ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 2 question 110 discussion

Actual exam question from Microsoft's SC-300
Question #: 110
Topic #: 2
[All SC-300 Questions]

You have a Microsoft 365 E5 subscription.

You need to be able to create a Microsoft Defender for Cloud Apps session policy.

What should you do first?

  • A. From the Microsoft 365 Defender portal, select User monitoring.
  • B. From the Microsoft 365 Defender portal, select App onboarding/maintenance.
  • C. From the Microsoft Entra admin center, create a Conditional Access policy.
  • D. From the Microsoft 365 Defender portal, create a continuous report.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Btn26 at Jan. 9, 2025, 3:40 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Obi_Wan_Jacoby
1 month ago
Selected Answer: C
Answer is C. Details if you want. Guys, first you have to create a conditional access policy via Entra (using the session option during the config of the policy). Then in the Defender portal, you go to the "Cloud Apps" section on the left, then to "Policies" and choose "Policy Management". Then go to the "Conditional access" section at the top (still in Defender, not Entra) then create a "Session policy". Therefore, the answer to the "What should you do first" question is in-fact answer C https://learn.microsoft.com/en-us/defender-cloud-apps/session-policy-aad
upvoted 2 times
Obi_Wan_Jacoby
1 month ago
As for those that consider answer B, keep in mind the question does not indicate "non-Microsoft IdP apps". It appears they are assuming Microsoft Entra ID apps which are automatically onboarded. Correct me if I am wrong.
upvoted 1 times
...
Obi_Wan_Jacoby
1 month ago
I see some basically already have this, I just wanted to clarify for any that question.
upvoted 1 times
...
...
csi_2025
2 months, 1 week ago
Selected Answer: C
The wording of the question doesn't mention that a new App is to be monitored but that you need to be able to create a session policy. For that you definitely have to create a CA Policy.
upvoted 1 times
...
rvln7
2 months, 1 week ago
Selected Answer: B
I think that we should onboard it firs, so B
upvoted 1 times
...
Oskarma
3 months ago
Selected Answer: C
This policy serves as the foundation for redirecting user sessions through Conditional Access App Control, allowing you to monitor and control user activities in real-time.
upvoted 1 times
...
northgaterebel
3 months, 3 weeks ago
Selected Answer: C
In order for your session policy to work, you must also have a Microsoft Entra ID Conditional Access policy, which creates the permissions to control traffic. https://learn.microsoft.com/en-us/defender-cloud-apps/session-policy-aad
upvoted 4 times
northgaterebel
3 months, 2 weeks ago
Btn26 has it right. B is correct. In the Prerequisites section: The relevant apps onboarded to Conditional Access app control. Microsoft Entra ID apps are automatically onboarded, while non-Microsoft IdP apps must be onboarded manually.
upvoted 1 times
...
...
Btn26
4 months ago
Selected Answer: B
The correct first step is **B. From the Microsoft 365 Defender portal, select App onboarding/maintenance**. This step is necessary to connect the app to Microsoft Defender for Cloud Apps before you can create a session policy.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago