Microsoft SC-200 Exam - Topic 9 Question 20 Discussion

Actual exam question for Microsoft's SC-200 exam

Question #: 20
Topic #: 9

[All SC-200 Questions]

You use Azure Defender.

You have an Azure Storage account that contains sensitive information.

You need to run a PowerShell script if someone accesses the storage account from a suspicious IP address.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

AFrom Azure Security Center, enable workflow automation.

BCreate an Azure logic appthat has a manual trigger

CCreate an Azure logic app that has an Azure Security Center alert trigger.

DCreate an Azure logic appthat has an HTTP trigger.

EFrom Azure Active Directory (Azure AD), add an app registration.

Show Suggested Answer

Suggested Answer: A, C

https://docs.microsoft.com/en-us/azure/storage/common/azure-defender-storage-configure?tabs=azure-security-center

https://docs.microsoft.com/en-us/azure/security-center/workflow-automation

by Thaddeus at May 05, 2022, 12:55 PM

Limited Time Offer

25%

Off

Get Premium SC-200 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lashawnda

4 months ago

A and C are spot on! Surprised anyone would pick anything else.

upvoted 0 times

...

Katy

4 months ago

I thought Azure AD was involved here, but not sure about E.

upvoted 0 times

...

Margarita

4 months ago

Wait, why would you need an HTTP trigger? Seems unnecessary.

upvoted 0 times

...

Heike

5 months ago

I think B could work too, but not sure if it's the best option.

upvoted 0 times

...

Mitsue

5 months ago

Definitely A and C! That's the way to go.

upvoted 0 times

...

Jackie

5 months ago

I agree with Ines; the logic app with the alert trigger sounds right. But I’m not sure if we need to enable workflow automation as well.

upvoted 0 times

...

Fernanda

5 months ago

I'm a bit confused about the triggers. I thought a manual trigger wouldn't work here since we need it to be automatic based on suspicious access.

upvoted 0 times

...

Ines

5 months ago

I remember practicing a similar question where we had to set up alerts. I feel like creating a logic app with an Azure Security Center alert trigger could be the right choice.

upvoted 0 times

...

Ryan

5 months ago

I think enabling workflow automation from Azure Security Center is definitely part of the solution, but I'm not sure about the second action.

upvoted 0 times

...

Dyan

5 months ago

Hmm, this seems straightforward. I think the answer is C - vm01.vmx, since that's the main configuration file for a virtual machine.

upvoted 0 times

...

Zoila

5 months ago

This seems like a good opportunity to demonstrate my system administration skills. I'll follow the steps carefully and make sure the NTP sync is properly configured.

upvoted 0 times

...