ExamGecko
Login
Home / Microsoft / SC-300 / List of questions
Ask Question

Microsoft SC-300 Practice Test - Questions Answers, Page 5

List of questions

Question 41

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant that syncs to an Active Directory forest. The tenant-uses through authentication.

A corporate security policy states the following:

Domain controllers must never communicate directly to the internet.

Only required software must be- installed on servers.

The Active Directory domain contains the on-premises servers shown in the following table.

Microsoft SC-300 image Question 13 108105 10052024010905000000

You need to ensure that users can authenticate to Azure AD if a server fails.

On which server should you install an additional pass-through authentication agent?

Server2

Server2

Server4

Server4

Server1

Server1

Server3

Server3
Suggested answer: C
asked 05/10/2024
Daniel Calleja
34 questions

Question 42

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant.

You configure self-service password reset (SSPR) by using the following settings:

• Require users to register when signing in: Yes

• Number of methods required to reset: 1

What is a valid authentication method available to users?

home prions

home prions

mobile app notification

mobile app notification

a mobile app code

a mobile app code

an email to an address in your organization

an email to an address in your organization
Suggested answer: C
asked 05/10/2024
Thiago B
43 questions

Question 43

Report
Export
Collapse

You have a Microsoft 365 tenant.

You currently allow email clients that use Basic authentication to conned to Microsoft Exchange Online.

You need to ensure that users can connect t to Exchange only run email clients that use Modern authentication protocols.

What should you implement?

You need to ensure that use Modern authentication

a compliance policy in Microsoft Endpoint Manager

a compliance policy in Microsoft Endpoint Manager

a conditional access policy in Azure Active Directory (Azure AD)

a conditional access policy in Azure Active Directory (Azure AD)

an application control profile in Microsoft Endpoint Manager

an application control profile in Microsoft Endpoint Manager

an OAuth policy in Microsoft Cloud App Security

an OAuth policy in Microsoft Cloud App Security
Suggested answer: C
asked 05/10/2024
EDUARDO VIDAL
41 questions

Question 44

Report
Export
Collapse

You create the Azure Active Directory (Azure AD) users shown in the following table.

Microsoft SC-300 image Question 16 108108 10052024010905000000

On February 1, 2021, you configure the multi-factor authentication (MFA) settings as shown in the following exhibit.

Microsoft SC-300 image Question 16 108108 10052024010905000000

The users authentication to Azure AD on their devices as shown in the following table.

Microsoft SC-300 image Question 16 108108 10052024010905000000

On February 26, 2021, what will the multi-factor auth status be for each user?


Microsoft SC-300 image Question 16 Answer 1 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 1 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 2 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 2 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 3 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 3 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 4 108108 10052024010905000000


Microsoft SC-300 image Question 16 Answer 4 108108 10052024010905000000
Suggested answer: B
asked 05/10/2024
Damir M
36 questions

Question 45

Report
Export
Collapse

Your company has two divisions named Contoso East and Contoso West. The Microsoft 365 identity architecture tor both divisions is shown in the following exhibit.

Microsoft SC-300 image Question 17 108109 10052024010905000000

You need to assign users from the Contoso East division access to Microsoft SharePoint Online sites in the Contoso West tenant. The solution must not require additional Microsoft 3G5 licenses.

What should you do?

Configure The exiting Azure AD Connect server in Contoso Cast to sync the Contoso East Active Directory forest to the Contoso West tenant.

Configure The exiting Azure AD Connect server in Contoso Cast to sync the Contoso East Active Directory forest to the Contoso West tenant.

Configure Azure AD Application Proxy in the Contoso West tenant.

Configure Azure AD Application Proxy in the Contoso West tenant.

Deploy a second Azure AD Connect server to Contoso East and configure the server to sync the Contoso East Active Directory forest to the Contoso West tenant.

Deploy a second Azure AD Connect server to Contoso East and configure the server to sync the Contoso East Active Directory forest to the Contoso West tenant.

Invite the Contoso East users as guests in the Contoso West tenant.

Invite the Contoso East users as guests in the Contoso West tenant.
Suggested answer: D
asked 05/10/2024
Paul Devlin
36 questions

Question 46

Report
Export
Collapse

Your network contains an on-premises Active Directory domain that sync to an Azure Active Directory (Azure AD) tenant. The tenant contains the shown in the following table.

Microsoft SC-300 image Question 18 108110 10052024010905000000

All the users work remotely.

Azure AD Connect is configured in Azure as shown in the following exhibit.

Microsoft SC-300 image Question 18 108110 10052024010905000000

Connectivity from the on-premises domain to the internet is lost.

Which user can sign in to Azure AD?

User1 only

User1 only

User1 and User 3 only

User1 and User 3 only

User1, and User2 only

User1, and User2 only

User1, User2, and User3

User1, User2, and User3
Suggested answer: A
asked 05/10/2024
Janina Loveria
39 questions

Question 47

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant named contoso.com.

You need to ensure that Azure AD External Identities pricing is based on monthly active users (MAU).

