Absolute Free SC-100 Exam Practice for Comprehensive Preparation 

You are in the process of improving the security posture of the devices.

You plan to use security baselines from the Microsoft Security Compliance Toolkit.

What should you recommend using to compare the baselines to the current device configurations? 

Microsoft Defender for Cloud are enabled.

The Azure subscription contains 50 virtual machines. Each virtual machine runs different applications

on Windows Server 2019.

You need to recommend a solution to ensure that only authorized applications can run on the virtual

machines. If an unauthorized application attempts to run or be installed, the application must be

blocked automatically until an administrator authorizes the application.

Which security control should you recommend? 

Your company has an Azure subscription that has enhanced security enabled for Microsoft Defender

for Cloud.

The company signs a contract with the United States government.

You need to review the current subscription for NIST 800-53 compliance.

What should you do first? 

databases. All resources are backed up multiple times a day by using Azure Backup. You are

developing a strategy to protect against ransomware attacks.

You need to recommend which controls must be enabled to ensure that Azure Backup can be used to

restore the resources in the event of a successful ransomware attack.

Which two controls should you include in the recommendation? Each correct answer presents a

complete solution. NOTE: Each correct selection is worth one point. 

Your company develops several applications that are accessed as custom enterprise applications in Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific list of countries from connecting to the applications. What should you include in the recommendation?