Question No. 1

You have a Microsoft 365 subscription. You have an Azure subscription.

You need to implement a Microsoft Purview communication compliance solution for Microsoft Teams and Yammer. The solution must meet the following requirements:

* Assign compliance policies to Microsoft 365 groups based on custom Microsoft Exchange Online attributes.

* Minimize the number of compliance policies

* Minimize administrative effort

What should you include in the solution?

AAzure AD Information Protection labels

BMicrosoft 365 Defender user tags

Cadaptive scopes

Dadministrative units

Show Answer

Correct Answer: C

Question No. 2

You have an Azure subscription that has Microsoft Defender for Cloud enabled.

You need to enforce ISO 27001:2013 standards for new resources deployed to the subscription. The solution must ensure that noncompliant resources are automatically detected.

What should you use?

AAzure Blueprints

Bthe regulatory compliance dashboard in Defender for Cloud

CAzure role-based access control (Azure RBAC)

DAzure Policy

Show Answer

Correct Answer: D

Question No. 3

You have an on-premises server that runs Windows Server and contains a Microsoft SQL Server database named DB1.

You plan to migrate DB1 to Azure.

You need to recommend an encrypted Azure database solution that meets the following requirements:

* Minimizes the risks of malware that uses elevated privileges to access sensitive data

* Prevents database administrators from accessing sensitive data

* Enables pattern matching for server-side database operations

* Supports Microsoft Azure Attestation

* Uses hardware-based encryption

What should you include in the recommendation?

ASQL Server on Azure Virtual Machines with virtualization-based security (VBS) enclaves

BAzure SQL Database with virtualization-based security (VBS) enclaves

CAzure SQL Managed Instance that has Always Encrypted configured

DAzure SQL Database with Intel Software Guard Extensions (Intel SGX) enclaves

Show Answer

Correct Answer: D

Question No. 4

You plan to deploy 20 Azure Kubernetes Service (AKS) clusters. The cluster configuration will be managed declaratively by using Kubernetes manifest files stored in Azure Repos.

You need to recommend a solution to ensure that the configuration of all the clusters remains consistent by using the manifest files stored in Azure Repos.

What should you include in the recommendation?

AGatekeeper

BDependency Tracker

CDependency

DFlux

Show Answer

Correct Answer: D

Question No. 5

You have a Microsoft 365 tenant that contains 5,000 users and 5,000 Windows 11 devices. All users are assigned Microsoft 365 5 licenses and the Microsoft Defender Vulnerability Management add-on. The Windows 11 devices are managed by using Microsoft Intune and Microsoft Defender for Endpoint. The Windows 11 devices are configured during deployment to comply with Center for Internet Security (CIS) benchmarks for Windows 11.

You need to recommend a compliance solution for the Windows 11 devices. The solution must identify devices that were modified and no longer comply with the CIS benchmarks.

What should you include in the recommendation?

AAuthenticated scan for Windows in Microsoft Defender Vulnerability Management

BMicrosoft Secure Score for Devices in Defender for Endpoint

Cattack surface reduction (ASR) rules in Defender for Endpoint

Dsecurity baselines assessments in Microsoft Defender Vulnerability Management

Show Answer

Correct Answer: D

Free Microsoft SC-100 Exam Actual Questions

The questions for SC-100 were last updated On May 3, 2024