Free Microsoft Security SC-900 Actual Exam Questions - Question 11 Discussion
solution.
NOTE: Each correct selection is worth one point.
Probably A, C, E—B and D deal more with infrastructure, not app security.
A, C, E—B and D don’t fit the cloud app security profile at all.
Guessing A, C, E—B and D seem unrelated to app security features here.
A imo, since shadow IT discovery is a key feature, plus C for protecting sensitive info across cloud platforms. E also makes sense because it helps enforce data loss prevention policies, not just monitoring but actual controls.
A, C, E. I’d rule out B and D for sure since those are more about infrastructure and authentication, not app security. A is classic shadow IT discovery, and C fits because it helps protect sensitive cloud data. E is tricky, but from what I understand, Cloud App Security can enforce policies that both prevent leaks and limit access based on compliance rules, so it’s definitely part of its toolkit. It’s more than just alerts—it can block and restrict sessions based on conditions, which aligns with “limit access.”
It’s definitely not B or D since those don’t match Cloud App Security’s core functions.
It’s A, C, and E for sure. B sounds like it’s just about VM connections, which isn’t really the point of Cloud App Security. D is more about authentication, so not quite right here.