Free SC-100 Mock Exam – Practice Online Confidently

You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluating

the Azure Security Benchmark V3 report.

In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.

You need to recommend configurations to increase the score of the Secure management ports

controls.

Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.

Does this meet the goal? 

Your company plans to follow DevSecOps best practices of the Microsoft Cloud Adoption Framework

for Azure.

You need to perform threat modeling by using a top-down approach based on the Microsoft Cloud

Adoption Framework for Azure.

What should you use to start the threat modeling process? 

You are designing a security strategy for providing access to Azure App Service web apps through an

Azure Front Door instance.

You need to recommend a solution to ensure that the web apps only allow access through the Front

Door instance.

Solution: You recommend access restrictions that allow traffic from the Front Door service tags.

Does this meet the goal? 

Your company has the virtual machine infrastructure shown in the following table.

The company plans to use Microsoft Azure Backup Server (MABS) to back up the virtual machines to

Azure.

You need to provide recommendations to increase the resiliency of the backup strategy to mitigate

attacks such as ransomware.

What should you include in the recommendation?  

You have a Microsoft 365 tenant. Your company uses a third-party software as a service (SaaS) app named App1. App1 supports authenticating users by using Azure AO credentials. You need to recommend a solution to enable users to authenticate to App1 by using their Azure AD credentials. What should you include in the recommendation?