SC-900 Questions and Answers

Question # 6

Which Microsoft 365 feature can you use to restrict communication and the sharing of information between members of two departments at your organization?

sensitivity label policies

Customer Lockbox

information Barriers

Privileged Access Management (PAM)

Full Access

Question # 7

What can you use to provide threat detection for Azure SQL Managed Instance?

Microsoft Secure Score

application security groups

Microsoft Defender for Cloud

Azure Bastion

Full Access

Question # 8

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 9

Which Microsoft portal provides information about how Microsoft manages privacy, compliance, and security?

Microsoft Service Trust Portal

Compliance Manager

Microsoft 365 compliance center

Microsoft Support

Full Access

Question # 10

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 11

Which three authentication methods can be used by Azure Multi-Factor Authentication (MFA)? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

phone call

text message (SMS)

email verification

Microsoft Authenticator app

security question

Full Access

Question # 12

When security defaults are enabled for an Azure Active Directory (Azure AD) tenant, which two requirements are enforced? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

All users must authenticate from a registered device.

Administrators must always use Azure Multi-Factor Authentication (MFA).

Azure Multi-Factor Authentication (MFA) registration is required for all users.

All users must authenticate by using passwordless sign-in.

All users must authenticate by using Windows Hello.

Full Access

Question # 13

Select the answer that correctly completes the sentence.

Full Access

Question # 14

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 15

Select the answer that correctly completes the sentence.

Full Access

Question # 16

Select the answer that correctly completes the sentence.

Full Access

Question # 17

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 18

Select the answer that correctly completes the sentence.

Full Access

Question # 19

What are three uses of Microsoft Cloud App Security? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

to discover and control the use of shadow IT

to provide secure connections to Azure virtual machines

to protect sensitive information hosted anywhere in the cloud

to provide pass-through authentication to on-premises applications

to prevent data leaks to noncompliant apps and limit access to regulated data

Full Access

Question # 20

Match the Microsoft Defender for Office 365 feature to the correct description.

To answer, drag the appropriate feature from the column on the left to its description on the right. Each feature may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Full Access

Question # 21

What can you use to view the Microsoft Secure Score for Devices?

Microsoft Defender for Cloud Apps

Microsoft Defender for Endpoint

Microsoft Defender for Identity

Microsoft Defender for Office 365

Full Access

Answer:

Explanation:

Microsoft Secure Score for Devices

Artikel

12.05.2022

3 Minuten Lesedauer

Applies to:

Microsoft Defender for Endpoint Plan 2

Microsoft Defender Vulnerability Management

Microsoft 365 Defender

Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

To sign up for the Defender Vulnerability Management public preview or if you have any questions, contact us (mdvmtrial@microsoft.com).

Already have Microsoft Defender for Endpoint P2? Sign up for a free trial of the Defender Vulnerability Management Add-on.

Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices.

Your score for devices is visible in the Defender Vulnerability Management dashboard of the Microsoft 365 Defender portal. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:

Application

Operating system

Network

Accounts

Security controls

Select a category to go to the Security recommendations page and view the relevant recommendations.

Turn on the Microsoft Secure Score connector

Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.

Changes might take up to a few hours to reflect in the dashboard.

In the navigation pane, go to Settings > Endpoints > General > Advanced features

Scroll down to Microsoft Secure Score and toggle the setting to On.

Select Save preferences.

How it works

Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations which might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.

The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process. It is aggregated with configuration discovery assessments that continuously:

Compare collected configurations to the collected benchmarks to discover misconfigured assets

Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction)

Collect and maintain best practice configuration benchmarks (vendors, security feeds, internal research teams)

Collect and monitor changes of security control configuration state from all assets

Question # 22

What are customers responsible for when evaluating security in a software as a service (SaaS) cloud services model?

applications

network controls

operating systems

accounts and identities

Full Access

Question # 23

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 24

Which three tasks can be performed by using Azure Active Directory (Azure AD) Identity Protection? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Configure external access for partner organizations.

Export risk detection to third-party utilities.

Automate the detection and remediation of identity based-risks.

Investigate risks that relate to user authentication.

Create and automatically assign sensitivity labels to data.

