Microsoft Exam SC-100 Topic 1 Question 59 Discussion

Actual exam question for Microsoft's SC-100 exam

Question #: 59
Topic #: 1

[All SC-100 Questions]

A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and an Azure subscription.

All the on-premises servers in the perimeter network are prevented from connecting directly to the internet.

The customer recently recovered from a ransomware attack.

The customer plans to deploy Microsoft Sentinel.

You need to recommend configurations to meet the following requirements:

* Ensure that the security operations team can access the security logs and the operation logs.

* Ensure that the IT operations team can access only the operations logs, including the event logs of the servers in the perimeter network.

Which two configurations can you include in the recommendation? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

AAzure Active Directory (Azure AD) Conditional Access policies

Ba custom collector that uses the Log Analytics agent

Cresource-based role-based access control (RBAC)

Dthe Azure Monitor agent

Show Suggested Answer

Suggested Answer: D

by Vinnie at Jan 11, 2025, 07:42 AM

Limited Time Offer

25%

Off

Get Premium SC-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Francoise

4 days ago

I believe we should also include a custom collector that uses the Log Analytics agent to meet the requirements.

upvoted 0 times

...

Candra

10 days ago

I agree with you, Sherell. That will help ensure that the security operations team can access the security logs and the operation logs.

upvoted 0 times

...

Sherell

11 days ago

I think we should include Azure Active Directory Conditional Access policies in the recommendation.

upvoted 0 times

...