Microsoft Azure

Microsoft Identity and Access Administrator

SC-300
Popular

Pass the SC-300 exam to become a Microsoft Identity and Access Administrator.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 81–90 of 147

Q81

You are configuring enterprise applications in Azure AD. What happens when an application's SSO settings are misconfigured?

  • A Users can still log in normally
  • B Users are locked out of Azure AD
  • C Authentication fails for users
  • D Azure AD automatically fixes it
Explanation Misconfigured SSO settings typically lead to authentication failures, while other options inaccurately describe potential outcomes.
Q82

Which service is primarily used for Conditional Access in Azure AD?

  • A Azure Active Directory
  • B Azure Storage
  • C Azure Functions
  • D Azure VPN
Explanation Azure Active Directory enables Conditional Access, while the others serve different purposes.
Q83

A company needs to restrict access to sensitive data based on user location. What should they implement?

  • A Multi-Factor Authentication
  • B Network Security Groups
  • C Conditional Access Policies
  • D Role-Based Access Control
Explanation Conditional Access Policies allow location-based restrictions, unlike the other options.
Q84

What happens when a user is marked as 'Deleted' in Azure AD?

  • A User data is permanently lost
  • B User is moved to a recycle bin
  • C User is logged out immediately
  • D User's permissions are revoked instantly
Explanation Deleted users go to a recycle bin for 30 days, unlike permanent loss or immediate actions of other options.
Q85

Which Azure service helps manage identities and access permissions?

  • A Azure Active Directory
  • B Azure Storage
  • C Azure Virtual Machines
  • D Azure CDN
Explanation Azure Active Directory is designed for identity and access management; the others do not serve this purpose.
Q86

A company needs to enforce multi-factor authentication for all administrative accounts. What should the administrator configure?

  • A Compliance policies
  • B Conditional Access policies
  • C Role-based Access Control
  • D Identity Protection policies
Explanation Conditional Access policies allow rules like MFA for specific scenarios, making it the correct choice.
Q87

You are configuring SSO with an external SaaS application using SAML. What happens if the SAML assertion is not signed?

  • A Authentication fails
  • B User is automatically logged in
  • C The application ignores the assertion
  • D Only some attributes are validated
Explanation Authentication fails because unsigned assertions are typically rejected for security reasons.
Q88

Which Azure service is used for identity governance?

  • A Azure Active Directory
  • B Azure Monitor
  • C Azure DevOps
  • D Azure SQL Database
Explanation Azure Active Directory provides identity governance features, while the others serve different purposes.
Q89

A company needs temporary access to a resource for a vendor. Which Azure feature should they use?

  • A Permanent user assignment
  • B Access reviews
  • C Privileged Identity Management
  • D Service principal
Explanation Privileged Identity Management allows for temporary elevation of access, while others do not directly provide this capability.
Q90

What happens when a user's license is removed from Azure Active Directory?

  • A Immediate deletion of user account
  • B Loss of all data access rights
  • C User retains access for 30 days
  • D User accesses services indefinitely
Explanation Removing a license revokes access rights immediately, while the other options misinterpret the license management process.