ExamGecko
Home / Microsoft / SC-300 / List of questions
Ask Question

Microsoft SC-300 Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report
Export
Collapse

You have a Microsoft 365 tenant.

The Sign-ins activity report shows that an external contractor signed in to the Exchange admin center.

You need to review access to the Exchange admin center at the end of each month and block sign-ins if required.

What should you create?

an access package that targets users outside your directory

an access package that targets users outside your directory

an access package that targets users in your directory

an access package that targets users in your directory

a group-based access review that targets guest users

a group-based access review that targets guest users

an application-based access review that targets guest users

an application-based access review that targets guest users

Suggested answer: C

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overview

asked 05/10/2024
STEVE MESSANGA
28 questions

Question 82

Report
Export
Collapse

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant.

You have 100 IT administrators who are organized into 10 departments.

You create the access review shown in the exhibit. (Click the Exhibit tab.)

Microsoft SC-300 image Question 54 108146 10052024010905000000

You discover that all access review requests are received by Megan Bowen.

You need to ensure that the manager of each department receives the access reviews of their respective department.

Solution: You create a separate access review for each role.

Does this meet the goal?

Yes

Yes

No

No

Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/create-access-review

asked 05/10/2024
Adrian Kustosz
36 questions

Question 83

Report
Export
Collapse

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant.

You have 100 IT administrators who are organized into 10 departments.

You create the access review shown in the exhibit. (Click the Exhibit tab.)

Microsoft SC-300 image Question 55 108147 10052024010905000000

You discover that all access review requests are received by Megan Bowen.

You need to ensure that the manager of each department receives the access reviews of their respective department.

Solution: You modify the properties of the IT administrator user accounts.

Does this meet the goal?

Yes

Yes

No

No

Suggested answer: A

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/create-access-review

asked 05/10/2024
Higher System Consultancy
41 questions

Question 84

Report
Export
Collapse

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant.

You have 100 IT administrators who are organized into 10 departments.

You create the access review shown in the exhibit. (Click the Exhibit tab.)

Microsoft SC-300 image Question 56 108148 10052024010905000000

You discover that all access review requests are received by Megan Bowen.

You need to ensure that the manager of each department receives the access reviews of their respective department.

Solution: You set Reviewers to Member (self).

Does this meet the goal?

Yes

Yes

No

No

Suggested answer: B
asked 05/10/2024
Karsten Heimers
41 questions

Question 85

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains an Azure AD enterprise application named App1.

A contractor uses the credentials of [email protected].

You need to ensure that you can provide the contractor with access to App1. The contractor must be able to authenticate as [email protected].

What should you do?

Run the New-AzADUser cmdlet.

Run the New-AzADUser cmdlet.

Configure the External collaboration settings.

Configure the External collaboration settings.

Add a WS-Fed identity provider.

Add a WS-Fed identity provider.

Create a guest user account in contoso.com.

Create a guest user account in contoso.com.

Suggested answer: D

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/external-identities/b2b-quickstart-addguest-usersportal

asked 05/10/2024
Mohamed Khazem
25 questions

Question 86

Report
Export
Collapse

Your network contains an Active Directory forest named contoso.com that is linked to an Azure Active Directory (Azure AD) tenant named contoso.com by using Azure AD Connect.

You need to prevent the synchronization of users who have the extensionAttribute15 attribute set to NoSync.

What should you do in Azure AD Connect?

Create an inbound synchronization rule for the Windows Azure Active Directory connector.

Create an inbound synchronization rule for the Windows Azure Active Directory connector.

Configure a Full Import run profile.

Configure a Full Import run profile.

Create an inbound synchronization rule for the Active Directory Domain Services connector.

Create an inbound synchronization rule for the Active Directory Domain Services connector.

Configure an Export run profile.

Configure an Export run profile.

Suggested answer: C

Explanation:

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-change-theconfiguration

asked 05/10/2024
Victor Platonov
34 questions

Question 87

Report
Export
Collapse

Your network contains an on-premises Active Directory domain that syncs to an Azure Active Directory (Azure AD) tenant. The tenant contains the users shown in the following table.

Microsoft SC-300 image Question 59 108151 10052024010905000000

All the users work remotely.

Azure AD Connect is configured in Azure AD as shown in the following exhibit.

Microsoft SC-300 image Question 59 108151 10052024010905000000

Connectivity from the on-premises domain to the internet is lost.

Which users can sign in to Azure AD?

User1 and User3 only

User1 and User3 only

User1 only

User1 only

User1, User2, and User3

User1, User2, and User3

User1 and User2 only

User1 and User2 only

Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-pta-currentlimitations

asked 05/10/2024
Marek Broadstock
36 questions

Question 88

Report
Export
Collapse

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Active Directory forest that syncs to an Azure Active Directory (Azure AD) tenant.

You discover that when a user account is disabled in Active Directory, the disabled user can still authenticate to Azure AD for up to 30 minutes.

You need to ensure that when a user account is disabled in Active Directory, the user account is immediately prevented from authenticating to Azure AD.

Solution: You configure Azure AD Password Protection.

Does this meet the goal?

Yes

Yes

No

No

Suggested answer: B
asked 05/10/2024
Maxime SELLY
43 questions

Question 89

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant named contoso.com.

You implement entitlement management to provide resource access to users at a company named Fabrikam, Inc. Fabrikam uses a domain named fabrikam.com.

Fabrikam users must be removed automatically from the tenant when access is no longer required.

You need to configure the following settings:

Block external user from signing in to this directory: No

Remove external user: Yes

Number of days before removing external user from this directory: 90

What should you configure on the Identity Governance blade?

Access packages

Access packages

Settings

Settings

Terms of use

Terms of use

Access reviews

Access reviews

Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/governance/entitlement-managementexternal-users

asked 05/10/2024
Mihir Mishra
33 questions

Question 90

Report
Export
Collapse

You have an Azure Active Directory (Azure AD) tenant.

You need to review the Azure AD sign-in logs to investigate sign-ins that occurred in the past.

For how long does Azure AD store events in the sign-in logs?

14 days

14 days

30 days

30 days

90 days

90 days

365 days

365 days

Suggested answer: B

Explanation:

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/reference-reportsdataretention#how-long-does-azure-ad-store-the-data

asked 05/10/2024
KOSSIBA LANTONKPODE
28 questions
Total 306 questions
Go to page: of 31
Search

Related questions