SC-100 Exam Info and Free Practice Test Professional Quiz Study Materials
Accurate Hot Selling SC-100 Exam Dumps 2024 Newly Released
Microsoft SC-100 exam is designed to test the candidate's knowledge of Microsoft security solutions such as Microsoft 365 Defender, Microsoft Azure Defender, and Microsoft Azure Sentinel. SC-100 exam is also designed to test the candidate's knowledge of security fundamentals, threat management, security management, and identity and access management.
NEW QUESTION # 16
You need to recommend a strategy for App Service web app connectivity. The solution must meet the landing zone requirements. What should you recommend? To answer, select the appropriate options in the answer are a. NOTE Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 17
You have an Azure subscription that has Microsoft Defender for Cloud enabled. You need to enforce ISO
2700V2013 standards for the subscription. The solution must ensure that noncompliant resources are remediated automatical What should you use?
- A. Azure role-based access control (Azure RBAC)
- B. Azure Policy
- C. Azure Blueprints
- D. the regulatory compliance dashboard in Defender for Cloud
Answer: A
NEW QUESTION # 18
What should you create in Azure AD to meet the Contoso developer requirements?
Answer:
Explanation:
NEW QUESTION # 19
You need to recommend a solution to resolve the virtual machine issue. What should you include in the recommendation? (Choose Two)
- A. Enable the Qualys scanner in Defender for Cloud.
- B. Onboard the virtual machines to Microsoft Defender for Endpoint.
- C. Onboard the virtual machines to Azure Arc.
- D. Create a device compliance policy in Microsoft Endpoint Manager.
Answer: B,D
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/switch-to-mde-phase-3?view=o365-worldwide
NEW QUESTION # 20
You need to recommend an identity security solution for the Azure AD tenant of Litware. The solution must meet the identity requirements and the regulatory compliance requirements.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 21
Your company has a multi-cloud environment that contains a Microsoft 365 subscription, an Azure subscription, and Amazon Web Services (AWS) implementation. You need to recommend a security posture management solution for the following components:
* Azure loT Edge devices
* AWS EC2 instances
Which services should you include in the recommendation? To answer, select the appropriate options in the answer are a. NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 22
Your company finalizes the adoption of Azure and is implementing Microsoft Defender for Cloud.
You receive the following recommendations in Defender for Cloud
* Access to storage accounts with firewall and virtual network configurations should be restricted,
* Storage accounts should restrict network access using virtual network rules.
* Storage account should use a private link connection.
* Storage account public access should be disallowed.
You need to recommend a service to mitigate identified risks that relate to the recommendations. What should you recommend?
- A. Azure Storage Analytics
- B. Azure Network Watcher
- C. Microsoft Sentinel
- D. Azure Policy
Answer: D
Explanation:
Explanation
https://docs.microsoft.com/en-us/azure/defender-for-cloud/security-policy-concept
https://docs.microsoft.com/en-us/security/benchmark/azure/baselines/storage-security-baseline
NEW QUESTION # 23
You have the following on-premises servers that run Windows Server:
* Two domain controllers in an Active Directory Domain Services (AD DS) domain
* Two application servers named Server1 and Server2 that run ASP.NET web apps
* A VPN server named Server3 that authenticates by using RADIUS and AD DS End users use a VPN to access the web apps over the internet.
You need to redesign a user access solution to increase the security of the connections to the web apps. The solution must minimize the attack surface and follow the Zero Trust principles of the Microsoft Cybersecurity Reference Architectures (MCRA).
What should you include in the recommendation?
- A. Configure connectors and rules in Microsoft Defender for Cloud Apps.
- B. Configure the VPN to use Azure AD authentication.
- C. Publish the web apps by using Azure AD Application Proxy.
- D. Configure web protection in Microsoft Defender for Endpoint.
Answer: C
NEW QUESTION # 24
You are planning the security levels for a security access strategy.
You need to identify which job roles to configure at which security levels. The solution must meet security best practices of the Microsoft Cybersecurity Reference Architectures (MCRA).
