapping is: - Team A: CMMI. The Capability Maturity Model Integration (CMMI) process template is designed for formal, process-heavy projects and includes specific work item types for Change Request, Risk, and Review, which matches their needs. - Team B: Agile. The Agile process template is centered around User Stories, Tasks, Bugs, and Features, making it a good fit for teams practicing agile methodologies other than Scrum. - Team C: Scrum. The Scrum process template is specifically tailored for teams using the Scrum framework, with core work item types like Product Backlog Item (PBI), Task, Bug, and Feature.
2. A software testing team wants to automate the UI testing for a modern, single-page web application built with React. They are looking for a modern, powerful framework that can automate actions in Chromium, Firefox, and WebKit, and is known for its reliability and ability to handle dynamic content. Which framework would be an excellent choice for this task?
Explanation
Playwright is the correct answer. It is a modern, open-source framework developed by Microsoft for end-to-end testing of web applications. It is specifically designed to be fast, reliable, and capable, with excellent support for automating all major browser engines (Chromium, Firefox, WebKit) and handling the complexities of modern web apps. JaCoCo is a code coverage tool for Java. Xamarin.UITest is for mobile app testing. Microsoft.CodeAnalysis is a compiler platform.
3. A build pipeline uses different jobs to compile an application for 10 different hardware architectures. The total build takes 20 hours to complete because only one job can run at a time. What two actions would most significantly reduce the total execution time?
Explanation
The two actions that will have the most impact are purchasing additional parallel jobs and using a matrix strategy. A matrix strategy allows you to define a set of variables (in this case, the 10 architectures) and have the pipeline automatically generate a job for each combination. Purchasing additional parallel jobs increases the number of jobs that can run concurrently. By combining these, the pipeline can run all 10 architecture-specific compile jobs at the same time (or as many as there are parallel jobs), dramatically reducing the total build time from 20 hours to the time it takes for the single longest job to complete.
4. A project manager wants to improve traceability between work and deployments. They need the 'User Story' work items in Azure Boards to be automatically updated with a link to the release that deployed the related code to the 'Staging' environment. What is the simplest way to enable this automatic linking in a classic release pipeline?
Explanation
The simplest and most direct way is to enable the built-in integration feature. In the 'Options' tab of the classic release pipeline, there is a setting called 'Report deployment status to Boards'. When this is enabled, Azure Pipelines automatically identifies the work items linked to the commits in the build artifact and updates the 'Deployment' control on those work item forms with the release name and status. This provides seamless, out-of-the-box traceability.
5. A QA team is tasked with automating the testing of a complex web-based customer portal. Their primary goal is to simulate user interactions, such as clicking buttons, filling out forms, and navigating between pages, directly within a web browser. Which testing framework is specifically designed for this kind of browser-based UI automation?
Explanation
Selenium is the correct answer as it is the industry-standard framework for automating web browsers. It provides a way to write scripts in various programming languages to programmatically control browser actions, making it perfect for automating the UI testing of web applications. JaCoCo is a code coverage tool for Java, not a UI testing framework. Xamarin.UITest is for testing mobile applications, not web applications. Microsoft.CodeAnalysis, also known as Roslyn, is a compiler platform and is not used for UI testing.
To earn the DevOps Engineer Expert certification you must also hold either AZ-104 (Azure Administrator Associate) or AZ-204 (Azure Developer Associate). You can sit AZ-400 in any order, but the title is only granted once you hold a qualifying associate certification.
AZ-400 costs USD $165 in the United States, with the price varying by country or region.
You need 700 out of 1000. It is a scaled score, not a raw percentage.
It is an expert-level exam covering a broad DevOps toolchain across Azure DevOps and GitHub. The build and release pipelines domain alone is 50 to 55 percent of the exam, so deep CI/CD experience matters.
Designing and implementing processes and communications (10-15%), source control (10-15%), build and release pipelines (50-55%), security and compliance (10-15%), and instrumentation (5-10%).
Yes. The DevOps Engineer Expert certification is valid for one year and is renewed free through an online, open-book assessment on Microsoft Learn within the six months before it expires.
Candidates with hands-on Azure and DevOps experience commonly spend roughly 6 to 10 weeks. This is a community estimate, not an official Microsoft figure.
For DevOps and cloud engineers in the Microsoft ecosystem it is a recognized expert credential validating CI/CD, infrastructure as code, DevSecOps, and source control across Azure DevOps and GitHub.
Microsoft Dynamics 365 Supply Chain Management Functional Consultant Expert (MB-335)
MB-335 · 2039 questions
Microsoft Dynamics 365 Business Central Functional Consultant (MB-800)
MB-800 · 1899 questions
Microsoft Certified: Azure AI Engineer Associate (AI-102)
AI-102 · 1392 questions
Microsoft Certified: Windows Server Hybrid Administrator Associate (AZ-801)
AZ-801 · 1376 questions
Microsoft Dynamics 365 Finance Functional Consultant (MB-310)
MB-310 · 1299 questions
Microsoft 365 Certified: Fundamentals (MS-900)
MS-900 · 1201 questions
$17.99
One-time access to this exam