Browse Exams Pricing

ExamsSC-300Questions

SC-300 Exam Questions

438 real SC-300 exam questions with expert-verified answers and explanations. Page 7 of 9.

Question #311
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Question #312Manage user identity and licensing - specifically assigning Microsoft 365 licenses to groups using the Microsoft 365 Admin Center (aligned with MS-102: Microsoft 365 Administrator or MD-102: Endpoint Administrator objectives)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Group-Based LicensingMicrosoft 365 Admin CenterLicense ManagementWindows 10/11 Enterprise
Question #313Manage Microsoft Entra Identity and Access - Implement and manage privileged access using Privileged Identity Management (PIM) and role-assignable groups, aligned to the SC-300 (Microsoft Identity and Access Administrator) or MS-102 certification domain.
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Microsoft Entra IDPrivileged Identity Management (PIM)Role-Assignable GroupsSecurity Reader Role
Question #314
Hotspot Question You have a Microsoft Entra tenant named contoso.com that contains an administrative unit named AU1 and two users named User1 and User2. User1 is a member of AU1. Y...
Question #315
You have 2,500 users who are assigned Microsoft Office 365 Enterprise E3 licenses. The licenses are assigned to individual users. From the Groups blade in the Microsoft Entra admin...
Question #316
You have an Azure subscription that contains a storage account named storage1. You plan to deploy an app named App1 that will be hosted on multiple virtual machines. The virtual ma...
Question #317Plan and implement workload identities
You have an Azure subscription that contains an Azure Automation account named Automation1. You need to grant Automation1 access to Azure resources. The solution must meet the foll...
Managed IdentitiesSystem-assigned managed identityAzure AutomationWorkload Identities
Question #318Implement access management for apps
You have a Microsoft Entra tenant named contoso.com that contains an enterprise application named App1. A contractor uses the credentials of [email protected]. You need to ensure t...
Microsoft Entra B2BGuest usersExternal collaborationApplication access
Question #319
You have a Microsoft Exchange organization that uses an SMTP address space of contoso.com. Several users use their contoso.com email address for self-service sign-up to Microsoft E...
Question #320Implement access management for apps
You have a Microsoft Entra tenant that contains the users shown in the following table. You add an enterprise application named App1 and configure the following Self-service settin...
Microsoft Entra IDEnterprise ApplicationsSelf-service accessApplication access management
Question #322
Hotspot Question You have two Microsoft Entra tenants named contoso.com and fabrikam.com. Contoso.com contains the users shown in the following table. Contoso.com contains the grou...
Question #324
Hotspot Question You have an Azure subscription named Sub1 that contains three users named User1, User2, and User3. Sub1 has a storage account named storage1 that contains the reso...
Question #325Implement identity management solution
You have a Microsoft Entra tenant. You need to query risky user activity for the tenant. How long will the logs of risky user activity be retained?
Microsoft Entra ID ProtectionRisky user activityLog retentionSecurity logs
Question #326
Hotspot Question You have an Azure subscription. From Entitlement management, you plan to create a catalog named Catalog1 that will contain a custom extension. What should you crea...
Question #327
You have an Azure AD tenant that contains the users shown in the following table. You enable self-service password reset (SSPR) for all the users and configure SSPR to require secu...
Question #328
You have an Azure AD tenant. You need to implement smart lockout with a lockout threshold of 10 failed sign-ins. What should you configure in the Azure AD admin center?
Question #329Implement authentication and access management
You configure a new Microsoft 365 tenant to use a default domain name of contoso.com. You need to ensure that you can control access to Microsoft 365 resources by using conditional...
Conditional AccessSecurity defaultsAzure ADAccess Control
Question #330
You have an on-premises app named App1. You have a Microsoft Entra tenant. You plan to publish App1 by using Microsoft Entra Private Access. You need to enable the Private access p...
Question #331Implement and manage Microsoft Entra Internet Access / Global Secure Access - specifically configuring web content filtering policies and security profiles to control user access to web destinations.
Drag and Drop Question You have a Microsoft 365 E5 subscription. The subscription contains 500 devices that run Windows. You deploy the Global Secure Access client to the devices....
