Architect Expert Track

AZ-305 is about why the design works, not just how to click it together.

This path trains you to evaluate business requirements, identity choices, landing zones, storage decisions, and integration patterns the way an architect should: through tradeoffs, constraints, resilience, and cost.

AdvancedLevel
AZ-104Prerequisite
DesignFocus
$797Course Path
Explore architecture modules See AZ-104 first
Dope Translation

Architecture thinking without the fluff

Managed Identity

The server vouches for itself. No password in a config file. No secret sitting where it can leak.

Landing Zone

This is the city plan before the buildings go up. Connectivity, governance, identity, and management are designed first.

Consistency Models

Not every app needs the exact same database guarantees. Architecture is knowing what the workload actually needs and paying only for that.

Design Areas

The decisions AZ-305 expects you to defend

🧭 Identity and governance architecture

Entra ID choices, hybrid identity, external identities, PIM, management groups, policy inheritance, and enterprise landing zones.

🗃️ Data storage design

Azure SQL Database versus Managed Instance versus SQL on VM, Cosmos DB models, Data Lake, Synapse, and integration tradeoffs.

🔗 Integration and application design

Data Factory, messaging, API patterns, managed identities, and service choices based on operational needs.

🛡️ Reliability, security, and cost

Architecting for scale, recovery, governance, and cost control without overengineering the environment.

Architecture Modules

Scenario-driven curriculum for architects

The source material defines the early modules directly. The remaining modules extend the same exam-driven design logic across the rest of the architect scope.

Lesson 1: Design Identity Architecture Domain 1

Topics

  • Entra ID, External ID, and AD DS design choices
  • Hybrid identity with Azure AD Connect versus cloud-only
  • Managed Identities, Service Principals, and enterprise PIM
AZ-104 asks if you can drive the car. AZ-305 asks you to design traffic flow for the whole city.
Lesson 2: Design Governance Solutions Domain 1

Topics

  • Landing zone architecture and subscription vending
  • Management group hierarchy and inherited policy
  • Tagging strategy, budgets, alerts, and cost governance
Lesson 3: Design Relational and Non-Relational Storage Domain 2

Topics

  • SQL Database, Managed Instance, SQL on VM
  • Cosmos DB distribution and consistency decisions
  • Table storage, Mongo API, document and key-value choices
Lesson 4: Design Data Integration Solutions Domain 2

Topics

  • Azure Data Factory orchestration
  • Synapse Analytics and Data Lake Storage Gen2
  • Integration architecture for analytics workloads
Lesson 5: Design Business Continuity and Resilience Domain 3

Topics

  • Availability zones, paired regions, recovery patterns
  • Backup and disaster recovery choices per workload
  • Recovery objectives and failure domain thinking
Lesson 6: Design Application Architecture Domain 3

Topics

  • Service selection: App Service, Functions, containers, AKS
  • Authentication, authorization, and secretless design
  • Messaging and decoupling patterns
Lesson 7: Design Network Solutions Domain 4

Topics

  • Hub-spoke, private connectivity, peering, firewalls
  • Front Door, Application Gateway, and global routing choices
  • Segmentation and traffic control at scale
Lesson 8: Design Security and Cost Optimization Cross-domain

Topics

  • Least privilege by design
  • Guardrails, policy, budgets, and governance inheritance
  • Choosing the simplest architecture that still meets the requirement
Labs and Study Moves

Architecture gets stronger when you compare options side by side

📐 Learn Architecture Modules

Use Microsoft Learn paths for architecture scenarios, identity design, and governance at scale.

Open architect modules

🧪 Whiteboard Scenarios

Practice choosing services against requirements: latency, compatibility, global scale, compliance, and recovery targets.

Use the resource library

🏗️ Tenant Design Exercises

Prototype management groups, policy assignments, and reference architectures in a sandbox tenant before production.

Use Azure sandbox

Architecture is argument quality plus system design.

If your next move is cloud architect, lead engineer, or platform design, AZ-305 is the cert path that forces you to reason through requirements instead of memorizing feature names.

$797

Architect expert pathway

View options