Microsoft Cybersecurity Architect
Last Update Aug 31, 2025
Total Questions : 228
To help you prepare for the SC-100 Microsoft exam, we are offering free SC-100 Microsoft exam questions. All you need to do is sign up, provide your details, and prepare with the free SC-100 practice questions. Once you have done that, you will have access to the entire pool of Microsoft Cybersecurity Architect SC-100 test questions which will help you better prepare for the exam. Additionally, you can also find a range of Microsoft Cybersecurity Architect resources online to help you better understand the topics covered on the exam, such as Microsoft Cybersecurity Architect SC-100 video tutorials, blogs, study guides, and more. Additionally, you can also practice with realistic Microsoft SC-100 exam simulations and get feedback on your progress. Finally, you can also share your progress with friends and family and get encouragement and support from them.
You have a Microsoft 365 subscription that contains 1,000 users. Each user is assigned a Microsoft 365 E5 license.
The subscription uses sensitivity labels to classify corporate documents. All the users have Windows 11 devices that are onboarded to Microsoft Defender for Endpoint and are configured to sync files to Microsoft OneDrive.
You need to prevent the users from uploading the documents from OneDrive to external websites.
What should you include in the solution?
Your company has a Microsoft 365 E5 subscription, an Azure subscription, on-premises applications, and Active Directory Domain Services (AD DS).
You need to recommend an identity security strategy that meets the following requirements:
• Ensures that customers can use their Facebook credentials to authenticate to an Azure App Service website
• Ensures that partner companies can access Microsoft SharePoint Online sites for the project to which they are assigned
The solution must minimize the need to deploy additional infrastructure components. What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You have a Microsoft Entra tenant named contoso.com and use Microsoft Intune. Each user in contoso.com has a Microsoft Entra ID P1 license and a Windows 11 device that has the Global Secure Access client deployed.
You plan to deploy the following configuration of Microsoft Entra Internet Access:
• Enable a baseline profile.
• Create a security profile named Profile` that has a priority of 300 and contains a single web content filtering policy named WCFPolicy configure WCFPolicy1 as follows:
o Set Action to allow.
o Include a single rule that has a fully qualified domain name (FQDN) destination of ‘. adatum.com.
• Link Profile1 to a Conditional Access policy named CAPolicy1, apply CAPolicy1 to all users, and grant access unless a user's device is noncompliant
You need to evaluate the impact of the planned deployment on traffic to the following resources:
• https://www.adatum.com:8433
• https://www.fabrikam.com
Which two traffic scenarios will occur? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point
You plan to automate the development and deployment of a Nodejs-based app by using GitHub.
You need to recommend a DevSecOps solution for the app. The solution must meet the following requirements:
• Automate the generation of pull requests that remediate identified vulnerabilities.
• Automate vulnerability code scanning for public and private repositories.
• Minimize administrative effort.
• Minimize costs.
What should you recommend using? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
TESTED 31 Aug 2025
Graphical user interface, application
Description automatically generated
A close up of a text
Description automatically generated