Complete SC-900 study guide — security, compliance, and identity fundamentals for Microsoft cloud services.
This guide works best as a loop: read a chapter, test yourself with practice questions, look up unfamiliar terms in the glossary, then move to the next chapter.
103 chapters covering every exam objective. Each chapter includes key concepts, exam tips, common traps, comparison tables, and a 5-question quiz at the end.
Start Chapter 1Free timed and untimed practice with instant feedback and full explanations. Pick 10–120 questions per session. Filter by domain to drill your weak areas.
Go to practice testEvery SC-900term defined and searchable. Use it when a chapter mentions a concept you haven't seen before or want a quick refresher on.
Browse glossaryExam blueprint, domain weights, passing score, duration, cost, and registration links. Start here if you're new to this certification.
View exam guide15 chapters
Core Security Concepts
Objective 1.1 · SCI Concepts
Identity Concepts
Objective 1.2 · SCI Concepts
Compliance Concepts
Objective 1.3 · SCI Concepts
Zero Trust Architecture Principles
Objective 1.1 · SCI Concepts
Shared Responsibility Model in Azure
Objective 1.1 · SCI Concepts
Defence-in-Depth Security Layers
Objective 1.1 · SCI Concepts
Authentication vs Authorisation
Objective 1.2 · SCI Concepts
The Modern Threat Landscape
Objective 1.1 · SCI Concepts
Common Attack Types: Phishing, Ransomware, DDoS
Objective 1.1 · SCI Concepts
Encryption Fundamentals for SC-900
Objective 1.1 · SCI Concepts
Compliance Frameworks: ISO 27001, NIST, SOC 2
Objective 1.3 · SCI Concepts
GDPR, HIPAA, and Global Privacy Laws
Objective 1.3 · SCI Concepts
Microsoft Zero Trust Assessment Tool
Objective 1.1 · SCI Concepts
Security Operations Model and SOC Functions
Objective 1.1 · SCI Concepts
Hashing and Digital Signatures
Objective 1.1 · SCI Concepts
29 chapters
Microsoft Entra ID
Objective 2.1 · Identity Access
Authentication and MFA in Entra
Objective 2.2 · Identity Access
Conditional Access Policies
Objective 2.3 · Identity Access
Entra ID Roles and RBAC
Objective 2.4 · Identity Access
Microsoft Entra Identity Protection
Objective 2.5 · Identity Access
Microsoft Entra External Identities: B2B and B2C
Objective 2.1 · Identity Access
Privileged Identity Management (PIM)
Objective 2.2 · Identity Access
Microsoft Entra Access Reviews
Objective 2.3 · Identity Access
Microsoft Entra Permissions Management
Objective 2.4 · Identity Access
Entra Workload Identities and Service Principals
Objective 2.5 · Identity Access
Windows Hello for Business and FIDO2
Objective 2.2 · Identity Access
Microsoft Authenticator and SSPR
Objective 2.2 · Identity Access
OAuth 2.0 and OpenID Connect in Entra
Objective 2.1 · Identity Access
SAML and Single Sign-On (SSO)
Objective 2.1 · Identity Access
Microsoft Entra Password Protection
Objective 2.2 · Identity Access
Self-Service Password Reset (SSPR)
Objective 2.2 · Identity Access
Entra ID App Registrations
Objective 2.1 · Identity Access
Entra ID Enterprise Applications
Objective 2.1 · Identity Access
Microsoft Entra Verified ID
Objective 2.5 · Identity Access
Security Defaults in Entra ID
Objective 2.2 · Identity Access
Named Locations in Conditional Access
Objective 2.3 · Identity Access
Terms of Use and Authentication Strengths
Objective 2.3 · Identity Access
Cross-Tenant Access Settings
Objective 2.1 · Identity Access
Hybrid Identity with Entra Connect
Objective 2.1 · Identity Access
Microsoft Entra Domain Services
Objective 2.1 · Identity Access
Lifecycle Workflows in Entra ID Governance
Objective 2.3 · Identity Access
Microsoft Entra Global Secure Access
Objective 2.5 · Identity Access
Entra Internet Access and Private Access
Objective 2.5 · Identity Access
Identity Governance in Microsoft Entra
Objective 2.3 · Identity Access
30 chapters
Microsoft Defender for Cloud
Objective 3.1 · Security Solutions
Microsoft Sentinel
Objective 3.2 · Security Solutions
Microsoft Defender XDR
Objective 3.3 · Security Solutions
Azure DDoS Protection and Firewall
