Microsoft Azure

Microsoft Identity and Access Administrator

SC-300
Popular

Pass the SC-300 exam to become a Microsoft Identity and Access Administrator.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 111–120 of 147

Q111

Which Azure service provides a centralized platform to manage identities across multiple environments?

  • A Azure AD B2C
  • B Azure AD
  • C Azure Information Protection
  • D Azure Security Center
Explanation Azure AD serves as the primary identity management service, while others focus on specific functionalities.
Q112

Which Azure service helps manage secrets and certificates?

  • A Azure Key Vault
  • B Azure Active Directory
  • C Azure Storage Accounts
  • D Azure App Service
Explanation Azure Key Vault is specifically designed for managing secrets and certificates, while the others serve different purposes.
Q113

A company needs to assign dynamic access permissions based on user attributes. What should they use?

  • A Static groups
  • B User-defined roles
  • C Dynamic groups
  • D Conditional Access
Explanation Dynamic groups allow access based on user attributes, unlike static groups which require manual updates.
Q114

You are configuring multi-factor authentication (MFA) for Azure users. What happens if a user fails the authentication?

  • A Access is granted automatically
  • B User is locked out for 30 minutes
  • C User must retry authentication
  • D MFA is disabled for that user
Explanation If a user fails MFA, they must retry authentication instead of being locked out or granted access.
Q115

Which Azure service provides identity protection and governance?

  • A Azure Active Directory
  • B Azure Monitor
  • C Azure DevOps
  • D Azure Function
Explanation Azure Active Directory offers identity protection capabilities, while the others focus on different services.
Q116

A company needs to enable self-service password reset for users. Which feature should they configure in Azure AD?

  • A Access Reviews
  • B Password Protection
  • C Self-service Password Reset
  • D Identity Protection
Explanation Self-service Password Reset is the specific feature for users to reset their own passwords, not the others.
Q117

You are configuring Conditional Access policies for employees working remotely. What happens if a user does not meet the assigned conditions?

  • A Access is granted with warnings
  • B User must enroll in MFA
  • C Access is blocked
  • D User can log in but logs are created
Explanation Access is blocked if conditions are not met, ensuring compliance with security policies.
Q118

Which service provides secure access to Azure resources via conditional policies?

  • A Azure Active Directory
  • B Azure Key Vault
  • C Azure Automation
  • D Azure Network Security
Explanation Azure Active Directory manages identity and conditional access policies, while the others focus on different Azure services.
Q119

A company needs to ensure its resources are accessible only from specific networks. What should they implement?

  • A Role-Based Access Control
  • B Network Security Groups
  • C Virtual Network Peering
  • D Azure Firewall
Explanation Network Security Groups can restrict access based on IP ranges, while the others do not provide this specific functionality.
Q120

What happens when a user is assigned multiple Azure roles at the same scope?

  • A Conflicting roles cancel each other
  • B Effective permissions are additive
  • C Only the highest role is applied
  • D Roles have no effect at all
Explanation Effective permissions are based on the cumulative roles assigned, unlike the other options which misrepresent the role assignment behavior.