AZ-700 Study Guide: Microsoft Azure Network Engineer Associate

14 Min. Read

Are you preparing for the AZ-700 Design and Implement Azure Network Solutions exam? This study guide will share with you how to prepare and pass the AZ-700: Microsoft Certified Azure Network Engineer Associate successfully (with links to exam objectives).


Microsoft is keeping evolving its learning programs to help you and your career keep pace with today’s demanding IT environments. The new updated role-based certifications will help you to keep pace with today’s business requirements. Microsoft Learning is constantly evolving its learning program to better offer what you need to skill up, prove your expertise to employers and peers, and get the recognition—and opportunities you’ve earned.

After the recent announcement of the new certifications exams that focus on Security, Compliance, and Identity (SCI) solutions and the Microsoft Azure Virtual Desktop specialty exam, Microsoft Learning announced a new associate certification exam for Azure Networking Solutions which expands Azure training and certification portfolio.

Exam Preparation

While preparing to take this exam myself, I would like to share with you how to prepare and pass the AZ-700: Designing and Implementing Microsoft Azure Networking Solutions exam successfully. To prepare for this exam, I usually use a couple of online resources, mainly Microsoft Docs, Microsoft Learn, and Training Labs, which I am going to share with you in the next section.

Updated on 16/08/2021 In this exam, I got around 59 questions in total with 2 case studies, and 2 sections with Yes/No answers. There are no lab questions. The total time for this exam is 120 minutes (2 hours). The exam is very long and a bit tough, you need to manage your time and prepare very well. The questions do pretty much match the list of skills measured below.

The exam is available starting mid of July 2021 in the Beta phase at the time of this writing. Beta exams are not scored immediately because Microsoft is gathering data on the quality of the questions and the exam. I will update this article as soon as I get the exam results from Microsoft.

Exam Target Audience

The candidates for the Azure Network Engineer Associate certification should have subject matter expertise in planning, implementing, and maintaining Azure networking solutions, including hybrid networking, connectivity, routing, security, and private access to Azure services.

Responsibilities for this role include recommending, planning, and implementing Azure networking solutions. Professionals in this role manage the solutions for performance, resiliency, scale, and security. They deploy networking solutions by using the Azure Portal and other methods, including PowerShell, Azure Command-Line Interface (CLI), and Azure Resource Manager templates (ARM templates).

As an Azure Network Engineer, you work and collaborate with solution architects, cloud administrators, security engineers, application developers, and DevOps engineers to deliver Azure solutions.

To prepare for this exam, you should have expert Azure administration skills, in addition to extensive experience and knowledge of networking, hybrid connections, and network security.

Please note that to take this exam, you must have expert Azure administration skills. Check my AZ-104 Exam: Microsoft Certified Azure Administrator Associate study guide to get prepared.


Successful Azure Network Engineers start this role with experience in enterprise networking, on-premises or cloud infrastructure, and network security. As a prerequisite for this exam, you should be familiar with the following:

  • Understanding on-premises virtualization technologies, including virtual networking and VMs.
  • Understanding network configurations, including TCP/IP, Domain Name System (DNS), firewalls, and encryption technologies.
  • Understanding of software-defined networking.
  • Understanding hybrid network connectivity methods, such as VPN.
  • Understanding resilience and disaster recovery, including high availability and restore operations regarding networking.

Skills measured on this exam

This exam measures your ability to accomplish the technical topics listed below based on the latest update from Microsoft Learning.

I have also included the direct link to the Microsoft documentation so you can read more about each objective.

Design, Implement and Manage Hybrid Networking (10–15%)

Design, implement and manage a site-to-site VPN connection

Design, implement and manage a point-to-site VPN connection

Design, implement and manage Azure ExpressRoute

Design and Implement Core Networking Infrastructure (20–25%)

Design and implement private IP addressing for VNets

Design and implement name resolution

Design and implement cross-VNet connectivity

Design and implement an Azure Virtual WAN architecture

Design and Implement Routing (25–30%)

Design, implement and manage VNet routing

Design and implement an Azure Load Balancer

Design and implement Azure Application Gateway

Implement Azure Front Door

Implement an Azure Traffic Manager profile

Design and implement an Azure Virtual Network NAT

Secure and Monitor Networks (15–20%)

Design, implement and manage an Azure Firewall deployment

Implement and manage network security groups (NSGs)

Implement a Web Application Firewall (WAF) deployment

Monitor networks

Design and Implement Private Access to Azure Services (10–15%)

Design and implement Azure Private Link service and Azure Private Endpoint

Design and implement service endpoints

Configure VNet integration for a dedicated platform as a service (PaaS) services

Microsoft Learn – Study Resources

To prepare for this exam, I use the new Microsoft Learn, a great resource and provides self-paced skills training on a variety of Azure Networking topics. I highly recommend checking the following 8 modules:

  1. Introduction to Azure virtual networks (11 units)
  2. Design and implement hybrid networking (9 units)
  3. Design and implement Azure ExpressRoute (11 units)
  4. Load balance non-HTTP(S) traffic in Azure (7 units)
  5. Load balance HTTP(S) traffic in Azure (7 units)
  6. Design and implement network security (11 units)
  7. Design and implement private access to Azure Services (8 units)
  8. Design and implement network monitoring (5 units)

Microsoft Documentation – Study Resources

I gathered all the resources available on Microsoft documentation to help you get prepared ahead of time and pass this exam.

