Home / Microsoft / MS-102

Microsoft MS-102 Practice Test - Questions Answers, Page 43

Question list

List of questions

Question 421

(0)

HOTSPOT You have a Microsoft Entra tenant that contains the groups shown in the following exhibit. Use the drop-down menus to select the answer choice that completes each statement based on the

Question 422

(0)

You have a Microsoft 365 ES subscription. From the Microsoft 365 Defender portal, you review your company's Microsoft Secure Score. You discover a large number of recommended actions. You need to

Question 423

(0)

HOTSPOT You have a Microsoft 365 E5 subscription. You need to create a Conditional Access policy that will require the use of FID02 security keys only when users join their Windows devices to Micr

Question 424

(0)

Your network contains an Active Directory domain. You deploy a Microsoft Entra tenant. Another administrator configures the domain to synchronize to the Microsoft Entra tenant You discover that 1

Question 425

(0)

HOTSPOT You have a Microsoft 365 E5 subscription that contains a SharePoint site named Site1. Site1 contains the files shown in the following table. You have the users shown in the following tab

Question 426

(0)

HOTSPOT You have a Microsoft 365 E5 subscription that contains the users shown in the following table. You configure a Multifactor authentication registration policy that has the following setti

Question 427

(0)

HOTSPOT You have a Microsoft 365 E5 subscription. You create a Conditional Access policy named Policy1 and assign Policy1 to all users. You need to configure Policy1 to enforce multi factor authe

Question 428

(0)

HOTSPOT You have a Microsoft 365 subscription. From Microsoft Entra Privileged Identity Management (PIM), you configure Role settings for the Global Administrator role as shown in the following ex

Question 429

(0)

HOTSPOT You have a Microsoft 365 E5 subscription. You need to configure Privileged Identity Management (PIM) for the User Administrator role in Microsoft Entra. Eligible users must meet the follow

Question 430

(0)

You have a Microsoft 365 E5 subscription that contains the devices shown in the following table. You plan to create an Endpoint security policy by using the Defender Update controls template. To

Related questions

HOTSPOT Your company has a Microsoft 365 subscription that contains the users shown in the following table. External collaboration settings have default configuration. You need to identify which users can perform the following administrative tasks: * Modify the password protection policy. * Create guest user accounts. Which users should you identify for each task? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

You have a Microsoft 365 E5 subscription that contains the labels shown in the following table. You have the items shown in the following table. Which items can you view in Content explorer?

HOTSPOT You have a Microsoft 365 E5 subscription that contains 200 Android devices enrolled in Microsoft Intune. You create an Android app protection policy named Policy! that is targeted to all Microsoft apps and assigned to all users. Policy! has the Data protection settings shown in the following exhibit. Use the drop-down menus to select 'he answer choice that completes each statement based on the information presented in the graphic.

You need to ensure that all the sales department users can authenticate successfully during Project1 and Project2. Which authentication strategy should you implement for the pilot projects?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure a pilot for co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager. Solution: Define a Configuration Manager device collection as the pilot collection. Add Device1 to the collection. Does this meet the goal?

You have a Microsoft 365 subscription that contains the users shown in the following table. You plan to use Exchange Online to manage email for a DNS domain. An administrator adds the DNS domain to the subscription. The DNS domain has a status of Incomplete setup. You need to identify which user can complete the setup of the DNS domain. The solution must use the principle of least privilege. Which user should you identify?

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result these questions will not appear in the review screen. Your network contains an Active Directory forest. You deploy Microsoft 365. You plan to implement directory synchronization. You need to recommend a security solution for the synchronized identities. The solution must meet the following requirements: * Users must be able to authenticate successfully to Microsoft 365 services if Active Directory becomes unavailable. * User passwords must be 10 characters or more. Solution: Implement pass-through authentication and configure password protection in the Azure AD tenant. Does this meet the goal?

HOTSPOT You have a Microsoft 365 E5 subscription that contains the devices shown in the following table. All the devices are onboarded To Microsoft Defender for Endpoint You plan to use Microsoft Defender Vulnerability Management to meet the following requirements: * Detect operating system vulnerabilities.

