Free Microsoft SC-100 Exam Questions

You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual machines. Each virtual machine runs different applications on Windows Server 2019. You need to recommend a solution to ensure that only authorized applications can run on the virtual machines. If an unauthorized application attempts to run or be installed, the application must be blocked automatically until an administrator authorizes the application. Which security control should you recommend?  

A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and anAzure subscription.All the on-premises servers in the perimeter network are prevented from connecting directly to theinternet.The customer recently recovered from a ransomware attack.The customer plans to deploy Microsoft Sentinel.You need to recommend configurations to meet the following requirements:Ensure that the security operations team can access the security logs and the operation logs.Ensure that the IT operations team can access only the operations logs, including the event logs ofthe servers in the perimeter network.Which two configurations can you include in the recommendation? Each correct answer presents acomplete solution. NOTE: Each correct selection is worth one point. 

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your on-premises network contains an e-commerce web app that was developed in Angular and Node,js. The web app uses a MongoDB database.

You plan to migrate the web app to Azure. The solution architecture team proposes the following architecture as an Azure landing zone.

You need to provide recommendations to secure the connection between the web app and the database. The solution must follow the Zero Trust model.

Solution: You recommend implementing Azure Application Gateway with Azure Web Application Firewall (WAF).

Does this meet the goal?

Your company has a main office and 10 branch offices. Each branch office contains an on-premisesfile server that runs Windows Server and multiple devices that run either Windows 11 or macOS. Thedevices are enrolled in Microsoft Intune.You have a Microsoft Entra tenant.You need to deploy Global Secure Access to implement web filtering for device traffic to the internetThe solution must ensure that all the web traffic from the devices in the branch offices is controlledby using Global Secure Access.What should you do first in each branch office?

Your company has a hybrid cloud infrastructure.The company plans to hire several temporary employees within a brief period. The temporaryemployees will need to access applications and data on the company' premises network.The company's security policy prevents the use of personal devices for accessing company data andapplications.You need to recommend a solution to provide the temporary employee with access to companyresources. The solution must be able to scale on demand.What should you include in the recommendation?