Unlock your Full SC-900 Microsoft Stable Exam

Microsoft Security Compliance and Identity Fundamentals Questions and Answers

Question 1

Select the answer that correctly completes the sentence.

Question # 1

Options:

Question 2

Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 2

Options:

Question 3

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 3

Options:

Question 4

Select the answer that correctly completes the sentence.

Question # 4

Options:

Question 5

Select the answer that correctly completes the sentence.

Question # 5

Options:

Question 6

What can you use to scan email attachments and forward the attachments to recipients only if the attachments are free from malware?

Options:

Microsoft Defender for Office 365

Microsoft Defender Antivirus

Microsoft Defender for Identity

Microsoft Defender for Endpoint

Question 7

What can you use to view the Microsoft Secure Score for Devices?

Options:

Microsoft Defender for Cloud Apps

Microsoft Defender for Endpoint

Microsoft Defender for Identity

Microsoft Defender for Office 365

Answer:

Explanation:

Microsoft Secure Score for Devices

Artikel

12.05.2022

3 Minuten Lesedauer

Applies to:

Microsoft Defender for Endpoint Plan 2

Microsoft Defender Vulnerability Management

Microsoft 365 Defender

Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

To sign up for the Defender Vulnerability Management public preview or if you have any questions, contact us (mdvmtrial@microsoft.com).

Already have Microsoft Defender for Endpoint P2? Sign up for a free trial of the Defender Vulnerability Management Add-on.

Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices.

Your score for devices is visible in the Defender Vulnerability Management dashboard of the Microsoft 365 Defender portal. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:

Application

Operating system

Network

Accounts

Security controls

Select a category to go to the Security recommendations page and view the relevant recommendations.

Turn on the Microsoft Secure Score connector

Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.

Changes might take up to a few hours to reflect in the dashboard.

In the navigation pane, go to Settings > Endpoints > General > Advanced features

Scroll down to Microsoft Secure Score and toggle the setting to On.

Select Save preferences.

How it works

Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations which might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.

The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process. It is aggregated with configuration discovery assessments that continuously:

Compare collected configurations to the collected benchmarks to discover misconfigured assets

Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction)

Collect and maintain best practice configuration benchmarks (vendors, security feeds, internal research teams)

Collect and monitor changes of security control configuration state from all assets

Question 8

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 8

Options:

Question 9

You need to connect to an Azure virtual machine by using Azure Bastion. What should you use?

Options:

an SSH client

PowerShell remoting

the Azure portal

the Remote Desktop Connection client

Question 10

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 10

Options:

Question 11

Which Microsoft portal provides information about how Microsoft manages privacy, compliance, and security?

Options:

Microsoft Service Trust Portal

Compliance Manager

Microsoft 365 compliance center

Microsoft Support

Question 12

Select the answer that correctly completes the sentence.

Question # 12

Options:

Question 13

What can you use to provision Azure resources across multiple subscriptions in a consistent manner?

Options:

Microsoft Defender for Cloud

Azure Blueprints

Microsoft Sentinel

Azure Policy

Question 14

Select the answer that correctly completes the sentence.

Question # 14

Options:

Question 15

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Question # 15

Options:

Question 16

Select the answer that correctly completes the sentence.

Question # 16

Options:

Question 17

Select the answer that correctly completes the sentence.

Question # 17

Options:

Question 18

What is a use case for implementing information barrier policies in Microsoft 365?

Options:

to restrict unauthenticated access to Microsoft 365

to restrict Microsoft Teams chats between certain groups within an organization

to restrict Microsoft Exchange Online email between certain groups within an organization

to restrict data sharing to external email recipients

Question 19

What are two capabilities of Microsoft Defender for Endpoint? Each correct selection presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

automated investigation and remediation

transport encryption

shadow IT detection

attack surface reduction

Question 20

Which service should you use to view your Azure secure score? To answer, select the appropriate service in the answer area.

Question # 20

Options:

Question 21

What should you use in the Microsoft 365 security center to view security trends and track the protection status of identities?

Options:

Attack simulator

Reports

Hunting

Incidents

Question 22

Which Microsoft 365 compliance center feature can you use to identify all the documents on a Microsoft SharePoint Online site that contain a specific key word?

Options:

Audit

Compliance Manager

Content Search

Alerts

Question 23

Select the answer that correctly completes the sentence.

Question # 23

Options:

Question 24

In a Core eDiscovery workflow, what should you do before you can search for content?

Options:

Create an eDiscovery hold.

Run Express Analysis.

Configure attorney-client privilege detection.

Export and download results.

Question 25

ON NO: 27 HOTSPOT

Select the answer that correctly completes the sentence.

Question # 25

Options:

Question 26

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 26

Options:

Question 27

You need to identify which cloud service models place the most responsibility on the customer in a shared responsibility model.

in which order should you list the service models from the most customer responsibility (on the top) to the least customer responsibility (on the bottom)? To answer, move all models from the list of models to the answer area and arrange them in the correct order.