You have an Azure AD tenant. You have 1,000 computers that run Windows 10 Pro and are joined to Azure AD. You purchase a Microsoft 365 E3 subscription. You need to deploy Windows 10 Enterprise to the computers. The solution must minimize administrative effort. What should you do?

You have a Microsoft 365 E5 subscription. You create an account tor a new security administrator named SecAdmin1. You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint and OneDrive. Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Teams Administrator role. Does this meet the goal?

Question 421

HOTSPOT

You have a Microsoft Entra tenant that contains the groups shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each cont'd selection is worth one point.

Show Answer Comment (0)

Question 422

You have a Microsoft 365 ES subscription.

From the Microsoft 365 Defender portal, you review your company's Microsoft Secure Score.

You discover a large number of recommended actions.

You need to ensure that the actions can be filtered based on specific department names.

What should you create first?

a dynamic security group

a tag

an administrative unit

a custom detection rule

Show Answer Comment (0)

Question 423

HOTSPOT

You have a Microsoft 365 E5 subscription.

You need to create a Conditional Access policy that will require the use of FID02 security keys only when users join their Windows devices to Microsoft Entra ID.

How should you configure the policy? To answer, select the appropriate options in the answer area.

NOTE Each correct selection is worth one point.

Show Answer Comment (0)

Question 424

Your network contains an Active Directory domain.

You deploy a Microsoft Entra tenant.

Another administrator configures the domain to synchronize to the Microsoft Entra tenant

You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to the Microsoft Entra tenant. All the other user accounts synchronized successfully.

You review Microsoft Entra Connect Health and discover that all the user account synchronizations completed successfully.

You need to ensure that the 10 user accounts are synchronized to the Microsoft Entra tenant.

Solution: From Microsoft Entra Connect you modify the Microsoft Entra credentials.

Does this meet the goal?

Yes

Show Answer Comment (0)

Question 425

HOTSPOT

You have a Microsoft 365 E5 subscription that contains a SharePoint site named Site1. Site1 contains the files shown in the following table.

You have the users shown in the following table.

You create a data loss prevention (DLP) policy with an advanced DLP rule and apply the policy to Site1. The DLP rule is configured as shown in the following exhibit.

For each of the following statements, select Yes if the statement is true Otherwise, select No

NOTE: Each correct selection is worth one point.

Show Answer Comment (0)

Question 426

HOTSPOT

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

You configure a Multifactor authentication registration policy that has the following settings:

* Assignments:

* Include: Group1

* Exclude: Group2

* Controls: Requite Microsoft Entra ID multifactor authentication registration

* Policy enforcement: Enabled

You create a conditional access policy that has the following settings:

* Name: Policy1

* Assignments:

* Include: Group1

* Exclude; Group1

* Grant: Require multifactor authentication

* Enable policy. On

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each coned selection is one point.

Show Answer Comment (0)

Question 427

HOTSPOT

You have a Microsoft 365 E5 subscription.

You create a Conditional Access policy named Policy1 and assign Policy1 to all users.

You need to configure Policy1 to enforce multi factor authentication (MFA) if the user risk level is high.

Which two settings should you configure in Policy1? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Show Answer Comment (0)

Question 428

HOTSPOT

You have a Microsoft 365 subscription.

From Microsoft Entra Privileged Identity Management (PIM), you configure Role settings for the Global Administrator role as shown in the following exhibit.

You make a user named [email protected] eligible for the Global Administrator role.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the

Show Answer Comment (0)

Question 429

HOTSPOT

You have a Microsoft 365 E5 subscription.

You need to configure Privileged Identity Management (PIM) for the User Administrator role in Microsoft Entra. Eligible users must meet the following requirements:

* Always be able to request the User Administrator role.

* Must provide a reason when requesting the User Administrator role

* Must require multi-factor authentication (MFA} when activating the User Administrator role

The solution must minimize administrative effort.