Exam (elaborations)
Microsoft SC-900 Exam With Complete Solutions 100% Correct
- Course
- Institution
Microsoft SC-900 Exam With Complete Solutions 100% Correct...
[Show more]
Content preview
Microsoft SC-900 Exam With CompleteSolutions 100% Correct
The Microsoft approach to privacy is built on the foundation of [answer choice]. -
ANSWER control, transparency, security, strong legal protections, no content-based
targeting and benefits to you
Which type of Compliance Manager controls are used for Microsoft cloud services? -
ANSWER Microsoft-managed controls
In Microsoft Purview insider risk management, what should you create for alerts that
require further investigation? Answer a case Insider risk management is a solution that
helps minimize internal risks by allowing an organization to detect, investigate and act
on risky and malicious activities. It allows to protect against leaks of sensitive data,
confidentiality violations, and intellectual property theft. Alerts have to be triaged, and
the ones which require further investigation have to be added to a case. Each case is
assigned to one user and can have multiple alerts.
An organization wants to migrate to the Microsoft cloud. The goal is to continue working
in a hybrid identity model.
Which of the following can be used to synchronize identities across AD DS and the
Microsoft Entra tenant? -ANSWER Microsoft Entra Connect -Microsoft Entra Connect is
created to fulfill hybrid identity needs and accomplish goals. ADFS can't be used for a
hybrid identity model. Microsoft Sentinel isn't an identity product. PIM is used to manage
and monitor access to highly critical resources.
Of the following, which of these is an authentication method that uses a time-based,
one-time password? A) OATH hardware tokens B) OATH hardware tokens use a
time-based one-time password. C) Strong passwords aren't one-time passwords. D)
Password hash synchronization syncs hashes across Active Directory and Microsoft
Entra tenant. E) Windows Hello uses a camera or passcode to authenticate.
, What are three things that can be used by a claimant to prove verification for Microsoft
Entra Multi-Factor Authentication (MFA)? Each correct answer provides a complete
solution. ANSWER Something the claimant knows Something the claimant has
Something the claimant is Explanation Microsoft Entra MFA works by requiring
something you know, such as a password, and something you have such as a phone, or
something you are such as biometrics.
This is a scenario where an attacker wants to log in to many user accounts using
commonly used passwords. The attacker executes the action in every 20-minute
timeframe to prevent account lockout.
Which of the following Microsoft Entra features protects your organization from this type
of attack? - ANSWER Microsoft Entra Password Protection
Microsoft Entra Password Protection helps you defend against password spray attacks.
Conditional Access brings signals together to make decisions and enforce
organizational policies, but it can't stop password attacks by its own. SSPR enables the
end user to change or reset their password without administrator or helpdesk
involvement. It doesn't block password attacks. Windows Hello for Business replaces
passwords with strong two-factor authentication on devices.
What is a user risk in Microsoft Entra Identity Protection? - ANSWER leaked credentials
Leaked credentials is a user risk. Atypical travel, anonymous IP address and password
spray are sign-in risks.
Which security model uses a layered approach to security, providing mechanisms to
stop a breach at the perimeter of each layer? - ANSWER defense in depth
This is a security approach using a layered approach. A shared responsibility model
defines what each party is responsible for, either company or vendor. PCI is a
compliance regulation and not a security model.
What is one of the guiding principles of the Zero Trust model? - ANSWER verify explicitly
The three guiding principles are: verify explicitly, least privilege access, and assume
breach.
What are two characteristics of identity being the first security perimeter? Each correct
answer signifies a complete solution. - ANSWER SaaS applications may be used off the
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Chrisyuis. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $14.99. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
75632 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now