Objective 3.4 · Security Solutions
Microsoft Defender for Office 365
Objective 3.1 · Security Solutions
Microsoft Defender for Cloud Apps
Objective 3.2 · Security Solutions
Microsoft Defender for Endpoint
Objective 3.3 · Security Solutions
Microsoft Defender for Identity
Objective 3.3 · Security Solutions
Microsoft Secure Score
Objective 3.4 · Security Solutions
Microsoft Intune for Endpoint Security
Objective 3.4 · Security Solutions
Microsoft Security Baselines
Objective 3.4 · Security Solutions
Microsoft Defender Portal Overview
Objective 3.1 · Security Solutions
Azure Network Security Groups and Firewalls
Objective 3.4 · Security Solutions
Azure Private Link Basics
Objective 3.4 · Security Solutions
Shadow IT Discovery in Defender for Cloud Apps
Objective 3.2 · Security Solutions
Session and Access Policies in Defender for Cloud Apps
Objective 3.2 · Security Solutions
Cloud Security Posture Management (CSPM)
Objective 3.1 · Security Solutions
Defender for Cloud Workload Protections
Objective 3.1 · Security Solutions
Sentinel Incidents and Alerts Overview
Objective 3.2 · Security Solutions
Logic Apps Playbooks in Sentinel
Objective 3.2 · Security Solutions
Defender for Endpoint Onboarding
Objective 3.3 · Security Solutions
Attack Surface Reduction Rules
Objective 3.3 · Security Solutions
Cloud App Governance and App Consent
Objective 3.2 · Security Solutions
Microsoft 365 Defender Portal Overview
Objective 3.3 · Security Solutions
Azure Key Vault Basics
Objective 3.4 · Security Solutions
Azure NSG and Application Security Groups
Objective 3.4 · Security Solutions
Azure Web Application Firewall (WAF)
Objective 3.4 · Security Solutions
Defender Vulnerability Management Basics
Objective 3.3 · Security Solutions
Threat and Vulnerability Management
Objective 3.3 · Security Solutions
Basic KQL Queries in Sentinel
Objective 3.2 · Security Solutions
29 chapters
Microsoft Purview
Objective 4.1 · Compliance Solutions
Compliance Manager
Objective 4.2 · Compliance Solutions
Information Protection and DLP
Objective 4.3 · Compliance Solutions
eDiscovery and Audit
Objective 4.4 · Compliance Solutions
Azure Policy for Compliance
Objective 4.1 · Compliance Solutions
Sensitivity Labels and Information Protection
Objective 4.2 · Compliance Solutions
Retention Policies and Labels
Objective 4.2 · Compliance Solutions
Insider Risk Management
Objective 4.3 · Compliance Solutions
Communication Compliance
Objective 4.3 · Compliance Solutions
Data Residency, Sovereignty, and Privacy
Objective 4.4 · Compliance Solutions
GDPR and Global Privacy Regulations Overview
Objective 4.4 · Compliance Solutions
Azure Policy and Initiatives
Objective 4.1 · Compliance Solutions
Management Groups and Subscription Governance
Objective 4.1 · Compliance Solutions
Records Management in Microsoft Purview
Objective 4.2 · Compliance Solutions
Data Classification in Microsoft Purview
Objective 4.2 · Compliance Solutions
Microsoft Compliance Manager Score
Objective 4.2 · Compliance Solutions
Azure Blueprints for Compliance
Objective 4.1 · Compliance Solutions
Microsoft Purview Compliance Portal
Objective 4.1 · Compliance Solutions
Content Explorer for Data Discovery
Objective 4.2 · Compliance Solutions
Exact Data Match for Sensitive Info Types
Objective 4.3 · Compliance Solutions
DLP Policies for Microsoft Teams
Objective 4.3 · Compliance Solutions
eDiscovery Standard vs Premium
Objective 4.4 · Compliance Solutions
Audit Log Retention Policies
Objective 4.4 · Compliance Solutions
Microsoft Privacy Principles
Objective 4.4 · Compliance Solutions
Service Trust Portal
Objective 4.4 · Compliance Solutions
Azure Policy Effects: Audit, Deny, Modify
Objective 4.1 · Compliance Solutions
Azure Resource Locks: ReadOnly and Delete
Objective 4.1 · Compliance Solutions
Advanced Audit in Microsoft 365
Objective 4.4 · Compliance Solutions
Trainable Classifiers for Content Classification
Objective 4.2 · Compliance Solutions
Free SC-900 practice questions with full explanations. Test what you learn chapter by chapter.
SC-900 Practice Questions