Microsoft SC-900 today updated questions - Verified by Microsoft Experts

Microsoft Security Compliance and Identity Fundamentals Questions and Answers

Question 1

Select the answer that correctly completes the sentence.

Options:

Question 2

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 3

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Options:

Question 4

ON NO: 27 HOTSPOT

Select the answer that correctly completes the sentence.

Options:

Question 5

What can you use to scan email attachments and forward the attachments to recipients only if the attachments are free from malware?

Options:

Microsoft Defender for Office 365

Microsoft Defender Antivirus

Microsoft Defender for Identity

Microsoft Defender for Endpoint

Question 6

Select the answer that correctly completes the sentence.

Options:

Question 7

Select the answer that correctly completes the sentence.

Options:

Question 8

Select the answer that correctly completes the sentence.

Options:

Question 9

No: 164 HOTSPOT

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 10

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 11

Select the answer that correctly completes the sentence.

Options:

Question 12

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 13

Match the Microsoft Defender for Office 365 feature to the correct description.

To answer, drag the appropriate feature from the column on the left to its description on the right. Each feature may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Options:

Question 14

Which score measures an organization's progress in completing actions that help reduce risks associated to data protection and regulatory standards?

Options:

Microsoft Secure Score

Productivity Score

Secure score in Azure Security Center

Compliance score

Question 15

Select the answer that correctly completes the sentence.

Options:

Question 16

ESTION NO: 101

Which two Azure resources can a network security group (NSG) be associated with? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Options:

a network interface

an Azure App Service web app

a virtual network

a virtual network subnet

a resource group

Question 17

Which Azure Active Directory (Azure AD) feature can you use to provide just-in-time (JIT) access to manage Azure resources?

Options:

conditional access policies

Azure AD Identity Protection

Azure AD Privileged Identity Management (PIM)

authentication method policies

Question 18

What do you use to provide real-time integration between Azure Sentinel and another security source?

Options:

Azure AD Connect

a Log Analytics workspace

Azure Information Protection

a data connector

Question 19

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Options:

Question 20

Select the answer that correctly completes the sentence.

Options:

Question 21

ON NO: 17 HOTSPOT

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 22

Select the answer that correctly completes the sentence.

Options:

Question 23

You need to create a data loss prevention (DLP) policy. What should you use?

Options:

the Microsoft 365 admin center

the Microsoft Endpoint Manager admin center

the Microsoft 365 Defender portal

the Microsoft 365 Compliance center

Question 24

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 25

You need to keep a copy of all files in a Microsoft SharePoint site for one year, even if users delete the files from the site. What should you apply to the site?

Options:

a data loss prevention (DLP) policy

a retention policy

an insider risk policy

a sensitivity label policy

Question 26

What can you use to provide threat detection for Azure SQL Managed Instance?

Options:

Microsoft Secure Score

application security groups

Microsoft Defender for Cloud

Azure Bastion

Question 27

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 28

Select the answer that correctly completes the sentence.

Options:

Question 29

Which two types of devices can be managed by using Endpoint data loss prevention (Endpoint DLP)? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

Windows 11

Linux

iOS

macOS

Android

Question 30

Which pillar of identity relates to tracking the resources accessed by a user?

Options:

auditing

authorization

authentication

administration

Question 31

When you enable Azure AD Multi-Factor Authentication (MFA), how many factors are required for authentication?

Options:

Question 32

What are two capabilities of Microsoft Defender for Endpoint? Each correct selection presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

automated investigation and remediation

transport encryption

shadow IT detection

attack surface reduction

Question 33

Microsoft 365 Endpoint data loss prevention (Endpoint DLP) can be used on which operating systems?

Options:

Windows 10 and newer only

Windows 10 and newer and Android only

Windows 10 and newer and macOS only

Windows 10 and newer, Android, and macOS

Question 34

What can you specify in Microsoft 365 sensitivity labels?

Options:

how long files must be preserved

when to archive an email message

which watermark to add to files

where to store files

Question 35

What feature in Microsoft Defender for Endpoint provides the first line of defense against cyberthreats by reducing the attack surface?

Options:

automated remediation

automated investigation

advanced hunting

network protection

Question 36

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Options:

Question 37

Which Microsoft portal provides information about how Microsoft manages privacy, compliance, and security?

Options:

Microsoft Service Trust Portal

Compliance Manager

Microsoft 365 compliance center

Microsoft Support

Question 38

Which Azure Active Directory (Azure AD) feature can you use to evaluate group membership and automatically remove users that no longer require membership in a group?

