SC-100 Exam Question 46
Your company has an on-premise network in Seattle and an Azure subscription. The on-premises network contains a Remote Desktop server.
The company contracts a third-party development firm from France to develop and deploy resources to the virtual machines hosted in the Azure subscription. Currently, the firm establishes an RDP connection to the Remote Desktop server. From the Remote Desktop connection, the firm can access the virtual machines hosted in Azure by using custom administrative tools installed on the Remote Desktop server. All the traffic to the Remote Desktop server is captured by a firewall, and the firewall only allows specific connections from France to the server.
You need to recommend a modern security solution based on the Zero Trust model. The solution must minimize latency tor developers.
Which three actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
The company contracts a third-party development firm from France to develop and deploy resources to the virtual machines hosted in the Azure subscription. Currently, the firm establishes an RDP connection to the Remote Desktop server. From the Remote Desktop connection, the firm can access the virtual machines hosted in Azure by using custom administrative tools installed on the Remote Desktop server. All the traffic to the Remote Desktop server is captured by a firewall, and the firewall only allows specific connections from France to the server.
You need to recommend a modern security solution based on the Zero Trust model. The solution must minimize latency tor developers.
Which three actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
SC-100 Exam Question 47
Draga and Drop Question
Your client has implemented Microsoft Sentinel as its cloud-based Security Information and Event Management (SIEM). The client wants to maximize the value of their investment and has asked you how they can enhance the incident management lifecycle by cost-effectively detecting and responding to threats before they cause damage or disrupt their business.
You need to identify the Sentinel components that will help the client to reach this goal.
Which Sentinel tool should you recommend for each scenario? To answer, drag the appropriate tool to the correct incident management activity. Each tool may be used once, more than once, or not at all.

Your client has implemented Microsoft Sentinel as its cloud-based Security Information and Event Management (SIEM). The client wants to maximize the value of their investment and has asked you how they can enhance the incident management lifecycle by cost-effectively detecting and responding to threats before they cause damage or disrupt their business.
You need to identify the Sentinel components that will help the client to reach this goal.
Which Sentinel tool should you recommend for each scenario? To answer, drag the appropriate tool to the correct incident management activity. Each tool may be used once, more than once, or not at all.

SC-100 Exam Question 48
You have 50 Azure subscriptions.
You need to monitor resource in the subscriptions for compliance with the ISO 27001:2013 standards.
The solution must minimize the effort required to modify the list of monitored policy definitions for the subscriptions.
NOTE: Each correct selection is worth one point.
You need to monitor resource in the subscriptions for compliance with the ISO 27001:2013 standards.
The solution must minimize the effort required to modify the list of monitored policy definitions for the subscriptions.
NOTE: Each correct selection is worth one point.
SC-100 Exam Question 49
Hotspot Question
You have an Azure subscription. The subscription contains an Azure Bastion host and 100 virtual machines that run Windows Server 2022. The virtual machines have Microsoft Defender for Servers Plan 2 enabled.
You need to recommend a security solution for the virtual machines that meets the following requirements:
- Administrators must request RDP access to the virtual machines by
using the Azure portal.
- Remote Desktop sessions must be limited to a maximum of three hours.
- Agentless scanning must be scheduled to run on each virtual machine.
What should you recommend using? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You have an Azure subscription. The subscription contains an Azure Bastion host and 100 virtual machines that run Windows Server 2022. The virtual machines have Microsoft Defender for Servers Plan 2 enabled.
You need to recommend a security solution for the virtual machines that meets the following requirements:
- Administrators must request RDP access to the virtual machines by
using the Azure portal.
- Remote Desktop sessions must be limited to a maximum of three hours.
- Agentless scanning must be scheduled to run on each virtual machine.
What should you recommend using? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-100 Exam Question 50
You have an on-premises app named App1.
Remote users access App1 by using VPN connections.
You have a third-party software as a service (SaaS) app named App2.
You need to deploy Global Secure Access to manage access to App1 and App2.
What should you use for each app?
Remote users access App1 by using VPN connections.
You have a third-party software as a service (SaaS) app named App2.
You need to deploy Global Secure Access to manage access to App1 and App2.
What should you use for each app?


