ExamGecko
Login
Home / Microsoft / SC-300 / List of questions
Ask Question

Microsoft SC-300 Practice Test - Questions Answers, Page 13

List of questions

Question 121

Report
Export
Collapse

HOTSPOT

You have an on-premises datacenter that contains the hosts shown in the following table.

Microsoft SC-300 image Question 93 108185 10052024010905000000

You have an Azure Active Directory (Azure AD) tenant that syncs to the Active Directory forest. Multi-factor authentication (MFA) is enforced for Azure AD.

You need to ensure that you can publish App1 to Azure AD users.

What should you configure on Server and Firewall1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 121 108185 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 121 108185 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/application-proxy

asked 05/10/2024
Fabio Valenti
38 questions

Question 122

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that has the default App registrations settings. The tenant contains the users shown in the following table.

Microsoft SC-300 image Question 94 108186 10052024010905000000

You purchase two cloud apps named App1 and App2. The global administrator registers App1 in Azure AD.

You need to identify who can assign users to App1, and who can register App2 in Azure AD.

What should you identify? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 122 108186 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 122 108186 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/add-application-portal-assign-users

https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-how-applications-are-added

asked 05/10/2024
Dustin Sickle
31 questions

Question 123

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that contains Azure AD Privileged Identity Management (PIM) role settings for the User administrator role as shown in the following exhibit.

Microsoft SC-300 image Question 95 108187 10052024010905000000

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 123 108187 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 123 108187 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-configure

https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-deployment-plan

asked 05/10/2024
Owais Mansoor
40 questions

Question 124

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named User1.

User1 has the devices shown in the following table.

Microsoft SC-300 image Question 96 108188 10052024010905000000

On November 5, 2020, you create and enforce terms of use in contoso.com that has the following settings:

Name: Terms1

Display name: Contoso terms of use

Require users to expand the terms of use: On

Require users to consent on every device: On

Expire consents: On

Expire starting on: December 10, 2020

Frequency: Monthly

On November 15, 2020, User1 accepts Terms1 on Device3.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 124 108188 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 124 108188 10052024010905000

Explanation:

Box 1: Yes because User1 has not yet accepted the terms on Device1.

Box 2: Yes because User1 has not yet accepted the terms on Device2. User1 will be prompted to register the device before the terms can be accepted.

Box 3: No because User1 has already accepted the terms on Device3. The terms do not expire until December 10th and then monthly after that.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/terms-of-use

asked 05/10/2024
Amir Trujillo
38 questions

Question 125

Report
Export
Collapse

HOTSPOT

You have a Microsoft 365 tenant and an Active Directory domain named adatum.com.

You deploy Azure AD Connect by using the Express Settings.

You need to configure self-service password reset (SSPR) to meet the following requirements:

When users reset their password, they must be prompted to respond to a mobile app notification or answer three predefined security questions.

Passwords must be synced between the tenant and the domain regardless of where the password was reset.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 125 108189 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 125 108189 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-sspr-deployment

https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-security-questions

asked 05/10/2024
MANIVANNAN POOPALASINGHAM
31 questions

Question 126

Report
Export
Collapse

HOTSPOT

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the objects shown in the following table.

Microsoft SC-300 image Question 98 108190 10052024010905000000

You install Azure AD Connect. You configure the Domain and OU filtering settings as shown in the Domain and OU Filtering exhibit. (Click the Domain and OU Filtering tab.)

Microsoft SC-300 image Question 98 108190 10052024010905000000

You configure the Filter users and devices settings as shown in the Filter Users and Devices exhibit. (Click the Filter Users and Devices tab.)

Microsoft SC-300 image Question 98 108190 10052024010905000000

For each of the following statements, select Yes if the statement is true. Otherwise, select No.


Microsoft SC-300 image Question 126 108190 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 126 108190 10052024010905000

Explanation:

Only direct members of Group1 are synced. Group2 will sync as it is a direct member of Group1 but the members of Group2 will not sync.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-custom

asked 05/10/2024
Jorge Diaz
35 questions

Question 127

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.

Microsoft SC-300 image Question 99 108191 10052024010905000000

You plan to implement Azure AD Identity Protection.

Which users can configure the user risk policy, and which users can view the risky users report? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 127 108191 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 127 108191 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection

asked 05/10/2024
Paul Macinic
30 questions

Question 128

Report
Export
Collapse

HOTSPOT

Your company has a Microsoft 365 tenant.

All users have computers that run Windows 10 and are joined to the Azure Active Directory (Azure AD) tenant.

The company subscribes to a third-party cloud service named Service1. Service1 supports Azure AD authentication and authorization based on OAuth. Service1 is published to the Azure AD gallery.

