Viewing Page 7 of 66 pages.

Download PDF version with 276 Questions

QUESTION: 25

You have an on-premises network and a Microsoft 365 subscription.
You are designing a Zero Trust security strategy.
Which two security controls should you include as part of the Zero Trust solution? Each correct answer presents part of the solution.
NOTE: Each correct answer is worth one point.

Always allow connections from the on-premises network.
Disable passwordless sign-in for sensitive accounts.
Block sign-in attempts from unknown locations.
Block sign-in attempts from noncompliant devices.

Answer(s): C,D

Reveal Solution Next Question

QUESTION: 26

You are designing a ransomware response plan that follows Microsoft Security Best Practices.
You need to recommend a solution to minimize the risk of a ransomware attack encrypting local user files.
What should you include in the recommendation?

Windows Defender Device Guard
Microsoft Defender for Endpoint
Azure Files
BitLocker Drive Encryption (BitLocker)
protected folders

Answer(s): E

Reveal Solution Next Question

QUESTION: 27

You have an Azure AD tenant that syncs with an Active Directory Domain Services (AD DS) domain.
You are designing an Azure DevOps solution to deploy applications to an Azure subscription by using continuous integration and continuous deployment (CI/CD) pipelines.
You need to recommend which types of identities to use for the deployment credentials of the service connection. The solution must follow DevSecOps best practices from the Microsoft Cloud Adoption Framework for Azure.
What should you recommend?

a managed identity in Azure
an Azure AD user account that has role assignments in Azure AD Privileged Identity Management (PIM)
a group managed service account (gMSA)
an Azure AD user account that has a password stored in Azure Key Vault

Answer(s): A

Reveal Solution Next Question

QUESTION: 28

You have an Azure Kubernetes Service (AKS) cluster that hosts Linux nodes.
You need to recommend a solution to ensure that deployed worker nodes have the latest kernel updates. The solution must minimize administrative effort.
What should you recommend?

The nodes must restart after the updates are applied.
The updates must first be applied to the image used to provision the nodes.
The AKS cluster version must be upgraded.

Answer(s): B

Reveal Solution Next Question

Viewing page 8 of 66
Viewing questions 25 - 28 out of 276 questions

Post your Comments and Discuss Microsoft SC-100 exam with other Community members:

Comments:

Name:

Exam Discussions & Posts

Bhuru Commented on June 18, 2025
Question 107: The answer is A - Microsoft Defender for Identity, because it is designed to monitor on-premises AD for security threats
Anonymous

Mahlodi Commented on June 15, 2025
I will help
Anonymous

Mads Commented on June 12, 2025
Question 20: You need to protect against the following external threats of an attack chain: • An attacker attempts to exfiltrate data to external websites. • An attacker attempts lateral movement across domain-joined computers. The first answer should be Defender for Cloud Apps
DENMARK

Bhuru Commented on June 03, 2025
Question 104. the answer should be D - Microsoft Entra Permissions Managament since its designed to provide visibility and management of permissions across other cloud platforms
Anonymous

Bhuru Commented on June 03, 2025
Good study dumps, highly recommend
Anonymous

BotnetSlayer Commented on March 15, 2025
Exactly what I was looking for. The questions for this exam.
Anonymous

John Helper Commented on March 05, 2025
Good collection, will definitely help
Anonymous

Thabo Commented on February 11, 2025
Fantastic study package.
Anonymous

Gordon Commented on March 30, 2024
Fantastic study package. Well worth the cost. I prepared me to pass my exam.
GERMANY

Ted Commented on March 14, 2024
To all those folks out there... The questions in this exam dumps is valid and almost same as in the exam. However, I found about 3 to 4 questions which did not have the complete answers. But the Explanation section helped a lot to clarify them.
UNITED KINGDOM

Ashford Domah Asante Commented on February 13, 2024
I appreciate the accompanying notes and references. Can always make reference on the internet to double check.
Anonymous

NA Commented on October 04, 2023
Spot on, good material.
Anonymous

Darrell Commented on April 23, 2023
I appreciate the quick reply in providing me the updated version.
NETHERLANDS

Carrie Commented on March 18, 2023
This prep guide is like a secret cheat code - Passed my exam with flying colors.
UNITED STATES

CRAIG Commented on March 17, 2023
I could not have prepared for my test without these dumps - they were spot-on with the real exam questions.
UNITED KINGDOM

Himavan Commented on January 22, 2023
The questions are good and helpful but I suggest you organize them by topic.
INDIA

John Commented on August 16, 2022
Passed the exam. This is valid. Cheersss!
UNITED KINGDOM

Matthew Commented on July 27, 2022
This study guide package is very good if you want to pass the certification exam. For deep learning I suggest other souces as this package only contains questions which are very similar to real exam.
NETHERLANDS

Free SC-100 Exam Braindumps (page: 8)

QUESTION: 25

QUESTION: 26

QUESTION: 27

QUESTION: 28

Exam Discussions & Posts