Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft Exam SC-900 Topic 9 Question 23 Discussion

Actual exam question for Microsoft's SC-900 exam
Question #: 23
Topic #: 9
[All SC-900 Questions]

You have an Azure subscription that contains a Log Analytics workspace.

You need to onboard Microsoft Sentinel.

What should you do first?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Rasheeda
1 months ago
E) Summon a mystical Azure genie to onboard Sentinel for me. Abracadabra, Sentinel is now onboarded!
upvoted 0 times
Sharmaine
1 days ago
D) Create a custom detection rule.
upvoted 0 times
...
Pansy
4 days ago
B) Correlate alerts into incidents.
upvoted 0 times
...
Danica
14 days ago
C) Connect to your security sources.
upvoted 0 times
...
...
German
1 months ago
D) Create a custom detection rule? Good luck finding a rule that can detect my lack of study time.
upvoted 0 times
Charisse
9 days ago
D) Create a custom detection rule.
upvoted 0 times
...
Frederick
12 days ago
B) Correlate alerts into incidents.
upvoted 0 times
...
Stevie
1 months ago
C) Connect to your security sources.
upvoted 0 times
...
...
Janessa
2 months ago
A) Create a hunting query? I'm not a bloodhound, I'm just trying to pass this exam!
upvoted 0 times
Ettie
1 months ago
D) Create a custom detection rule.
upvoted 0 times
...
Beckie
1 months ago
B) Correlate alerts into incidents.
upvoted 0 times
...
Lilli
1 months ago
C) Connect to your security sources.
upvoted 0 times
...
...
Ettie
2 months ago
B) Correlate alerts into incidents? What is this, a detective agency?
upvoted 0 times
...
Golda
2 months ago
C) Connect to your security sources. Duh, you gotta get the data in before you can do anything else!
upvoted 0 times
...
Aliza
2 months ago
I believe creating a custom detection rule might be the best option to start with.
upvoted 0 times
...
Lachelle
2 months ago
I agree with Tomoko, connecting to security sources is the first step to onboard Microsoft Sentinel.
upvoted 0 times
...
Tomoko
2 months ago
I think we should connect to our security sources first.
upvoted 0 times
...

Save Cancel