Exam SC-300 topic 2 question 8 discussion

1. Publish App1. 2. Create a conditional access policy that has session controls configured. 3. From MCAS modify the Connected apps settings 4. From MCAS create a session policy Reference - https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-blocking-data-downloads-via-microsoft-cloud-app/ba-p/326357

The given answer is wrong and I differ slightly from Jason below. 1) publish app 2) create a conditional access policy that has session controls - this begins the process for 3) From MCAS create a session policy 4) from MCAS modify the connected apps settings.

1. Publish App1. 2. Create a conditional access policy that has session controls configured. 3. From MCAS modify the Connected apps settings 4. From MCAS create a session policy

On the exam, 09/07/2023

1. Publish App1. 2. Create a conditional access policy that has session controls configured. 3. From MCAS modify the Connected apps settings 4. From MCAS create a session policy

Question valid - 06/23

Publicar App1 en Azure Active Directory (Azure AD). Desde Microsoft Cloud App Security, crear una política de sesión. Crear una política de acceso condicional que tenga configurado el control de sesión. Desde Microsoft Cloud App Security, modifique la configuración de aplicaciones conectadas para App1. La publicación de App1 en Azure AD es el primer paso para habilitar la supervisión en tiempo real de la aplicación con Microsoft Cloud App Security. Luego, se debe crear una política de sesión en Microsoft Cloud App Security para la aplicación App1. Después, se debe crear una política de acceso condicional que tenga configurado el control de sesión. Finalmente, se debe modificar la configuración de aplicaciones conectadas para App1 en Microsoft Cloud App Security para habilitar la supervisión en tiempo real de la aplicación.

I ask to chat GPT, and this is the correct answer: 1. Publish App1 in Azure Active Directory (Azure AD) 2. Create a conditional access policy that has session control configured 3. From Microsoft Cloud App Security, Create A session policy 4. From Microsoft Cloud App Security, modify the Connected apps settings for app1

I agree with Jason https://learn.microsoft.com/en-us/defender-cloud-apps/proxy-deployment-aad

Explanation is correct: https://www.examtopics.com/exams/microsoft/sc-300/view/11/#:~:text=The%20correct%20order%20is,allowing%20session%20controlled%20policies.

After creating conditional access policy with session control, you then go to Defender for Cloud Apps, select the app and use onboard with session control. After that you create session policy as per this article https://learn.microsoft.com/en-us/defender-cloud-apps/proxy-deployment-any-app

Correct answer: 1) Publish App 2) In Azure AD, create a conditional access policy that has session controls. 3) From MCAS, create a session policy 4) From MCAS, modify the connected apps settings.

The correct order is what JasonYin posted: 1. Publish App1. 2. Create a conditional access policy that has session controls configured. 3. From MCAS modify the Connected apps settings 4. From MCAS create a session policy Everyone who is saying that Step 3 should be "Create a Session Policy" is wrong. When creating a Session policy for the specific application in question (App1), you won't be able to select App1 from the list of applications in this policy unless you FIRST "Modify the Connected Apps settings for App1", and select "Edit Settings" and check the checkbox for allowing session controlled policies.

On the exam, 7/23/2022.

On the exam - June 12, 2022

After looking into the video by VinoTee and Jason's link, 3, 4 should be create session pol for it to be generated, once it's generated modify from it's base settings. Unless I'm misunderstanding, but how can you modify something that you haven't already initially created? Feel free to add your input but; 1:Publish App 2: Created conditional access pol with session control 3: Create session pol 4: Modify connected app settings

This question was in the exam 28/April/2022