Microsoft Azure

Microsoft Security Operations Analyst

SC-200
Popular

Validate your skills with the SC-200 exam for Microsoft Security Operations Analyst.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 141–147 of 147

Q141

What happens when a user forgets their MFA method in Azure Active Directory?

  • A Account is locked permanently.
  • B Temporary access granted without MFA.
  • C User can still reset by authentication email.
  • D User must contact admin for recovery.
Explanation Contacting an admin is necessary for recovery as this ensures a secure process; other options are incorrect actions within Azure AD policies.
Q142

A company needs to monitor Azure resources for abnormal activity. Which service should they use?

  • A Azure Sentinel
  • B Azure Functions
  • C Azure DevOps
  • D Azure Logic Apps
Explanation Azure Sentinel offers security information and event management capabilities, while others serve different purposes.
Q143

You are configuring Azure Active Directory Conditional Access. What happens if a user is blocked?

  • A User access is denied
  • B User is logged out
  • C User is notified via email
  • D User can bypass MFA
Explanation Blocked users will not be granted access, unlike the other options which are incorrect actions.
Q144

What is the primary function of Azure Policy?

  • A Monitor cost management
  • B Enforce resource compliance
  • C Manage user permissions
  • D Automate backups
Explanation Azure Policy governs and enforces compliance of resources, while other options describe different functionalities.
Q145

Which Azure service provides advanced threat protection for workloads in Azure?

  • A Azure Security Center
  • B Azure Monitor
  • C Azure Policy
  • D Azure Active Directory
Explanation Azure Security Center offers comprehensive security management and threat protection, while others focus on different capabilities.
Q146

A company needs to audit access to sensitive data in Azure. Which feature should they enable?

  • A Azure Sentinel
  • B Azure Activity Logs
  • C Azure Key Vault access policies
  • D Azure Monitor logs
Explanation Azure Activity Logs provide detailed auditing of access records, unlike the other options which serve different functions.
Q147

What happens when a security alert is generated in Azure Sentinel?

  • A Advisory email sent to admin
  • B Incidents are created automatically
  • C Alert dismissed and ignored
  • D Affected resources are deleted
Explanation When a security alert is triggered, it initiates a workflow that automatically creates incidents for further investigation.