MicrosoftMicrosoft
SC-200 · Question #11
SC-200 Question #11: Real Exam Question with Answer & Explanation
Sign in or unlock SC-200 to reveal the answer and full explanation for question #11. The question stem and answer options stay visible for context.
Submitted by fernanda_arg· Apr 18, 2026Configure protections and detections
Question
You need to receive a security alert when a user attempts to sign in from a location that was never used by the other users in your organization to sign in. Which anomaly detection policy should you use?
Options
- AImpossible travel
- BActivity from anonymous IP addresses
- CActivity from infrequent country
- DMalware detection
Unlock SC-200 to see the answer
You've previewed enough free SC-200 questions. Unlock SC-200 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Anomaly Detection#Identity Protection#Sign-in Risk Policies#Location-based Security