You need to recommend a solution to ensure that the users can connect to Service1 without being prompted for authentication. The solution must ensure that the users can access Service1 only from Azure AD-joined computers. The solution must minimize administrative effort.

What should you recommend for each requirement? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 128 108192 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 128 108192 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-how-applications-are-added

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/require-managed-devices

asked 05/10/2024
Bulu padhee
33 questions

Question 129

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that contains the following group:

Name: Group1

Members: User1, User2

Owner: User3

On January 15, 2021, you create an access review as shown in the exhibit. (Click the Exhibit tab.)

Microsoft SC-300 image Question 101 108193 10052024010905000000

Users answer the Review1 question as shown in the following table.

Microsoft SC-300 image Question 101 108193 10052024010905000000

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 129 108193 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 129 108193 10052024010905000

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/review-your-access

asked 05/10/2024
Updesh Kumar
37 questions

Question 130

Report
Export
Collapse

HOTSPOT

You have an Azure Active Directory (Azure AD) tenant that has an Azure Active Directory Premium Plan 2 license. The tenant contains the users shown in the following table.

Microsoft SC-300 image Question 102 108194 10052024010905000000

You have the Device Settings shown in the following exhibit.

Microsoft SC-300 image Question 102 108194 10052024010905000000

User1 has the devices shown in the following table.

Microsoft SC-300 image Question 102 108194 10052024010905000000

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Microsoft SC-300 image Question 130 108194 10052024010905000
Correct answer: Microsoft SC-300 image answer Question 130 108194 10052024010905000

Explanation:

Box 1: Yes

Users may join 5 devices to Azure AD.

Box 2: No

Cloud device administrator an enable, disable, and delete devices in Azure AD and read Windows 10 BitLocker keys in the Azure portal. The role does not grant permissions to manage any other properties on the device.

Box 3: No

An additional local device administrator has not been applied

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/devices/device-management-azure-portal

asked 05/10/2024
Graham Munengami
33 questions
Total 306 questions
Go to page: of 31
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

SIMULATION 8 You need to prevent all users from using legacy authentication protocols when authenticating to Microsoft Entra ID.
HOTSPOT You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named User1. User1 has the devices shown in the following table. On November 5, 2020, you create and enforce terms of use in contoso.com that has the following settings: Name: Terms1 Display name: Contoso terms of use Require users to expand the terms of use: On Require users to consent on every device: On Expire consents: On Expire starting on: December 10, 2020 Frequency: Monthly On November 15, 2020, User1 accepts Terms1 on Device3. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
SIMULATION 4 You need to ensure that all users can consent to apps that require permission to read their user profile. Users must be prevented from consenting to apps that require any other permissions.
SIMULATION 1 You need to deploy multi factor authentication (MFA). The solution must meet the following requirements: * Require MFA registration only for members of the Sg-Finance group. * Exclude Debra Berger from having to register for MFA. * Implement the solution without using a Conditional Access policy.
Your company has an Azure Active Directory (Azure AD) tenant named contosri.com. The company has the business partners shown in the following table. users can request access by using package 1. Users at Fabrikam and Litware use ail then respective domain names for email addresses. You plan to create an access package named packaqel that will be accessible only to the Fabrikam and Litware users. You need to configure connected organizations for Fabrikam and litware so that any of their users can request access by using package1. What is the minimum of connected organization that you should create.
You have an Azure subscription. You need to use Microsoft Entra Permissions Management to automatically monitor permissions and create and implement right-size roles. The solution must follow the principle of least privilege. Which role should you assign to the service principal of Permissions Management?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result, these questions will not appear in the review screen. You have an Amazon Web Services (AWS) account, a Google Workspace subscription, and a GitHub account. You deploy an Azure subscription and enable Microsoft 365 Defender. You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps. Solution: From the Microsoft 365 Defender portal, you add the Amazon Web Services app connector. Does this meet the goal?
DRAG DROP You have an Azure AD tenant that contains a user named Admin1. Admin1 uses the Require password change for high-risk user's policy template to create a new Conditional Access policy. Who is included and excluded by default in the policy assignment? To answer, drag the appropriate options to the correct target. Each option may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 tenant. You have 100 IT administrators who are organized into 10 departments. You create the access review shown in the exhibit. (Click the Exhibit tab.) You discover that all access review requests are received by Megan Bowen. You need to ensure that the manager of each department receives the access reviews of their respective department. Solution: You modify the properties of the IT administrator user accounts. Does this meet the goal?
You have a Microsoft 365 tenant that uses the domain named fabrikam.com. The Guest invite settings for Azure Active Directory (Azure AD) are configured as shown in the exhibit. (Click the Exhibit tab.) A user named [email protected] shares a Microsoft SharePoint Online document library to the users shown in the following table. Which users will be emailed a passcode?