Global Secure AccessMicrosoft Entra Internet AccessWeb Content FilteringConditional Access
Question #332Implement authentication and access management solution
You have an Azure subscription. The subscription contains a virtual machine named VM1 that runs Linux. You need to configure enhanced security for VM1. The solution must meet the f...
Microsoft Entra authenticationPasswordless sign-inMulti-factor authentication (MFA)Linux VM integration
Question #333Plan and implement identity governance
You have a Microsoft 365 E5 subscription. You create an access review named Review1. Review1 requires that every six months, Microsoft 365 group owners review guest user access to...
Access ReviewsIdentity GovernanceGuest User ManagementAzure AD
Question #334Implement and manage identity and access in Microsoft 365 / Microsoft Entra ID - specifically configuring Conditional Access policies to enforce MFA for targeted user groups and cloud applications (MS-102 / SC-300 exam domain)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Conditional AccessMulti-Factor Authentication (MFA)Microsoft Entra IDIdentity Protection
Question #335Implement and manage identity and access in Microsoft 365 - specifically configuring Conditional Access policies to control authentication session behavior, mapped to MS-102: Microsoft 365 Administrator or SC-300: Microsoft Identity and Access Administrator exam objectives.
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Conditional AccessMicrosoft Entra IDSign-in FrequencySession Controls
Question #336Implement and manage identity protection and governance - specifically configuring risk-based Conditional Access policies in Microsoft Entra ID (SC-300 / MS-102 / AZ-500 domain: Manage Identity Security)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Microsoft Entra Identity ProtectionConditional AccessMulti-Factor AuthenticationSign-in Risk Policy
Question #337Implement and manage identity protection - specifically configuring MFA registration policies using Microsoft Entra ID Protection to target specific groups and exclude specific users without Conditional Access (aligned to SC-300: Microsoft Identity and Access Administrator or MS-102: Microsoft 365 Administrator Expert)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Multi-Factor AuthenticationIdentity ProtectionMFA Registration PolicyMicrosoft Entra ID
Question #338Implement authentication and access management solution
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
MFA registration policyMicrosoft Entra Identity ProtectionGroup-based assignmentsUser exclusion
Question #339Implement and manage Microsoft Entra ID Governance - specifically managing access packages and resource roles within Entitlement Management (Microsoft SC-300 / MS-102 Identity Governance domain)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Entitlement ManagementAccess PackagesMicrosoft Entra ID GovernanceIdentity Governance
Question #340Implement and manage identity and access - specifically configuring Conditional Access policies to enforce device compliance and app protection requirements for targeted user groups (Microsoft 365 MS-102 / SC-300 / MD-102 certification domain: Manage Access and Authentication)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Conditional AccessMicrosoft Entra ID / Azure ADMicrosoft Intune ComplianceApp Protection Policies
Question #341Implement and manage identity and access in Microsoft 365 - specifically configuring authentication security policies including Smart Lockout to protect against brute-force attacks (MS-102 / SC-300 domain: Protect Identities)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Microsoft Entra IDSmart LockoutPassword ProtectionIdentity Security
Question #342Implement and manage identity and access in Microsoft Entra ID - specifically configuring Conditional Access policies to enforce authentication controls and protect against legacy authentication protocol vulnerabilities (MS-102 / SC-300 domain: Implement Access Management)
SIMULATION Use the following login credentials as needed: To enter your username, place your cursor in the Sign in box and click on the username below. To enter your password, plac...
Conditional AccessLegacy AuthenticationMicrosoft Entra IDIdentity Protection
Question #343
You have a Microsoft Entra tenant that contains a terms of use (ToU) named Terms1. You create a Conditional Access policy named Policy1 to deploy Terms1. You need to configure Poli...
Question #344Plan and implement workload identities
You have an Azure subscription that contains a virtual machine named VM1 and an Azure key vault named Vault1. VM1 has a system-assigned managed identity. You need to ensure that VM...
Managed IdentityAzure Key VaultAzure RBACWorkload Identity Access
Question #345Plan and implement identity governance
You have a Microsoft 365 E5 subscription that contains a user named User1. You need to ensure that User1 can create access reviews for Microsoft Entra roles. The solution must use...
Access ReviewsMicrosoft Entra rolesLeast PrivilegeRBAC
Question #346Implement authentication and access management solution
You have a Microsoft Entra tenant that contains the users shown in the following table. Admin4 creates a Conditional Access policy named Policy1 by using the Require multifactor au...
Conditional AccessMulti-factor AuthenticationAzure Management
Question #347
You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site1 and a Microsoft Teams team named Team1. The subscription contains five securit...
Question #348Implement identity management solution
You have a Microsoft Entra tenant. You open the risk detections report. Which risk detection type is classified as a user risk?
Microsoft Entra ID ProtectionUser RiskRisk DetectionsIdentity Protection
Question #349Implement access management for apps
You have a Microsoft 365 subscription that uses Microsoft Defender for Cloud Apps. You have multiple third-party apps that access the resources in the subscription. You need to mon...
Microsoft Defender for Cloud AppsOAuth applicationsApp monitoringThird-party apps
Question #350
Hotspot Question You have an Azure subscription named Sub1. You plan to use Microsoft Entra Permissions Management to manage Sub1. You need to ensure that Permissions Management ca...
Question #351
Hotspot Question You have a Microsoft 365 E5 subscription that contains two groups named Group1 and Group2. The subscription contains the users shown in the following table. You cr...
Question #352
Hotspot Question You have a Microsoft 365 E5 subscription that contains a Microsoft Teams team named Team1 and two Microsoft 365 groups named Group1 and Group2. The subscription co...
Question #353
You have an Azure subscription that contains a virtual machine named VM1. VM1 has the following configurations: - Private IP address: 172.16.1.5 - Public IP address: 108.143.161.25...
Question #354Implement authentication and access management solution
You have a Microsoft Entra tenant. You need to create a Conditional Access policy to manage administrative access to the tenant. The solution must ensure that administrators are au...
Conditional AccessMulti-factor Authentication (MFA)Phishing ResistanceAuthentication Methods
Question #355Implement authentication and access management solution
You have a Microsoft Entra tenant. You configure self-service password reset (SSPR) by using the following settings: - Require users to register when signing in: Yes - Number of me...
SSPRAuthentication MethodsMicrosoft Entra IDUser Identities
Question #356
You have a Microsoft 365 E5 subscription. You need to be able to create a Microsoft Defender for Cloud Apps session policy. What should you do first?
Question #357Implement authentication and access management solution
Your network contains an on-premises Active Directory Domain Services (AD DS) domain that syncs user accounts with a Microsoft 365 E5 subscription. You need to ensure that on-premi...
Pass-through authenticationHybrid identityAuthentication methodsAccount lockout policies
Question #358Implement and manage user identities
You have a Microsoft Entra tenant. You open the risk detections report. Which risk detection type is classified as a user risk?
Microsoft Entra ID ProtectionUser RiskRisk DetectionThreat Intelligence
Question #359Implement authentication and access management solution
You have a Microsoft Entra tenant. You configure self-service password reset (SSPR) by using the following settings: - Require users to register when signing in: Yes - Number of me...
Self-Service Password ResetSSPRMicrosoft Entra IDAuthentication Methods
Question #360Implement authentication and access management solution
You have a Microsoft 365 tenant. All users have mobile phones and Windows 10 laptops. The users frequently work from remote locations that do not have Wi-Fi access or mobile phone...
Multi-factor authenticationWindows Hello for BusinessAuthentication methodsAzure AD MFA
Question #361Implement authentication and access management solution
You have a Microsoft Entra tenant. You configure self-service password reset (SSPR) by using the following settings: - Require users to register when signing in: Yes - Number of me...
Self-service password reset (SSPR)Authentication methodsMicrosoft Entra IDUser identity management
Question #363Manage Azure identities and governance - specifically managing authorization using Azure Role-Based Access Control (RBAC) and understanding data plane vs. management plane permissions for Azure resources including VMs and Key Vault.
Hotspot Question You have an Azure subscription that contains a resource group named RG1. RG1 contains two virtual machines named VM1 and VM2 that have Microsoft Entra ID login ena...
Azure RBACMicrosoft Entra IDKey Vault Access ControlVirtual Machine Login Roles

PreviousPage 7 of 9Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.