Microsoft Azure

Microsoft Certified: Information Security Administrator Associate

SC-401

Achieve the SC-401 certification as an Information Security Administrator Associate.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 147

Q121

Which Azure service provides advanced threat protection for databases?

  • A Azure Defender for SQL
  • B Azure Blob Storage
  • C Azure Active Directory
  • D Azure Traffic Manager
Explanation Azure Defender for SQL offers threat protection and security management for SQL databases, while the other options do not serve this specific purpose.
Q122

A company needs to ensure that all access to Azure resources is logged. What should they implement?

  • A Azure Activity Log
  • B Azure Resource Manager
  • C Role-Based Access Control
  • D Network Security Group
Explanation The Azure Activity Log provides information about operations on resources, while the other options focus on different aspects of resource management and security.
Q123

You are configuring a conditional access policy in Azure AD. What happens if a user is deemed non-compliant?

  • A Access is granted immediately
  • B Access is blocked automatically
  • C User receives a warning
  • D User is logged out instead
Explanation If a user is non-compliant, the access is blocked per the conditional access policy, while the other options do not reflect the outcome of a non-compliant status.
Q124

Which service provides real-time threat detection in Azure?

  • A Azure Security Center
  • B Azure Blob Storage
  • C Azure DevOps
  • D Azure Logic Apps
Explanation Azure Security Center offers real-time threat detection, while the other options serve different functions.
Q125

A company needs to ensure compliance with GDPR for their Azure resources. What should they primarily implement?

  • A Azure Policy
  • B Azure Monitor
  • C Azure DevTest Labs
  • D Azure App Service
Explanation Azure Policy helps enforce compliance regulations, while the other services do not specifically address compliance.
Q126

What happens when you disable a user account in Azure Active Directory?

  • A Access to all Azure services is revoked
  • B User data is deleted immediately
  • C User can access resources until username is changed
  • D Subscriptions associated with user are terminated
Explanation Disabling an account prevents access to resources, while others imply incorrect actions regarding user data and subscriptions.
Q127

Which Azure service provides a framework for building CI/CD pipelines?

  • A Azure DevOps
  • B Azure Kubernetes Service
  • C Azure Portal
  • D Azure Virtual Network
Explanation Azure DevOps is specifically designed for CI/CD pipelines, whereas others serve different purposes.
Q128

A company needs to monitor access to sensitive data in Azure Storage. Which Azure feature should they implement?

  • A Azure RBAC
  • B Azure Activity Log
  • C Azure Monitor
  • D Azure Storage Analytics
Explanation Azure Storage Analytics specifically tracks access patterns, while others focus on different metrics or activities.
Q129

You are configuring Azure AD Conditional Access. What happens when a user fails to fulfill the designated controls?

  • A Access is denied
  • B Access is granted with limitations
  • C User is redirected to a help page
  • D Account is suspended for 30 days
Explanation Conditional Access denies access unless the controls are satisfied, while the others describe incorrect outcomes.
Q130

Which service offers security assessments in Azure?

  • A Azure Security Center
  • B Azure Cosmos DB
  • C Azure DevOps
  • D Azure Resource Manager
Explanation Azure Security Center provides integrated security assessments; others do not focus on security directly.