Which security level should you configure for each job role? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 25
You have a Microsoft 365 subscription
You need to recommend a security solution to monitor the following activities:
* User accounts that were potentially compromised
* Users performing bulk file downloads from Microsoft SharePoint Online What should you include in the recommendation for each activity? To answer, drag the appropriate components to the correct activities. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each Correct selection is worth one Point.
Answer:
Explanation:
NEW QUESTION # 26
You have a customer that has a Microsoft 365 subscription and an Azure subscription.
The customer has devices that run either Windows, iOS, Android, or macOS. The Windows devices are deployed on-premises and in Azure.
You need to design a security solution to assess whether all the devices meet the customer's compliance rules.
What should you include in the solution?
- A. Microsoft Endpoint Manager
- B. Microsoft Defender for Endpoint
- C. Microsoft Sentinel
- D. Microsoft Information Protection
Answer: A
NEW QUESTION # 27
You need to recommend a solution to meet the security requirements for the InfraSec group. What should you use to delegate the access?
- A. a custom role-based access control (RBAC) role
- B. a resource group
- C. a subscription
- D. a management group
Answer: D
NEW QUESTION # 28
You have an Azure subscription and an on-premises datacenter. The datacenter contains 100 servers that run Windows Server. AJI the servers are backed up to a Recovery Services vault by using Azure Backup and the Microsoft Azure Recovery Services (MARS) agent.
You need to design a recovery solution for ransomware attacks that encrypt the on-premises servers. The solution must follow Microsoft Security Best Practices and protect against the following risks:
* A compromised administrator account used to delete the backups from Azure Backup before encrypting the servers
* A compromised administrator account used to disable the backups on the MARS agent before encrypting the servers What should you use for each risk? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point
Answer:
Explanation:
NEW QUESTION # 29
Your company has a Microsoft 365 E5 subscription, an Azure subscription, on-premises applications, and Active Directory Domain Services (AD DSV You need to recommend an identity security strategy that meets the following requirements:
* Ensures that customers can use their Facebook credentials to authenticate to an Azure App Service website
* Ensures that partner companies can access Microsoft SharePoint Online sites for the project to which they are assigned
The solution must minimize the need to deploy additional infrastructure components. What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 30
Your on-premises network contains an e-commerce web app that was developed in Angular and Node.js. The web app uses a MongoDB database You plan to migrate the web app to Azure. The solution architecture team proposes the following architecture as an Azure landing zone.
You need to provide recommendations to secure the connection between the web app and the database. The solution must follow the Zero Trust model.
Solution: You recommend implementing Azure Application Gateway with Azure Web Application Firewall (WAF).
Does this meet the goal?
- A. Yes
- B. No
Answer: B
Explanation:
Explanation
When using Azure-provided PaaS services (e.g., Azure Storage, Azure Cosmos DB, or Azure Web App, use the PrivateLink connectivity option to ensure all data exchanges are over the private IP space and the traffic never leaves the Microsoft network.
NEW QUESTION # 31
You have a Microsoft 365 subscription
You need to recommend a security solution to monitor the following activities:
* User accounts that were potentially compromised
* Users performing bulk file downloads from Microsoft SharePoint Online What should you include in the recommendation for each activity? To answer, drag the appropriate components to the correct activities. Each component may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each Correct selection is worth one Point.
Answer:
Explanation:
NEW QUESTION # 32
......
Microsoft SC-100 (Microsoft Cybersecurity Architect) Certification Exam is a highly respected certification designed for professionals who are interested in becoming cybersecurity architects. SC-100 exam is an entry-level certification that validates the skills and knowledge required to design and implement secure solutions using Microsoft technologies. Microsoft Cybersecurity Architect certification is also a pathway for professionals to advance in their cybersecurity career.
Get 100% Authentic Microsoft SC-100 Dumps with Correct Answers: https://www.dumpstorrent.com/SC-100-exam-dumps-torrent.html
New Training Course SC-100 Tutorial Preparation Guide: https://drive.google.com/open?id=1duIGtSygqnE3qGx2c08AAsm1DdZ8NKGz