Tag: lead4pass Microsoft Fundamentals dumps

The latest update of Microsoft Fundamentals SC-900 dumps exam practice questions

microsoft sc-900 exam updated

The Microsoft Fundamentals exam is a very popular exam series including Microsoft Certified:
Azure Fundamentals, Microsoft 365 Certified: Fundamentals, Microsoft Certified: Power Platform Fundamentals.
Exam certification keywords: AI-900,AZ-900,MS-900,DP-900,MB-901,MB-910,MB-920,SC-900,PL-900.

You can enter the Lead4Pass Microsoft Fundamentals channel to view all exam certification dumps:https://www.lead4pass.com/fundamentals.html

Microsoft Fundamentals official information: https://docs.microsoft.com/en-us/learn/certifications/browse/?type=fundamentals

The above is an overview of Microsoft Fundamentals. If you want to get more free online practice tests, you can go to our Microsoft free blog channel to get: https://www.fulldumps.com/

Next, I will share the test content that I shared for free today. Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900). You can participate in the exam practice test on this site. All exam questions are free.
The free content is only part of the lead4pass SC-900 dumps. I know your purpose is to pass the exam, so you should get the complete Microsoft SC-900 dumps https://www.lead4pass.com/sc-900.html.

Next, please take the SC-900 online practice test, And share the free Microsoft SC-900 exam PDF.

Microsoft SC-900 exam practice questions

QUESTION 1

Which Azure Active Directory (Azure AD) feature can you use to provide just-in-time (JIT) access to manage Azure
resources?

A. conditional access policies
B. Azure AD Identity Protection
C. Azure AD Privileged Identity Management (PIM)
D. authentication method policies

Correct Answer: C

Azure AD Privileged Identity Management (PIM) provides just-in-time privileged access to Azure AD and Azure
resources

Reference: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-configure

QUESTION 2

HOTSPOT
You have a Microsoft 365 E5 tenant.
You create sensitivity labels as shown in the Sensitivity Labels exhibit.

microsoft sc-900 exam questions q2

The Confidential/External sensitivity label is configured to encrypt files and emails when applied to content. The
sensitivity labels are published as shown in the Published exhibit.

microsoft sc-900 exam questions q2-1

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct
selection is worth one point.
Hot Area:

microsoft sc-900 exam questions q2-2

Correct Answer:

microsoft sc-900 exam questions q2-3

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels?view=o365-worldwide

QUESTION 3

Which score measures an organization\’s progress in completing actions that help reduce risks associated to data
protection and regulatory standards?

A. Microsoft Secure Score
B. Productivity Score
C. Secure score in Azure Security Center
D. Compliance score

Correct Answer: D

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-manager?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-score-calculation?view=o365-worldwide

QUESTION 4

HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

microsoft sc-900 exam questions q4

Correct Answer:

microsoft sc-900 exam questions q4-1

Reference: https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/overview

QUESTION 5

HOTSPOT
Select the answer that correctly completes the sentence.
Hot Area:

microsoft sc-900 exam questions q5

Correct Answer:

microsoft sc-900 exam questions q5-1

Biometrics templates are stored locally on a device.
Reference: https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-overview

QUESTION 6

HOTSPOT
Select the answer that correctly completes the sentence.
Hot Area:

microsoft sc-900 exam questions q6

Correct Answer:

microsoft sc-900 exam questions q6-1

Microsoft Azure Sentinel is a scalable, cloud-native, security information event management (SIEM) and security
orchestration automated response (SOAR) solution.
Reference: https://docs.microsoft.com/en-us/azure/sentinel/overview

QUESTION 7

HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

microsoft sc-900 exam questions q7

Correct Answer:

microsoft sc-900 exam questions q7-1

Box 1: Yes
The MailItemsAccessed event is a mailbox auditing action and is triggered when mail data is accessed by mail protocols and mail clients.

