SC-300 Exam Question 41
You have an Azure subscription named Sub1.
You plan to deploy Microsoft Entra Permissions Management.
You need to ensure that Permission Management can onboard Sub1. The solution must follow the principle of least privilege.
How should you complete the PowerShell command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You plan to deploy Microsoft Entra Permissions Management.
You need to ensure that Permission Management can onboard Sub1. The solution must follow the principle of least privilege.
How should you complete the PowerShell command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
SC-300 Exam Question 42
You have an Azure subscription that contains a user named User1. You onboard Microsoft Entra Permissions Management. You need to perform the following tasks:
* Identify all the accounts that are assigned the Global Administrator role permanently.
* Review the Permission Creep Index (PCI) of User1.
Which tab in Permissions Management should you use for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
* Identify all the accounts that are assigned the Global Administrator role permanently.
* Review the Permission Creep Index (PCI) of User1.
Which tab in Permissions Management should you use for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
SC-300 Exam Question 43
You have an Azure subscription named Sub1 that contains a resource group named RG1. RG1 contains an Azure Cosmos DB database named DB1 and an Azure Kubernetes Service (AKS) cluster named AKS1.
AKS1 uses a managed identity.
You need to ensure that AKS1 can access DB1. The solution must meet the following requirements:
* Ensure that AKS1 uses the managed identity to access DB1.
* Follow the principle of least privilege.
Which role should you assign to the managed identity of AKS1.
AKS1 uses a managed identity.
You need to ensure that AKS1 can access DB1. The solution must meet the following requirements:
* Ensure that AKS1 uses the managed identity to access DB1.
* Follow the principle of least privilege.
Which role should you assign to the managed identity of AKS1.
SC-300 Exam Question 44
Your company has a Microsoft 365 tenant.
The company has a call center that contains 300 users. In the call center, the users share desktop computers and might use a different computer every day. The call center computers are NOT configured for biometric identification.
The users are prohibited from having a mobile phone in the call center.
You need to require multi-factor authentication (MFA) for the call center users when they access Microsoft
365
services.
What should you include in the solution?
The company has a call center that contains 300 users. In the call center, the users share desktop computers and might use a different computer every day. The call center computers are NOT configured for biometric identification.
The users are prohibited from having a mobile phone in the call center.
You need to require multi-factor authentication (MFA) for the call center users when they access Microsoft
365
services.
What should you include in the solution?
SC-300 Exam Question 45
You have a Microsoft Entra tenant that contains the users shown in the following table.
You have an administrative unit named Au1.Group1, User2, and User3are members of Au1.
User5 is assigned the User Administrator role for Au1.
For which users can User5 reset passwords?
You have an administrative unit named Au1.Group1, User2, and User3are members of Au1.
User5 is assigned the User Administrator role for Au1.
For which users can User5 reset passwords?