Microsoft Azure

Microsoft Identity and Access Administrator

SC-300
Popular

Pass the SC-300 exam to become a Microsoft Identity and Access Administrator.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 147

Q101

A company needs to restrict access to certain applications based on user roles. Which feature should they utilize?

  • A Role-Based Access Control
  • B Device Registration
  • C Single Sign-On
  • D Multi-Factor Authentication
Explanation Role-Based Access Control enforces permissions based on user roles, unlike the other options.
Q102

What happens when a user disables their multi-factor authentication (MFA) temporarily in Azure?

  • A All users lose MFA temporarily
  • B Only their logins are affected
  • C They can still access all resources
  • D Their account is locked immediately
Explanation Disabling MFA affects only the user's login attempts, not others or resource access.
Q103

Which Azure feature allows you to manage user access rights centrally?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Virtual Network
  • D Azure SQL Database
Explanation Azure Active Directory provides centralized identity management; other options serve different purposes.
Q104

A company needs to grant temporary access for a vendor to specific Azure resources. Which Azure feature should they use?

  • A Azure RBAC
  • B Azure Policies
  • C Azure Privileged Identity Management
  • D Azure Key Vault
Explanation Azure Privileged Identity Management allows temporary access; the others do not focus on just-in-time access.
Q105

What happens when you enable self-service password reset for users in Azure AD?

  • A Users can reset their passwords
  • B Admin must reset all passwords
  • C All accounts are locked out
  • D Password policies are ignored
Explanation Enabling self-service password reset allows users to reset their own passwords; the other options are incorrect outcomes.
Q106

Which Azure service provides identity governance capabilities?

  • A Azure Active Directory
  • B Azure Information Protection
  • C Azure Sentinel
  • D Azure Monitor
Explanation Azure Active Directory offers identity governance features, while the others serve different purposes.
Q107

You are configuring Conditional Access for a finance application. What happens when users fail to meet the policy requirements?

  • A Users gain access after multiple prompts
  • B Users are granted limited access
  • C Access is denied
  • D Users receive an alert only
Explanation Conditional Access denies access if the specified conditions are not met, maintaining security.
Q108

A company needs to ensure that all external sharing of documents is logged and audited. Which option should they implement?

  • A Azure AD Privileged Identity Management
  • B Azure AD Access Reviews
  • C Microsoft 365 Compliance Center
  • D Azure Security Center
Explanation Microsoft 365 Compliance Center includes auditing features for document sharing, unlike the others.
Q109

A company needs to sync their on-premises Active Directory with Azure AD. Which Azure service should they use?

  • A Azure AD Connect
  • B Azure IAM
  • C Azure AD Domain Services
  • D Azure Information Protection
Explanation Azure AD Connect is specifically designed for this purpose, while the others serve different functions.
Q110

You are configuring Conditional Access policies. What happens when a policy evaluates to 'Block Access'?

  • A User is granted access
  • B User is directed to MFA
  • C Access is denied completely
  • D User access is logged
Explanation A 'Block Access' policy prevents any access to the resource.