SC-100 Question #120: Real Exam Question with Answer & Explanation

The correct answer is A: Privileged Access Workstations (PAWs). {"question_number": 6, "correct_answer": "A", "explanation": "Privileged Access Workstations (PAWs) are the correct recommendation. PAWs are hardened, dedicated devices used exclusively for privileged administrative tasks, isolated from internet browsing, email, and general-use a

Design security operations, identity, and compliance capabilities

Question

You are designing a ransomware response plan that follows Microsoft Security Best Practices. You need to recommend a solution to limit the scope of damage of ransomware attacks without being locked out. What should you include in the recommendation?

Options

APrivileged Access Workstations (PAWs)
Bemergency access accounts
Cdevice compliance policies
DCustomer Lockbox for Microsoft Azure

Explanation

{"question_number": 6, "correct_answer": "A", "explanation": "Privileged Access Workstations (PAWs) are the correct recommendation. PAWs are hardened, dedicated devices used exclusively for privileged administrative tasks, isolated from internet browsing, email, and general-use applications. By confining privileged operations to PAWs, ransomware that infects a general-use endpoint cannot easily compromise administrative credentials or spread laterally to critical systems. Emergency access accounts (B) prevent lockout but do not limit ransomware scope. Device compliance policies (C) enforce baseline health but do not isolate privileged sessions. Customer Lockbox (D) controls Microsoft support access to data, which is unrelated to ransomware lateral movement.", "generated_by": "claude-sonnet", "llm_judge_score": 4}

Topics

#Ransomware protection#Privileged Access Workstations#Damage containment#Security best practices

Community Discussion

No community discussion yet for this question.

Full SC-100 Practice Browse All SC-100 Questions