SC-900 Exam Dumps - Microsoft Security Compliance and Identity Fundamentals

Question # 4

Which Microsoft 365 feature can you use to restrict communication and the sharing of information between members of two departments at your organization?

sensitivity label policies

Customer Lockbox

information Barriers

Privileged Access Management (PAM)

Full Access

Question # 5

You have an Azure subscription that contains multiple resources.

You need to assess compliance and enforce standards for the existing resources.

What should you use?

the Anomaly Detector service

Microsoft Sentinel

Azure Blueprints

Azure Policy

Full Access

Question # 6

What is the purpose of Azure Active Directory (Azure AD) Password Protection?

to control how often users must change their passwords

to identify devices to which users can sign in without using multi-factor authentication (MFA)

to encrypt a password by using globally recognized encryption standards

to prevent users from using specific words in their passwords

Full Access

Question # 7

Select the answer that correctly completes the sentence.

Full Access

Question # 8

Select the answer that correctly completes the sentence.

Full Access

Question # 9

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Full Access

Question # 10

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Full Access

Question # 11

Microsoft 365 Endpoint data loss prevention (Endpoint DLP) can be used on which operating systems?

Windows 10 and newer only

Windows 10 and newer and Android only

Windows 10 and newer and macOS only

Windows 10 and newer, Android, and macOS

Full Access

Question # 12

Select the answer that correctly completes the sentence.

Full Access

Question # 13

Which Azure Active Directory (Azure AD) feature can you use to evaluate group membership and automatically remove users that no longer require membership in a group?

access reviews

managed identities

conditional access policies

Azure AD Identity Protection

Full Access

Question # 14

You are evaluating the compliance score in Microsoft Purview Compliance Manager.

Match the compliance score action subcategories to the appropriate actions.

To answer, drag the appropriate action subcategory from the column on the left to its action on the right. Each action subcategory may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Full Access

Question # 15

You have an Azure subscription.

You need to implement approval-based, tiProme-bound role activation.

What should you use?

Windows Hello for Business

Azure Active Directory (Azure AD) Identity Protection

access reviews in Azure Active Directory (Azure AD)

Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Full Access

Question # 16

Select the answer that correctly completes the sentence.

Full Access

Question # 17

Which type of identity is created when you register an application with Active Directory (Azure AD)?

a user account

a user-assigned managed identity

a system-assigned managed identity

a service principal

Full Access

Question # 18

Select the answer that correctly completes the sentence.

Full Access

Question # 19

Select the answer that correctly completes the sentence.

Full Access

Question # 20

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 21

In a hybrid identity model, what can you use to sync identities between Active Directory Domain Services (AD DS) and Azure Active Directory (Azure AD)?

Active Directory Federation Services (AD FS)

Azure Sentinel

Azure AD Connect

Azure Ad Privileged Identity Management (PIM)

Full Access

Question # 22

What can you use to provision Azure resources across multiple subscriptions in a consistent manner?

Microsoft Defender for Cloud

Azure Blueprints

Microsoft Sentinel

Azure Policy

Full Access

Question # 23

Which three statements accurately describe the guiding principles of Zero Trust? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Define the perimeter by physical locations.

Use identity as the primary security boundary.

Always verity the permissions of a user explicitly.

Always assume that the user system can be breached.

Use the network as the primary security boundary.

Full Access

Question # 24

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Full Access

Question # 25

What is an example of encryption at rest?

encrypting communications by using a site-to-site VPN

encrypting a virtual machine disk

accessing a website by using an encrypted HTTPS connection

sending an encrypted email

Full Access

Question # 26

Which Microsoft 365 feature can you use to restrict users from sending email messages that contain lists of customers and their associated credit card numbers?

retention policies

data loss prevention (DLP) policies

conditional access policies

information barriers

Full Access

Question # 27

In the shared responsibility model for an Azure deployment, what is Microsoft solely responsible for managing?

the management of mobile devices

the permissions for the user data stored in Azure

the creation and management of user accounts

the management of the physical hardware

Full Access

Question # 28

Which three authentication methods can be used by Azure Multi-Factor Authentication (MFA)? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

phone call

text message (SMS)

email verification

Microsoft Authenticator app

security question

Full Access

Question # 29

Select the answer that correctly completes the sentence.

Full Access

Question # 30

Select the answer that correctly completes the sentence.

Full Access

Question # 31

Match the types of compliance score actions to the appropriate tasks.

To answer. drag the appropriate action type from the column on the left to its task on the right. Each type may be used once. more than once, or not at all.

NOTE: Each correct match is worth one point.

Full Access

Question # 32

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 33

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 34

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 35

Microsoft 365 Endpoint data loss prevention (Endpoint DLP) can be used on which operating systems?

Windows 10 and iOS only

Windows 10 and Android only

Windows 10, Android, and iOS

Windows 10 only

Full Access

Question # 36

Select the answer that correctly completes the sentence.

