SC-300 Question #20: Real Exam Question with Answer & Explanation

Sign in or unlock SC-300 to reveal the answer and full explanation for question #20. The question stem and answer options stay visible for context.

Submitted by saadiq_pk· Mar 6, 2026Implement identity management solution

Question

You have an Azure Active Directory (Azure AD) tenant that contains a user named SecAdmin1. SecAdmin1 is assigned the Security administrator role. SecAdmin1 reports that she cannot reset passwords from the Azure AD Identity Protection portal. You need to ensure that SecAdmin1 can manage passwords and invalidate sessions on behalf of non-administrative users. The solution must use the principle of least privilege. Which role should you assign to SecAdmin1?

Options

AAuthentication administrator
BHelpdesk administrator
CPrivileged authentication administrator
DSecurity operator

Unlock SC-300 to see the answer

You've previewed enough free SC-300 questions. Unlock SC-300 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock SC-300 - $49.99 / 30 days Sign in

Topics

#Azure AD roles#Least privilege#Password management#Helpdesk administrator

Full SC-300 Practice Browse All SC-300 Questions