Exam SC-300 All QuestionsBrowse all questions from this exam
Go to Exam
Question 273

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Amazon Web Services (AWS) account, a Google Workspace subscription, and a GitHub account.

You deploy an Azure subscription and enable Microsoft 365 Defender.

You need to ensure that you can monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps.

Solution: From the Microsoft 365 Defender portal, you add the GitHub app connector.

Does this meet the goal?

    Correct Answer: B

    To monitor OAuth authentication requests by using Microsoft Defender for Cloud Apps, it is necessary to connect all relevant services where authentication requests need to be monitored. Adding only the GitHub app connector will limit the monitoring capabilities to OAuth requests from GitHub. Since the requirement includes monitoring for AWS, Google Workspace, and Azure, connecting only the GitHub app connector would not suffice to fulfill the goal.

Discussion
haazybanjOption: B

No, the solution does not meet the goal. Adding the GitHub app connector to Microsoft Defender for Cloud Apps will allow you to monitor OAuth authentication requests from GitHub to Microsoft 365. However, it will not allow you to monitor OAuth authentication requests to your AWS account, Google Workspace subscription, or Azure subscription.

SFAY

Wrong, you need all three connectors and Git Hub is one of the available connectors in Defender portal. The other two correct answers are - AWS connector and Google Workspace connector.

einkaufacsOption: A

There are Google Workspace, GitHub and AWS App-connectors. So I go with A https://learn.microsoft.com/en-us/defender-cloud-apps/protect-github

Alcpt

fully agree - A. This section provides instructions for connecting Microsoft Defender for Cloud Apps to your existing GitHub Enterprise Cloud organization using the App Connector API. https://learn.microsoft.com/en-us/defender-cloud-apps/protect-github

francescocOption: B

The Microsoft Defender for Cloud Apps app permissions enable you to see which user-installed OAuth applications have access to Microsoft 365 data, Google Workspace data, and Salesforce data. Defender for Cloud Apps tells you what permissions the apps have and which users granted these apps access to their Microsoft 365, Google Workspace, and Salesforce accounts. https://learn.microsoft.com/en-us/defender-cloud-apps/manage-app-permissions#oauth-app-auditing

Alcpt

According to this MS document there is a connector for each platform. This section provides instructions for connecting Microsoft Defender for Cloud Apps to your existing GitHub Enterprise Cloud organization using the App Connector API. https://learn.microsoft.com/en-us/defender-cloud-apps/protect-github

siffyOption: A

A for me

Er_01Option: A

You can monitor OAuth from github so yes it does, as the question does not state which platform is to be monitored, so any of them would fit. The question is bad as it should specify which platform is to be monitored as there are multiple connectors to various ones.

Ody__

Agreed. If the goal is to monitor all 3 of them, installing only one connector does not meet the requirement. Configure Defender for Cloud Apps In the Microsoft Defender Portal, select Settings. Then choose Cloud Apps. Under Connected apps, select App Connectors. In the App connectors page, select +Connect an app, followed by GitHub. https://learn.microsoft.com/en-us/defender-cloud-apps/protect-github

penatunaOption: B

OAuth app management is available only after connecting one or more of the supported platforms - Microsoft 365, Google Workspace, or Salesforce. Once connected, the OAuth apps menu option will appear under Investigate. App Governance is a set of security and policy management capabilities designed for OAuth-enabled apps registered on Azure Active Directory (Azure AD), Google, and Salesforce. For more information, see App governance add-on to Defender for Cloud Apps in Microsoft 365 Defender.

penatuna

Many third-party productivity apps that might be installed by business users in your organization request permission to access user information and data and sign in on behalf of the user in other cloud apps, such as Microsoft 365, Google Workspace and Salesforce. When users install these apps, they often click accept without closely reviewing the details in the prompt, including granting permissions to the app. This problem is compounded by the fact that IT may not have enough insight to weigh the security risk of an application against the productivity benefit that it provides. Because accepting third-party app permissions is a potential security risk to your organization, monitoring the app permissions your users' grant gives you the necessary visibility and control to protect your users and your applications.

penatuna

The Microsoft Defender for Cloud Apps app permissions enable you to see which user-installed OAuth applications have access to Microsoft 365 data, Google Workspace data, and Salesforce data. Defender for Cloud Apps tells you what permissions the apps have and which users granted these apps access to their Microsoft 365, Google Workspace, and Salesforce accounts. App permissions help you decide which apps you allow your users to access and which ones you want to ban. https://learn.microsoft.com/en-us/defender-cloud-apps/manage-app-permissions

thetootallOption: B

On Exam 7/18/24, answered B Adding the GitHub app connector to Microsoft Defender for Cloud Apps will allow you to monitor OAuth authentication requests from GitHub to Microsoft 365. However, it will not allow you to monitor OAuth authentication requests to your AWS account, Google Workspace subscription, or Azure subscription.

AlcptOption: A

A. This section provides instructions for connecting Microsoft Defender for Cloud Apps to your existing GitHub Enterprise Cloud organization using the App Connector API. https://learn.microsoft.com/en-us/defender-cloud-apps/protect-github