Full Access

Question # 37

Which compliance feature should you use to identify documents that are employee resumes?

pre-trained classifiers

Content explorer

Activity explorer

eDiscovery

Full Access

Question # 38

What should you use to ensure that the members of an Azure Active Directory group use multi-factor authentication (MFA) when they sign in?

Azure Active Directory (Azure AD) Identity Protection

a conditional access policy

Azure role-based access control (Azure RBAC)

Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Full Access

Question # 39

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 40

Select the answer that correctly completes the sentence.

Full Access

Question # 41

Select the answer that correctly completes the sentence.

Full Access

Question # 42

What feature supports email as a method of authenticating users?

Microsoft Entra ID Protection

Microsoft Entra Multi-Factor Authentication (MFA)

self-service password reset (SSPR)

Microsoft Entra Password Protection

Full Access

Question # 43

What can be created in Active Directory Domain Services (AD DS)?

line-of-business (106) applications that require modem authentication

mob devices

computer accounts

software as a service (SaaS) applications that require modem authentication

Full Access

Question # 44

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Full Access

Question # 45

What can you use to view the Microsoft Secure Score for Devices?

Microsoft Defender for Cloud Apps

Microsoft Defender for Endpoint

Microsoft Defender for Identity

Microsoft Defender for Office 365

Full Access

Answer:

Explanation:

Microsoft Secure Score for Devices

Artikel

12.05.2022

3Â Minuten Lesedauer

Applies to:

Microsoft Defender for Endpoint Plan 2

Microsoft Defender Vulnerability Management

Microsoft 365 Defender

Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

To sign up for the Defender Vulnerability Management public preview or if you have any questions, contact us (mdvmtrial@microsoft.com).

Already have Microsoft Defender for Endpoint P2? Sign up for a free trial of the Defender Vulnerability Management Add-on.

Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices.

Your score for devices is visible in the Defender Vulnerability Management dashboard of the Microsoft 365 Defender portal. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:

Application

Operating system

Network

Accounts

Security controls

Select a category to go to the Security recommendations page and view the relevant recommendations.

Turn on the Microsoft Secure Score connector

Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.

Changes might take up to a few hours to reflect in the dashboard.

In the navigation pane, go to Settings > Endpoints > General > Advanced features

Scroll down to Microsoft Secure Score and toggle the setting to On.

Select Save preferences.

How it works

Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations which might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.

The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process. It is aggregated with configuration discovery assessments that continuously:

Compare collected configurations to the collected benchmarks to discover misconfigured assets

Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction)

Collect and maintain best practice configuration benchmarks (vendors, security feeds, internal research teams)

Collect and monitor changes of security control configuration state from all assets

Question # 46

What are two reasons to deploy multiple virtual networks instead of using just one virtual network? Each correct answer presents a complete solution.

NOTE; Each correct selection is worth one point.

to separate the resources for budgeting

to meet Governance policies

to isolate the resources

to connect multiple types of resources

Full Access

Question # 47

Select the answer that correctly completes the sentence.

Full Access

Question # 48

What is a use case for implementing information barrier policies in Microsoft 365?

to restrict unauthenticated access to Microsoft 365

to restrict Microsoft Teams chats between certain groups within an organization

to restrict Microsoft Exchange Online email between certain groups within an organization

to restrict data sharing to external email recipients

Full Access

Question # 49

Select the answer that correctly completes the sentence.

Full Access

Question # 50

Select the answer that correctly completes the sentence.

Full Access

Question # 51

Match the Microsoft 365 insider risk management workflow step to the appropriate task.

To answer, drag the appropriate step from the column on the left to its task on the right. Each step may be used once, more than once, or not at all.

NOTE: Each correct match is worth one point.

Full Access

Question # 52

What can you use to ensure that all the users in a specific group must use multi-factor authentication (MFA) to sign in to Azure AD?

Azure Policy

a communication compliance policy

a Conditional Access policy

a user risk policy

Full Access

Question # 53

Which service includes the Attack simulation training feature?

Full Access

Question # 54

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point

Full Access

Question # 55

Which Microsoft Purview data classification type supports the use of regular expressions?

exact data match (EDM)

fingerprint classifier

sensitive information types (SlTs)

trainable classifier

Full Access

Question # 56

Select the answer that correctly completes the sentence.

Full Access

Question # 57

Select the answer that correctly completes the sentence.

Full Access

Hot Exams

ADM-201 Dumps

Platform-App-Builder Dumps

AZ-500 Dumps

350-701 Dumps

SY0-601 Dumps

NCSE-Core Dumps

PDP9 Dumps

DP-203 Dumps

AZ-700 Dumps

NSE7_EFW-7.0 Dumps

Integration-Architect Dumps

CS0-003 Dumps

Winter Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: v4s65

SC-900 Exam Dumps - Microsoft Security Compliance and Identity Fundamentals

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Explanation:

Answer:

Explanation:

Answer:

Answer:

Answer:

Answer:

Answer:

Explanation: