SC-100 practice test

SC-100 Practice Test: Microsoft Cybersecurity Architect Exam Questions

Upload your security architecture notes, and the AI writes unlimited SC-100 practice questions with an answer key in seconds. Built for the exam where every objective starts with Design, Evaluate, or Specify, and nothing asks you to click through a portal.

Your study files are processed securely and deleted automatically after your practice questions are built.

Upload your security notes and generate your first question set

Click to upload or drag and drop

PDF, DOCX, PPTX, TXT, JPG, JPEG, PNG, HEIC, ODP, ODT, BMP, or TIFF

up to 20MB

Please wait, your quiz is being created...

Uploading...

Exam SC-100: Microsoft Cybersecurity Architect is the capstone exam for the Microsoft Certified: Cybersecurity Architect Expert certification, with a published passing score of 700 and a free official practice assessment on Microsoft Learn. It is a pure design exam: in the roughly 1,200-word outline, the verbs Design, Evaluate and Specify appear 98 times combined, and no objective asks you to configure anything. Passing SC-100 alone does not issue the certification: you also need at least one qualifying associate, from AZ-500, SC-300, or SC-200. The current outline took effect in April 2026 with six Minor edits and no Major changes, and no retirement date is published.

Last updated July 2026

What the SC-100 exam tests on the April 2026 outline

We read the official skills-measured outline on Microsoft Learn the way we do for every certification page on this site. The weights are unusually flat, two domains at 25 to 30 percent and two at 20 to 25 percent, because the exam is not testing an area of knowledge. It is testing one skill, architectural judgment, applied to four surfaces. Defender appears 12 times, posture 7 times and multicloud 6 times; nothing appears as often as the word Design, at 59.

Domain What is actually in it Weight
Design security operations, identity, and compliance capabilitiesXDR and SIEM detection and response, SOAR with Microsoft Sentinel and Defender XDR, threat detection coverage mapped against MITRE ATT&CK matrices including ICS. Identity: Entra ID across hybrid and multicloud, B2B and decentralized identity, Conditional Access validated against Zero Trust, hardening AD DS, and the April 2026 addition, agent identities with Microsoft Entra Agent ID. Privileged access via the enterprise access model, PIM, entitlement management and secure admin workstations. Compliance translated into controls with Purview, Azure Policy and Defender for Cloud.25 to 30%
Design security solutions for infrastructurePosture management with Defender for Cloud, Secure Score, MCSB and Security Exposure Management attack paths. Hybrid and multicloud via Azure Arc, Defender EASM for external attack surface. Endpoint requirements across servers, mobile, IoT and OT with Defender for IoT, security baselines and Windows LAPS. Service-layer requirements for SaaS, PaaS, IaaS, containers and orchestration, plus network security and Security Service Edge: Entra Internet Access and Entra Private Access.25 to 30%
Design solutions that align with security best practices and prioritiesRansomware resiliency strategy, BCDR with secure backup and restore for hybrid and multicloud, prioritizing threats to business-critical assets. Alignment with the named frameworks: Microsoft Cybersecurity Reference Architectures (MCRA), Microsoft Cloud Security Benchmark (MCSB), the Zero Trust adoption framework, the Cloud Adoption Framework (CAF) and the Azure Well-Architected Framework. Azure landing zones, DevSecOps process design, and a strategy for secure AI adoption.20 to 25%
Design security solutions for applications and dataMicrosoft 365 security posture with Defender for Office 365, Defender for Cloud Apps and Intune, plus data security and compliance controls in Microsoft Copilot for Microsoft 365. Application security: threat modeling business-critical apps, full lifecycle strategy, workload identities, API management and Azure WAF. Data: discovery and classification, encryption at rest and in transit with Azure Key Vault, security for data used in AI workloads, and Azure SQL, Synapse, Cosmos DB and Storage with Defender for Storage and Databases.20 to 25%

If your study material drills portal steps, it is preparing you for the wrong exam. Build questions that force trade-off decisions instead: generate practice questions from your own security notes and make every question ask which design is right and why.

Design, Evaluate, Specify
x98
Passing score
700
Current outline
Apr 2026
Practice questions
Unlimited

One exam, two requirements: how the Expert credential actually issues

SC-100 is the only required exam for Cybersecurity Architect Expert, but the certification does not issue on SC-100 alone. Microsoft requires at least one qualifying associate certification alongside it, and which one you pick shapes how you should study. All three qualifying exams have practice-test pages on this site.

Route 1: AZ-500

Azure Security Engineer Associate. The infrastructure-heavy route: platform protection, networking, Key Vault. Pairs naturally with the SC-100 infrastructure domain. One caveat: the AZ-500 exam retires August 31, 2026, so book it soon or pick another route. Start from the AZ-500 practice test.

Route 2: SC-300

Identity and Access Administrator Associate. The identity route: Entra ID, Conditional Access, PIM, entitlement management. Covers the deepest single objective group on SC-100. Start from the SC-300 practice test.

Route 3: SC-200

Security Operations Analyst Associate. The SOC route: Sentinel, Defender XDR, KQL, incident response. Maps to the security operations objectives on SC-100. Start from the SC-200 practice test.

The April 2026 refresh also quietly modernized the outline: agent identities with Microsoft Entra Agent ID, a strategy for secure AI adoption, security for data used in AI workloads, and Security Exposure Management attack paths are all named objectives now. If your study material predates 2026, those are the gaps to check first.

Why strong security engineers fail a design exam

Most SC-100 candidates arrive with AZ-500 or SC-200 already passed. The knowledge transfers; the question style does not.