Question # 27

Options:

Question 28

Select the answer that correctly completes the sentence.

Question # 28

Options:

Question 29

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 29

Options:

Question 30

Which Microsoft Purview solution can be used to identify data leakage?

Options:

insider risk management

Compliance Manager

communication compliance

eDiscovery

Question 31

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 31

Options:

Question 32

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 32

Options:

Question 33

What should you use to ensure that the members of an Azure Active Directory group use multi-factor authentication (MFA) when they sign in?

Options:

Azure Active Directory (Azure AD) Identity Protection

a conditional access policy

Azure role-based access control (Azure RBAC)

Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Question 34

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Question # 34

Options:

Question 35

Select the answer that correctly completes the sentence.

Question # 35

Options:

Question 36

What can you use to provide a user with a two-hour window to complete an administrative task in Azure?

Options:

Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Azure Multi-Factor Authentication (MFA)

Azure Active Directory (Azure AD) Identity Protection

conditional access policies

Question 37

Which service includes the Attack simulation training feature?

Options:

Question 38

Select the answer that correctly completes the sentence.

Question # 38

Options:

Question 39

Which solution performs security assessments and automatically generates alerts when a vulnerability is found?

Options:

cloud security posture management (CSPM)

DevSecOps

cloud workload protection platform (CWPP)

security information and event management (SIEM)

Question 40

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Question # 40

Options:

Question 41

Select the answer that correctly completes the sentence.

Question # 41

Options:

Question 42

You have an Azure subscription that contains multiple resources.

You need to assess compliance and enforce standards for the existing resources.

What should you use?

Options:

the Anomaly Detector service

Microsoft Sentinel

Azure Blueprints

Azure Policy

Question 43

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 43

Options:

Question 44

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 44

Options:

Question 45

Select the answer that correctly completes the sentence.

Question # 45

Options:

Question 46

NO: 73 HOTSPOT

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 46

Options:

Question 47

In a hybrid identity model, what can you use to sync identities between Active Directory Domain Services (AD DS) and Azure Active Directory (Azure AD)?

Options:

Active Directory Federation Services (AD FS)

Azure Sentinel

Azure AD Connect

Azure Ad Privileged Identity Management (PIM)

Question 48

What Microsoft Purview feature can use machine learning algorithms to detect and automatically protect sensitive items?

Options:

eDiscovery

Data loss prevention

Information risks

Communication compliance

Question 49

Which Azure Active Directory (Azure AD) feature can you use to restrict Microsoft Intune-managed devices from accessing corporate resources?

Options:

network security groups (NSGs)

Azure AD Privileged Identity Management (PIM)

conditional access policies

resource locks

Question 50

Select the answer that correctly completes the sentence.

Question # 50

Options:

Question 51

Which three authentication methods can be used by Azure Multi-Factor Authentication (MFA)? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Options:

phone call

text message (SMS)

email verification

Microsoft Authenticator app

security question

Question 52

Match the Microsoft 365 insider risk management workflow step to the appropriate task.

To answer, drag the appropriate step from the column on the left to its task on the right. Each step may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Question # 52

Options:

Question 53

You are evaluating the compliance score in Microsoft Purview Compliance Manager.

Match the compliance score action subcategories to the appropriate actions.

To answer, drag the appropriate action subcategory from the column on the left to its action on the right. Each action subcategory may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Question # 53

Options:

Question 54

Which Microsoft 365 compliance feature can you use to encrypt content automatically based on specific conditions?

Options:

Content Search

sensitivity labels

retention policies

eDiscovery

Question 55

Select the answer that correctly completes the sentence.

Question # 55

Options:

Question 56

Select the answer that correctly completes the sentence.

Question # 56

Options:

Question 57

Which three tasks can be performed by using Azure Active Directory (Azure AD) Identity Protection? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Options:

Configure external access for partner organizations.

Export risk detection to third-party utilities.

Automate the detection and remediation of identity based-risks.

Investigate risks that relate to user authentication.

Create and automatically assign sensitivity labels to data.

Question 58

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 58

Options:

Question 59

Which compliance feature should you use to identify documents that are employee resumes?

Options:

pre-trained classifiers

Content explorer

Activity explorer

eDiscovery

Question 60

Which portal contains the solution catalog?

Options:

Microsoft 365 Apps admin center

Microsoft 365 Defender portal

Microsoft 365 admin center

Microsoft Purview compliance portal

Question 61

Select the answer that correctly completes the sentence.

Question # 61

Options:

Load More SC-900 Questions

Summer Sale- Special Discount Limited Time 65% Offer - Ends in 0d 00h 00m 00s - Coupon code: netdisc

Activedumpsnet Logo

Activedumpsnet Navigation

Activedumpsnet Slider

Microsoft SC-900 Microsoft Security Compliance and Identity Fundamentals Exam Practice Test

Microsoft Security Compliance and Identity Fundamentals Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options: