SC-900 Exam Flashcards
An organization has deployed Microsoft 365 applications to all employees. Who is
responsible for the security of the personal data relating to these employees?
A. The organization.
B. Microsoft, the SaaS provider.
C. There's shared responsibility between an organization and Microsoft. - ANS-The
Organization
Which of the following measures might an organization implement as part of the
defense in-depth security methodology?
A. Locating all its servers in a single physical location.
B. Multi-factor authentication for all users.
C. Ensuring there's no segmentation of your corporate network. - ANS-Multi-factor
Authentication for all users
The human resources organization want to ensure that stored employee data is
encrypted. Which security mechanism would they use?
A. Encryption in transit.
B. Digital signing.
C. Encryption at rest. - ANS-Encryption at rest
What is the best way of staying current with Microsoft compliance documentation
available through the Service Trust Portal?
A. Save the documents to your My Library.
B. Print each document so you can easily refer to them.
C. Download each document. - ANS-Save the documents to your My Library.
A compliance admin is looking for regulatory information relevant to a specific region,
which one link will provide the needed information?
A. Microsoft Privacy Principles.
B. Service Trust Portal.
C. Microsoft Compliance Manager. - ANS-Service Trust Portal.
What type of security risk does a phishing scam pose?
A. Ethical risk.
B. Physical risk.
C. Identity risk. - ANS-Identity risk.
, What is a benefit of single sign-on?
A. A central identity provider can be used.
B. The user signs in once and can then access many applications or resources.
C. Passwords always expire after 72 days. - ANS-The user signs in once and can then
access many applications or resources.
Which relationship allows federated services to access resources?
A. Claim relationship.
B. Shared access relationship.
C. Trust relationship. - ANS-Trust relationship.
Authentication is the process of doing what?
A. Verifying that a user or device is who they say they are.
B. The process of profiling user behavior.
C. Enabling federated services. - ANS-Verifying that a user or device is who they say
they are.
An organization is launching a new app for its customers. Customers will use a sign-in
screen that is customized with the organization's brand identity. Which type of Azure
External identity solution should the organization use?
A. Azure AD B2B
B. Azure AD B2C
C. Azure AD Hybrid identities - ANS-Azure AD B2C
All users in an organization have Microsoft 365 cloud identities. Which identity model
applies?
A. Hybrid
B. Cloud-only
C. On-premises only - ANS-Cloud-only
An organization has developed an app to allow users to be able to sign in with their
Facebook, Google, or Twitter credentials. What type of authentication is being used?
A. Service principal authentication
B. Azure AD B2C
C. User assigned identities - ANS-Azure AD B2C
After hearing of a breach at a competitor, the security team wants to improve identity
security within their organization. What should they implement immediately to provide
the greatest protection to user identities?
A. Multifactor authentication.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller EXAMQA. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for £9.34. You're not tied to anything after your purchase.