Links to relevant reading from the official Microsoft documentation for each skill tested in the AZ-700 exam are listed below:

Training Labs

Check the following step-by-step hands-on labs that will help you to gain more practical experience. At the time of this writing, these labs are still new and they will evolve:


At the time of this writing, there are two books that you can use to prepare for this exam.

The first one, the Azure Networking cookbook is published by my fellow MVP, Mustafa Toroman – Manage your network more effectively with the Azure Networking Cookbook – 2nd Edition. You can download this ebook for free here.

The e-book features step-by-step information on how to:

  • Create and work on hybrid connections.
  • Configure and manage Azure network services.
  • Design high availability network solutions.
  • Monitor and troubleshoot network resources.
  • Connect local networks to virtual networks.

This e-book also includes a link to an example code bundle on GitHub to help you learn. I highly recommend this hands-on guidance book to prepare for this exam.

The second book, Microsoft Azure Network Security published by Microsoft Press and written by two of Microsoft’s leading Azure network security experts. You can purchase this book from Amazon here.

This book features expert, start-to-finish guidance for every Azure cloud environment, regardless of size or complexity, and cover the following Azure network security concepts:

  • Chapter 1 Introduction to Azure Network Security
  • Chapter 2 Secure Azure Network architectures
  • Chapter 3 Controlling traffic with Azure Firewall
  • Chapter 4 Traffic Inspection in Azure Networks
  • Chapter 5 Secure application delivery with Azure Web Application Firewall
  • Chapter 6 Mitigating DDoS attacks
  • Chapter 7 Enabling Network Security log collection
  • Chapter 8 Security monitoring with Azure Sentinel, Security Center, and Network Watcher
  • Chapter 9 Combining Azure resources for a holistic network security strategy

This book is for Security Operations (SecOps) analysts, cybersecurity/information security professionals, network security engineers, and other IT professionals. It’s also for individuals with security responsibilities in any Azure environment, no matter how large, small, simple, or complex.


If  you are interested to prepare for this exam using video training, then I highly recommend checking the following resources:

Instructor-led virtual training

Last but certainly not least, if you prefer instructor-led training, Microsoft released the AZ-700T00 3 days course. This course teaches Network Engineers how to design, implement, and maintain Azure networking solutions. This course covers the process of designing, implementing, and managing core Azure networking infrastructure, Hybrid Networking connections, load balancing traffic, network routing, private access to Azure services, network security, and monitoring. Learn how to design and implement a secure, reliable, network infrastructure in Azure and how to establish hybrid connectivity, routing, private access to Azure services, and monitoring in Azure.

If you prefer to get prepare for this exam with Microsoft MCT instructor-led virtual training, you can get in contact with me here.

Schedule AZ-700 Exam

Updated – 20/07/2021 –At the time of this writing, Microsoft launched the AZ-700 exam in beta mode, if you would like to take the beta exam and receive the 80% discount*, use the code below when prompted for payment:


You must register for the exam on or before August 17, 2021. The seats are offered on a first-come, first-served basis. Please note that this beta exam is NOT available in Turkey, Pakistan, India, or China.

If you would like to take the beta exam and receive the 80% discount*, bookmark my study guide here where I will share the code to register for this exam before the end of July 2021. Please note that the seats are offered on a first-come, first-served basis.

Once you are ready, click Schedule exam here and take it online from the comfort of your home/office with proctor supervision.

Designing and Implementing Microsoft Azure Networking Solutions
Designing and Implementing Microsoft Azure Networking Solutions

Other Microsoft Azure Exam Study Guides

Are you interested in another Azure certification exam? I highly encourage you to check out the following Azure exam study guides:

If you are planning to take this exam… I wish you all the best and Happy Studying!!!

Thank you for reading my blog.

If you have any questions or feedback, please leave a comment.

-Charbel Nemnom-

Related Posts


How to Set Windows ACLs (NTFS) Permissions on Azure File Shares

Verify Azure Hybrid Benefit for Windows and Linux with PowerShell


2 thoughts on “AZ-700 Study Guide: Microsoft Azure Network Engineer Associate”

Leave a comment...

  1. Thanks for this info. I’ve used the promo code, gone directly to the AZ-700 Microsoft exam page to schedule my exam, and will sit for the beta exam!

  2. Thank you, Carla, and Good Luck!

Let me know what you think, or ask a question...

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Subscribe to Stay in Touch

Never miss out on your favorite posts and our latest announcements!

The content of this website is copyrighted from being plagiarized!

You can copy from the 'Code Blocks' in 'Black' by selecting the Code.

Please send your feedback to the author using this form for any 'Code' you like.

Thank you for visiting!