What should you configure?

an access review

an access review

the terms or use

the terms or use

a linked subscription

a linked subscription

a user flow

a user flow
Suggested answer: C

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/external-identities/external-identitiespricing

asked 05/10/2024
Natcha Koopipat
42 questions

Question 48

Report
Export
Collapse

You have an Azure Active Directory (Azure Azure) tenant that contains the objects shown in the following table.

• A device named Device1

• Users named User1, User2, User3, User4, and User5

• Five groups named Group1, Group2, Group3, Ciroup4, and Group5

The groups are configured as shown in the following table.

Microsoft SC-300 image Question 20 108112 10052024010905000000

How many licenses are used if you assign the Microsoft Office 365 Enterprise E5 license to Group1?

0

0

2

2

3

3

4

4
Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/licensing-group-advanced

asked 05/10/2024
Edgar Garcia Tobias
35 questions

Question 49

Report
Export
Collapse

You have a Microsoft Exchange organization that uses an SMTP' address space of contoso.com.

Several users use their contoso.com email address for self-service sign up to Azure Active Directory (Azure AD).

You gain global administrator privileges to the Azure AD tenant that contains the self-signed users.

You need to prevent the users from creating user accounts in the contoso.com Azure AD tenant for self-service sign-up to Microsoft 365 services.

Which PowerShell cmdlet should you run?

Set-MsolCompanySettings

Set-MsolCompanySettings

Set-MsolDomainFederationSettings

Set-MsolDomainFederationSettings

Update-MsolfederatedDomain

Update-MsolfederatedDomain

Set-MsolDomain

Set-MsolDomain
Suggested answer: A

Explanation:

https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/directory-self-servicesignup

asked 05/10/2024
brandon millette
50 questions

Question 50

Report
Export
Collapse

Your network contains an on-premises Active Directory domain that syncs to an Azure Active Directory (Azure AD) tenant- Users sign in to computers that run Windows 10 and are joined to the domain.

You plan to implement Azure AD Seamless Single Sign-On (Azure AD Seamless SSO).

You need to configure the computers for Azure AD Seamless SSO.

What should you do?

Enable Enterprise State Roaming.

Enable Enterprise State Roaming.

Configure Sign-in options.

Configure Sign-in options.

Install the Azure AD Connect Authentication Agent.

Install the Azure AD Connect Authentication Agent.

Modify the Intranet Zone settings.

Modify the Intranet Zone settings.
Suggested answer: D

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso-quick-start

asked 05/10/2024
Antonio Rodriguez
40 questions
Total 306 questions
Go to page: of 31
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

SIMULATION 8 You need to prevent all users from using legacy authentication protocols when authenticating to Microsoft Entra ID.
HOTSPOT You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named User1. User1 has the devices shown in the following table. On November 5, 2020, you create and enforce terms of use in contoso.com that has the following settings: Name: Terms1 Display name: Contoso terms of use Require users to expand the terms of use: On Require users to consent on every device: On Expire consents: On Expire starting on: December 10, 2020 Frequency: Monthly On November 15, 2020, User1 accepts Terms1 on Device3. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
SIMULATION 4 You need to ensure that all users can consent to apps that require permission to read their user profile. Users must be prevented from consenting to apps that require any other permissions.
SIMULATION 1 You need to deploy multi factor authentication (MFA). The solution must meet the following requirements: * Require MFA registration only for members of the Sg-Finance group. * Exclude Debra Berger from having to register for MFA. * Implement the solution without using a Conditional Access policy.
Your company has an Azure Active Directory (Azure AD) tenant named contosri.com. The company has the business partners shown in the following table. users can request access by using package 1. Users at Fabrikam and Litware use ail then respective domain names for email addresses. You plan to create an access package named packaqel that will be accessible only to the Fabrikam and Litware users. You need to configure connected organizations for Fabrikam and litware so that any of their users can request access by using package1. What is the minimum of connected organization that you should create.
You have an Azure subscription. You need to use Microsoft Entra Permissions Management to automatically monitor permissions and create and implement right-size roles. The solution must follow the principle of least privilege. Which role should you assign to the service principal of Permissions Management?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result, these questions will not appear in the review screen. You have an Amazon Web Services (AWS) account, a Google Workspace subscription, and a GitHub account. You deploy an Azure subscription and enable Microsoft 365 Defender. You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps. Solution: From the Microsoft 365 Defender portal, you add the Amazon Web Services app connector. Does this meet the goal?
DRAG DROP You have an Azure AD tenant that contains a user named Admin1. Admin1 uses the Require password change for high-risk user's policy template to create a new Conditional Access policy. Who is included and excluded by default in the policy assignment? To answer, drag the appropriate options to the correct target. Each option may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 tenant. You have 100 IT administrators who are organized into 10 departments. You create the access review shown in the exhibit. (Click the Exhibit tab.) You discover that all access review requests are received by Megan Bowen. You need to ensure that the manager of each department receives the access reviews of their respective department. Solution: You modify the properties of the IT administrator user accounts. Does this meet the goal?
You have a Microsoft 365 tenant that uses the domain named fabrikam.com. The Guest invite settings for Azure Active Directory (Azure AD) are configured as shown in the exhibit. (Click the Exhibit tab.) A user named [email protected] shares a Microsoft SharePoint Online document library to the users shown in the following table. Which users will be emailed a passcode?