AZ-900 Azure Fundamentals is Microsoft’s entry-level exam for validating core Azure, cloud, security, pricing, and support concepts. Last updated: July 2026. Exam version note: AZ-900 is maintained by Microsoft, so candidates should treat Microsoft Learn as the source of truth for the current skills measured, exam policies, and registration details.
AZ-900, also called Microsoft Azure Fundamentals, is designed to validate a practical understanding of cloud concepts and how core Azure services are used. It suits career starters, non-technical stakeholders, IT support staff moving toward cloud roles, and managers who need enough Azure literacy to participate in architecture, security, cost, and procurement discussions.
The value of AZ-900 is clearest when Azure decisions involve people from different functions. A project manager may need to understand why a workload belongs in a specific region, a procurement team may need to compare consumption costs, and an IT support analyst may need to recognise the difference between a virtual machine, an app platform, and a managed software service.
Microsoft Azure is broad enough that beginners can easily mistake memorising product names for understanding the platform. The exam rewards a more useful kind of knowledge: knowing what problem a service solves, who manages which part of the environment, how costs are estimated, and where governance controls fit.
That is why AZ-900 is often a sensible first cloud certification for people who work around cloud services even if they do not configure them every day. It gives teams a shared vocabulary for discussing availability, identity, subscriptions, policies, monitoring, support plans, and pricing without turning the learner into an Azure administrator.
Cloud computing is the delivery of computing services over the internet, usually with flexible capacity and consumption-based pricing. At AZ-900 level, the important point is not the abstract definition alone; it is knowing how responsibility changes when a team chooses infrastructure, a development platform, or a finished application.
Infrastructure as a Service gives an organisation the most control of the common cloud service models. A team using Azure Virtual Machines is still responsible for areas such as operating system configuration and application maintenance, while Azure provides the underlying datacentre, physical hosts, networking fabric, and related platform capabilities.
Platform as a Service shifts more operational work to the cloud provider. With Azure App Service, for example, a development team can focus on deploying and managing an application while Azure handles much of the platform infrastructure beneath it.
Software as a Service provides a finished application that users access over the internet. Microsoft 365 is a familiar example, and it helps illustrate why the shared responsibility model changes depending on the service type a business chooses.
| Model | Typical Azure example | What the customer mainly manages | AZ-900 takeaway |
|---|---|---|---|
| IaaS | Azure Virtual Machines | Operating system, applications, and configuration | More control usually means more operational responsibility. |
| PaaS | Azure App Service | Application code, data, and settings | The platform reduces infrastructure management tasks. |
| SaaS | Microsoft 365 | Users, data, access, and configuration | The application is consumed as a managed service. |
AZ-900 candidates should understand Azure architecture as a management structure rather than a diagram to memorise. Regions and region pairs relate to location, availability, and resilience; subscriptions group billing and access boundaries; resource groups organise related resources; management groups help apply governance across multiple subscriptions.
Identity is another area where terminology can trip up learners. Older study materials may refer to Azure Active Directory or Azure AD, while Microsoft now uses the name Microsoft Entra ID for the cloud identity and access management service; candidates should recognise both names so the old and current terms do not feel like different products.
Governance is where AZ-900 becomes practical for real teams. Azure Policy can help enforce rules such as allowed regions or required tags, management groups can apply controls across subscriptions, and role-based access control helps separate who can read, change, or administer resources.
| Governance level | Purpose | Example decision |
|---|---|---|
| Management group | Organise multiple subscriptions under common governance | Apply a policy across production subscriptions. |
| Subscription | Provide a billing, access, and resource boundary | Separate development and production environments. |
| Resource group | Group related Azure resources for management | Keep the resources for one application together. |
| Resource | Represent an individual service instance | Create a web app, virtual machine, storage account, or monitor alert. |
The official skills measured outline is best read as a set of workplace conversations. Cloud concepts explain why a workload might move from owned hardware to a cloud service; architecture explains where it can run and how it is organised; security and governance explain how it is protected and controlled; pricing and support explain whether the design is affordable and supportable.
