- October 4, 2012Published:
- English, Chinese (Simplified), French, German, Japanese, Portuguese (Brazil)Languages:
- Microsoft Visual Studio 2013, ASP.NET MVC 5.1Technology:
- MCP, MCSDCredit toward certification:
Developing ASP.NET MVC Web Applications
Effective May 1, 2017, the existing cancellation policy will be replaced in its entirety with the following policy: Cancelling or rescheduling your exam within 5 business days of your registered exam time is subject to a fee. Failing to show up for your exam appointment or not rescheduling or cancelling your appointment at least 24 hours prior to your scheduled appointment forfeits your entire exam fee.
This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about the variety of question types on Microsoft exams.
Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.
Do you have feedback about the relevance of the skills measured on this exam? Please send Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program.
If you have concerns about specific questions on this exam, please submit an exam challenge.
If you have other questions or feedback about Microsoft Certification exams or about the certification program, registration, or promotions, please contact your Regional Service Center.
Starting April 30, 2014, the questions on this exam include content covering Visual Studio 2013, MVC5, and updates to Microsoft Azure.
- Design the application architecture (15-20%)
Plan the application layers
- Plan data access; plan for separation of concerns; appropriate use of models, views, and controllers; choose between client-side and server side processing; design for scalability
Design a distributed application
- Design a hybrid application (on-premises versus off-premises, including Azure), plan for session management in a distributed environment, plan web farms
Design and implement the Azure role life cycle
- Identify and implement Start, Run, and Stop events; identify startup tasks (IIS configuration [app pool], registry configuration, third-party tools)
Configure state management
Design a caching strategy
- Implement page output caching (performance oriented), implement data caching, implement HTTP caching, implement Azure caching
Design and implement a WebSocket strategy
- Read and write string and binary data asynchronously (long-running data transfers), choose a connection loss strategy, decide a strategy for when to use WebSockets, implement SignalR
Design HTTP modules and handlers
- Implement synchronous and asynchronous modules and handlers, choose between modules and handlers in IIS
- Plan the application layers
- Design the user experience (20-25%)
Apply the user interface design for a web application
- Create and apply styles by using CSS, structure and lay out the user interface by using HTML, implement dynamic page content based on a design
Design and implement UI behavior
Compose the UI layout of an application
- Implement partials for reuse in different areas of the application, design and implement pages by using Razor templates (Razor view engine), design layouts to provide visual structure, implement master/application pages
Enhance application behavior and style based on browser feature detection
- Detect browser features and capabilities; create a web application that runs across multiple browsers and mobile devices; enhance application behavior and style by using vendor-specific extensions, for example, CSS
Plan an adaptive UI layout
- Plan for running applications in browsers on multiple devices (screen resolution, CSS, HTML), plan for mobile web applications
- Apply the user interface design for a web application
- Develop the user experience (15-20%)
Plan for search engine optimization and accessibility
- Use analytical tools to parse HTML, view and evaluate conceptual structure by using plugs-in for browsers, write semantic markup (HTML5 and ARIA) for accessibility (for example, screen readers)
Plan and implement globalization and localization
Design and implement MVC controllers and actions
- Apply authorization attributes, global filters, and authentication filters; specify an override filter; implement action behaviors; implement action results; implement model binding
Design and implement routes
- Define a route to handle a URL pattern, apply route constraints, ignore URL patterns, add custom route parameters, define areas
Control application behavior by using MVC extensibility points
- Implement MVC filters and controller factories; control application behavior by using action results, viewengines, model binders, and route handlers
Reduce network bandwidth
- Plan for search engine optimization and accessibility
- Troubleshoot and debug web applications (20-25%)
Prevent and troubleshoot runtime issues
- Troubleshoot performance, security, and errors; implement tracing, logging (including using attributes for logging), and debugging (including IntelliTrace); enforce conditions by using code contracts; enable and configure health monitoring (including Performance Monitor)
Design an exception handling strategy
- Handle exceptions across multiple layers, display custom error pages using global.asax or creating your own HTTPHandler or set web.config attributes, handle first chance exceptions
Test a web application
- Create and run unit tests (for example, use the Assert class), create mocks; create and run web tests, including using Browser Link; debug a web application in multiple browsers and mobile emulators
Debug an Azure application
- Collect diagnostic information by using Azure Diagnostics API and appropriately implement on demand versus scheduled; choose log types (for example, event logs, performance counters, and crash dumps); debug an Azure application by using IntelliTrace, Remote Desktop Protocol (RDP), and remote debugging; interact directly with remote Azure websites using Server Explorer.
- Prevent and troubleshoot runtime issues
- Design and implement security (20-25%)
- Authenticate users; enforce authentication settings; choose between Windows, Forms, and custom authentication; manage user session by using cookies; configure membership providers; create custom membership providers; configure ASP.NET Identity
Configure and apply authorization
- Create roles, authorize roles by using configuration, authorize roles programmatically, create custom role providers, implement WCF service authorization
Design and implement claims-based authentication across federated identity stores
- Implement federated authentication by using Azure Access Control Service; create a custom security token by using Windows Identity Foundation; handle token formats (for example, oAuth, OpenID, Microsoft Account, Google, Twitter, and Facebook) for SAML and SWT tokens
Manage data integrity
- Apply encryption to application data, apply encryption to the configuration sections of an application, sign application data to prevent tampering
Implement a secure site with ASP.NET
- Secure communication by applying SSL certificates; salt and hash passwords for storage; use HTML encoding to prevent cross-site scripting attacks (ANTI-XSS Library); implement deferred validation and handle unvalidated requests, for example, form, querystring, and URL; prevent SQL injection attacks by parameterizing queries; prevent cross-site request forgeries (XSRF)
- Configure authentication
- Instructor-led training
- Exam prep video
Microsoft Certification PREP Talk: Exam 486
In this episode of Prep tips from certification experts, James Seymour, Certification Planner, and Jeremy Foster, Developer Evangelist, discuss the relevancy of the skills being measured on Exam 486.
- Self-paced training
- Developing ASP.NET MVC 4 Web Applications Jump Start
- Practice test
- From the community
Who should take this exam?
This exam is intended for developers with a minimum of three to five years of experience developing Microsoft ASP.NET web applications, including two or more years developing MVC-based solutions.
More information about exams
- Preparing for an exam
We recommend that you review this exam preparation guide in its entirety and familiarize yourself with the resources on this website before you schedule your exam. See the Microsoft Certification exam overview for information about registration, videos of typical exam question formats, and other preparation resources. For information on exam policies and scoring, see the Microsoft Certification exam policies and FAQs.
This preparation guide is subject to change at any time without prior notice and at the sole discretion of Microsoft. Microsoft exams might include adaptive testing technology and simulation items. Microsoft does not identify the format in which exams are presented. Please use this preparation guide to prepare for the exam, regardless of its format. To help you prepare for this exam, Microsoft recommends that you have hands-on experience with the product and that you use the specified training resources. These training resources do not necessarily cover all of the topics listed in the "Skills measured" section.