Free Microsoft SC-100 Exam Questions
Try our Free Demo Practice Tests for Comprehensive SC-100 Exam Preparation
-
Microsoft SC-100 Exam Questions
-
Provided By: Microsoft
- Exam: Microsoft Cybersecurity Architect
- Certification: Microsoft Certified Cybersecurity Architect Expert
-
Total Questions: 201
-
Updated On: Mar 25, 2025
-
Rated: 4.9 |
-
Online Users: 402
-
Question 1
-
Your company is preparing for cloud adoption.
You are designing security for Azure landing zones.
Which two preventative controls can you implement to increase the secure score? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
Answer: B,C
-
Your company is preparing for cloud adoption.
-
Question 2
-
Your company has devices that run either Windows 10, Windows 11, or Windows Server.You are in the process of improving the security posture of the devices.You plan to use security baselines from the Microsoft Security Compliance Toolkit.What should you recommend using to compare the baselines to the current device configurations?
Answer: B
-
Your company has devices that run either Windows 10, Windows 11, or Windows Server.You are in the process of improving the security posture of the devices.You plan to use security baselines from the Microsoft Security Compliance Toolkit.What should you recommend using to compare the baselines to the current device configurations?
-
Question 3
-
You are designing the encryption standards for data at rest for an Azure resourceYou need to provide recommendations to ensure that the data at rest is encrypted by using AES-256keys. The solution must support rotating the encryption keys monthly.Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).Does this meet the goal?
Answer: B
-
You are designing the encryption standards for data at rest for an Azure resourceYou need to provide recommendations to ensure that the data at rest is encrypted by using AES-256keys. The solution must support rotating the encryption keys monthly.Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).Does this meet the goal?
-
Question 4
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?
Answer: A
-
Your company develops several applications that are accessed as custom enterprise applications in
Azure Active Directory (Azure AD). You need to recommend a solution to prevent users on a specific
list of countries from connecting to the applications. What should you include in the
recommendation?
-
Question 5
-
Your company has a main office and 10 branch offices. Each branch office contains an on-premisesfile server that runs Windows Server and multiple devices that run either Windows 11 or macOS. Thedevices are enrolled in Microsoft Intune.You have a Microsoft Entra tenant.You need to deploy Global Secure Access to implement web filtering for device traffic to the internetThe solution must ensure that all the web traffic from the devices in the branch offices is controlledby using Global Secure Access.What should you do first in each branch office?
Answer: B
-
Your company has a main office and 10 branch offices. Each branch office contains an on-premisesfile server that runs Windows Server and multiple devices that run either Windows 11 or macOS. Thedevices are enrolled in Microsoft Intune.You have a Microsoft Entra tenant.You need to deploy Global Secure Access to implement web filtering for device traffic to the internetThe solution must ensure that all the web traffic from the devices in the branch offices is controlledby using Global Secure Access.What should you do first in each branch office?