Options:

access reviews

managed identities

conditional access policies

Azure AD Identity Protection

Question 39

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 40

Select the answer that correctly completes the sentence.

Options:

Question 41

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 42

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 43

Which type of identity is created when you register an application with Active Directory (Azure AD)?

Options:

a user account

a user-assigned managed identity

a system-assigned managed identity

a service principal

Question 44

Match the Microsoft 365 insider risk management workflow step to the appropriate task.

To answer, drag the appropriate step from the column on the left to its task on the right. Each step may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Options:

Question 45

Which three authentication methods can be used by Azure Multi-Factor Authentication (MFA)? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

text message (SMS)

Microsoft Authenticator app

email verification

phone call

security question

Question 46

You need to identify which cloud service models place the most responsibility on the customer in a shared responsibility model.

in which order should you list the service models from the most customer responsibility (on the top) to the least customer responsibility (on the bottom)? To answer, move all models from the list of models to the answer area and arrange them in the correct order.

Options:

Question 47

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 48

What should you create to search and export content preserved in an eDiscovery hold?

Options:

a Microsoft SharePoint Online site

a case

a Microsoft Exchange Online public folder

Azure Files

Question 49

What can you use to view the Microsoft Secure Score for Devices?

Options:

Microsoft Defender for Cloud Apps

Microsoft Defender for Endpoint

Microsoft Defender for Identity

Microsoft Defender for Office 365

Answer:

Explanation:

Microsoft Secure Score for Devices

Artikel

12.05.2022

3 Minuten Lesedauer

Applies to:

Microsoft Defender for Endpoint Plan 2

Microsoft Defender Vulnerability Management

Microsoft 365 Defender

Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

To sign up for the Defender Vulnerability Management public preview or if you have any questions, contact us (mdvmtrial@microsoft.com).

Already have Microsoft Defender for Endpoint P2? Sign up for a free trial of the Defender Vulnerability Management Add-on.

Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices.

Your score for devices is visible in the Defender Vulnerability Management dashboard of the Microsoft 365 Defender portal. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:

Application

Operating system

Network

Accounts

Security controls

Select a category to go to the Security recommendations page and view the relevant recommendations.

Turn on the Microsoft Secure Score connector

Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.

Changes might take up to a few hours to reflect in the dashboard.

In the navigation pane, go to Settings > Endpoints > General > Advanced features

Scroll down to Microsoft Secure Score and toggle the setting to On.

Select Save preferences.

How it works

Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations which might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.

The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process. It is aggregated with configuration discovery assessments that continuously:

Compare collected configurations to the collected benchmarks to discover misconfigured assets

Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction)

Collect and maintain best practice configuration benchmarks (vendors, security feeds, internal research teams)

Collect and monitor changes of security control configuration state from all assets

Question 50

Select the answer that correctly completes the sentence.

Options:

Question 51

In a hybrid identity model, what can you use to sync identities between Active Directory Domain Services (AD DS) and Azure Active Directory (Azure AD)?

Options:

Active Directory Federation Services (AD FS)

Azure Sentinel

Azure AD Connect

Azure Ad Privileged Identity Management (PIM)

Question 52

Select the answer that correctly completes the sentence.

Options:

Question 53

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 54

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 55

What are two reasons to deploy multiple virtual networks instead of using just one virtual network? Each correct answer presents a complete solution.

NOTE; Each correct selection is worth one point.

Options:

to separate the resources for budgeting

to meet Governance policies

to isolate the resources

to connect multiple types of resources

Question 56

What is a characteristic of a sensitivity label in Microsoft 365?

Options:

persistent

encrypted

restricted to predefined categories

Question 57

Which three authentication methods can Microsoft Entra users use to reset their password? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

text message to a phone

certificate

mobile app notification

security questions

picture password

Question 58

Select the answer that correctly completes the sentence.

Options:

Question 59

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 60

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Question 61

When security defaults are enabled for an Azure Active Directory (Azure AD) tenant, which two requirements are enforced? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

All users must authenticate from a registered device.

Administrators must always use Azure Multi-Factor Authentication (MFA).

Azure Multi-Factor Authentication (MFA) registration is required for all users.

All users must authenticate by using passwordless sign-in.

All users must authenticate by using Windows Hello.

Load More SC-900 Questions

Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Microsoft SC-900 Microsoft Security Compliance and Identity Fundamentals Exam Practice Test

Microsoft Security Compliance and Identity Fundamentals Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: