SC-300 Exam QuestionsBrowse all questions from this exam
Go to Exam

SC-300 Exam - Question 250

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Amazon Web Services (AWS) account, a Google Workspace subscription, and a GitHub account.

You deploy an Azure subscription and enable Microsoft 365 Defender.

You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps.

Solution: From the Microsoft 365 Defender portal, you add the Amazon Web Services app connector.

Does this meet the goal?

Show Answer
Correct Answer: B

Adding the Amazon Web Services (AWS) app connector in the Microsoft 365 Defender portal does not meet the goal of monitoring OAuth authentication requests by using Microsoft Defender for Cloud Apps. The AWS app connector in Microsoft 365 Defender is designed to monitor and secure AWS resources, not OAuth authentication requests. To monitor OAuth authentication requests, you typically need to connect platforms like Microsoft 365, Google Workspace, or Salesforce, which are supported by Microsoft Defender for Cloud Apps.

Discussion

13 comments
Sign in to comment
JimboJones99Option: A
Oct 22, 2023

A: Yes https://learn.microsoft.com/en-us/defender-cloud-apps/connect-aws

loaysalamehOption: B
Feb 2, 2024

No, adding the Amazon Web Services (AWS) app connector in the Microsoft 365 Defender portal does not meet the goal of monitoring OAuth authentication requests by using Microsoft Defender for Cloud Apps. The Amazon Web Services (AWS) app connector in the Microsoft 365 Defender portal is used to connect and monitor AWS resources and activities for security purposes within the Microsoft 365 Defender environment. However, it is not designed to monitor OAuth authentication requests for AWS services. To monitor OAuth authentication requests for AWS, you would typically need to use AWS CloudTrail or other AWS monitoring and logging services provided by AWS itself, not Microsoft Defender for Cloud Apps

yawbOption: B
Jan 2, 2024

OAuth app management is available only after connecting one or more of the supported platforms - Microsoft 365, Google Workspace, or Salesforce. Once connected, the OAuth apps menu option will appear under Investigate. https://learn.microsoft.com/en-us/defender-cloud-apps/manage-app-permissions

SFAYOption: A
Jan 20, 2024

100% A See step 2 on https://learn.microsoft.com/en-us/defender-cloud-apps/protect-aws#connect-aws-to-microsoft-cloud-app-security. Similarly connectors for Google & Git can be added.

klayytechOption: B
Apr 12, 2024

Currently, Microsoft Defender for Cloud Apps supports monitoring OAuth authentication requests for platforms like Microsoft 365, Google Workspace, and Salesforce1. However, as of my knowledge cutoff in 2021, there is no direct support for monitoring OAuth authentication requests for AWS services using Microsoft Defender for Cloud Apps. For AWS services, you might want to consider using AWS’s native security tools such as AWS CloudTrail, which provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting. https://learn.microsoft.com/en-us/defender-cloud-apps/manage-app-permissions

JuanZOption: B
Apr 28, 2024

https://learn.microsoft.com/en-us/defender-cloud-apps/app-permission-policy app selection O365 Google Workspace Sale force

ACSCOption: B
Oct 4, 2023

https://learn.microsoft.com/en-us/defender-cloud-apps/manage-app-permissions

syougun200x
Oct 17, 2023

Thanks, found the below on the linked page. OAuth app management is available only after connecting one or more of the supported platforms - Microsoft 365, Google Workspace, or Salesforce. Once connected, the OAuth apps menu option will appear under Investigate.

OrangeSGOption: B
Nov 13, 2023

Solution: From the Microsoft 365 Defender portal, you add the Google Workspace app connector.

SorrynotsorryOption: B
Nov 18, 2023

AWS is not an option to add in MDCA

NielllOption: B
Mar 17, 2024

The AWS app connector in MDCA likely deals with data access or security posture management for AWS resources within the context of Microsoft 365, not monitoring OAuth requests to AWS.

KRISTINMERIEANNOption: A
Apr 10, 2024

https://learn.microsoft.com/en-us/defender-cloud-apps/connect-aws

Labelfree
Nov 11, 2024

Yes and No. Depending on how the actual question is worded on the actual exam. This meets 1/3 of the goal in that it allows you to monitor the AWS OAuth portion but does nothing for Google and GitHub.

Obi_Wan_JacobyOption: B
Apr 18, 2025

Answer B: NO. Steps to Monitor OAuth Authentication Requests Add Connectors for Each Service: AWS: Add the AWS app connector to monitor OAuth authentication requests for AWS. GitHub: Add the GitHub app connector to monitor OAuth authentication requests for GitHub. Google Workspace: Add the Google Workspace app connector to monitor OAuth authentication requests for Google Workspace. Why Separate Connectors Are Needed Service-Specific Integration: Each connector is designed to integrate with the specific service's API and authentication mechanisms. Comprehensive Monitoring: Adding connectors for each service ensures that you can monitor and manage OAuth authentication requests across all your accounts effectively