Microsoft Exam SC-100 Topic 1 Question 58 Discussion

Actual exam question for Microsoft's SC-100 exam

Question #: 58
Topic #: 1

Your company is developing an invoicing application that will use Azure Active Directory (Azure AD) B2C. The application will be deployed as an App Service web app. You need to recommend a solution to the application development team to secure the application from identity related attacks. Which two configurations should you recommend? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

AAzure AD Conditional Access integration with user flows and custom policies

BAzure AD workbooks to monitor risk detections

Ccustom resource owner password credentials (ROPC) flows in Azure AD B2C

Daccess packages in Identity Governance

Esmart account lockout in Azure AD B2C

Show Suggested Answer

Suggested Answer: D

by Elliot at Dec 08, 2024, 11:44 AM

Limited Time Offer

25%

Off

Get Premium SC-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Joesph

1 months ago

Conditional Access? More like 'Conditional Headache' if you ask me. But hey, at least it's better than getting hacked, right?

upvoted 0 times

Alex

3 days ago

Conditional Access can be complex, but it's worth it for security.

upvoted 0 times

...

Celestina

6 days ago

E) smart account lockout in Azure AD B2C

upvoted 0 times

...

Malissa

10 days ago

A) Azure AD Conditional Access integration with user flows and custom policies

upvoted 0 times

...

Tayna

15 days ago

A) Azure AD Conditional Access integration with user flows and custom policies

upvoted 0 times

...

Louis

2 months ago

Access packages? What is this, a superhero utility belt? I'll stick with the basic security features, thank you very much.

upvoted 0 times

Dottie

8 days ago

Access packages in Identity Governance could be helpful too, but I agree, let's stick with the basic security features.

upvoted 0 times

...

Myra

17 days ago

That sounds like a good idea. We can also use smart account lockout in Azure AD B2C for added security.

upvoted 0 times

...

Cary

20 days ago

I think we should go with Azure AD Conditional Access integration with user flows and custom policies.

upvoted 0 times

...

Alishia

2 months ago

Hmm, workbooks to monitor risk detections? Sounds like a lot of work. I'd stick to the tried and true Conditional Access and account lockout.

upvoted 0 times

Bettina

1 months ago

Workbooks for risk detections might be useful for monitoring, but it does sound like it could be a lot of work.

upvoted 0 times

...

Caprice

1 months ago

Yeah, and account lockout can help prevent unauthorized access.

upvoted 0 times

...

Adelle

2 months ago

I agree, Conditional Access is a solid choice for securing the application.

upvoted 0 times

...

Quinn

2 months ago

I'm not sure about custom ROPC flows. Isn't that risky? I'd go with the more secure options like Conditional Access and Identity Governance.

upvoted 0 times

Gwenn

1 months ago

Definitely, we should recommend Azure AD Conditional Access integration and access packages for a more secure solution.

upvoted 0 times

...

Adolph

1 months ago

I agree, custom ROPC flows can be risky. We should prioritize security.

upvoted 0 times

...

Ona

2 months ago

I'm not sure about option C) custom resource owner password credentials (ROPC) flows in Azure AD B2C, it might not be as secure as the other options.

upvoted 0 times

...

Leatha

2 months ago

A and E seem like the right options to protect against identity-related attacks. Conditional Access and account lockout are crucial for securing the app.

upvoted 0 times

...

Sarah

2 months ago

I agree with Val, that sounds like a strong solution to secure the application from identity related attacks.

upvoted 0 times

...

Val

3 months ago

I think we should go with A) Azure AD Conditional Access integration with user flows and custom policies.

upvoted 0 times

...