← Back to exam page

SC-300 Microsoft Identity and Access Administrator

Loading demo links...

Showing 10–12 of 13 questions

Question 10 (New Update)

You have a Microsoft Exchange organization that uses an SMTP' address space of contoso.com.

Several users use their contoso.com email address for self-service sign up to Azure Active Directory (Azure AD).

You gain global administrator privileges to the Azure AD tenant that contains the self-signed users.

You need to prevent the users from creating user accounts in the contoso.com Azure AD tenant for self-service sign-up to Microsoft 365 services.

Which PowerShell cmdlet should you run?

Select an option, then click Submit answer.

  • Set-MsolCompanySettings

  • Set-MsolDomainFederationSettings

  • Update-MsolfederatedDomain

  • Set-MsolDomain
Question 11 (Mixed Questions)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant.

All users must use the Microsoft Authenticator app for multi-factor authentication (MFA) when accessing Microsoft 365 services.

Some users report that they received an MFA prompt on their Microsoft Authenticator app without initiating a sign-in request.

You need to block the users automatically when they report an MFA request that they did not initiate.

Solution: From the Azure portal, you configure the Account lockout settings for multi-factor authentication (MFA).

Does this meet the goal?

Select an option, then click Submit answer.

  • Yes

  • No
Question 12 (New Update)

You have a Microsoft 365 tenant.

The Sign-ins activity report shows that an external contractor signed in to the Exchange admin center.

You need to review access to the Exchange admin center at the end of each month and block sign-ins if

required.

What should you create?

Select an option, then click Submit answer.

  • an access package that targets users outside your directory

  • an access package that targets users in your directory

  • a group-based access review that targets guest users

  • an application-based access review that targets guest users