SC-300 Practice Test

You have an Azure AD tenant that has multi-factor authentication (MFA) enforced and selfservice password reset (SSPR) enabled.
You enable combined registration in interrupt mode.
You create a new user named User1.
Which two authentication methods can User1 use to complete the combined registration process? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

A. a FID02 security key

B. a hardware token

C. a one-time passcode email

D. Windows Hello for Business

E. the Microsoft Authenticator app

You have a Microsoft Entra tenant that contains the users shown in the following table.

You have an Azure AD tenant contains the users shown in the following table.

You have an Azure subscription named Sub1 that uses Microsoft Entra Permissions Management. Sub1 contains a user named User1. User1 is granted multiple permissions across Sub1.
You need to replace all the permissions granted to User1 with read-only permissions. The solution must minimize administrative effort.
What should you do on the Remediation tab in Permissions Management?

A. From the Roles/Policies subtab. create a role.

B. From the My Requests subtab, create a new request

C. From the Permissions subtab, use a quick action

D. From the Role/Policy Template subtab. create a template

You have three Azure subscriptions that are linked to a single Microsoft Entra tenant.
You need to evaluate and remediate the risks associated with highly privileged accounts.
The solution must minimize administrative effort.
What should you use?

A. Microsoft Entra Verified ID

B. Privileged Identify Management (PIM)

C. Global Secure Access

D. Microsoft Entra Permissions Management