Microsoft SC-900 Exam With Complete
Solutions 100% Correct
The Microsoft approach to privacy is built on the foundation of [answer choice]. -
ANSWER control, transparency, security, strong legal protections, no content-based
targeting and benefits to you
Which type of Compliance Manager controls are used for Microsoft cloud services? -
ANSWER Microsoft-managed controls
In Microsoft Purview insider risk management, what should you create for alerts that
require further investigation? Answer a case Insider risk management is a solution that
helps minimize internal risks by allowing an organization to detect, investigate and act
on risky and malicious activities. It allows to protect against leaks of sensitive data,
confidentiality violations, and intellectual property theft. Alerts have to be triaged, and
the ones which require further investigation have to be added to a case. Each case is
assigned to one user and can have multiple alerts.
An organization wants to migrate to the Microsoft cloud. The goal is to continue working
in a hybrid identity model.
Which of the following can be used to synchronize identities across AD DS and the
Microsoft Entra tenant? -ANSWER Microsoft Entra Connect -Microsoft Entra Connect is
created to fulfill hybrid identity needs and accomplish goals. ADFS can't be used for a
hybrid identity model. Microsoft Sentinel isn't an identity product. PIM is used to manage
and monitor access to highly critical resources.
Of the following, which of these is an authentication method that uses a time-based,
one-time password? A) OATH hardware tokens B) OATH hardware tokens use a
time-based one-time password. C) Strong passwords aren't one-time passwords. D)
Password hash synchronization syncs hashes across Active Directory and Microsoft
Entra tenant. E) Windows Hello uses a camera or passcode to authenticate.
, What are three things that can be used by a claimant to prove verification for Microsoft
Entra Multi-Factor Authentication (MFA)? Each correct answer provides a complete
solution. ANSWER Something the claimant knows Something the claimant has
Something the claimant is Explanation Microsoft Entra MFA works by requiring
something you know, such as a password, and something you have such as a phone, or
something you are such as biometrics.
This is a scenario where an attacker wants to log in to many user accounts using
commonly used passwords. The attacker executes the action in every 20-minute
timeframe to prevent account lockout.
Which of the following Microsoft Entra features protects your organization from this type
of attack? - ANSWER Microsoft Entra Password Protection
Microsoft Entra Password Protection helps you defend against password spray attacks.
Conditional Access brings signals together to make decisions and enforce
organizational policies, but it can't stop password attacks by its own. SSPR enables the
end user to change or reset their password without administrator or helpdesk
involvement. It doesn't block password attacks. Windows Hello for Business replaces
passwords with strong two-factor authentication on devices.
What is a user risk in Microsoft Entra Identity Protection? - ANSWER leaked credentials
Leaked credentials is a user risk. Atypical travel, anonymous IP address and password
spray are sign-in risks.
Which security model uses a layered approach to security, providing mechanisms to
stop a breach at the perimeter of each layer? - ANSWER defense in depth
This is a security approach using a layered approach. A shared responsibility model
defines what each party is responsible for, either company or vendor. PCI is a
compliance regulation and not a security model.
What is one of the guiding principles of the Zero Trust model? - ANSWER verify explicitly
The three guiding principles are: verify explicitly, least privilege access, and assume
breach.
What are two characteristics of identity being the first security perimeter? Each correct
answer signifies a complete solution. - ANSWER SaaS applications may be used off the
Solutions 100% Correct
The Microsoft approach to privacy is built on the foundation of [answer choice]. -
ANSWER control, transparency, security, strong legal protections, no content-based
targeting and benefits to you
Which type of Compliance Manager controls are used for Microsoft cloud services? -
ANSWER Microsoft-managed controls
In Microsoft Purview insider risk management, what should you create for alerts that
require further investigation? Answer a case Insider risk management is a solution that
helps minimize internal risks by allowing an organization to detect, investigate and act
on risky and malicious activities. It allows to protect against leaks of sensitive data,
confidentiality violations, and intellectual property theft. Alerts have to be triaged, and
the ones which require further investigation have to be added to a case. Each case is
assigned to one user and can have multiple alerts.
An organization wants to migrate to the Microsoft cloud. The goal is to continue working
in a hybrid identity model.
Which of the following can be used to synchronize identities across AD DS and the
Microsoft Entra tenant? -ANSWER Microsoft Entra Connect -Microsoft Entra Connect is
created to fulfill hybrid identity needs and accomplish goals. ADFS can't be used for a
hybrid identity model. Microsoft Sentinel isn't an identity product. PIM is used to manage
and monitor access to highly critical resources.
Of the following, which of these is an authentication method that uses a time-based,
one-time password? A) OATH hardware tokens B) OATH hardware tokens use a
time-based one-time password. C) Strong passwords aren't one-time passwords. D)
Password hash synchronization syncs hashes across Active Directory and Microsoft
Entra tenant. E) Windows Hello uses a camera or passcode to authenticate.
, What are three things that can be used by a claimant to prove verification for Microsoft
Entra Multi-Factor Authentication (MFA)? Each correct answer provides a complete
solution. ANSWER Something the claimant knows Something the claimant has
Something the claimant is Explanation Microsoft Entra MFA works by requiring
something you know, such as a password, and something you have such as a phone, or
something you are such as biometrics.
This is a scenario where an attacker wants to log in to many user accounts using
commonly used passwords. The attacker executes the action in every 20-minute
timeframe to prevent account lockout.
Which of the following Microsoft Entra features protects your organization from this type
of attack? - ANSWER Microsoft Entra Password Protection
Microsoft Entra Password Protection helps you defend against password spray attacks.
Conditional Access brings signals together to make decisions and enforce
organizational policies, but it can't stop password attacks by its own. SSPR enables the
end user to change or reset their password without administrator or helpdesk
involvement. It doesn't block password attacks. Windows Hello for Business replaces
passwords with strong two-factor authentication on devices.
What is a user risk in Microsoft Entra Identity Protection? - ANSWER leaked credentials
Leaked credentials is a user risk. Atypical travel, anonymous IP address and password
spray are sign-in risks.
Which security model uses a layered approach to security, providing mechanisms to
stop a breach at the perimeter of each layer? - ANSWER defense in depth
This is a security approach using a layered approach. A shared responsibility model
defines what each party is responsible for, either company or vendor. PCI is a
compliance regulation and not a security model.
What is one of the guiding principles of the Zero Trust model? - ANSWER verify explicitly
The three guiding principles are: verify explicitly, least privilege access, and assume
breach.
What are two characteristics of identity being the first security perimeter? Each correct
answer signifies a complete solution. - ANSWER SaaS applications may be used off the
