Confidently Practice Online with Free SC-100 Exam Cram

You need to recommend a solution to resolve the virtual machine issue. What should you include in the recommendation? (Choose Two)

You are planning the security requirements for Azure Cosmos DB Core (SQL) API accounts. You need to recommend a solution to audit all users that access the data in the Azure Cosmos DB accounts. Which two configurations should you include in the recommendation? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.  

You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluating

the Azure Security Benchmark V3 report.

In the Secure management ports controls, you discover that you have 0 out of a potential 8 points.

You need to recommend configurations to increase the score of the Secure management ports

controls.

Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.

Does this meet the goal? 

You have an Azure subscription

You plan to deploy multiple containerized microservice-based apps to Azure Kubemetes Service

(AKS)

You need to recommend a solution that meets the following requirements:

Manages secrets

Provides encryption

Secures service-to-service communication by using mTLS encryption

Minimizes administrative effort

What should you include in the recommendation? 

You are designing the encryption standards for data at rest for an Azure resource

You need to provide recommendations to ensure that the data at rest is encrypted by using AES-256

keys. The solution must support rotating the encryption keys monthly.

Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).

Does this meet the goal?