Home / Microsoft / SC-300 / List of questions

Ask Question

Microsoft SC-300 Practice Test - Questions Answers, Page 22

List of questions

Question 211

You have an Azure subscription that contains the users shown in the following table.

Microsoft SC-300 image Question 183 108275 10052024010905000000

You need to implement Azure AD Privileged Identity Management (PIM).

Which users can use PIM to activate their role permissions?

Admin! only

Admin2 only

Admin3 only

Admin1 and Admin2 only

Admin2 and Admin3 only

Admin1, Admin2, and Admin3

Show Answer Comment (0)

Question 212

HOTSPOT

You have an Azure AD tenant.

You perform the tasks shown in the following table.

Microsoft SC-300 image Question 184 108276 10052024010905000000

On April 5, an administrator deletes App1, App2, App3, and App4.

You need to restore the apps and the settings.

Which apps can you restore on April 16, and which settings can you restore for App4 on April 16? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Microsoft SC-300 image Question 212 108276 10052024010905000

Show Answer Comment (0)

Correct answer: Microsoft SC-300 image answer Question 212 108276 10052024010905000

asked 05/10/2024

CLINTON PLESS

39 questions

Question 213

HOTSPOT

You have an Azure AD tenant named contoso.com that contains a group named All Company and has the following Identity Governance settings:

* Block external users from signing in to this directory: Yes

* Remove external user Yes

* Number of days before removing external user from this directory: 30

On March 1, 2022, you create an access package named Package1 that has the following settings:

* Resource roles

o Name: All Company

o Type: Group and Team

o Role: Member

* Lifecycle

o Access package assignment expire: On date

o Assignment expiration date: April 1, 2022

On March 1, 2022, you assign Package1 to the guest users shown in the following table.

Microsoft SC-300 image Question 185 108277 10052024010905000000

On March 2, 2022, you assign the Reports reader role to Guest1.

On April 1(2022, you invite a guest user named Guest3 to contoso.com.

On April 4, 2022, you add Guest3 to the All Company group.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Microsoft SC-300 image Question 213 108277 10052024010905000

Show Answer Comment (0)

Correct answer: Microsoft SC-300 image answer Question 213 108277 10052024010905000

asked 05/10/2024

ozgur yilmaz

30 questions

Question 214

After you answer a question in this section, you will NOT be able to return to it. as a result, these questions will not appear in the review screen.

You have an Amazon Web Services (AWS) account a Google Workspace subscription, and a GitHub account

You deploy an Azure subscription and enable Microsoft 365 Defender.

You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps.

Solution: From the Microsoft 365 Defender portal, you add the GitHub app connector

Does this meet the goal?

Yes

Show Answer Comment (0)

Question 215

You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1 and a Microsoft 365 group named Group1. You need to ensure that the members of Group1 can access Site1 for 90 days. The solution must minimize administrative effort. What should you use?

an access review

a lifecycle workflow

an access package

a Conditional Access policy

Show Answer Comment (0)

Question 216

HOTSPOT

You have an Azure AD tenant that contains multiple storage accounts.

You plan to deploy multiple Azure App Service apps that will require access to the storage accounts.

You need to recommend an identity solution to provide the apps with access to the storage accounts. The solution must minimize administrative effort.

Which type of identity should you recommend, and what should you recommend using to control access to the storage accounts? To answer, select the appropriate options in the answer area.

Microsoft SC-300 image Question 216 108280 10052024010905000

Show Answer Comment (0)

Correct answer: Microsoft SC-300 image answer Question 216 108280 10052024010905000

asked 05/10/2024

Ksu doo Makek

45 questions

Question 217

HOTSPOT

Your network contains an on-premises Active Directory Domain Services (AD DS) domain that syncs with Azure AD and contains the users shown in the following table.

Microsoft SC-300 image Question 189 108281 10052024010905000000

In Azure AD Connect. Domain/OU Filtering is configured as shown in the following exhibit.

Microsoft SC-300 image Question 189 108281 10052024010905000000

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Microsoft SC-300 image Question 217 108281 10052024010905000

Show Answer Comment (0)

Correct answer: Microsoft SC-300 image answer Question 217 108281 10052024010905000

asked 05/10/2024

Krishna Mody

37 questions

Question 218

HOTSPOT

You have an Azure subscription that contains the resources shown in the following table.

You need to configure access to Vault1. The solution must meet the following requirements:

* Ensure that User1 can manage and create keys in Vault1.

* Ensure that User2 can access a certificate stored in Vault1.

* Use the principle of least privilege.

Which role should you assign to each user? To answer select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Microsoft SC-300 image Question 218 108282 10052024010905000

Show Answer Comment (0)

Correct answer: Microsoft SC-300 image answer Question 218 108282 10052024010905000

asked 05/10/2024

lagwendon Scott

35 questions

Question 219

You have a Microsoft 365 E5 subscription.

You purchase the app governance add-on license.

You need to enable app governance integration.

