Which relationship allows federated services to gain access to resources?

Service principal relationship.

Authentication is the process of doing what?

Verifying that a user or device is who they say they are.

The process of profiling user behavior.

You have developed an app and want users to be able to sign in with their Facebook, Google, or Twitter credentials. What type of authentication will you use?

Service principal authentication

After hearing of a security breach at a competitor, you want to improve identity security within your organization. What should you implement immediately to provide the greatest protection to user identities?

Require biometrics for all sign-in.

Require strong passwords for all identities.

To improve identity security within your organization, you want to implement Windows Hello for Business. When explaining the benefits of Windows Hello for Business to your colleagues, which of the following is true?

Windows Hello for Business is more secure because it uses PINs and biometric data to authenticate users.

Windows Hello is an authentication feature built into Windows Server 2012 R26.

Windows Hello is an alternative to multi-factor authentication.

Windows Hello for Business transmits biometric data to an external server.

You've been asked to find ways to reduce IT costs, without compromising security. Which feature should you consider implementing?

Biometric sign-in on all devices.

You've been asked to consider the feasibility of implementing conditional access for your organization. What must you do to implement conditional access?

Create policies that enforce organizational rules.

Check that all users have multi-factor authentication enabled.

Amend your apps to allow conditional access.

Implement a network access control (NAC) solution.

Sign in risk is a signal used by conditional access policies to decide whether to grant or deny access. What is sign in risk?

The probability that the authentication request is authorized by the identity owner.

The probability that the device is owned by the identity owner.

The probability that the user is authorized to view data from a particular application.

The probability that the user's identity has been compromised.

You've been asked to review Azure AD roles assigned to users to improve organizational security. Which of the following should you implement?

Replace Global Admin roles with specific Azure AD roles.

Remove all Global Admin roles assigned to users.

Assign all users to the User role.

Your organization has recently merged with a competitor, nearly doubling the number of employees. You urgently need to implement an access lifecycle system that won't add a significant amount of work for your IT administrators. Which Azure AD feature should you implement?

Privileged Identity Management.

Your organization has recently conducted a security audit and found that four people who have left the organization were still active and assigned Global Admin roles. The users have now been deleted and you've been asked to recommend a solution to prevent a similar security lapse happening in future. Which solution should you recommend?

Privileged Identity Management.

The security admin wants to increase the priority of a network security group, what five sources of information will the admin need to provide?

Source, source port, destination, destination port, and protocol.

Source, source port, destination, destination port, and network layer.

Source, source port, destination, destination port, and target resource.

Source IP, destination IP, protocol, port, and action.

Your organization has several virtual machines in Azure. The security admin wants to deploy Azure Bastion to get secure access to the virtual machines in Azure. What should the admin keep in mind?

Azure Bastion is deployed per virtual network.

Azure Bastion is deployed per subscription.

Azure Bastion is deployed per virtual machine.

Azure Bastion is deployed per resource group.

Security Management and Access Control

Authored by Reabetswe Monyepao

Information Technology (IT)

University

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An organization has deployed Microsoft 365 applications to all employees. Who is responsible for the security of the personal data relating to these employees?

The organization.

Microsoft, the SaaS provider.

The shared responsibility between your organization and Microsoft.

The employees themselves.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following measures might an organization implement as part of the defense-in-depth security methodology?

Locating servers at different locations in your organization.

Multi-factor authentication for all users.

Ensuring there's no segmentation of your corporate network.

Implementing a single firewall for all network traffic.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The human resources organization wants to ensure that stored employee data is encrypted. Which security mechanism would they use?

Hashing.

Digital signing.

Encryption at rest.

Data masking.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

When browsing Microsoft compliance documentation, you have found several documents that are specific to your industry. What is the best way of ensuring you keep up to date with the information they contain?

Save the documents to your My Library.

Print each document so you can easily refer to them.

Download each document.

Set up a recurring calendar reminder to check for updates.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A colleague has asked for your help in locating compliance and regulatory information relevant to your industry. You want to provide one link that will provide all the information they might need. Which Microsoft link should you send?

Microsoft Privacy Principles.

Service Trust Portal.

Microsoft Compliance Manager.

Azure Security Center.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of security risk does a phishing scam pose?

Ethical risk.

Physical risk.

Identity risk.

Operational risk.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a benefit of single sign-on?

A central identity provider can be used.

The user signs in once and then can access many applications or resources.

Passwords always expire after 72 days.

It eliminates the need for passwords.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Popular Resources on Wayground

20 questions

Math Review

Quiz

•

3rd Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

10 questions

Identify Fractions, Mixed Numbers & Improper Fractions

Quiz

•

3rd - 4th Grade

Discover more resources for Information Technology (IT)

20 questions

Guess The App

Quiz

•

KG - Professional Dev...

11 questions

NFL Football logos

Quiz

•

KG - Professional Dev...

19 questions

Minecraft

Quiz

•

6th Grade - Professio...

40 questions

8th Grade Math Review

Quiz

•

8th Grade - University

20 questions

Block Buster Movies

Quiz

•

10th Grade - Professi...

10 questions

Would you rather...

Quiz

•

KG - University

40 questions

Flags of the World

Quiz

•

KG - Professional Dev...

14 questions

Superhero

Quiz

•

1st Grade - University

Security Management and Access Control

An organization has deployed Microsoft 365 applications to all employees. Who is responsible for the security of the personal data relating to these employees?

Which of the following measures might an organization implement as part of the defense-in-depth security methodology?

The human resources organization wants to ensure that stored employee data is encrypted. Which security mechanism would they use?

When browsing Microsoft compliance documentation, you have found several documents that are specific to your industry. What is the best way of ensuring you keep up to date with the information they contain?

A colleague has asked for your help in locating compliance and regulatory information relevant to your industry. You want to provide one link that will provide all the information they might need. Which Microsoft link should you send?

What type of security risk does a phishing scam pose?

What is a benefit of single sign-on?

Which relationship allows federated services to gain access to resources?

Authentication is the process of doing what?

Your organization is launching a new app for customers. You want your customers to use a sign-in screen that is customized with your brand identity. Which type of Azure External identity authentication solution should you use?

Access all questions and much more by creating a free account

Popular Resources on Wayground

Discover more resources for Information Technology (IT)