Practice Free SC-300 Exam Online Questions
You have an Azure AD tenant that contains the users shown in the following table.
The tenant has the authentication methods shown in the following table.
Which users will sign in to cloud apps by matching a number shown in the app with a number shown on their phone?
- A . User1 only
- B . User2 only
- C . User3 only
- D . User1 and User2 only
- E . User2 and User3 only
HOTSPOT
You have an Azure subscription named Sub1 that contains two resource groups named RG1 and RG2.
Sub1 contains the users shown in the following table.
Sub1 contains the resources shown in the following table.
You create the role-based access control (RBAC) role assignments shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No NOTE: Each correct selection is worth one point.
You have a Microsoft Entra tenant that contains a terms of use (ToU) named Terms1. You create a Conditional Access policy named Policy1 to deploy Terms1. You need to configure Policy1 to require users to accept Terms1.
Which settings should you configure for Policy1?
- A . Conditions
- B . Session
- C . Grant
- D . Target resources
You have an Azure AD tenant that uses Azure AD Identity Protection and contains the resources shown in the following table.
Azure Multi-Factor Authentication (MFA) is enabled for all users.
User1 triggers a medium severity alert that requires additional investigation.
You need to force User1 to reset his password the next time he signs in. the solution must minimize administrative effort.
What should you do?
- A . Configure a sign-in risk policy.
- B . Mark User1 as compromised.
- C . Reconfigure the user risk policy to trigger on medium or low severity.
- D . Reset the Azure MFA registration for User1.
HOTSPOT
You have an Azure AD tenant that contains the users shown in the following table.
You have the Azure AD Identity Protection policies shown in the following table.
You review the Risky users report and the Risky sign-ins report and perform actions for each user as shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 tenant.
You need to ensure that you tan view Azure Active Directory (Azure AD) audit log information by using Azure Monitor.
What should you do first?
- A . Run the Get-AzureADAuditDirectoryLogs cmdlet.
- B . Create an Azure AD workbook.
- C . Run the Set-AzureADTenantDetail cmdlet.
- D . Modify the Diagnostics settings for Azure AD.
HOTSPOT
You have an Azure subscription named Sub1 ilia1 contains a storage account named storage1.
You need to deploy two apps named App1 and App2 that will have the following configurations:
• App1 will be deployed as a registered app in Sub1.
• App1 will access storage1 by using Microsoft Entra authentication.
• App2 will access storage1 by using a single Microsoft Entra identity.
• App2 be hosted on two new virtual machines named VM1 and VM2.
The solution must minimize administrative effort.
Which type of identity will each app use to access storage1? To answer, select the appropriate options in the answer area.
You have a Microsoft 365 tenant.
In Microsoft Entra ID, you configure the terms of use.
You need to ensure that only users who accept the terms of use can access the resources in the tenant Other users must be denied access.
What should you configure?
- A . an access policy in Microsoft Defender for Cloud Apps
- B . a compliance policy in Microsoft Intune
- C . Terms and conditions in Microsoft Intune
- D . a conditional access policy in Microsoft Entra ID
You have an Azure subscription that contains a virtual machine named VM1.
VM1 has the following configurations:
• Private IP address: 172.16.1.5
• Public IP address 10fl.143.16U5
• System-assigned managed identity status: On You install an app named App1 on VM1.
You need to configure App1 to request a managed identity app-only access token.
Which IP address should App1 use for the request?
- A . 108.143.161.25
- B . 127.0.0.1
- C . 169.254.169.254
- D . 172.1615
SIMULATION
Task 4
You need to ensure that all users can consent to apps that require permission to read their user profile. Users must be prevented from consenting to apps that require any other permissions.