Microsoft Azure

Microsoft Identity and Access Administrator

SC-300
Popular

Pass the SC-300 exam to become a Microsoft Identity and Access Administrator.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 91–100 of 147

Q91

Which Azure service is primarily used for implementing conditional access policies?

  • A Azure Active Directory
  • B Azure Information Protection
  • C Azure Security Center
  • D Azure Monitor
Explanation Azure Active Directory is responsible for managing conditional access, while the others focus on security and monitoring.
Q92

A company needs to ensure that users have seamless single sign-on (SSO) to their on-premises applications. What Azure solution should they implement?

  • A Azure AD Connect
  • B Azure AD Domain Services
  • C Azure Application Proxy
  • D Azure Firewall
Explanation Azure Application Proxy allows SSO for on-premises apps, while the others serve different functions.
Q93

What happens when a user’s Azure AD account is disabled?

  • A All access is immediately revoked
  • B Pending tasks are lost
  • C The user can still log in
  • D User access is only limited by permissions
Explanation Disabling the account immediately revokes all access; other options incorrectly imply some level of access remains.
Q94

Which service helps in managing user identities and roles in Azure?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure Virtual Machines
Explanation Azure Active Directory is designed for identity management, while the others serve different purposes.
Q95

A company needs to implement conditional access policies for its users. What should they primarily consider?

  • A User locations
  • B Storage account types
  • C VM sizes
  • D Database schemas
Explanation Conditional access policies focus on user locations and scenarios, unlike the other options which pertain to different services.
Q96

You are configuring Multi-Factor Authentication (MFA) for a user. What will happen if the user fails to provide the second factor?

  • A Access will be granted
  • B Access will be denied
  • C User will be locked out
  • D Authentication will refresh
Explanation If the second factor is not provided, access is denied to ensure security, whereas other options incorrectly imply alternative outcomes.
Q97

A company needs to ensure multi-factor authentication for users accessing sensitive data. Which Azure service should they use?

  • A Azure Active Directory
  • B Azure Key Vault
  • C Azure Storage Account
  • D Azure Application Insights
Explanation Azure Active Directory provides multi-factor authentication capabilities, while others do not focus on user authentication.
Q98

You are configuring a conditional access policy that blocks access to company resources based on location. What happens when the location criteria is not met?

  • A Access is allowed without restriction
  • B Conditional access grants access
  • C Access is denied
  • D An audit log is generated
Explanation If the location criteria is not met, access is denied under the specified policy condition.
Q99

Which Azure feature allows a user to control access to resources at a granular level, distinguishing between groups and roles?

  • A RBAC (Role-Based Access Control)
  • B Resource Locks
  • C Azure Policies
  • D Management Groups
Explanation RBAC allows granular control of access based on roles, while others focus on resource management or compliance.
Q100

Which Azure service is used for identity governance?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Kubernetes Service
  • D Azure Virtual Network
Explanation Azure Active Directory provides identity governance functionalities, while the others do not relate to identity management.