ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 3 question 22 discussion

Actual exam question from Microsoft's SC-300
Question #: 22
Topic #: 3
[All SC-300 Questions]

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Cloud Apps and Conditional Access policies.

You need to block access to cloud apps when a user is assessed as high risk.

Which type of policy should you create in the Microsoft Defender for Cloud Apps portal?

  • A. access policy
  • B. OAuth app policy
  • C. anomaly detection policy
  • D. activity policy
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Zak366 at Feb. 23, 2023, 5:29 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Obi_Wan_Jacoby
3 days, 6 hours ago
Selected Answer: A
A. access policy: While anomaly detection policies can include governance actions like suspending users or requiring password changes, they don't inherently block access to cloud apps based on user risk1. For directly blocking access when a user is assessed as high risk, an access policy is more suitable because it allows you to enforce real-time access controls based on user risk levels2.
upvoted 1 times
...
Panama469
9 months, 2 weeks ago
Selected Answer: A
A. The App Control policy you create as a prerequisite for a cloud app access policy can configured with the risk policies (Identity Protection) with the user risk set to 'high' and access control set to block instead of grant.
upvoted 1 times
Panama469
9 months, 2 weeks ago
Sorry the Conditional Access Policy (App Control policy) you create as a prerequisite...
upvoted 1 times
...
...
Discuss4certi
9 months, 2 weeks ago
Selected Answer: C
bruh sheeple here in the comment section. Does anyone ever really look for the answer: Anomaly detection policies enable you to look for unusual activities on your cloud. Detection is based on the risk factors you set to alert you when something happens that is different from the baseline of your organization or from the user's regular activity
upvoted 1 times
Obi_Wan_Jacoby
3 days, 6 hours ago
Looks like answer A is it. While anomaly detection policies can include governance actions like suspending users or requiring password changes, they don't inherently block access to cloud apps based on user risk. For directly blocking access when a user is assessed as high risk, an access policy is more suitable because it allows you to enforce real-time access controls based on user risk levels.
upvoted 1 times
...
Labelfree
4 months, 3 weeks ago
Anomaly detection doesn't "block" access, as the question is asking. It only generates reports.
upvoted 1 times
armid
1 month, 3 weeks ago
the only reason why i will choose A is because "uses MS Defender for Cloud Apps AND CONDITIONAL ACCESS POLICIES" otherwise anomaly detection policy would suit better, and yes it can block users based on user risk in the Governance Actions section however anomaly detection policies dont really work with conditional access as far as i understand
upvoted 1 times
...
...
...
EmnCours
1 year, 8 months ago
Selected Answer: A
A. access policy
upvoted 1 times
...
dule27
1 year, 10 months ago
Selected Answer: A
A. access policy
upvoted 1 times
...
mohsanarfandanish
2 years ago
Selected Answer: A
Sign in to the Microsoft Defender for Cloud Apps portal. Click on the Access policies tab. Click Create policy.
upvoted 2 times
...
mohsanarfandanish
2 years ago
Correct is A
upvoted 1 times
...
Zak366
2 years, 1 month ago
Selected Answer: A
Correct. A Microsoft Defender for Cloud Apps access policies enable real-time monitoring and control over access to cloud apps based on user, location, device, and app. https://learn.microsoft.com/en-us/defender-cloud-apps/access-policy-aad
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago