SC-900 Free Practice Test

Which Microsoft 365 feature can you use to restrict communication and the sharing of information between members of two departments at your organization?

1. A. sensitivity label policies
2. B. Customer Lockbox
3. C. information Barriers
4. D. Privileged Access Management (PAM)

Correct Answer: C

Select the answer that correctly completes the sentence.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

Which type of identity is created when you register an application with Active Directory (Azure AD)?

1. A. a user account
2. B. a user-assigned managed identity
3. C. a system-assigned managed identity
4. D. a service principal

Correct Answer: D
When you register an application through the Azure portal, an application object and service principal are automatically created in your home directory or tenant.

What should you use to ensure that the members of an Azure Active Directory group use multi-factor authentication (MFA) when they sign in?

1. A. Azure Active Directory (Azure AD) Identity Protection
2. B. a conditional access policy
3. C. Azure role-based access control (Azure RBAC)
4. D. Azure Active Directory (Azure AD) Privileged Identity Management (PIM)

Correct Answer: B
The recommended way to enable and use Azure AD Multi-Factor Authentication is with Conditional Access policies. Conditional Access lets you create and define policies that react to sign-in events and that request additional actions before a user is granted access to an application or service.