1. Home
  2. Microsoft
  3. SC-300

Microsoft Identity and Access Administrator

Exam Details

  • Exam Code
    :SC-300
  • Exam Name
    :Microsoft Identity and Access Administrator
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :305 Q&As
  • Last Updated
    :Mar 29, 2025

Microsoft Microsoft Certifications SC-300 Questions & Answers

  • Question 181:

    You have a Microsoft 365 tenant.

    The Azure Active Directory (Azure AD) tenant contains the groups shown in the following table.

    In Azure AD. you add a new enterprise application named Appl. Which groups can you assign to App1?

    A. Group1 and Group

    B. Group2 only

    C. Group3 only

    D. Group1 only

    E. Group1 and Group4

  • Question 182:

    You have an Azure Active Directory (Azure AD) tenant.

    You create an enterprise application collection named HR Apps that has the following settings:

    1.

    Applications: Appl. App?, App3

    2.

    Owners: Admin 1

    3.

    Users and groups: HRUsers

    AH three apps have the following Properties settings:

    1.

    Enabled for users to sign in: Yes

    2.

    User assignment required: Yes

    3.

    Visible to users: Yes

    Users report that when they go to the My Apps portal, they only sue App1 and App2-You need to ensure that the users can also see App3. What should you do from App3? What should you do from App3?

    A. From Users and groups, add HRUsers.

    B. Prom Properties, change User assignment required to No.

    C. From Permissions, review the User consent permissions.

    D. From Single sign on, configure a sign-on method.

  • Question 183:

    Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while

    others might not have a correct solution.

    After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

    You have a Microsoft 365 tenant.

    You have 100 IT administrators who are organized into 10 departments.

    You create the access review shown in the exhibit. (Click the Exhibit tab.)

    You discover that all access review requests are received by Megan Bowen.

    You need to ensure that the manager of each department receives the access reviews of their respective department.

    Solution: You set Reviewers to Member (self).

    Does this meet the goal?

    A. Yes

    B. No

  • Question 184:

    You have an Azure Active Directory (Azure AD) tenant that uses conditional access policies.

    You plan to use third-party security information and event management (SIEM) to analyze conditional access usage.

    You need to download the Azure AD log that contains conditional access policy data.

    What should you export from Azure AD?

    A. sign-ins in JSON format

    B. sign-ins in CSV format

    C. audit logs in JSON format

    D. audit logs in CSV format

  • Question 185:

    You use Azure Monitor to analyze Azure Active Directory (Azure AD) activity logs.

    Yon receive more than 100 email alerts each day for tailed Azure Al) user sign-in attempts.

    You need to ensure that a new security administrator receives the alerts instead of you.

    Solution: From Azure monitor, you modify the action group.

    Does this meet the goal?

    A. Yes

    B. No

  • Question 186:

    You have an Azure Active Directory (Azure AD) tenant.

    You open the risk detections report.

    Which risk detection type is classified as a user risk?

    A. impossible travel

    B. anonymous IP address

    C. atypical travel

    D. leaked credentials

  • Question 187:

    You have an Azure Active Directory (Azure AD) tenant named contoso.com that has Azure AD Identity Protection policies enforced.

    You create an Azure Sentinel instance and configure the Azure Active Directory connector.

    You need to ensure that Azure Sentinel can generate incidents based on the risk alerts raised by Azure AD Identity Protection.

    What should you do first?

    A. Add an Azure Sentinel data connector.

    B. Configure the Notify settings in Azure AD Identity Protection.

    C. Create an Azure Sentinel playbook.

    D. Modify the Diagnostics settings in Azure AD.

  • Question 188:

    You have a Microsoft 365 tenant.

    All users must use the Microsoft Authenticator app for multi-factor authentication (MFA) when accessing Microsoft 365 services.

    Some users report that they received an MFA prompt on their Microsoft Authenticator app without initiating a sign-in request.

    You need to block the users automatically when they report an MFA request that they did not Initiate.

    Solution: From the Azure portal, you configure the Account lockout settings for multi-factor authentication (MFA).

    Does this meet the goal?

    A. Yes

    B. No

  • Question 189:

    You have an Azure Active Directory (Azure AD) tenant named contoso.com.

    You need to ensure that Azure AD External Identities pricing is based on monthly active users (MAU).

    What should you configure?

    A. an access review

    B. the terms or use

    C. a linked subscription

    D. a user flow

  • Question 190:

    You create the Azure Active Directory (Azure AD) users shown in the following table.

    On February 1, 2021, you configure the multi-factor authentication (MFA) settings as shown in the following exhibit.

    The users authentication to Azure AD on their devices as shown in the following table.

    On February 26, 2021, what will the multi-factor auth status be for each user?

    A. Option A

    B. Option B

    C. Option C

    D. Option D

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SC-300 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.