Winter Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: v4s65

SC-300 Exam Dumps - Microsoft Identity and Access Administrator

Go to page:
Question # 4

You have an Azure AD tenant that contains the users shown in the following table.

You have the locations shown in the following table.

The tenant contains a named location that Das the following configurations:

• Name: location1

• Mark as trusted location: Enabled

• IPv4 range: 10.10.0.0/16

MFA has a trusted iPad dress range of 193.17.17.0/24.

You have a Conditional Access policy that has the following settings:

• Name: CAPolicy1

• Assignments

o Users or workload identities: Group 1

o Cloud apps or actions: All cloud apps

* Conditions

* Locations All trusted locations

• Access controls

o Gant

• Grant access: Require multi-factor authentication

© Session: 0 controls selected

• Enable policy: On

For each of the following statements select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Full Access
Question # 5

Your company purchases 2 new Microsoft 365 ES subscription and an app named App.

You need to create a Microsoft Defender for Cloud Apps access policy for App1.

What should you do you first? (Choose Correct Answer based on Microsoft Identity and Access Administrator at microsoft.com)

A.

Configure a Token configuration for App1.

B.

Add an API permission for App1.

C.

Configure a Conditional Access policy to use app-enforced restrictions.

D.

Configure a Conditional Access policy to use Conditional Access App Control.

Full Access
Question # 6

You have a Microsoft 365 E5 subscription.

You need to create a dynamic user group that will include all the users that do NOT have a department defined in their user profile.

How should you complete the membership rule? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Full Access
Question # 7

You have an Azure subscription that contains an Azure SQL database named db1.

You deploy an Azure App Service web app named App1 that provide product information to users that connect to App1 anonymously.

You need to provide App1 with Access to db1. The solution must meet the following requirements:

* Credentials must only be available to App1.

* Administrative effort must be minimized.

Which type of credentials should you use?

A.

a user-assigned managed identity

B.

an Azure AD user account

C.

A SQL Server account

D.

a system-assigned managed identity

Full Access
Question # 8

You have an Azure Active Directory (Azure AD) tenant.

You need to review the Azure AD sign-in logs to investigate sign-ins that occurred in the past.

For how long does Azure AD store events in the sign-in logs?

A.

14 days

B.

30 days

C.

90 days

D.

365 days

Full Access
Go to page: