SC-100 Exam Question 6
Hotspot Question
You have a multicloud environment that contains an Azure subscription and an Amazon Web Services (AWS) subscription.
You need to design a solution that meets the following requirements:
- Dynamically discovers the permissions granted to and used by each
user
- Generates an aggregated metric that evaluates the level of risk
associated with the number of unused or excessive permissions
- Automatically revokes permissions that have been unused for 90 days
- Supports granting on-demand permissions for limited periods of time
- Minimizes administrative effort
Which cloud service should you use for each subscription? To answer, select the options in the answer area.
NOTE: Each correct answer is worth one point.

You have a multicloud environment that contains an Azure subscription and an Amazon Web Services (AWS) subscription.
You need to design a solution that meets the following requirements:
- Dynamically discovers the permissions granted to and used by each
user
- Generates an aggregated metric that evaluates the level of risk
associated with the number of unused or excessive permissions
- Automatically revokes permissions that have been unused for 90 days
- Supports granting on-demand permissions for limited periods of time
- Minimizes administrative effort
Which cloud service should you use for each subscription? To answer, select the options in the answer area.
NOTE: Each correct answer is worth one point.

SC-100 Exam Question 7
Drag and Drop Question
You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1.
You have a Conditional Access policy named Policy1 that only allows workload identities from trusted locations to access SharePoint Online.
You plan to move all business-sensitive information to Site1.
You need to ensure that CAPolicy1 applies to Site1 only.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: More than one order of answer choices is correct. You will receive credit for any of the correct orders you select.

You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1.
You have a Conditional Access policy named Policy1 that only allows workload identities from trusted locations to access SharePoint Online.
You plan to move all business-sensitive information to Site1.
You need to ensure that CAPolicy1 applies to Site1 only.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: More than one order of answer choices is correct. You will receive credit for any of the correct orders you select.

SC-100 Exam Question 8
Hotspot Question
You have an Azure SQL database named DB1 that contains customer information.
A team of database administrators has full access to DB1.
To address customer inquiries, operators in the customer service department use a custom web app named App1 to view the customer information.
You need to design a security strategy for DB1. The solution must meet the following requirement:
- When the database administrators access DB1 by using SQL management
tools, they must be prevented from viewing the content of the
CreditCard attribute of each customer record.
- When the operators view customer records in App1, they must view only the last four digits of the CreditCard attribute.
What should you include in the design? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You have an Azure SQL database named DB1 that contains customer information.
A team of database administrators has full access to DB1.
To address customer inquiries, operators in the customer service department use a custom web app named App1 to view the customer information.
You need to design a security strategy for DB1. The solution must meet the following requirement:
- When the database administrators access DB1 by using SQL management
tools, they must be prevented from viewing the content of the
CreditCard attribute of each customer record.
- When the operators view customer records in App1, they must view only the last four digits of the CreditCard attribute.
What should you include in the design? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-100 Exam Question 9
You have a Microsoft Entra tenant that contains 10 Windows 11 devices and two groups named Group1 and Group2. The Windows 11 devices are joined to the Microsoft Entra tenant and are managed by using Microsoft Intune.
You are designing a privileged access strategy based on the rapid modernization plan (RaMP).
The strategy will include the following configurations:
- Each user in Group1 will be assigned a Windows 11 device that will be configured as a privileged access device.
- The Security Administrator role will be mapped to the privileged
access security level.
- The users in Group1 will be assigned the Security Administrator role.
- The users in Group2 will manage the privileged access devices.
You need to configure the local Administrators group for each privileged access device. The solution must follow the principle of least privilege.
What should you include in the solution?
You are designing a privileged access strategy based on the rapid modernization plan (RaMP).
The strategy will include the following configurations:
- Each user in Group1 will be assigned a Windows 11 device that will be configured as a privileged access device.
- The Security Administrator role will be mapped to the privileged
access security level.
- The users in Group1 will be assigned the Security Administrator role.
- The users in Group2 will manage the privileged access devices.
You need to configure the local Administrators group for each privileged access device. The solution must follow the principle of least privilege.
What should you include in the solution?
SC-100 Exam Question 10
Drag and Drop Question
Your company wants to optimize ransomware incident investigations.
You need to recommend a plan to investigate ransomware incidents based on the Microsoft Detection and Response Team (DART) approach.
Which three actions should you recommend performing in sequence in the plan? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Your company wants to optimize ransomware incident investigations.
You need to recommend a plan to investigate ransomware incidents based on the Microsoft Detection and Response Team (DART) approach.
Which three actions should you recommend performing in sequence in the plan? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Premium Bundle
Newest SC-100 Exam PDF Dumps shared by Actual4test.com for Helping Passing SC-100 Exam! Actual4test.com now offer the updated SC-100 exam dumps, the Actual4test.com SC-100 exam questions have been updated and answers have been corrected get the latest Actual4test.com SC-100 pdf dumps with Exam Engine here:
(298 Q&As Dumps, 30%OFF Special Discount: Freepdfdumps)




