Email Us support@dumpsengine.com
LOG IN SIGN UP 0

Free Microsoft SC-100 Exam Questions

Absolute Free SC-100 Exam Practice for Comprehensive Preparation 

  • Microsoft SC-100 Exam Questions
  • Provided By: Microsoft
  • Exam: Microsoft Cybersecurity Architect
  • Certification: Microsoft Certified Cybersecurity Architect Expert
  • Total Questions: 271
  • Updated On: May 24, 2026
  • Rated: 4.9 |
  • Online Users: 542
Page No. 1 of 55
   
Add To Cart
  • Question 1
    • Your on-premises network contains an Active Directory Domain Services (AD DS) domain named

      corpxontoso.com and an AD DS-integrated application named App1.

      Your perimeter network contains a server named Server1 that runs Windows Server.

      You have a Microsoft Entra tenant named contoso.com that syncs with corp.contoso.com.

      You plan to implement a security solution that will include the following configurations:

      Manage access to App1 by using Microsoft Entra Private Access.

      Deploy a Microsoft Entra application proxy connector to Server1.

      Implement single sign-on (SSO) for App1 by using Kerberos constrained delegation.  

      For Server1, configure the following rules in Windows Defender Firewall with Advanced Security:

      o Rule1: Allow TCP 443 inbound from a designated set of Azure URLs.

      o Rule2: Allow TCP 443 outbound to a designated set of Azure URLs.

      o Rule3: Allow TCP 80 outbound to a designated set of Azure URLs.

      o Rule4: Allow TCP 389 outbound to the domain controllers on corp.contoso.com.

      You need to maximize security for the planned implementation. The solution must minimize the

      impact on the connector.

      Which rule should you remove?


      Answer: C
  • Question 2
    • You have an Azure subscription. You have an on-premises datacenter that contains Microsoft SQL Server instances. Each instance contains multiple databases. You have a Microsoft 365 subscription. You plan to implement a solution to scan the databases for vulnerabilities that compromise data security. You need to recommend what to configure before the databases can be scanned. What should you recommend?  

      Answer: A
  • Question 3
    • You have an Azure subscription that contains 15 custom apps. The source files for the apps are stored in Git repositories. The apps are deployed by using Azure DevOps. You need to recommend a DevSecOps solution to implement static application security testing (SAST) of the app code to identify hard-coded secrets. What should you include in the recommendation? 

      Answer: B
  • Question 4
    • You have an Azure subscription that contains 15 custom apps. The source files for the apps are stored in Git repositories. The apps are deployed by using Azure DevOps. You need to recommend a DevSecOps solution to implement static application security testing (SAST) of the app code to identify hard-coded secrets. What should you include in the recommendation? 

      Answer: B
  • Question 5
    • You have a Microsoft 365 tenant that contains two groups named Group1 and Group2.

      You use Microsoft Defender XDR to manage the tenants of your company's customers.

      You need to ensure that the users in Group1 can perform security tasks in the tenant of each customer. The

      solution must meet the following requirements:

      The Group1 users must only be assigned the Security Operator role for the customer tenants.

      The users in Group2 must be able to assign the Security Operators role to the Group1 users for the

      customer tenants.

      The use of guest accounts must be minimized.

      Administrative effort must be minimized.

      What should you include in the solution?


      Answer: D
PAGE: 1 - 55
   
Add To Cart

© Copyrights DumpsEngine 2026. All Rights Reserved

We use cookies to ensure your best experience. So we hope you are happy to receive all cookies on the DumpsEngine.