Box 2: No
Basic Audit retains audit records for 90 days.
Advanced Audit retains all Exchange, SharePoint, and Azure Active Directory audit records for one year. This is accomplished by a default audit log retention policy that retains any audit record that contains the value of Exchange,
SharePoint, or AzureActiveDirectory for the Workload property (which indicates the service in which the activity occurred) for one year.

Box 3: yes
Advanced Audit in Microsoft 365 provides high-bandwidth access to the Office 365 Management Activity API.

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/advanced-audit?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/auditing-solutions-overview?view=o365-worldwide#licensingrequirements
https://docs.microsoft.com/en-us/office365/servicedescriptions/microsoft-365-service-descriptions/microsoft-365-tenantlevel-services-licensing-guidance/microsoft-365-security-compliance-licensing-guidance#advanced-audit

QUESTION 8

You plan to implement a security strategy and place multiple layers of defense throughout a network infrastructure.
Which security methodology does this represent?

A. threat modeling
B. identity as the security perimeter
C. defense in depth
D. the shared responsibility model

Correct Answer: C

Reference: https://docs.microsoft.com/en-us/learn/modules/secure-network-connectivity-azure/2-what-is-defense-indepth

QUESTION 9

Which Azure Active Directory (Azure AD) feature can you use to restrict Microsoft Intune-managed devices from
accessing corporate resources?

A. network security groups (NSGs)
B. Azure AD Privileged Identity Management (PIM)
C. conditional access policies
D. resource locks

Correct Answer: C

QUESTION 10

HOTSPOT
Select the answer that correctly completes the sentence.
Hot Area:

microsoft sc-900 exam questions q10

Correct Answer:

microsoft sc-900 exam questions q10-1

Microsoft Defender for Identity is a cloud-based security solution that leverages your on-premises Active Directory
signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions
directed at your organization.

Reference: https://docs.microsoft.com/en-us/defender-for-identity/what-is

QUESTION 11

HOTSPOT
You have a Microsoft 365 tenant named contoso.com that contains two users named User1 and User2. The tenant uses
Microsoft Office 365 Message Encryption
(OME). User1 plans to send emails that contain attachments as shown in the following table.

microsoft sc-900 exam questions q11

User2 plans to send emails that contain attachments as shown in the following table.

microsoft sc-900 exam questions q11-1

For which emails will the attachments be protected? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

microsoft sc-900 exam questions q11-2

Correct Answer:

microsoft sc-900 exam questions q11-3

Reference: https://support.microsoft.com/en-gb/office/introduction-to-irm-for-email-messagesbb643d33-4a3f-4ac7-9770-fd50d95f58dc?ui=en-usandrs=en-gbandad=gb#FileTypesforIRM
https://docs.microsoft.com/en-us/microsoft-365/compliance/ome?view=o365-worldwide https://docs.microsoft.com/enus/office365/servicedescriptions/exchange-online-service-description/exchange-online-limits#message-limits-1

QUESTION 12

You have a new Microsoft 365 tenant.
You need to ensure that custom trainable classifiers can be created in the tenant.
To which role should you be assigned to perform the configuration?

A. Security administrator
B. Security operator
C. Global administrator
D. Compliance administrator

Correct Answer: D

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-worldwide

QUESTION 13

HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

microsoft sc-900 exam questions q13

Correct Answer:

microsoft sc-900 exam questions q13-1

Reference: https://docs.microsoft.com/en-us/azure/governance/policy/overview

Microsoft SC-900 exam PDF free sharing

Google Drive: https://drive.google.com/file/d/1NcJn8vhJFYXliqostMLXU3vBUp4mIPd0/view?usp=sharing

Finally, thank you for reading! If you like it, please bookmark and share! To successfully pass the Microsoft SC-900 exam 100%, please visit https://www.lead4pass.com/sc-900.html.
All test questions and answers have been verified! Guarantee true and effectiveness.

PS. Free exam questions and answers for all Microsoft exam series – Fulldumps.com