Exam SC-100 topic 3 question 31 discussion

ACE is the answer. https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-identity-management#im-1-use-centralized-identity-and-authentication-system Security Principle: Use a centralized identity and authentication system to govern your organization's identities and authentications for cloud and non-cloud resources. https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-identity-management#im-2-protect-identity-and-authentication-systems Security Principle: Secure your identity and authentication system as a high priority in your organization's cloud security practice.

Based on the Azure Security Benchmark, here are three best practices for identity management in a Microsoft cloud environment: Manage the lifecycle of identities and entitlements (B): Ensure that identities and their access rights are managed throughout their lifecycle, from creation to deactivation, to maintain security and compliance. Protect identity and authentication systems ©: Implement strong protections for identity and authentication systems, such as multi-factor authentication (MFA), to safeguard against unauthorized access. Enable threat detection for identity and access management (D): Use tools and services to detect and respond to threats related to identity and access management, helping to identify and mitigate potential security incidents.

ACE Check the following link. The answer is displayed in the beginning: IM-1, IM-2, IM-3 Link: https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-identity-management

https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-identity-management

I have tested this

https://learn.microsoft.com/en-us/security/benchmark/azure/mcsb-identity-management

The given answer is correct https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v3-identity-management

I'm struggling to find "C. Protect identity and authentication systems" in the list below. IM-1: Standardize Azure Active Directory as the central identity and authentication system IM-2: Manage application identities securely and automatically IM-3: Use Azure AD single sign-on (SSO) for application access IM-4: Use strong authentication controls for all Azure Active Directory based access IM-5: Monitor and alert on account anomalies IM-6: Restrict Azure resource access based on conditions IM-7: Eliminate unintended credential exposure IM-8: Secure user access to legacy applications https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v2-identity-management

I would say A B E . The link posted does not show the rest of them .

correct https://learn.microsoft.com/en-us/security/benchmark/azure/security-controls-v2-identity-management