Microsoft SC-300 Exam Dumps

You use Azure Monitor to analyze Azure Active Directory (Azure AD) activity logs.Yon receive more than 100 email alerts each day for tailed Azure Al) user sign-in attempts.You need to ensure that a new security administrator receives the alerts instead of you.Solution: From Azure monitor, you modify the action group.Does this meet the goal?

You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online sitenamed Site1 and a Microsoft 365 group named Group1. You need to ensure that themembers of Group1 can access Site1 for 90 days. The solution must minimizeadministrative effort. What should you use?

You configure a new Microsoft 36S tenant to use a default domain name of contosso.com. You need to ensure that you can control access to Microsoft 365 resource-, by using conditional access policy. What should you do first?

You have an Azure subscription that is linked to a Microsoft Entra tenant. The tenantcontains a registered app named App1. You have a partner organization that has aMicrosoft Entra tenant. The tenant contains a registered app named App2. You need toensure that App1 can access App2.Which two types of credentials can App1 use? Each correct answer presents a completesolution. NOTE: Each correct selection is worth one point. 

You have an Azure Active Directory (Azure AD) tenant named contoso.com.You plan to bulk invite Azure AD business-to-business (B2B) collaboration users.Which two parameters must you include when you create the bulk invite? Each correctanswer presents part ofthe solutionNOTE: Each correct selection is worth one point.

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. as a result, these questions will not appear in the review screen.You have an Amazon Web Services (AWS) account a Google Workspace subscription, and a GitHub account You deploy an Azure subscription and enable Microsoft 365 Defender. You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps. Solution: From the Microsoft 365 Defender portal, you add the GitHub app connector Does this meet the goal? 

You work for a company named Contoso, Ltd. that has a Microsoft Entra tenant named contoso.com. Contoso is working on a project with the following two partner companies: • A company named A. Datum Corporation that has a Microsoft Entra tenant named adatum.com • A company named Fabrikam, Inc. that has a Microsoft Entra tenant named fabtikam.com When you attempt to invite a new guest user from adatum.com to contoso.com, you receive an error message. You can successfully invite a new guest user from fabiikam.com to contoso.com. You need to be able to invite new guest users from adatum.com to contoso.com. What should you configure? 

You have a Microsoft 365 tenant. You need to ensure that you tan view Azure Active Directory (Azure AD) audit loginformation by using Azure Monitor.What should you do first?

Your on-premises network contains an Active Directory Domain Services (AD DS) domain and a certification authority (CA) named CAT. You have a Microsoft Entra tenant. You need to implement Microsoft Entra certificate-based authentication. The solution must ensure that users can sign in by using certificates issued by CAT What should you do first?

You have a Microsoft 365 E5 subscription. Users authorize third-party cloud apps to access their data. You need to configure an alert that will be triggered when an app requires high permissions and is authorized by more than 20 users. Which type of policy should you create in the Microsoft Defender for Cloud Apps portal?

You create a conditional access policy that blocks access when a user triggers a highseventy sign-in alert. You need to test the policy under the following conditions; • A user signs in from another country. • A user triggers a sign-in risk. What should you use to complete the test? 

You have an Azure AD tenant. You deploy a new enterprise application named App1. When users attempt to provide App1 with access to the tenant, the attempt fails. You need to ensure that the users can request admin consent for App1. The solution must follow the principle of least privilege. What should you do first?

You have an Azure AD tenant You configure User consent settings to allow users to provide consent to apps from verified publishers. You need to ensure that the users can only provide consent to apps that require low impact permissions. What should you do?

You have a Microsoft Entra tenant.You need to create a Conditional Access policy to manage administrative access to thetenant. The solution must ensure that administrators are authenticated by using a phishingresistant multi-factor authentication (MFA) method.Which three authentication methods should you include in the solution? Each correctanswer presents a complete solution.

You have an Azure subscription named Sub1 that contains a user named User1. You need to ensure that User1 can purchase a Microsoft Entra Permissions Management license for Sub1. The solution must follow the principle of least privilege. Which role should you assign to User1?

You have a Microsoft 365 E5 subscription that contains a web app named App1.Guest users are regularly granted access to App1.You need to ensure that the guest users that have NOT accessed App1 during the past 30days have their access removed the solution must minimize administrative effort.What should you configure?

You have a Microsoft Entra tenant that has a Microsoft Entta ID P2 license. You create aLog Analytics workspace.You need to ensure that you can view Microsoft Entra ID audit log information by usingAzure Monitor. What should you do first?

You have a Microsoft 365 tenant.The Azure Active Directory (Azure AD) tenant syncs to an on-premises Active Directorydomain.You plan to create an emergency-access administrative account named Emergency1.Emergency1 will beassigned the Global administrator role in Azure AD. Emergency1 will be used in the eventof Azure ADfunctionality failures and on-premises infrastructure failures.You need to reduce the likelihood that Emergency1 will be prevented from signing in duringan emergency.What should you do?

You have a Microsoft 365 tenant.The Sign-ins activity report shows that an external contractor signed in to the Exchangeadmin center.You need to review access to the Exchange admin center at the end of each month andblock sign-ins ifrequired.What should you create?

You have a Microsoft 365 tenant. All users have computers that run Windows 10. Most computers are company-owned and joined to Azure Active Directory (Azure AD). Some computers are user-owned and are only registered in Azure AD. You need to prevent users who connect to Microsoft SharePoint Online on their userowned computer from downloading or syncing files. Other users must NOT be restricted. Which policy type should you create? 

Note: This question is part of a series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestion sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it as a resultthese questions will not appear in the review screen.You have a Microsoft 365 ES subscription.You create a user namedUser1.You need to ensure that User1 can update the status of identity Secure Score improvementactions.Solution: You assign the Security Operator role User1. Does this meet the goal? 

You have a Microsoft Entra tenant. You need to query risky user activity for the tenant. How long will the logs of risky user activity be retained?

You have an on-premises app named Appl. You have a Microsoft Entra tenant You plan to publish App1 by using Microsoft Entra Private Access. You need to enable the Private access profile. Which blade should you use in the Microsoft Entra admin center? 

You have a Microsoft 365 E5 subscription.You purchase the app governance add-on license.You need to enable app governance integration.Which portal should you use?

You have an Azure AD tenant You open the risk detections report. Which risk detection type is classified as a user risk?