SC-100 Exam Question 16
Hotspot Question
You have multiple on-premises Hyper-V hosts that contain virtual machines. The virtual machines run Windows Server 2022.
You have an Azure subscription.
You need to recommend a solution to collect Security event logs from the virtual machines by using Microsoft Sentinel. The Solution must meet the following requirements:
- Leverage the Windows Security Events via AMA data connector.
- Ensure that only specific events are collected.
- Minimize costs.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one port.

You have multiple on-premises Hyper-V hosts that contain virtual machines. The virtual machines run Windows Server 2022.
You have an Azure subscription.
You need to recommend a solution to collect Security event logs from the virtual machines by using Microsoft Sentinel. The Solution must meet the following requirements:
- Leverage the Windows Security Events via AMA data connector.
- Ensure that only specific events are collected.
- Minimize costs.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one port.

SC-100 Exam Question 17
Hotspot Question
You have a Microsoft Entra tenant named contoso.com. You have 30 Azure subscriptions that are linked to contoso.com. The tenant contains the management groups shown in the following table.

You need to design a governance solution to manage access to all the Azure Storage accounts across the subscriptions. The solution must meet the following requirements:
- Use custom role-based access control (RBAC) to provide granular
access to control plane and data plane operations.
- Minimize administrative effort.
At which scope should you assign the roles, and what is the minimum number of assignments per role? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You have a Microsoft Entra tenant named contoso.com. You have 30 Azure subscriptions that are linked to contoso.com. The tenant contains the management groups shown in the following table.

You need to design a governance solution to manage access to all the Azure Storage accounts across the subscriptions. The solution must meet the following requirements:
- Use custom role-based access control (RBAC) to provide granular
access to control plane and data plane operations.
- Minimize administrative effort.
At which scope should you assign the roles, and what is the minimum number of assignments per role? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-100 Exam Question 18
Your company has a Microsoft 365 E5 subscription.
Users use Microsoft Teams, Exchange Online, SharePoint Online, and OneDrive for sharing and collaborating.
The company identifies protected health information (PHI) within stored documents and communications.
What should you recommend using to prevent the PHI from being shared outside the company?
Users use Microsoft Teams, Exchange Online, SharePoint Online, and OneDrive for sharing and collaborating.
The company identifies protected health information (PHI) within stored documents and communications.
What should you recommend using to prevent the PHI from being shared outside the company?
SC-100 Exam Question 19
You are a cloud security administrator, and you have been tasked with providing a security solution for an Azure App Service, a web app named web-App0. Web-App0 has the following requirements:
Users will request access to web-App0 through the organization portal, and an internal stakeholder will approve.
Authentication for users must be provided by Azure AD.
What would be your recommended approach to enable AD authentication to web-app0?
Users will request access to web-App0 through the organization portal, and an internal stakeholder will approve.
Authentication for users must be provided by Azure AD.
What would be your recommended approach to enable AD authentication to web-app0?
SC-100 Exam Question 20
Your company plans to apply the Zero Trust Rapid Modernization Plan (RaMP) to its IT environment.
You need to recommend the top three modernization areas to prioritize as part of the plan.
Which three areas should you recommend based on RaMP? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
You need to recommend the top three modernization areas to prioritize as part of the plan.
Which three areas should you recommend based on RaMP? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.



