Microsoft Azure

Microsoft Security, Compliance, and Identity Fundamentals

SC-900
Popular

Prepare for the SC-900 exam to validate your knowledge in Security, Compliance, and Identity Fundamentals.

150 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 61–70 of 150

Q61

Which service helps manage and monitor compliance requirements?

  • A Azure Compliance Manager
  • B Azure AI
  • C Azure DevOps
  • D Azure Blob Storage
Explanation Azure Compliance Manager allows tracking compliance effectively, unlike others that focus on different functions.
Q62

A company needs to ensure sensitive data is encrypted at rest. Which Azure feature should they implement?

  • A Azure Key Vault
  • B Azure Function
  • C Azure Active Directory
  • D Azure Load Balancer
Explanation Azure Key Vault manages encryption keys for data protection at rest, while the others serve different purposes.
Q63

You are configuring Azure Active Directory conditional access. What is the outcome if a user falls outside the defined conditions?

  • A Access granted automatically
  • B Access denied immediately
  • C User notified for further actions
  • D Access granted with additional security step
Explanation Users not meeting conditions are denied access, contrary to other options that imply automation or notification.
Q64

Which service provides identity protection and security analytics?

  • A Microsoft Sentinel
  • B Azure Active Directory
  • C Microsoft Defender for Cloud
  • D Azure Policy
Explanation Azure Active Directory protects identities; the other options focus on broader security or compliance functions.
Q65

A company needs to monitor and log data across their cloud applications. Which Azure tool should they use?

  • A Azure DevOps
  • B Log Analytics
  • C Azure Blob Storage
  • D Azure SQL Database
Explanation Log Analytics collates logs and monitors applications, unlike the other tools which serve different purposes.
Q66

What happens when a user with global administrator privileges is deleted in Azure Active Directory?

  • A All their permissions are revoked
  • B They lose access permanently
  • C The directory becomes unsecured
  • D Global admin role is removed from Azure
Explanation Deleting a global admin revokes their permissions immediately, while access or directory security is not directly affected.
Q67

Which service provides identity and access management in Azure?

  • A Azure Active Directory
  • B Azure SQL Database
  • C Azure Functions
  • D Azure Blob Storage
Explanation Azure Active Directory is specifically designed for identity and access management, whereas the other options serve different purposes.
Q68

A company needs to ensure data in Azure is encrypted at rest. What should they use?

  • A Azure Blob Service
  • B Azure Key Vault
  • C Azure SQL Database
  • D Azure Storage Service Encryption
Explanation Azure Storage Service Encryption automatically encrypts data at rest, while the other options do not provide this specific functionality.
Q69

You are configuring Azure Security Center. What happens when you enable the 'Free Tier'?

  • A Comprehensive security assessments disabled
  • B Basic security monitoring enabled
  • C Advanced threat protection activated
  • D No security features available
Explanation Enabling the 'Free Tier' in Azure Security Center allows basic security monitoring, while the other options incorrectly describe the limitations.
Q70

Which Azure service allows for integrated log management and monitoring?

  • A Azure Monitor
  • B Azure Logic Apps
  • C Azure Update Management
  • D Azure Functions
Explanation Azure Monitor is designed for logging and monitoring, while the others serve different purposes.