SC-300 exam

You have an Azure Active Directory (Azure AD) tenant. You create an enterprise application collection named HR Apps that has the following settings: • Applications: Appl. App?, App3 • Owners: Admin 1 • Users and groups: HRUsers AH three apps have the following Properties settings: • Enabled for users to...

You have a Microsoft Exchange organization that uses an SMTP' address space of contoso.com. Several users use their contoso.com email address for self-service sign up to Azure Active Directory (Azure AD). You gain global administrator privileges to the Azure AD tenant that contains the self-signed users. You need to prevent...

DRAG DROP You have a Microsoft 365 E5 tenant. You purchase a cloud app named App1. You need to enable real-time session-level monitoring of App1 by using Microsoft Cloud app Security. Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions...

You have an Azure subscription that contains the resources shown in the following table. For which resources can you create an access review?A . Group1, App1, Contributor, and Role1B . Hotel and Contributor onlyC . Group1, Role1, and Contributor onlyD . Group1 onlyView AnswerAnswer: A Explanation: Access reviews require an...

You use Azure Monitor to analyze Azure Active Directory (Azure AD) activity logs. Yon receive more than 100 email alerts each day for tailed Azure Al) user sign-in attempts. You need to ensure that a new security administrator receives the alerts instead of you. Solution: From Azure monitor, you modify...

DRAG DROP You need to resolve the recent security incident issues. What should you configure for each incident? To answer, drag the appropriate policy types to the correct issues. Each policy type may be used once, more than once, or not at all. You may need to drag the split...

You have an Azure Active Directory (Azure AD) tenant named conto.so.com that has Azure AD Identity Protection enabled. You need to Implement a sign-in risk remediation policy without blocking access. What should you do first?A . Configure access reviews in Azure AD.B . Enforce Azure AD Password Protection.C . implement...

You need to resolve the issue of I-.Group1. What should you do first?A . Recreate the IT-Group 1 group.B . Change Membership type of IT-Group1 to Dynamic DeviceC . Add an owner to IT_Group1.D . Change Membership type of IT-Group1 to Dynamic UserView AnswerAnswer: A

HOTSPOT You need to implement the planned changes and technical requirements for the marketing department. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. View AnswerAnswer: Explanation: Reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/entitlement-management-organization

HOTSPOT You have a Microsoft 365 tenant named contoso.com. Guest user access is enabled. Users are invited to collaborate with contoso.com as shown in the following table. From the External collaboration settings in the Azure Active Directory admin center, you configure the Collaboration restrictions settings as shown in the following...