Practice Free SC-300 Exam Online Questions
HOTSPOT
You need to support the planned changes and meet the technical requirements for MFA.
Which feature should you use, and how long before the users must complete the registration? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 E5 subscription.
You purchase the app governance add-on license.
You need to enable app governance integration.
Which portal should you use?
- A . the Microsoft Defender for Cloud Apps portal
- B . the Microsoft 365 admin center
- C . Microsoft 365 Defender
- D . the Azure Active Directory admin center
- E . the Microsoft Purview compliance portal
You have an Azure AD tenant that contains the users shown in the following table.
The User settings for enterprise applications have the following configuration.
• Users can consent to apps accessing company data on their behalf:
• Users can consent to apps accessing company data for the groups they
• Users can request admin consent to apps they are unable to consent to: Yes
• Who can review admin consent requests: Admin2, User2
User1 attempts to add an app that requires consent to access company data.
Which user can provide consent?
- A . User1
- B . User2
- C . Admin1
- D . Admin2
You have an Azure subscription, a Google Cloud Platform (GCP) account, and an Amazon Web Services (AWS) account.
You need to recommend a solution to assess the risks associated with privilege assignments across all the platforms. The solution must minimize administrative effort.
What should you include in the recommendation?
- A . Microsoft Sentinel
- B . Microsoft Defender for Cloud Apps
- C . Microsoft Entra ID Protection
- D . Microsoft Entra Permissions Management
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant.
You have 100 IT administrators who are organized into 10 departments.
You create the access review shown in the exhibit. (Click the Exhibit tab.)
You discover that all access review requests are received by Megan Bowen.
You need to ensure that the manager of each department receives the access reviews of their respective department.
Solution: You create a separate access review for each role.
Does this meet the goal?
- A . Yes
- B . No
B
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/create-access-review
HOTSPOT
You need to meet the technical requirements for the probability that user identities were compromised.
What should the users do first, and what should you configure? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/concept-identity-protection-policies
HOTSPOT
You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.
For which users can you configure the Job title property and the Usage location property in Azure AD? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have an Azure AD tenant that has multi-factor authentication (MFA) enforced and self-service password reset (SSPR) enabled.
You enable combined registration in interrupt mode.
You create a new user named User1.
Which two authentication methods can User1 use to complete the combined registration process? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . a FID02 security key
- B . a hardware token
- C . a one-time passcode email
- D . Windows Hello for Business
- E . the Microsoft Authenticator app
You have an Azure subscription that contains the resources shown in the following table.
You need to grant permissions to the resources by using attribute-based access control (ABAC).
To which resource can you grant permissions?
- A . Vault1
- B . VM1
- C . App1
- D . storage 1
You need to allocate licenses to the new users from A. Datum. The solution must meet the technical requirements.
Which type of object should you create?
- A . a distribution group
- B . a Dynamic User security group
- C . an administrative unit
- D . an OU