Free Microsoft Cybersecurity SC-100 Actual Exam Questions - Question 13 Discussion
HOTSPOT You need to recommend a strategy for securing the litware.com forest. The solution must meet the identity requirements. What should you include in the recommendation? To answer, select the appropriate options in the answer area. NOTE; Each correct selection is worth one point. 
Another way to look at this is focusing on identity governance along with protection. Including Azure AD Privileged Identity Management can help by just-in-time elevating admin rights instead of always-on permissions, which cuts down attack surfaces. Plus, using conditional access with sign-in risk policies adds an automatic response layer that can block or require extra verification only when suspicious activity’s detected, rather than blanket enforcement on everyone all the time. This targeted approach feels more efficient and secure for the entire litware.com forest.
I’d go with MFA and conditional access too, but another angle is to include Privileged Access Workstations (PAWs) if that’s an option. PAWs help reduce the risk of credential theft by isolating admin tasks. This complements MFA and conditional access by protecting the most sensitive accounts in litware.com. So if the question is about securing identities, layering PAWs on top of conditional access and MFA makes sense.
Also consider Privileged Access Management to limit admin scope within litware.com.
Since MFA and conditional access are key, I’d add Azure AD Identity Protection to detect risky sign-ins and enforce policies. That adds a solid layer beyond just MFA for securing identities here.
MFA is a must, plus conditional access to tighten identity security.
Focus on multi-factor authentication and conditional access for identity security.
This one’s kinda vague without seeing the actual options. The phrasing “identity requirements” could mean a few different things-like MFA, conditional access, or something else entirely. Would be cool to get more context here.