Microsoft Azure

Microsoft Security, Compliance, and Identity Fundamentals

SC-900
Popular

Prepare for the SC-900 exam to validate your knowledge in Security, Compliance, and Identity Fundamentals.

150 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 11–20 of 150

Q11

A company needs to ensure that sensitive data in Azure meets specific compliance requirements. Which tool should they use?

  • A Azure Monitor
  • B Azure Policy
  • C Azure DevOps
  • D Azure Service Health
Explanation Azure Policy helps enforce compliance policies; the other tools don't specifically manage compliance requirements.
Q12

What happens when an Azure resource reaches its limit for usage?

  • A It shuts down automatically
  • B It continues to operate normally
  • C It throws an error and stops
  • D It auto-scales up
Explanation Reaching usage limits typically generates errors; the other options are incorrect or not possible.
Q13

Which Azure service helps manage identities and access control?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure DevOps
Explanation Azure Active Directory is dedicated to identity management, while the others serve different purposes.
Q14

A company needs to securely manage API access to its web applications. Which Azure feature is most suitable?

  • A Virtual Network
  • B API Management
  • C Azure Functions
  • D Azure Logic Apps
Explanation API Management provides tools to secure and manage API access, unlike the other options that don’t focus on API security.
Q15

You are configuring a security policy in Azure Security Center. What happens when you set a policy to mandatory?

  • A No resources can be created.
  • B Non-compliance will trigger alerts.
  • C All resources will auto-complete compliance.
  • D Policies apply only to new resources.
Explanation Mandatory policies enforce compliance and trigger alerts for non-compliant resources, unlike the other options which are incorrect interpretations of policy functionality.
Q16

Which Azure service provides threat detection and intelligence?

  • A Azure Sentinel
  • B Azure Storage
  • C Azure Functions
  • D Azure DevOps
Explanation Azure Sentinel offers security information and event management features, while the others do not focus on threat detection.
Q17

A company needs to ensure that sensitive data is protected during transit. Which service should they use?

  • A Azure VPN Gateway
  • B Azure Blob Storage
  • C Azure Logic Apps
  • D Azure Cognitive Services
Explanation Azure VPN Gateway creates a secure connection for data in transit, unlike the other options which focus on different functionalities.
Q18

What happens when a user is assigned multiple roles in Azure Active Directory?

  • A They can only use the lowest privilege role
  • B They can utilize all assigned roles
  • C Historical roles are disabled
  • D Role permissions are averaged
Explanation Users with multiple roles can access permissions from all roles assigned, ensuring comprehensive access controls.
Q19

Which Azure service is designed for managing identity and access?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure Kubernetes Service
Explanation Azure Active Directory is specifically for identity and access management, unlike the others.
Q20

A company needs to enforce data loss prevention across Microsoft 365. What should they use?

  • A Azure Sentinel
  • B Microsoft Information Protection
  • C Azure Firewall
  • D Power Automate
Explanation Microsoft Information Protection helps enforce data loss prevention in Microsoft 365.