New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-100 Exam - Topic 5 Question 18 Discussion

Actual exam question for Microsoft's SC-100 exam
Question #: 18
Topic #: 5
[All SC-100 Questions]

You have an Azure subscription that contains virtual machines, storage accounts, and Azure SQL databases. All resources are backed up multiple times a day by using Azure Backup. You are developing a strategy to protect against ransomware attacks.

You need to recommend which controls must be enabled to ensure that Azure Backup can be used to restore the resources in the event of a successful ransomware attack.

Which two controls should you include in the recommendation? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer: C

by Celeste at Jan 10, 2023, 12:11 PM

Limited Time Offer

25%

Off

Get Premium SC-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Frederica
4 months ago
Wait, do we really need PINs for critical ops? Sounds overkill.
upvoted 0 times
...
Gilma
4 months ago
Totally agree with soft delete, it's a lifesaver!
upvoted 0 times
...
Sharen
5 months ago
Not sure about the offline backups, seems a bit excessive.
upvoted 0 times
...
Magnolia
5 months ago
I think encrypting backups with CMKs is a must too!
upvoted 0 times
...
Boris
5 months ago
Definitely need to enable soft delete for backups.
upvoted 0 times
...
Loren
5 months ago
I feel like performing offline backups to Azure Data Box might be a good strategy, but I need to double-check if it’s really necessary for ransomware protection.
upvoted 0 times
...
Tesha
5 months ago
I practiced a similar question where requiring PINs for critical operations was mentioned, but I’m not convinced it’s the best option here.
upvoted 0 times
...
Terrilyn
5 months ago
I’m not entirely sure, but I think encrypting backups with customer-managed keys could add an extra layer of security.
upvoted 0 times
...
Caitlin
5 months ago
I remember something about enabling soft delete for backups; it seems crucial for recovering from ransomware attacks.
upvoted 0 times
...
Nadine
5 months ago
Okay, I've got this. Based on the requirement to apply a group of base settings at each logon, I think Mandatory Profiles would be the best fit. That way the settings are consistently applied without the user being able to modify them.
upvoted 0 times
...
Amina
5 months ago
This is a great question. I feel pretty confident I can tackle this one - the key is finding the right balance between upselling and customer experience.
upvoted 0 times
...
Frankie
5 months ago
Hmm, I'm a little unsure about this one. I know change management is about managing organizational changes, but I'm not sure if that's the exact definition they're looking for here.
upvoted 0 times
...
Mari
10 months ago
I'm eyeing that Azure Data Box like a kid in a candy store. Offline backups are the way to go, no matter what the hackers throw at us.
upvoted 0 times
Lili
9 months ago
We should also consider encrypting backups with customer-managed keys for added security.
upvoted 0 times
...
Brendan
9 months ago
I agree, it's a reliable way to protect against ransomware attacks.
upvoted 0 times
...
Odelia
9 months ago
Offline backups to Azure Data Box are definitely a good idea.
upvoted 0 times
...
...
Deeanna
10 months ago
I'm just glad they're not asking us to enable two-factor authentication on our backup accounts. That would be too much work!
upvoted 0 times
Dierdre
9 months ago
Yeah, two-factor authentication would definitely be a hassle.
upvoted 0 times
...
Ronny
9 months ago
D) Encrypt backups by using customer-managed keys (CMKs).
upvoted 0 times
...
Flo
9 months ago
A) Use Azure Monitor notifications when backup configurations change.
upvoted 0 times
...
...
Leonida
11 months ago
I believe using Azure Monitor notifications when backup configurations change can help us detect any suspicious activity.
upvoted 0 times
...
Charlene
11 months ago
I agree with Eladia. Encrypting backups with customer-managed keys is also important for security.
upvoted 0 times
...
Ezekiel
11 months ago
B and D are also important controls. PINs for critical operations and CMK-encrypted backups add an extra layer of security.
upvoted 0 times
Cecily
10 months ago
That's a good point. Having multiple layers of protection is key in safeguarding against ransomware attacks.
upvoted 0 times
...
Trinidad
10 months ago
I think enabling soft delete for backups could also be useful in case of accidental deletions or corruption.
upvoted 0 times
...
Victor
10 months ago
Yes, I agree. PINs can help prevent unauthorized access and CMK encryption adds another level of protection.
upvoted 0 times
...
Chaya
11 months ago
B and D are also important controls. PINs for critical operations and CMK-encrypted backups add an extra layer of security.
upvoted 0 times
...
...
Lucy
11 months ago
C and E are essential to protect against ransomware. Offline backups and soft delete ensure that your data is safe even if your cloud resources are compromised.
upvoted 0 times
...
Eladia
11 months ago
I think we should enable soft delete for backups to protect against ransomware attacks.
upvoted 0 times
...

Save Cancel