Most Recent Microsoft SC-900 Exam Dumps

Prepare for the Microsoft Security, Compliance, and Identity Fundamentals exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Microsoft SC-900 exam and achieve success.

The questions for SC-900 were last updated on May 2, 2025.

Viewing page 1 out of 40 pages.
Viewing questions 1-5 out of 198 questions

Get All 198 Questions & Answers

Question No. 1

Which two types of devices can be managed by using Endpoint data loss prevention (Endpoint DLP)? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

AWindows 11

BLinux

CiOS

DmacOS

EAndroid

Show Answer

Correct Answer: A, D

Question No. 2

Which two Azure resources can a network security group (NSG) be associated with? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

Aa network interface

Ban Azure App Service web app

Ca virtual network

Da virtual network subnet

Ea resource group

Show Answer

Correct Answer: A, D

You can use an Azure network security group to filter network traffic to and from Azure resources in an Azure virtual network. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources.

Question No. 3

What is the purpose of Azure Active Directory (Azure AD) Password Protection?

Ato control how often users must change their passwords

Bto identify devices to which users can sign in without using multi-factor authentication (MFA)

Cto encrypt a password by using globally recognized encryption standards

Dto prevent users from using specific words in their passwords

Show Answer

Correct Answer: D

Explanation

Azure AD Password Protection detects and blocks known weak passwords and their variants, and can also block additional weak terms that are specific to your organization.

With Azure AD Password Protection, default global banned password lists are automatically applied to all users in an Azure AD tenant. To support your own business and security needs, you can define entries in a custom banned password list.

https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad-on-premises

Question No. 4

What are three uses of Microsoft Cloud App Security? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Ato discover and control the use of shadow IT

Bto provide secure connections to Azure virtual machines

Cto protect sensitive information hosted anywhere in the cloud

Dto provide pass-through authentication to on-premises applications

Eto prevent data leaks to noncompliant apps and limit access to regulated data

Show Answer

Correct Answer: A, C, E

https://docs.microsoft.com/en-us/defender-cloud-apps/what-is-defender-for-cloud-apps

Question No. 5

You have a Microsoft 365 E3 subscription.

You plan to audit user activity by using the unified audit log and Basic Audit.

For how long will the audit records be retained?

A15 days

B30 days

C90 days

D180 days

Show Answer

Correct Answer: C

Unlock All Questions for Microsoft SC-900 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 198 Questions & Answers