Which portal should you use?

the Microsoft Defender for Cloud Apps portal

the Microsoft 365 admin center

Microsoft 365 Defender

the Azure Active Directory admin center

the Microsoft Purview compliance portal

Show Answer Comment (0)

Question 220

You have an Azure AD tenant that contains a user named User1

User1 needs to manage license assignments and reset user passwords.

Which role should you assign to User1?

License administrator

Helpdesk administrator

Billing administrator

User administrator

Show Answer Comment (0)

Question

Case Study

Question 211 (0)

You have an Azure subscription that contains the users shown in the following table. You need to implement Azure AD Privileged Identity Management (PIM). Which users can use PIM to activate thei

Question 212 (0)

HOTSPOT You have an Azure AD tenant. You perform the tasks shown in the following table. On April 5, an administrator deletes App1, App2, App3, and App4. You need to restore the apps and the s

Question 213 (0)

HOTSPOT You have an Azure AD tenant named contoso.com that contains a group named All Company and has the following Identity Governance settings: * Block external users from signing in to this dir

Question 214 (0)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might

Question 215 (0)

You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1 and a Microsoft 365 group named Group1. You need to ensure that the members of Group1 can access Si

Question 216 (0)

HOTSPOT You have an Azure AD tenant that contains multiple storage accounts. You plan to deploy multiple Azure App Service apps that will require access to the storage accounts. You need to recom

Question 217 (0)

HOTSPOT Your network contains an on-premises Active Directory Domain Services (AD DS) domain that syncs with Azure AD and contains the users shown in the following table. In Azure AD Connect. Do

Question 218 (0)

HOTSPOT You have an Azure subscription that contains the resources shown in the following table. You need to configure access to Vault1. The solution must meet the following requirements: * Ensur

Question 219 (0)

You have a Microsoft 365 E5 subscription. You purchase the app governance add-on license. You need to enable app governance integration. Which portal should you use?

Question 220 (0)

You have an Azure AD tenant that contains a user named User1 User1 needs to manage license assignments and reset user passwords. Which role should you assign to User1?

Related questions

SIMULATION 8 You need to prevent all users from using legacy authentication protocols when authenticating to Microsoft Entra ID.

HOTSPOT You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named User1. User1 has the devices shown in the following table. On November 5, 2020, you create and enforce terms of use in contoso.com that has the following settings: Name: Terms1 Display name: Contoso terms of use Require users to expand the terms of use: On Require users to consent on every device: On Expire consents: On Expire starting on: December 10, 2020 Frequency: Monthly On November 15, 2020, User1 accepts Terms1 on Device3. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

SIMULATION 4 You need to ensure that all users can consent to apps that require permission to read their user profile. Users must be prevented from consenting to apps that require any other permissions.

SIMULATION 1 You need to deploy multi factor authentication (MFA). The solution must meet the following requirements: * Require MFA registration only for members of the Sg-Finance group. * Exclude Debra Berger from having to register for MFA. * Implement the solution without using a Conditional Access policy.

Your company has an Azure Active Directory (Azure AD) tenant named contosri.com. The company has the business partners shown in the following table. users can request access by using package 1. Users at Fabrikam and Litware use ail then respective domain names for email addresses. You plan to create an access package named packaqel that will be accessible only to the Fabrikam and Litware users. You need to configure connected organizations for Fabrikam and litware so that any of their users can request access by using package1. What is the minimum of connected organization that you should create.

You have an Azure subscription. You need to use Microsoft Entra Permissions Management to automatically monitor permissions and create and implement right-size roles. The solution must follow the principle of least privilege. Which role should you assign to the service principal of Permissions Management?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result, these questions will not appear in the review screen. You have an Amazon Web Services (AWS) account, a Google Workspace subscription, and a GitHub account. You deploy an Azure subscription and enable Microsoft 365 Defender. You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps. Solution: From the Microsoft 365 Defender portal, you add the Amazon Web Services app connector. Does this meet the goal?

DRAG DROP You have an Azure AD tenant that contains a user named Admin1. Admin1 uses the Require password change for high-risk user's policy template to create a new Conditional Access policy. Who is included and excluded by default in the policy assignment? To answer, drag the appropriate options to the correct target. Each option may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 tenant. You have 100 IT administrators who are organized into 10 departments. You create the access review shown in the exhibit. (Click the Exhibit tab.) You discover that all access review requests are received by Megan Bowen. You need to ensure that the manager of each department receives the access reviews of their respective department. Solution: You modify the properties of the IT administrator user accounts. Does this meet the goal?

You have a Microsoft 365 tenant that uses the domain named fabrikam.com. The Guest invite settings for Azure Active Directory (Azure AD) are configured as shown in the exhibit. (Click the Exhibit tab.) A user named [email protected] shares a Microsoft SharePoint Online document library to the users shown in the following table. Which users will be emailed a passcode?

Export

with questions and answers will be exported as:

VPLUS file

PDF file (Demo 30 questions)

Highest scored 'comment-votes'

Your question list is being generated. We”ll email you once it’s ready.

If you didn't receive an email within 5 minutes, you should submit a support request to [email protected].