Free Preparation Discussions
MENU
Microsoft SC-100 Exam Questions
- Topic 1: Design solutions that align with security best practices and priorities: It covers how to design a strategy of resiliency for ransomware and other attacks based on practices of Microsoft Security. The topic also focuses on designing solutions that align with the Microsoft Cybersecurity Reference Architectures (MCRA) and Microsoft Cloud Security Benchmark (MCSB). Lastly, it delves into designing such solutions that align with the Microsoft Cloud Adoption Framework for Azure and the Microsoft Azure Well-Architected Framework.
- Topic 2: Design security operations, identity, and compliance capabilities: This topic covers sub-topics related to designing solutions for security operations, identity and access management, securing privileged access, and regulatory compliance.
- Topic 3: Design security solutions for infrastructure: It measures your knowledge of designing solutions for the management of security posture in hybrid and multi cloud environments. Moreover, it also focuses on designing such solutions which are required to secure server and client endpoints. Lastly, it covers how to specify certain needs to secure SaaS, PaaS, and IaaS services.
- Topic 4: Design security solutions for applications and data: Focal points of this topic is designing solutions for securing Microsoft 365, securing applications, and securing an organization's data.
Free Microsoft SC-100 Exam Actual Questions
Note: Premium Questions for SC-100 were last updated On Jun. 25, 2025 (see below)
You have a Microsoft 365 subscription that contains 1,000 users. Each user is assigned a Microsoft 365 E5 license.
The subscription uses sensitivity labels to classify corporate documents. All the users have Windows 11 devices that are onboarded to Microsoft Defender for Endpoint and are configured to sync files to Microsoft OneDrive.
You need to prevent the users from uploading the documents from OneDrive to external websites.
What should you include in the solution?
You need to design a strategy for securing the SharePoint Online and Exchange Online data. The solution must meet the application security requirements.
Which two services should you leverage in the strategy? Each correct answer presents part of the solution. NOTE; Each correct selection is worth one point.
You need to recommend a solution for securing the landing zones. The solution must meet the landing zone requirements and the business requirements.
What should you configure for each landing zone?
One of the stipulations is to meet the business requirements of minimizing costs. ExpressRoute is expensive.
Given the landing zone requirements of
1) 'Use a DNS namespace of litware.com'
2) 'Ensure that the Azure virtual machines in each landing zone communicate with Azure App Service web apps in the same zone over the Microsoft backbone network, rather than over public endpoints'
Your on-premises network contains an Active Directory Domain Services (AD DS) domain named corpxontoso.com and an AD DS-integrated application named App1.
Your perimeter network contains a server named Server1 that runs Windows Server.
You have a Microsoft Entra tenant named contoso.com that syncs with corp.contoso.com.
You plan to implement a security solution that will include the following configurations:
* Manage access to App1 by using Microsoft Entra Private Access.
* Deploy a Microsoft Entra application proxy connector to Server1.
* Implement single sign-on (SSO) for App1 by using Kerberos constrained delegation.
* For Server1, configure the following rules in Windows Defender Firewall with Advanced Security:
o Rule1: Allow TCP 443 inbound from a designated set of Azure URLs.
o Rule2: Allow TCP 443 outbound to a designated set of Azure URLs.
o Rule3: Allow TCP 80 outbound to a designated set of Azure URLs.
o Rule4: Allow TCP 389 outbound to the domain controllers on corp.contoso.com.
You need to maximize security for the planned implementation. The solution must minimize the impact on the connector.
Which rule should you remove?
You have to Azure subscriptions that contain 100 role-based access control (RBAC) role assignments.
You plan to consolidate the role assignments.
You need to recommend a solution to identify which role assignments were NOT used during the last 90 days. The solution must minimize administrative effort.
What should you include in the recommendation?
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Nancey
11 days agoCharlene
20 days agoAshley
2 months agoJeannetta
2 months agoCaitlin
3 months agoRolande
3 months agoDestiny
4 months agoNiesha
4 months agoVi
4 months agoBrunilda
5 months agoIvette
5 months agoFelicidad
5 months agoWilliam
5 months agoMi
6 months agoLenna
6 months agoTerrilyn
6 months agoSherita
6 months agoKimberlie
7 months agoRolland
7 months agoRegenia
7 months agoLisbeth
7 months agoLaquanda
7 months agoIrene
8 months agoWei
8 months agoTammara
8 months agoVivan
8 months agoLuann
8 months agoChana
9 months agoKenneth
9 months agoCassi
9 months agoLonny
9 months agoGilma
9 months agoMargot
10 months agoLizbeth
10 months agoJaclyn
10 months agoIvette
10 months agoBritt
11 months agoTaryn
11 months agoValene
12 months agoBette
12 months agoRory
1 years agoKimberely
1 years agoDelpha
1 years agoHeike
1 years agoVincent
1 years agoNoelia
1 years ago