CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. SC-300

Free SC-300 Exam Braindumps (page: 25)

Page 24 of 103
PDF with 419 Questions

You have an Azure subscription that contains a storage account named storage1.
You plan to deploy an app named App1 that will be hosted on multiple virtual machines. The virtual machines will authenticate to a third-party API by using secrets.
You need to recommend an authentication solution for the virtual machines. The solution must meet the following requirements:
• Securely store secrets.
• Ensure that credentials do NOT need to be stored in the App1 code.
• Ensure that the virtual machines can access Azure resources by using Microsoft Entra authentication
• Minimize administrative effort.
What should you include in the recommendation?

  1. user accounts and Storage Service Encryption
  2. user-assigned managed identities and Azure Key Vault
  3. user accounts and Azure Key Vault
  4. system assigned managed identities and Storage Service Encryption

Answer(s): B



HOTSPOT (Drag and Drop is not supported)
You have an Azure subscription named Sub1 that contains the resources shown in the following table.
Sub1 contains the managed identities shown in the following table.
Sub1 has the role-based access control (RBAC) role assignments shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.



  1. See Explanation section for answer.

Answer(s): A

Explanation:



You have an Azure subscription that contains an Azure Automation account named Automation1.
You need to grant Automation1 access to Azure resources. The solution must meet the following requirements:
• Ensure that any permissions granted to Automation1 are removed when the account is deleted.
• Minimize administrative effort.
What should you use?

  1. a client secret
  2. a system-assigned managed identity
  3. a certificate
  4. user-assigned managed identity

Answer(s): B



You have a Microsoft Entra tenant named contoso.com that contains an enterprise application named App1.
A contractor uses the credentials of user1@outlook.com.
You need to ensure that you can provide the contractor with access to App1. The contractor must be able to authenticate as user1@outlook.com.
What should you do?

  1. Add a custom domain name to contoso.com.
  2. Configure the External collaboration settings.
  3. Create a guest user account in contoso.com.
  4. Add a WS-Fed identity provider.

Answer(s): C






Post your Comments and Discuss Microsoft SC-300 exam with other Community members:

SC-300 Exam Discussions & Posts