For example, a team planning a small web application may compare hosting options, check availability expectations in Azure SLA documentation, and use the Azure Pricing calculator to estimate monthly cost. The AZ-900 learner does not need to build the full solution, but should understand why a PaaS option may reduce management work, why regions affect resilience, and why pricing depends on configuration choices.
Security questions often test the shared responsibility model and identity terminology rather than advanced security engineering. A candidate should know that Microsoft Entra ID manages identities and access, that multi-factor authentication strengthens sign-in protection, and that responsibilities vary between IaaS, PaaS, and SaaS.
Governance and cost questions are especially important because they connect directly to how Azure is managed at scale. In practice, teams use tags to support reporting, policies to enforce standards, Azure Monitor to create alerts, and Cost Management tools to review usage before a small experiment becomes an unwanted bill.
Hands-on practice helps AZ-900 concepts stick, but it should stay controlled and lightweight. Candidates are not expected to perform advanced administration, so the goal is to recognise the portal, understand where major services live, and connect terminology to real screens.
A useful first session is a portal tour. The learner can sign in, locate subscriptions, resource groups, Microsoft Entra ID, Azure Policy, Cost Management, Azure Monitor, and the marketplace, then write one sentence explaining the purpose of each area.
A second session can focus on creating and deleting a simple resource. If a free account or sandbox is available, the candidate can create a low-risk resource, place it in a resource group, inspect its settings, and delete the resource group at the end so the cleanup is easy to verify.
A third session should cover cost and governance guardrails. The candidate can review budget and alert options, open the Pricing calculator, compare how different service settings change an estimate, and look at where Azure Policy definitions are assigned without needing to design a full governance programme.
This is also the right point to address a common study mistake. Learners who skip the portal often know definitions but struggle with scenario wording, while learners who spend too long configuring virtual networks, backup policies, or automation scripts may be studying topics that belong more naturally in administrator-level exams.
A short study window works well for AZ-900 when the learner studies consistently and includes hands-on practice. The first two or three days should cover cloud concepts, service models, shared responsibility, and the difference between public, private, and hybrid cloud.
The next few days should focus on core Azure architecture and services. This includes regions, availability zones, resource groups, subscriptions, management groups, compute options, storage concepts, networking basics, and the difference between general service categories rather than detailed configuration steps.
After that, the learner should move into security, identity, governance, monitoring, pricing, and support. This is where many borderline scores happen: candidates can recognise service names but cannot explain when a policy, budget alert, SLA, support plan, or identity feature is the relevant answer.
The final days should be reserved for review and original practice questions. A good exam strategy is to read each scenario for the business requirement first, eliminate answers that belong to the wrong service model or responsibility area, and pay close attention to governance, cost, identity, and availability language.
Learners who prefer a guided class can use the Readynez Azure Fundamentals course as a structured way to cover the objectives and keep preparation focused. The important discipline, whether studying independently or with instruction, is to keep returning to the current Microsoft Learn Skills measured outline and to use hands-on practice to confirm the concepts.
Original practice questions are useful when they explain why the wrong answers are tempting. AZ-900 questions often use familiar service names as distractors, so the candidate should look for the requirement before choosing the product.
