SC-100 Exam Details

  • Exam Code
    :SC-100
  • Exam Name
    :Microsoft Cybersecurity Architect
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :350 Q&As
  • Last Updated
    :Jul 12, 2026

Microsoft SC-100 Online Questions & Answers

  • Question 301:

    You have a Microsoft 365 subscription that uses Microsoft Purview.

    You need to recommend a solution that will provide guidance on how to ensure that Personally Identifiable Information (PII) in the subscription adheres to local privacy regulations. The solution must minimize administrative effort.

    Which Microsoft Purview solution should you include in the recommendation?

    A. Data Loss Prevention
    B. Information Protection
    C. Insider Risk Management
    D. Compliance Manager

  • Question 302:

    HOTSPOT

    Your company has offices in 10 countries.

    You have a Microsoft 365 subscription that contains 1,000 users. Each user is assigned a Microsoft 365 E5 license.

    You plan to deploy a compliance assessment solution.

    The solution must meet the following requirements:

    1. Ensure that compliance is assessed based on the regulations of the country of each office.

    2. Provide improvement action guidance to ensure compliance of the subscription.

    You need to recommend the service that should be used to perform the assessments, and identify additional costs that will be incurred.

    What should you recommend and what should you identify? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.

  • Question 303:

    You have an Azure subscription that contains 100 virtual machines, a virtual network named VNet1, and 20 users. The virtual machines run Windows Server and are connected to VNet1. The users work remotely and access Azure resources from Linux workstations.

    You need to ensure that the users can connect to the virtual machines from the workstations by using Secure Shell {SSH). The solution must meet the following requirements:

    Ensure that the users authenticate by using their Microsoft Entra credentials.

    Prevent the users from transferring files from the virtual machines by using SSH.

    Prevent the users from directly accessing the virtual machines by using the public IP address of the virtual machines.

    What should you include in the solution?

    A. Azure Bastion
    B. Azure NAT Gateway
    C. just-in-time (JIT) VM access
    D. Point-to-Site (P2S) VPN

  • Question 304:

    HOTSPOT

    You need to recommend a security methodology for a DevOps development process based on the Microsoft Cloud Adoption Framework for Azure.

    During which stage of a continuous integration and continuous deployment (CI/CD) DevOps process should each security-related task be performed? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.

  • Question 305:

    To meet the application security requirements, which two authentication methods must the applications support? Each correct answer presents a complete solution.

    NOTE: Each correct selection is worth one point.

    A. Security Assertion Markup Language (SAML)
    B. NTLMv2
    C. certificate-based authentication
    D. Kerberos

  • Question 306:

    You have a Microsoft Entra tenant named contoso.com.

    You are collaborating with an external partner that has a Microsoft Entra tenant named fabrikam.com.

    You need to recommend an identity governance solution for contoso.com that meets the following requirements:

    Enables users in both contoso.com and fabrikam.com to communicate via shared Microsoft Teams channels.

    1. Manages access to shared Teams channels in contoso.com using groups from fabrikam.com.

    2. Supports single sign-on (SSO).

    3. Minimizes administrative effort.

    4. Maximizes security.

    What should you include in the recommendation?

    A. Cross-tenant synchronization
    B. Microsoft Entra B2B collaboration
    C. B2B direct connect
    D. Microsoft Entra Connect Sync

  • Question 307:

    HOTSPOT

    You need to recommend a solution to evaluate regulatory compliance across the entire managed environment. The solution must meet the regulatory compliance requirements and the business requirements.

    What should you recommend? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.

  • Question 308:

    Your company has devices that run either Windows 10, Windows 11, or Windows Server.

    You are in the process of improving the security posture of the devices.

    You plan to use security baselines from the Microsoft Security Compliance Toolkit.

    What should you recommend using to compare the baselines to the current device configurations?

    A. Microsoft Intune
    B. Local Group Policy Object (LGPO)
    C. Windows Autopilot
    D. Policy Analyzer

  • Question 309:

    Your on-premises network contains an Active Directory Domain Services (AD DS) domain, along with a hybrid deployment between a Microsoft Exchange Server 2019 organization and an Exchange Online tenant. The AD DS domain includes a group named Group1, which is a member of the Organization Management role group for the Exchange deployment.

    You have a Microsoft 365 E5 subscription that utilizes Microsoft Defender, as well as an Azure subscription that integrates with Microsoft Sentinel.

    You need to recommend a solution to ensure that Group1 is designated as a sensitive group and that any changes to Group1 trigger an alert in Microsoft Sentinel. The solution must minimize administrative effort.

    What should you include in your recommendation?

    A. Microsoft Defender for Identity
    B. Microsoft Entra ID Protection
    C. Microsoft Entra Privileged Identity Management (PIM)
    D. Microsoft Defender for Office 365

  • Question 310:

    HOTSPOT

    You plan to automate the development and deployment of a Node.js-based app by using GitHub.

    You need to recommend a DevSecOps solution for the app. The solution must meet the following requirements:

    1. Automate the generation of pull requests that remediate identified vulnerabilities.

    2. Automate vulnerability code scanning for public and private repositories.

    3. Minimize administrative effort.

    4. Minimize costs.

    What should you recommend using? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SC-100 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.