SC-100 試験問題を無料オンラインアクセス

You are designing a ransomware response plan that follows Microsoft Security Best Practices.
You need to recommend a solution to minimize the risk of a ransomware attack encrypting local user files.
What should you include in the recommendation?

• A.protected folders
• B.Azure Files
• C.Microsoft Defender for Endpoint
• D.BitLocker Drive Encryption (BitLocker)
• E.Windows Defender Device Guard

Your company plans to deploy several Azure App Service web apps. The web apps will be deployed to the West Europe Azure region. The web apps will be accessed only by customers in Europe and the United States.
You need to recommend a solution to prevent malicious bots from scanning the web apps for vulnerabilities. The solution must minimize the attach surface.
What should you include in the recommendation?

• A.Azure Traffic Manager and application security groups
• B.Azure Firewall Premium
• C.network security groups (NSGs)
• D.Azure Application Gateway Web Application Firewall (WAF)

You have an Azure AD tenant that syncs with an Active Directory Domain Services (AD DS) domain.
You have an on-premises datacenter that contains 100 servers. The servers run Windows Server and are backed up by using Microsoft Azure Backup Server (MABS).
You are designing a recovery solution for ransomware attacks. The solution follows Microsoft Security Best Practices.
You need to ensure that a compromised administrator account cannot be used to delete the backups What should you do?

• A.From Microsoft Azure Backup Setup, register MABS with a Recovery Services vault
• B.From a Recovery Services vault generate a security PIN for critical operations.
• C.From Azure AD Privileged Identity Management (PIM), create a role assignment for the Backup Contributor role.
• D.From Azure Backup, configure multi-user authorization by using Resource Guard.

You have an Azure subscription that contains a Microsoft Sentinel workspace named MSW1. MSW1 includes 50 scheduled analytics rules.
You need to design a security orchestration automated response (SOAR) solution by using Microsoft Sentinel playbooks. The solution must meet the following requirements:
* Ensure that expiration dates can be configured when a playbook runs.
* Minimize the administrative effort required to configure individual analytics rules.
What should you use to invoke the playbooks, and which type of Microsoft Sentinel trigger should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解：

Your company has a Microsoft 365 E5 subscription.
The company plans to deploy 45 mobile self-service kiosks that will run Windows 10. You need to provide recommendations to secure the kiosks. The solution must meet the following requirements:
* Ensure that only authorized applications can run on the kiosks.
* Regularly harden the kiosks against new threats.
Which two actions should you include in the recommendations? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

• A.Onboard the kiosks to Azure Monitor.
• B.Implement Automated Investigation and Remediation (AIR) in Microsoft Defender for Endpoint.
• C.Implement threat and vulnerability management in Microsoft Defender for Endpoint.
• D.Onboard the kiosks to Microsoft Intune and Microsoft Defender for Endpoint.
• E.Implement Privileged Access Workstation (PAW) for the kiosks.