Free Microsoft SC-100 Exam Questions
Absolute Free SC-100 Exam Practice for Comprehensive Preparation
-
Microsoft SC-100 Exam Questions
-
Provided By: Microsoft
- Exam: Microsoft Cybersecurity Architect
- Certification: Microsoft Certified Cybersecurity Architect Expert
-
Total Questions: 201
-
Updated On: May 11, 2025
-
Rated: 4.9 |
-
Online Users: 402
-
Question 1
-
You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluatingthe Azure Security Benchmark V3 report.In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.You need to recommend configurations to increase the score of the Secure management portscontrols.Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.Does this meet the goal?
Answer: B
-
You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluatingthe Azure Security Benchmark V3 report.In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.You need to recommend configurations to increase the score of the Secure management portscontrols.Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.Does this meet the goal?
-
Question 2
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?
Answer: A
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?
-
Question 3
-
A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and anAzure subscription.All the on-premises servers in the perimeter network are prevented from connecting directly to theinternet.The customer recently recovered from a ransomware attack.The customer plans to deploy Microsoft Sentinel.You need to recommend configurations to meet the following requirements:Ensure that the security operations team can access the security logs and the operation logs.Ensure that the IT operations team can access only the operations logs, including the event logs ofthe servers in the perimeter network.Which two configurations can you include in the recommendation? Each correct answer presents acomplete solution. NOTE: Each correct selection is worth one point.
Answer: B,C
-
A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and anAzure subscription.All the on-premises servers in the perimeter network are prevented from connecting directly to theinternet.The customer recently recovered from a ransomware attack.The customer plans to deploy Microsoft Sentinel.You need to recommend configurations to meet the following requirements:Ensure that the security operations team can access the security logs and the operation logs.Ensure that the IT operations team can access only the operations logs, including the event logs ofthe servers in the perimeter network.Which two configurations can you include in the recommendation? Each correct answer presents acomplete solution. NOTE: Each correct selection is worth one point.
-
Question 4
-
You are designing the encryption standards for data at rest for an Azure resourceYou need to provide recommendations to ensure that the data at rest is encrypted by using AES-256keys. The solution must support rotating the encryption keys monthly.Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).Does this meet the goal?
Answer: B
-
You are designing the encryption standards for data at rest for an Azure resourceYou need to provide recommendations to ensure that the data at rest is encrypted by using AES-256keys. The solution must support rotating the encryption keys monthly.Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).Does this meet the goal?
-
Question 5
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?
Answer: A
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?