CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. SC-300

Free SC-300 Exam Braindumps (page: 27)

Page 26 of 103
PDF with 419 Questions

You configure a new Microsoft 365 tenant to use a default domain name of contoso.com.
You need to ensure that you can control access to Microsoft 365 resources by using conditional access policies.
What should you do first?

  1. Disable the User consent settings.
  2. Disable Security defaults.
  3. Configure a multi-factor authentication (MFA) registration policy.
  4. Configure password protection for Windows Server Active Directory.

Answer(s): B


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-security-defaults



You have a Microsoft 365 E5 subscription that contains the users shown in the following table.
You configure Microsoft Entra Internet Access.
Which users can manage Microsoft Entra Internet Access?

  1. User1 only
  2. User2 only
  3. User3 only
  4. User1 and User2 only
  5. User1, User2, and User3

Answer(s): B



Your company has a Microsoft 365 tenant.
The company has a call center that contains 300 users. In the call center, the users share desktop computers and might use a different computer every day. The call center computers are NOT configured for biometric identification.
The users are prohibited from having a mobile phone in the call center.
You need to require multi-factor authentication (MFA) for the call center users when they access Microsoft 365 services.
What should you include in the solution?

  1. a named network location
  2. the Microsoft Authenticator app
  3. Windows Hello for Business authentication
  4. FIDO2 tokens

Answer(s): D


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-passwordless



You have an Azure Active Directory (Azure AD) tenant named contoso.com.
All users who run applications registered in Azure AD are subject to conditional access policies.
You need to prevent the users from using legacy authentication.
What should you include in the conditional access policies to filter out legacy authentication attempts?

  1. a cloud apps or actions condition
  2. a user risk condition
  3. a client apps condition
  4. a sign-in risk condition

Answer(s): C


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/block-legacy-authentication






Post your Comments and Discuss Microsoft SC-300 exam with other Community members:

SC-300 Exam Discussions & Posts