SC-100 Exam Question 26

You have a Microsoft 365 subscription that contains a group named Group1. The subscription is linked to a Microsoft Entra ID P1 tenant.
You have an external software as a service (SaaS) application named App1. App1 is managed by using a web-based admin portal and supports the use of Microsoft Entra ID credentials.
You need to ensure that only the members of Group1 who sign in from Microsoft Entra joined devices can access the admin portal of App1.
What should you create first in Microsoft Entra?
  • SC-100 Exam Question 27

    Hotspot Question
    You are creating the security recommendations for an Azure App Service web app named App1.
    App1 has the following specifications:
    - Users will request access to App1 through the My Apps portal. A human resources manager will approve the requests.
    - Users will authenticate by using Azure Active Directory (Azure AD)
    user accounts.
    You need to recommend an access security architecture for App1.
    What should you include in the recommendation? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

    SC-100 Exam Question 28

    You have an Azure subscription that contains several storage accounts. The storage accounts are accessed by legacy applications that are authenticated by using access keys. You need to recommend a solution to prevent new applications from obtaining the access keys of the storage accounts. The solution must minimize the impact on the legacy applications.
    What should you include in the recommendation?
  • SC-100 Exam Question 29

    You are creating an application lifecycle management process based on the Microsoft Security Development Lifecycle (SDL).
    You need to recommend a security standard for onboarding applications to Azure. The standard will include recommendations for application design, development, and deployment.
    What should you include during the application design phase?
  • SC-100 Exam Question 30

    A customer is deploying Docker images to 10 Azure Kubernetes Service (AKS) resources across four Azure subscriptions. You are evaluating the security posture of the customer.
    You discover that the AKS resources are excluded from the secure score recommendations.
    You need to produce accurate recommendations and update the secure score.
    Which two actions should you recommend in Microsoft Defender for Cloud? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.