| Question | Likely answer | Why it is correct | Common distractor |
|---|---|---|---|
| A company wants to require all new resources in a subscription to include a cost centre tag. Which Azure capability is most relevant? | Azure Policy | Azure Policy is used to define and assess compliance rules such as required tags or allowed locations. | Azure Monitor may alert on conditions, but it does not define a tagging rule. |
| A team needs to estimate monthly cost before deploying a proposed Azure solution. Which tool should they use first? | Azure Pricing calculator | The Pricing calculator helps compare estimated costs before deployment based on selected services and configurations. | Azure Cost Management is more useful for analysing actual usage after resources are running. |
| A study guide mentions Azure AD, while the Microsoft portal shows Microsoft Entra ID. How should the candidate interpret this? | Microsoft Entra ID is the current name for Azure AD. | The terminology changed, and AZ-900 candidates should recognise both names when reading older and current material. | Treating them as unrelated services can lead to mistakes in identity and access questions. |
| An application needs resilience planning across paired locations within the same geography. Which concept is being tested? | Region pairs | Region pairs are part of Azure’s regional architecture and are relevant to availability, resilience, and data residency discussions. | Resource groups organise resources, but they do not describe paired regional locations. |
When time is tight in the exam, the safest approach is to identify the topic family first. If the wording is about rules and compliance, think governance; if it is about estimated spend, think pricing; if it is about sign-in and access, think Microsoft Entra ID; if it is about who manages what, think shared responsibility.
AZ-900 is the general Azure fundamentals path, and it is the right starting point when the goal is broad cloud literacy across services, architecture, pricing, governance, and support. It is especially useful for future Azure administrators, developers, architects, project teams, and business roles that need to discuss Azure decisions with technical colleagues.
SC-900 is a better fit when the main goal is security, compliance, and identity fundamentals across Microsoft technologies. DP-900 is a better fit when the learner mainly needs data fundamentals, including relational and non-relational data concepts and analytics workloads.
The simple choice rule is to follow the conversations the learner expects to have at work. General Azure service and cost discussions point to AZ-900; identity, compliance, and security awareness point to SC-900; data platform and analytics discussions point to DP-900.
After AZ-900, the next step depends on role direction rather than certification order alone. Someone moving into operations may continue toward Azure administrator skills, while a stakeholder in governance, procurement, or delivery may get more value from applying the fundamentals to better project decisions.
For technical learners, the natural progression is deeper hands-on practice with identity, networking, storage, compute, monitoring, and governance. For non-technical learners, the better next step may be using Azure terminology in planning sessions, cost reviews, risk discussions, and vendor evaluations.
Readers planning several Microsoft certifications can also review Microsoft Azure training options and Unlimited Microsoft Training to decide whether a single course or broader training access fits their goals. The decision should be based on role needs, not on collecting credentials without a clear purpose.
AZ-900 preparation works best when it stays practical and proportionate. Candidates should know the official terminology, understand the purpose of major Azure services, spend time in the portal, and practise scenario-based reasoning without sinking time into advanced configuration work.
The strongest outcome is not simply passing an entry-level exam; it is being able to join Azure conversations with enough confidence to ask better questions about cost, governance, security, availability, and support. Readynez can support that preparation through structured Azure Fundamentals training, and readers who want help choosing the right path can contact Readynez for guidance.
Microsoft AZ-900, or Microsoft Azure Fundamentals, is an entry-level certification that validates foundational knowledge of cloud concepts and Microsoft Azure. It covers areas such as service models, core Azure services, architecture, identity, governance, pricing, support, and cloud security basics.
AZ-900 is suitable for people new to cloud computing, IT support staff moving toward Azure, non-technical stakeholders, project managers, sales teams, procurement teams, and managers who work with Azure projects. It can also be a starting point for technical learners before moving into role-based Azure certifications.
Microsoft does not require formal prerequisites for AZ-900. A basic understanding of computing concepts helps, but the exam is designed for foundational learners rather than experienced Azure administrators.
Candidates should start with the current Microsoft Learn Skills measured outline, study each topic at fundamentals depth, and spend some time navigating the Azure portal. Practice should include cloud service models, shared responsibility, Microsoft Entra ID, governance, pricing, SLAs, support, and basic monitoring concepts.
Deep hands-on administration is not required, but light portal experience is highly useful. Creating and deleting a simple resource, reviewing cost tools, checking Azure Policy, and locating Microsoft Entra ID can make scenario questions easier to understand.
Get Unlimited access to ALL the LIVE Instructor-led Microsoft courses you want - all for the price of less than one course.
You're viewing our global site from United States
Would you like to view the site in
English
with prices in
Dollar?