What associate exams trained you to do What SC-100 asks instead
Configure the correct Conditional Access policy for a requirementValidate whether an entire Conditional Access design aligns with a Zero Trust strategy, and spot where it does not
Deploy Defender for Cloud and remediate recommendationsDesign an integrated posture-management solution across two clouds and on-premises, and justify the trade-offs
Investigate an incident in Sentinel with KQLDesign the detection and response architecture itself: what goes to XDR, what goes to SIEM, and how coverage maps to MITRE ATT&CK
Set up PIM and access reviewsDesign privileged access around the enterprise access model, including secure workstations and cloud infrastructure entitlement management
Memorize which service encrypts whatPrioritize threats to business-critical data and design a ransomware resiliency strategy where BCDR and privileged access come first

Every right-hand cell paraphrases a named objective on the April 2026 outline. The fix is to practice with questions written at the same altitude: scenarios with several defensible answers where only one aligns with the named framework.

How to build SC-100 practice questions that match the real exam

Study the frameworks, then drill judgment: MCRA, MCSB, Zero Trust, CAF and Well-Architected are the answer key to half the exam.

1
Upload current material
The SC-100 study guide, MCRA documentation, or your own notes. If it never mentions Entra Agent ID, Security Exposure Management or secure AI adoption, it predates the April 2026 outline.
2
Generate scenario questions
Ask for questions that present a business constraint and force a design choice, not definitions. The exam tests which answer aligns with MCRA or Zero Trust when three answers would technically work.
3
Drill your weak domain
AZ-500 holders are usually weakest on security operations design; SC-200 holders on infrastructure posture. Overweight the domain your associate exam never covered.
4
Finish with the official mock
SC-100 has a free official practice assessment on Microsoft Learn. Use generated questions to close gaps domain by domain, then confirm readiness on the official mock before booking.

SC-100 exam questions, answered

What is the SC-100 exam?
Exam SC-100: Microsoft Cybersecurity Architect is the capstone exam for the Microsoft Certified: Cybersecurity Architect Expert certification, Microsoft's highest security credential. It tests designing security strategy and architecture across identity, security operations, infrastructure, applications and data, including hybrid and multicloud environments. A score of 700 or greater is required to pass, and the study guide is published on Microsoft Learn. Searching for the California small claims form with the same name? Different SC-100 entirely.
What are the SC-100 prerequisites?
No exam blocks you from sitting SC-100 itself. But the Cybersecurity Architect Expert certification only issues once you also hold at least one of: Microsoft Certified: Azure Security Engineer Associate (AZ-500), Identity and Access Administrator Associate (SC-300), or Security Operations Analyst Associate (SC-200). Passing SC-100 first and the associate second works too; the credential issues when both are in place. Note that the AZ-500 exam retires August 31, 2026, so candidates planning that route should book before the retirement date.
How hard is the SC-100 exam?
It is an expert-level design exam, and its difficulty is different in kind from the associate exams below it. The outline's 98 uses of Design, Evaluate and Specify translate into scenario questions with several defensible answers, where the right one aligns with a named framework like MCRA, MCSB or the Zero Trust adoption framework. Candidates who prepared by memorizing service features consistently report being surprised by the altitude.
What is on the SC-100 exam?
Four domains: design solutions that align with security best practices and priorities (20 to 25 percent), design security operations, identity, and compliance capabilities (25 to 30 percent), design security solutions for infrastructure (25 to 30 percent), and design security solutions for applications and data (20 to 25 percent). The April 2026 outline names MCRA, MCSB, Zero Trust, CAF, Azure landing zones, MITRE ATT&CK, Microsoft Entra Agent ID, Security Exposure Management, Entra Internet Access and Entra Private Access verbatim.
Is SC-100 changing or retiring in 2026?
No retirement date is published for SC-100. The current outline took effect in April 2026, and the official change log grades six objective groups Minor, including identity and access management (where Entra Agent ID arrived) and posture management, with everything else No change and nothing Major. The four domains and their weights are unchanged from the prior version.
How many questions are on the SC-100 exam?
Microsoft does not publish an official question count for SC-100. It does publish a passing score of 700, and a free official practice assessment is available on Microsoft Learn. Treat any site quoting an exact question count as unofficial, and confirm details on the exam page when you schedule.
Is the SC-100 certification worth it?
For security engineers moving toward architecture, yes. Cybersecurity Architect Expert is Microsoft's top security credential, the design-level judgment it validates is exactly what separates senior and staff roles from implementation roles in US security teams, and the certification renews free every 12 months with an online renewal assessment. It also forces breadth: identity, SecOps, infrastructure and data people all leave with their blind spots patched.

PDFQuiz is not affiliated with, endorsed by, or sponsored by Microsoft. Microsoft Entra, Microsoft Defender, Microsoft Sentinel, Microsoft Purview and Azure are trademarks of Microsoft Corporation. MITRE ATT&CK is a trademark of The MITRE Corporation. This generator builds practice questions from material you upload and is a study aid, not a substitute for official learning paths. Always confirm the current skills-measured document before you book.

Related study tools

SC-100 caps the Microsoft security track: the AZ-500 practice test, SC-300 practice test and SC-200 practice test cover the three qualifying associate exams, and candidates weighing vendor-neutral options often study it alongside the CISSP practice questions. Any study guide works with the certification exam generator.

Build your first SC-100 practice set

Upload your security architecture notes and generate design-level scenario questions with an answer key in under a minute.

Z tej samej rodziny narzędzi