Exam SC-100 topic 2 question 13 discussion

Actual exam question from Microsoft's SC-100

Question #: 13
Topic #: 2

Your company finalizes the adoption of Azure and is implementing Microsoft Defender for Cloud.
You receive the following recommendations in Defender for Cloud
✑ Access to storage accounts with firewall and virtual network configurations should be restricted.
✑ Storage accounts should restrict network access using virtual network rules.
✑ Storage account should use a private link connection.
✑ Storage account public access should be disallowed.
You need to recommend a service to mitigate identified risks that relate to the recommendations.
What should you recommend?

A. Azure Policy
B. Azure Network Watcher
C. Azure Storage Analytics
D. Microsoft Sentinel

Show Suggested Answer

Suggested Answer: A 🗳️

by Alex_Burlachenko at Aug. 30, 2022, 6:52 p.m.

Comments

Submit Cancel

theOldSoldier

Highly Voted 1 year, 9 months ago

Selected Answer: A

Only answer that meet the given conditions

upvoted 9 times

...

roman203

Most Recent 9 months ago

Selected Answer: A

Agreed. A is the only answer that meet the given conditions

upvoted 2 times

...

ServerBrain

10 months, 3 weeks ago

Selected Answer: A

other suggested answers are about alerting..

upvoted 2 times

...

zellck

1 year, 1 month ago

Selected Answer: A

A is the answer. https://learn.microsoft.com/en-us/azure/governance/policy/overview Azure Policy helps to enforce organizational standards and to assess compliance at-scale. Through its compliance dashboard, it provides an aggregated view to evaluate the overall state of the environment, with the ability to drill down to the per-resource, per-policy granularity. It also helps to bring your resources to compliance through bulk remediation for existing resources and automatic remediation for new resources.

upvoted 3 times

...