Microsoft Security, Compliance, and Identity Fundamentals: Describe the capabilities of Microsoft Azure Active Directory, part of Microsoft Entra Microsoft Quiz Answers

Get Microsoft Security, Compliance, and Identity Fundamentals: Describe the capabilities of Microsoft Azure Active Directory, part of Microsoft Entra Microsoft Quiz Answers

Azure Active Directory is the tool for identity and access management in the Microsoft Cloud. Learn about Azure AD services and identity principals, secure authentication, access management capabilities, as well as identity protection and governance.

Here are all the learning paths in preparation for the SC-900 exam: Microsoft Security, Compliance, and Identity Fundamentals.

• Part 1: Describe the concepts of security, compliance, and identity
• Part 2: Describe the capabilities of Microsoft Azure Active Directory, part of Microsoft Entra
• Part 3: Describe the capabilities of Microsoft security solutions
• Part 4: Describe the capabilities of Microsoft compliance solutions

If you are new to the security area, we recommend:

Primer: Describe the basic concepts of cybersecurity

This learning path helps prepare you for Exam SC-900: Microsoft Security, Compliance, and Identity Fundamentals.

Prerequisites:

• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Enroll on Microsoft

Module 1: Describe the services and identity types of Azure AD

Azure Active Directory (Azure AD) is Microsoft’s cloud-based identity and access management service. Learn about Azure AD, its services and the types of identities it supports.

Learning objectives:

After completing this module, you will be able to:

• Describe what Azure AD does.
• Describe the types of identities Azure AD supports.

Prerequisites:

• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Quiz 1: Knowledge check

Q1. An organization is launching a new app for its customers. Customers will use a sign-in screen that is customized with the organization’s brand identity. Which type of Azure External identity solution should the organization use?

• Azure AD B2B
• Azure AD B2C
• Azure AD Hybrid identities

Q2. An organization has completed a full migration to the cloud and has purchased devices for all its employees. All employees sign in to the device through an organizational account configured in Azure AD. Select the option that best describes how these devices are set up in Azure AD.

• These devices are set up as Azure AD registered.
• These devices are set up as Azure AD joined.
• These devices are set up as Hybrid Azure AD joined.

Q3. A developer wants an application to connect to Azure resources that support Azure AD authentication, without having to manage any credentials and without incurring any extra cost. Which option best describes the identity type of the application?

• Service principal
• Managed identity
• Hybrid identity

Module 2: Describe the authentication capabilities of Azure AD

Learn about the authentication capabilities of Azure AD, multi-factor authentication, and how it improves security. You’ll also learn about the password protection and management capabilities of Azure AD.

Learning objectives:

After completing this module, you’ll be able to:

• Describe the authentication methods of Azure AD.
• Describe multi-factor authentication in Azure AD
• Describe the password protection and management capabilities of Azure AD.

Prerequisites:

• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Quiz 1: Knowledge check

Q1. After hearing of a breach at a competitor, the security team wants to improve identity security within their organization. What should they implement to provide the greatest protection to user identities?

• Multi-factor authentication.
• Require security questions for all sign-ins.
• Require strong passwords for all identities.

Q2. Which of the following additional forms of verification can be used with Azure AD Multi-Factor Authentication?

• Microsoft Authenticator app, SMS, Voice call, FIDO2, and Windows Hello for Business
• Security questions, SMS, Voice call, FIDO2, and Windows Hello for Business
• Password spray, SMS, Voice call, FIDO2, and Windows Hello for Business

Q3. A company’s IT organization has been asked to find ways to reduce IT costs, without compromising security. Which feature should they consider implementing?

• Self-service password reset.
• Biometric sign-in on all devices.
• FIDO2.

Module 3: Describe the access management capabilities of Azure AD

A key function of Azure AD is to manage access. Learn about the access management capabilities, its use cases, and benefits.

Learning objectives:

After completing this module, you will be able to:

• Describe Conditional Access in Azure AD.
• Describe the benefits of Azure AD roles and role-based access control.

Prerequisites:

• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Quiz 1: Knowledge check

Q1. An organization plans to implement Conditional Access. What do admins need to do?

• Create policies that enforce organizational rules.
• Check that all users have multi-factor authentication enabled.
• Amend your apps to allow Conditional Access.

Q2. Sign-in risk is a signal used by Conditional Access policies to decide whether to grant or deny access. What is sign-in risk?

• The probability that the device is owned by the identity owner.
• The probability that the authentication request isn’t authorized by the identity owner.
• The probability that the user is authorized to view data from a particular application.

Q3. IT admins have been asked to review Azure AD roles assigned to users, to improve organizational security. Which of the following should they implement?

• Remove all global admin roles assigned to users.
• Create custom roles.
• Replace global admin roles with specific Azure AD roles.

Module 4: Describe the identity protection and governance capabilities of Azure AD

Azure AD provides identity protection and governance capabilities. Learn about these capabilities, the use cases, and benefits.

Learning objectives:

After completing this module, you will be able to:

• Describe the capabilities of identity governance in Azure.
• Describe Privileged Identity Management.
• Describe the capabilities of Azure Identity Protection.

Prerequisites:

• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Quiz 1: Knowledge check

Q1. Your organization has implemented important changes in their customer facing web-based applications. You want to ensure that any user who wishes to access these applications agrees to the legal disclaimers. Which Azure AD feature should you implement?

• Entitlement management.
• Azure AD Terms of Use.
• Identity Protection.

Q2. An organization is project-oriented with employees often working on more than one project at a time. Which solution is best suited to managing user access to this organization’s resources?

• Azure Terms of Use.
• Identity Protection.
• Entitlement management.

Q3. An organization has recently conducted a security audit and found that four people who have left were still active and assigned global admin roles. The users have now been deleted but the IT organization has been asked to recommend a solution to prevent a similar security lapse happening in future. Which solution should they recommend?

• Entitlement management.
• Privileged Identity Management.
• Identity Protection.

Q4. Your IT organization recently discovered that several user accounts in the finance department have been compromised. The CTO has asked for a solution to reduce the impact of compromised user accounts. The IT admin team is looking into Azure AD features. Which one should they recommend?

• Identity Protection.
• Conditional Access.
• Entitlement management.

Conclusion:

I hope this Microsoft Security, Compliance, and Identity Fundamentals: Describe the capabilities of Microsoft Azure Active Directory, part of Microsoft Entra Microsoft Quiz Answers would be useful for you to learn something new from this problem. If it helped you then don’t forget to bookmark our site for more Coding Solutions.

This Problem is intended for audiences of all experiences who are interested in learning about Data Science in a business context; there are no prerequisites.

Keep Learning!

More Coding Solutions >>

LeetCode Solutions

Hacker Rank Solutions

CodeChef Solutions