Full Access

Question # 25

What should you create to search and export content preserved in an eDiscovery hold?

a Microsoft SharePoint Online site

a case

a Microsoft Exchange Online public folder

Azure Files

Full Access

Question # 26

What is an example of encryption at rest?

encrypting communications by using a site-to-site VPN

encrypting a virtual machine disk

accessing a website by using an encrypted HTTPS connection

sending an encrypted email

Full Access

Question # 27

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Full Access

Question # 28

You are evaluating the compliance score in Microsoft Purview Compliance Manager.

Match the compliance score action subcategories to the appropriate actions.

To answer, drag the appropriate action subcategory from the column on the left to its action on the right. Each action subcategory may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Full Access

Question # 29

What is a use case for implementing information barrier policies in Microsoft 365?

to restrict unauthenticated access to Microsoft 365

to restrict Microsoft Teams chats between certain groups within an organization

to restrict Microsoft Exchange Online email between certain groups within an organization

to restrict data sharing to external email recipients

Full Access

Question # 30

You have an Azure subscription.

You need to implement approval-based time-bound role activation.

What should you use?

Microsoft Entra ID Protection

Microsoft Entra Conditional access

Microsoft Entra Privileged Management

Microsoft Entra Access Reviews

Full Access

Question # 31

Which Microsoft Purview solution can be used to identify data leakage?

insider risk management

Compliance Manager

communication compliance

eDiscovery

Full Access

Question # 32

Select the answer that correctly completes the sentence.

Full Access

Question # 33

Which Microsoft 365 feature can you use to restrict users from sending email messages that contain lists of customers and their associated credit card numbers?

retention policies

data loss prevention (DLP) policies

conditional access policies

information barriers

Full Access

Question # 34

Select the answer that correctly completes the sentence.

Full Access

Question # 35

What is a characteristic of a sensitivity label in Microsoft 365?

persistent

encrypted

restricted to predefined categories

Full Access

Question # 36

What can you specify in Microsoft 365 sensitivity labels?

how long files must be preserved

when to archive an email message

which watermark to add to files

where to store files

Full Access

Question # 37

You need to identify which cloud service models place the most responsibility on the customer in a shared responsibility model.

in which order should you list the service models from the most customer responsibility (on the top) to the least customer responsibility (on the bottom)? To answer, move all models from the list of models to the answer area and arrange them in the correct order.

Full Access

Question # 38

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 39

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 40

Select the answer that correctly completes the sentence.

Full Access

Question # 41

Which score measures an organization's progress in completing actions that help reduce risks associated to data protection and regulatory standards?

Microsoft Secure Score

Productivity Score

Secure score in Azure Security Center

Compliance score

Full Access

Question # 42

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 43

Which three authentication methods can be used by Azure Multi-Factor Authentication (MFA)? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

text message (SMS)

Microsoft Authenticator app

email verification

phone call

security question

Full Access

Question # 44

What can you use to provide a user with a two-hour window to complete an administrative task in Azure?

Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Azure Multi-Factor Authentication (MFA)

Azure Active Directory (Azure AD) Identity Protection

conditional access policies

Full Access

Question # 45

What feature supports email as a method of authenticating users?

Microsoft Entra ID Protection

Microsoft Entra Multi-Factor Authentication (MFA)

self-service password reset (SSPR)

Microsoft Entra Password Protection

Full Access

Question # 46

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 47

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 48

You need to connect to an Azure virtual machine by using Azure Bastion. What should you use?

an SSH client

PowerShell remoting

the Azure portal

the Remote Desktop Connection client

Full Access

Question # 49

Select the answer that correctly completes the sentence.

Full Access

Question # 50

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 51

You need to keep a copy of all files in a Microsoft SharePoint site for one year, even if users delete the files from the site. What should you apply to the site?

a data loss prevention (DLP) policy

a retention policy

an insider risk policy

a sensitivity label policy

Full Access

Question # 52

Select the answer that correctly completes the sentence.

Full Access

Question # 53

Select the answer that correctly completes the sentence.

Full Access

Question # 54

Select the answer that correctly completes the sentence.

Full Access

Question # 55

You have an Azure subscription that contains multiple resources.

You need to assess compliance and enforce standards for the existing resources.

What should you use?

the Anomaly Detector service

Microsoft Sentinel

Azure Blueprints

Azure Policy

Full Access

Question # 56

Select the answer that correctly completes the sentence.

Full Access

Question # 57

Select the answer that correctly completes the sentence.

Full Access

Winter Sale - Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpt65

DumpsTool Header

dumpstool logo

SC-900 Questions and Answers

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer: