Question 1

A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and an

Azure subscription.

All the on-premises servers in the perimeter network are prevented from connecting directly to the

internet.

The customer recently recovered from a ransomware attack.

The customer plans to deploy Microsoft Sentinel.

You need to recommend configurations to meet the following requirements:

Ensure that the security operations team can access the security logs and the operation logs.

Ensure that the IT operations team can access only the operations logs, including the event logs of

the servers in the perimeter network.

Which two configurations can you include in the recommendation? Each correct answer presents a

complete solution. NOTE: Each correct selection is worth one point.

Options :

A : Configure Azure Active Directory (Azure AD) Conditional Access policies.

B : Use the Azure Monitor agent with the multi-homing configuration.

C : Implement resource-based role-based access control (RBAC) in Microsoft Sentinel.

D : Create a custom collector that uses the Log Analytics agent.

Answer: B,C

Question 2

You have legacy operational technology (OT) devices and loT devices.

You need to recommend best practices for applying Zero Trust principles to the OT and loT devices

based on the Microsoft Cybersecurity Reference Architectures (MCRA). The solution must minimize

the risk of disrupting business operations.

Which two security methodologies should you include in the recommendation? Each correct answer

presents part of the solution.

NOTE: Each correct selection is worth one point

Options :

A : passive traffic monitoring

B : active scanning

C : threat monitoring

D : software patching

Answer: C,D

Question 3

You need to recommend a solution to resolve the virtual machine issue. What should you include in the recommendation? (Choose Two)

Options :

A : Onboard the virtual machines to Microsoft Defender for Endpoint.

B : Onboard the virtual machines to Azure Arc.

C : Create a device compliance policy in Microsoft Endpoint Manager.

D : Enable the Qualys scanner in Defender for Cloud.

Answer: A,D

Question 4

You have an Azure AD tenant that contains 10 Windows 11 devices and two groups named Group1

and Group2. The Windows 11 devices are joined to the Azure AD tenant and are managed by using

Microsoft Intune.

You are designing a privileged access strategy based on the rapid modernization plan (RaMP). The

strategy will include the following configurations:

Each user in Group1 will be assigned a Windows 11 device that will be configured as a privileged

access device.

The Security Administrator role will be mapped to the privileged access security level.

The users in Group1 will be assigned the Security Administrator role.

The users in Group2 will manage the privileged access devices.

You need to configure the local Administrators group for each privileged access device. The solution

must follow the principle of least privilege.

What should you include in the solution?

Options :

A : Only add Group2 to the local Administrators group.

B :

Configure Windows Local Administrator Password Solution (Windows LAPS) in legacy Microsoft LAPS emulation mode.

C :

Add Group2 to the local Administrators group. Add the user that is assigned the Security Administrator role to the local Administrators group of the user-s assigned privileged access device

Answer: B

Question 5

You have an Azure subscription

You plan to deploy multiple containerized microservice-based apps to Azure Kubemetes Service

(AKS)

You need to recommend a solution that meets the following requirements:

Manages secrets

Provides encryption

Secures service-to-service communication by using mTLS encryption

Minimizes administrative effort

What should you include in the recommendation?

Options :

A : Flux

B : Envoy

C : Dapr

D : Istio

Answer: D

Free SC-100 Mock Exam – Practice Online Confidently

Buying Options: