Microsoft how2pass sc-100 Exam Lab Questions by Lily-rose q117 vce pdf

Page: 2 / 10

Exam Name:	Microsoft Cybersecurity Architect
Exam Code:	SC-100 Dumps
Vendor:	Microsoft	Certification:	Microsoft Certified: Cybersecurity Architect Expert
Questions:	228 Q&A's	Shared By:	lily-rose

Question 8

Your company plans to provision blob storage by using an Azure Storage account The blob storage will be accessible from 20 application sewers on the internet. You need to recommend a solution to ensure that only the application servers can access the storage account. What should you recommend using to secure the blob storage?

Options:

service tags in network security groups (NSGs)

managed rule sets in Azure Web Application Firewall (WAF) policies

inbound rules in network security groups (NSGs)

firewall rules for the storage account

inbound rules in Azure Firewall

Discussion

Question 9

You have a Microsoft Entra tenant named contoso.com and use Microsoft Intune. Each user in contoso.com has a Microsoft Entra ID P1 license and a Windows 11 device that has the Global Secure Access client deployed.

You plan to deploy the following configuration of Microsoft Entra Internet Access:

• Enable a baseline profile.

• Create a security profile named Profile` that has a priority of 300 and contains a single web content filtering policy named WCFPolicy configure WCFPolicy1 as follows:

o Set Action to allow.

o Include a single rule that has a fully qualified domain name (FQDN) destination of ‘. adatum.com.

• Link Profile1 to a Conditional Access policy named CAPolicy1, apply CAPolicy1 to all users, and grant access unless a user's device is noncompliant

You need to evaluate the impact of the planned deployment on traffic to the following resources:

• https://www.adatum.com:8433

• https://www.fabrikam.com

Which two traffic scenarios will occur? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point

Options:

Traffic to https://www.fabrikam.com will be allowed from all the devices.

Traffic to https://www.adatum.com:8433 will be blocked from all the devices.

Traffic to https://www.adatumxom:8433 will be allowed from all the devices.

Traffic to https://www.fabrikam.com will be allowed from compliant devices only.

Traffic to https://www.adatum.com:8433 will be allowed from compliant devices only.

Traffic to https://www.fabrikam.com will be blocked from noncompliant devices only.

Discussion

Question 10

Your company is designing an application architecture for Azure App Service Environment (ASE) web apps as shown in the exhibit. (Click the Exhibit tab.)

Questions 10

Communication between the on-premises network and Azure uses an ExpressRoute connection.

You need to recommend a solution to ensure that the web apps can communicate with the on-premises application server. The solution must minimize the number of public IP addresses that are allowed to access the on-premises network.

What should you include in the recommendation?

Options:

Azure Traffic Manager with priority traffic-routing methods

Azure Application Gateway v2 with user-defined routes (UDRs).

Azure Front Door with Azure Web Application Firewall (WAF)

Azure Firewall with policy rule sets

Discussion

Syeda

I passed, Thank you Cramkey for your precious Dumps.

Stella Jul 18, 2025

That's great. I think I'll give Cramkey Dumps a try.

Lennie

I passed my exam and achieved wonderful score, I highly recommend it.

Emelia Jul 4, 2025

I think I'll give Cramkey a try next time I take a certification exam. Thanks for the recommendation!

Lennox

Something Special that they provide a comprehensive overview of the exam content. They cover all the important topics and concepts, so you can be confident that you are well-prepared for the test.

Aiza Jul 21, 2025

That makes sense. What makes Cramkey Dumps different from other study materials?

Addison

Want to tell everybody through this platform that I passed my exam with excellent score. All credit goes to Cramkey Exam Dumps.

Libby Jul 11, 2025

That's good to know. I might check it out for my next IT certification exam. Thanks for the info.

Ayesha

They are study materials that are designed to help students prepare for exams and certification tests. They are basically a collection of questions and answers that are likely to appear on the test.

Ayden Jul 5, 2025

That sounds interesting. Why are they useful? Planning this week, hopefully help me. Can you give me PDF if you have ?

Question 11

You have an Azure subscription that contains a Microsoft Sentinel workspace named MSW1. MSW1 includes 50 scheduled analytics rules.

You need to design a security orchestration automated response (SOAR) solution by using Microsoft Sentinel playbooks. The solution must meet the following requirements:

• Ensure that expiration dates can be configured when a playbook runs.

• Minimize the administrative effort required to configure individual analytics rules.

What should you use to invoke the playbooks, and which type of Microsoft Sentinel trigger should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Questions 11