CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. SC-300

Free SC-300 Exam Braindumps (page: 28)

Page 27 of 103
PDF with 419 Questions

You have an Azure Active Directory (Azure AD) tenant.
You open the risk detections report.
Which risk detection type is classified as a user risk?

  1. impossible travel
  2. anonymous IP address
  3. atypical travel
  4. leaked credentials

Answer(s): D

Explanation:

Leaked credentials indicates that the user's valid credentials have been leaked.
Note:
There are several versions of this question in the exam. The question can have other incorrect answer options, including the following:
- password spray
- malicious IP address
- unfamiliar sign-in properties


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/concept-identity-protection-risks



You have a Microsoft Entra tenant that contains the users shown in the following table.
The tenant has the authentication methods shown in the following table.
Which users will sign in to cloud apps by using number matching?

  1. User1 only
  2. User2 only
  3. User3 only
  4. User1 and User2 only
  5. User2 and User3 only

Answer(s): A



You have a Microsoft 365 tenant.
All users have computers that run Windows 10. Most computers are company-owned and joined to Azure Active Directory (Azure AD). Some computers are user- owned and are only registered in Azure AD.
You need to prevent users who connect to Microsoft SharePoint Online on their user-owned computer from downloading or syncing files. Other users must NOT be restricted.
Which policy type should you create?

  1. a Microsoft Cloud App Security activity policy that has Microsoft Office 365 governance actions configured
  2. an Azure AD conditional access policy that has session controls configured
  3. an Azure AD conditional access policy that has client apps conditions configured
  4. a Microsoft Cloud App Security app discovery policy that has governance actions configured

Answer(s): B


Reference:

https://docs.microsoft.com/en-us/cloud-app-security/proxy-intro-aad



You have an Active Directory domain that syncs to an Azure Active Directory (Azure AD) tenant.
The on-premises network contains a VPN server that authenticates to the on-premises Active Directory domain. The VPN server does NOT support Azure Multi
Factor Authentication (MFA).
You need to recommend a solution to provide Azure MFA for VPN connections.
What should you include in the recommendation?

  1. Azure AD Application Proxy
  2. an Azure AD Password Protection proxy
  3. Network Policy Server (NPS)
  4. a pass-through authentication proxy

Answer(s): C


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension-vpn






Post your Comments and Discuss Microsoft SC-300 exam with other Community members:

SC-300 Exam Discussions & Posts