microsoft sc-300 practice test

Question 1

HOTSPOT You need to create the LWGroup1 group to meet the management requirements.
How should you complete the dynamic membership rule? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Question 2

You have a Microsoft 365 tenant.
The Azure Active Directory (Azure AD) tenant syncs to an on-premises Active Directory domain.
You plan to create an emergency-access administrative account named Emergency1. Emergency1 will be assigned the Global administrator role in Azure AD.
Emergency1 will be used in the event of Azure AD functionality failures and on-premises infrastructure failures.
You need to reduce the likelihood that Emergency1 will be prevented from signing in during an emergency.
What should you do?

• A. Configure Azure Monitor to generate an alert if Emergency1 is modified or signs in.
• B. Require Azure AD Privileged Identity Management (PIM) activation of the Global administrator role for Emergency1.
• C. Configure a conditional access policy to restrict sign-in locations for Emergency1 to only the corporate network.
• D. Configure a conditional access policy to require multi-factor authentication (MFA) for Emergency1.

Question 3

Your company has an Azure AD tenant that contains the users shown in the following table.



You have the app registrations shown in the following table.



A company policy prevents changes to user permissions.

Which user can create appointments in the calendar of each user at the company?

• A. User1
• B. User2
• C. User3
• D. User4

Question 4

You work for a company named Contoso, Ltd. that has a Microsoft Entra tenant named contoso.com.

Contoso is working on a project with the following two partner companies:

A company named A. Datum Corporation that has a Microsoft Entra tenant named adatum.com.
A company named Fabrikam, Inc. that has a Microsoft Entra tenant named fabrikam.com.

When you attempt to invite a new guest user from adatum.com to contoso.com, you receive an error message.

You can successfully invite a new guest user from fabnkam.com to contoso.com.

You need to be able to invite new guest users from adatum.com to contoso.com.

What should you configure?

• A. Guest invite settings
• B. Verifiable credentials
• C. Named locations
• D. Collaboration restrictions

Question 5

HOTSPOT You have an Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.

For which users can you configure the Job title property and the Usage location property in Azure AD? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Question 6

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Active Directory forest that syncs to an Azure Active Directory (Azure AD) tenant.
You discover that when a user account is disabled in Active Directory, the disabled user can still authenticate to Azure AD for up to 30 minutes.
You need to ensure that when a user account is disabled in Active Directory, the user account is immediately prevented from authenticating to Azure AD.
Solution: You configure password writeback.
Does this meet the goal?

• A. Yes
• B. No

Question 7

You have an Azure subscription, a Google Cloud Platform (GCP) account, and an Amazon Web Services (AWS) account.

You need to recommend a solution to assess the risks associated with privilege assignments across all the platforms. The solution must minimize administrative effort.

What should you include in the recommendation?

• A. Microsoft Sentinel
• B. Microsoft Entra ID Protection
• C. Microsoft Defender for Cloud Apps
• D. Microsoft Entra Permissions Management

Question 8

You have a Microsoft 365 subscription that contains the users shown in the following table.



From the tenant, you configure a naming policy for groups.

Which users are affected by the naming policy?

• A. User2 only
• B. User3only
• C. User2 and User3 only
• D. User3 and User4 only
• E. User1, User2, and User3 only
• F. User1, User2, User3, and User4

Question 9

HOTSPOT

You have an Azure subscription named Sub1.

You plan to onboard Microsoft Entra Permissions Management.

You need to ensure that Permissions Management users can manage role assignments for Sub1. The solution must follow the principle of least privilege.

Which role should you assign and to which identity should you assign the role? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Question 10

HOTSPOT You have an Azure Active Directory (Azure AD) tenant that has an Azure Active Directory Premium Plan 2 license. The tenant contains the users shown in the following table.

You have the Device Settings shown in the following exhibit.

User1 has the devices shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area: