1. Home
  2. SC-100 Free Questions

Test Online Free Microsoft SC-100 Exam Questions and Answers

The questions for SC-100 were last updated On Apr.30 2024

Get SC-100 Full Access
 / 3

Question No : 1
A customer uses Azure to develop a mobile app that will be consumed by external users as shown in the following exhibit.



You need to design an identity strategy for the app.
The solution must meet the following requirements:
• Enable the usage of external IDs such as Google, Facebook, and Microsoft accounts.
• Be managed separately from the identity store of the customer.
• Support fully customizable branding for each app.
Which service should you recommend to complete the design?

Answer:
Explanation:
https://docs.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-facebook?pivots=b2c-user-flow
https://docs.microsoft.com/en-us/azure/active-directory-b2c/customize-ui-with-html?pivots=b2c-user-flow

Question No : 2
Your company has a Microsoft 365 E5 subscription.
Users use Microsoft Teams, Exchange Online, SharePoint Online, and OneDrive for sharing and collaborating. The company identifies protected health information (PHI) within stored documents and communications.
What should you recommend using to prevent the PHI from being shared outside the company?

Answer:
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/create-test-tune-dlp-policy?view=o365-worldwide

Question No : 3
You are designing a security strategy for providing access to Azure App Service web apps through an Azure Front Door instance.
You need to recommend a solution to ensure that the web apps only allow access through the Front Door instance.
Solution: You recommend access restrictions that allow traffic from the Front Door service tags.
Does this meet the goal?

Answer:
Explanation:
https://docs.microsoft.com/en-us/azure/app-service/app-service-ip-restrictions#restrict-access-to-a-specific-azure-front-door-instance

Question No : 4
Your company has an on-premises network and an Azure subscription.
The company does NOT have a Site-to-Site VPN or an ExpressRoute connection to Azure.
You are designing the security standards for Azure App Service web apps. The web apps will access Microsoft SQL Server databases on the network.
You need to recommend security standards that will allow the web apps to access the databases. The solution must minimize the number of open internet-accessible endpoints to the on-premises network.
What should you include in the recommendation?

Answer:
Explanation:
https://docs.microsoft.com/en-us/azure/app-service/app-service-hybrid-connections

Question No : 5
You need to recommend a solution to secure the MedicalHistory data in the ClaimsDetail table. The solution must meet the Contoso developer requirements.
What should you include in the recommendation?

Answer:
Explanation:
https://docs.microsoft.com/en-us/learn/modules/protect-data-transit-rest/4-explain-object-encryption-secure-enclaves

Question No : 6
Your company plans to follow DevSecOps best practices of the Microsoft Cloud Adoption Framework for Azure.
You need to perform threat modeling by using a top-down approach based on the Microsoft Cloud Adoption Framework for Azure.
What should you use to start the threat modeling process?

Answer:

Question No : 7
HOTSPOT
You are designing security for a runbook in an Azure Automation account. The runbook will copy data to Azure Data Lake Storage Gen2.
You need to recommend a solution to secure the components of the copy process.
What should you include in the recommendation for each component? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.



Answer:


Explanation:
Data Security = Access Keys stored in Azure Key Vault Network access control = Azure Private Link with network service tags https://docs.microsoft.com/en-us/azure/automation/automation-security-guidelines#data-security

Question No : 8
HOTSPOT
You have a hybrid cloud infrastructure.
You plan to deploy the Azure applications shown in the following table.



What should you use to meet the requirement of each app? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.



Answer:


Explanation:
Text
Description automatically generated with medium confidence

Question No : 9
HOTSPOT
You need to recommend a SIEM and SOAR strategy that meets the hybrid requirements, the Microsoft Sentinel requirements, and the regulatory compliance requirements.
What should you recommend? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.



Answer:


Explanation:
Segment Microsoft Sentinel workspaces by: Region and Azure AD tenant Lighthouse subscription

Question No : 10
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure subscription that has Microsoft Defender for Cloud enabled.
You are evaluating the Azure Security Benchmark V3 report.
In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.
You need to recommend configurations to increase the score of the Secure management ports controls.
Solution: You recommend enabling the VMAccess extension on all virtual machines.
Does this meet the goal?

Answer:
Explanation:
https://docs.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-privileged-access#pa-2-avoid-standing-access-for-user-accounts-and-permissions Adaptive Network Hardening: https://docs.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-network-security#ns-7-simplify-network-security-configuration

 / 3
  TOP 50 Exam Questions
Exam
CCNA 200-301  Exam.941q
CCNP Enterprise 350-401   ENCOR Exam.903q
CCNP Enterprise 300-410  ENARSI Exam.573q
CCNP Security 350-701  SCOR Exam.633q
CCNP Collaboration 350-801  CLCOR Exam.273q
Introduction to Cisco Sales 700-150  Exam.126q
Azure Administrator AZ-104  Exam.321q
Microsoft Cybersecurity Architect SC-100  Exam.165q
Azure Data Engineer DP-203  Exam.316q
Microsoft Power Platform PL-200  Exam.246q
Microsoft Power BI PL-300  Exam.337q
Managing Microsoft Teams MS-700  Exam.304q
Microsoft Dynamics 365 MB-800  Exam.152q
CompTIA A+ 220-1101  Exam.322q
CompTIA Security+ SY0-701  Exam.171q
CompTIA CASP+ CAS-004  Exam.440q
CompTIA CySA+ CS0-003  dumps.363q
CompTIA Network+ N10-008  Exam.812q
Midrange Storage D-MSS-DS-23  pdf.237q
NSE 4 - FortiOS 7.2 NSE4_FGT-7.2  Exam.177q
FCSS in Network Security NSE7_EFW-7.2  pdf.50q
Junos, Associate (JNCIA-Junos) JN0-105  pdf.65q
CCSE R81 156-315.81.20  Exam.617q
ITIL 4 Foundation ITILFND_V4  Exam.71q
LPIC-1 Certification 101-500  Exam.283q
Professional Scrum Product Owner PSPO-I  Exam.78q
Nutanix Certified Professional NCP-MCI-6.5  Exam.172q
Avaya Aura ACIS 71201X  Exam.76q
SnowPro Core COF-C02  Exam.427q
PCNSE  Certification Exam.308q
HPE Hybrid HPE0-V25  dumps.70q
Aruba Switching Professional HPE6-A73  Exam.121q
Dell VxRail Deploy D-VXR-DY-23  pdf.344q
Scrum Master I PSM I  Exam.252q
Adobe Commerce AD0-E718  dumps.50q
Jira Projects ACP-610  Exam.75q
FinOps Certified Practitioner FOCP  Exam.129q
Security, Specialist (JNCIS-SEC) JN0-335  Exam.98q
SAP S/4HANA C_TS452_2022  Exam.80q
CIP Level 1 NACE-CIP1-001  Exam.100q
CIP Level 2 NACE-CIP2-001  Exam.100q
VCP-DCV 2024 2V0-21.23  PDF.103q
VMware vSAN Specialist 5V0-22.23  Exam.75q
HCIA-Datacom V1.0 H12-811_V1.0  Exam.882q
HCIE-Datacom V1.0 H12-891_V1.0  Exam.849q
HCIP-Datacom H12-821_V1.0  Exam.967q
HCIP-Storage H13-624-ENU  Exam.957q

All copyrights reserved 2024 PassQuestion NETWORK CO.,LIMITED. All Rights Reserved.

Passquestion doesn't offer Real Microsoft, Amazon, Cisco Exam Questions. All Passquestion content is sourced from the Internet.