SC-100 Exam Question 116
You have a Microsoft 365 E5 subscription.
You need to recommend a solution to add a watermark to email attachments that contain sensitive data. What should you include in the recommendation?
You need to recommend a solution to add a watermark to email attachments that contain sensitive data. What should you include in the recommendation?
SC-100 Exam Question 117
You have a multicloud environment that contains Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP) subscriptions.
You need to discover and review role assignments across the subscriptions.
What should you use?
You need to discover and review role assignments across the subscriptions.
What should you use?
SC-100 Exam Question 118
Hotspot Question
You have the resources shown in the following table.

You need to configure multi-user authorization (MUA) for Azure Backup to protect the Recovery Services vaults. The solution must maximize the security of the MUA configuration.
To which location should you deploy Resource Guard, and which role-based access control (RBAC) role should you assign to the team responsible for managing the backup of Resource Guard? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You have the resources shown in the following table.

You need to configure multi-user authorization (MUA) for Azure Backup to protect the Recovery Services vaults. The solution must maximize the security of the MUA configuration.
To which location should you deploy Resource Guard, and which role-based access control (RBAC) role should you assign to the team responsible for managing the backup of Resource Guard? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-100 Exam Question 119
Hotspot Question
You are designing the security architecture for a cloud-only environment.
You are reviewing the integration point between Microsoft 365 Defender and other Microsoft cloud services based on Microsoft Cybersecurity Reference Architectures (MCRA).
You need to recommend which Microsoft cloud services integrate directly with Microsoft 365 Defender and meet the following requirements:
- Enforce data loss prevention (DLP) policies that can be managed
directly from the Microsoft 365 Defender portal.
- Detect and respond to security threats based on User and Entity
Behavior Analytics (UEBA) with unified alerting.
What should you include in the recommendation for each requirement? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You are designing the security architecture for a cloud-only environment.
You are reviewing the integration point between Microsoft 365 Defender and other Microsoft cloud services based on Microsoft Cybersecurity Reference Architectures (MCRA).
You need to recommend which Microsoft cloud services integrate directly with Microsoft 365 Defender and meet the following requirements:
- Enforce data loss prevention (DLP) policies that can be managed
directly from the Microsoft 365 Defender portal.
- Detect and respond to security threats based on User and Entity
Behavior Analytics (UEBA) with unified alerting.
What should you include in the recommendation for each requirement? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-100 Exam Question 120
You have an Azure subscription. The subscription contains 100 virtual machines that run Linux on Windows Server. The subscription uses Microsoft Defender for Servers Plan 1.
You need to recommend a solution to identify and remediate virtual machines that have the following characteristics:
- Are NOT onboarded to Defender for Servers
- Are missing critical updates
- Have risky apps installed
The solution must minimize administrative effort.
What should you include in the recommendation?
You need to recommend a solution to identify and remediate virtual machines that have the following characteristics:
- Are NOT onboarded to Defender for Servers
- Are missing critical updates
- Have risky apps installed
The solution must minimize administrative effort.
What should you include in the recommendation?


