Free Microsoft SC-100 Exam Questions

Your company develops several applications that are accessed as custom enterprise applications in Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific list of countries from connecting to the applications. What should you include in the recommendation?

You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluatingthe Azure Security Benchmark V3 report.In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.You need to recommend configurations to increase the score of the Secure management portscontrols.Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.Does this meet the goal? 

You are designing the encryption standards for data at rest for an Azure resourceYou need to provide recommendations to ensure that the data at rest is encrypted by using AES-256keys. The solution must support rotating the encryption keys monthly.Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).Does this meet the goal? 

Your company has devices that run either Windows 10, Windows 11, or Windows Server.You are in the process of improving the security posture of the devices.You plan to use security baselines from the Microsoft Security Compliance Toolkit.What should you recommend using to compare the baselines to the current device configurations? 

Your company has the virtual machine infrastructure shown in the following table.The company plans to use Microsoft Azure Backup Server (MABS) to back up the virtual machines toAzure.You need to provide recommendations to increase the resiliency of the backup strategy to mitigateattacks such as ransomware.What should you include in the recommendation?