ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-100 All Questions

View all questions & answers for the SC-100 exam
Go to Exam

Exam SC-100 topic 1 question 29 discussion

Actual exam question from Microsoft's SC-100
Question #: 29
Topic #: 1
[All SC-100 Questions]

You have the following on-premises servers that run Windows Server:

• Two domain controllers in an Active Directory Domain Services (AD DS) domain
• Two application servers named Server1 and Server2 that run ASP.NET web apps
• A VPN server named Served that authenticates by using RADIUS and AD DS

End users use a VPN to access the web apps over the internet.

You need to redesign a user access solution to increase the security of the connections to the web apps. The solution must minimize the attack surface and follow the Zero Trust principles of the Microsoft Cybersecurity Reference Architectures (MCRA).

What should you include in the recommendation?

  • A. Publish the web apps by using Azure AD Application Proxy.
  • B. Configure the VPN to use Azure AD authentication.
  • C. Configure connectors and rules in Microsoft Defender for Cloud Apps.
  • D. Configure web protection in Microsoft Defender for Endpoint.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by WRITER00347 at Aug. 2, 2023, 5:13 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
WRITER00347
Highly Voted 1 year, 2 months ago
The Zero Trust model emphasizes never trusting and always verifying, regardless of whether something is inside or outside the corporate network. It minimizes reliance on traditional network security boundaries and instead focuses on identities, endpoints, and resources.In the given scenario, the main goal is to increase the security of connections to the web apps, aligning with the Zero Trust principles.Option A would align well with these requirements. Azure AD Application Proxy provides secure remote access to your on-premises applications. It allows users to access their apps from anywhere without having to connect to the VPN and enables additional security features like Conditional Access and MFA. This solution minimizes the attack surface by eliminating the need to expose the web applications directly to the internet and follows the Zero Trust principles of MCRA, making it the appropriate recommendation.So the correct answer is: A
upvoted 12 times
cris_exam
8 months, 2 weeks ago
You must be in love with GPT
upvoted 9 times
...
...
JG56
Most Recent 11 months, 1 week ago
A , in exam Nov 23
upvoted 3 times
...
Myguard
11 months, 2 weeks ago
Selected Answer: A
Correct Answer
upvoted 2 times
...
Victory007
1 year, 2 months ago
Selected Answer: A
Correct Answer
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago