ExamGecko
Search Search Login
Home Home / Microsoft / MS-102

Microsoft MS-102 Practice Test - Questions Answers, Page 44

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

HOTSPOT Your company has a Microsoft 365 subscription that contains the users shown in the following table. External collaboration settings have default configuration. You need to identify which users can perform the following administrative tasks: * Modify the password protection policy. * Create guest user accounts. Which users should you identify for each task? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 E5 subscription that contains the labels shown in the following table. You have the items shown in the following table. Which items can you view in Content explorer?
HOTSPOT You have a Microsoft 365 E5 subscription that contains 200 Android devices enrolled in Microsoft Intune. You create an Android app protection policy named Policy! that is targeted to all Microsoft apps and assigned to all users. Policy! has the Data protection settings shown in the following exhibit. Use the drop-down menus to select 'he answer choice that completes each statement based on the information presented in the graphic.
You need to ensure that all the sales department users can authenticate successfully during Project1 and Project2. Which authentication strategy should you implement for the pilot projects?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure a pilot for co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager. Solution: Define a Configuration Manager device collection as the pilot collection. Add Device1 to the collection. Does this meet the goal?
You have a Microsoft 365 subscription that contains the users shown in the following table. You plan to use Exchange Online to manage email for a DNS domain. An administrator adds the DNS domain to the subscription. The DNS domain has a status of Incomplete setup. You need to identify which user can complete the setup of the DNS domain. The solution must use the principle of least privilege. Which user should you identify?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result these questions will not appear in the review screen. Your network contains an Active Directory forest. You deploy Microsoft 365. You plan to implement directory synchronization. You need to recommend a security solution for the synchronized identities. The solution must meet the following requirements: * Users must be able to authenticate successfully to Microsoft 365 services if Active Directory becomes unavailable. * User passwords must be 10 characters or more. Solution: Implement pass-through authentication and configure password protection in the Azure AD tenant. Does this meet the goal?
HOTSPOT You have a Microsoft 365 E5 subscription that contains the devices shown in the following table. All the devices are onboarded To Microsoft Defender for Endpoint You plan to use Microsoft Defender Vulnerability Management to meet the following requirements: * Detect operating system vulnerabilities.
You have an Azure AD tenant. You have 1,000 computers that run Windows 10 Pro and are joined to Azure AD. You purchase a Microsoft 365 E3 subscription. You need to deploy Windows 10 Enterprise to the computers. The solution must minimize administrative effort. What should you do?
You have a Microsoft 365 E5 subscription. You create an account tor a new security administrator named SecAdmin1. You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint and OneDrive. Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Teams Administrator role. Does this meet the goal?

Question 431

Report
Export
Collapse

HOTSPOT

You have a Microsoft 365 E5 subscription that contains two users named [email protected] and [email protected] and a Microsoft SharePoint site named Site1.

You create a data loss prevention {DLP) policy named DLP1 that has the advanced DLP rules shown in the following table.

DLP1 is applied to Site1.

You have the files shown in the following table.

You copy the files to Site1.

low many notifications will each user receive? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Question 431
Correct answer: Question 431

Question 432

Report
Export
Collapse

You have a Microsoft 365 E5 subscription.

You are creating a data loss prevention (DLP) policy applied to the locations as shown in the following exhibit.

Which condition can you use in the DIP rules of the policy?

A.

sensitive info types

A.

sensitive info types

Answers
B.

sensitivity labels

B.

sensitivity labels

Answers
C.

content search queries

C.

content search queries

Answers
D.

keywords

D.

keywords

Answers
Suggested answer: A

Question 433

Report
Export
Collapse

You have a Microsoft 365 tenant.

You plan to manage incidents in the tenant by using the Microsoft Defender XDR. Which Microsoft service source will appear on the Incidents page of the Microsoft Defender portal?

A.

Microsoft Defender for Cloud Apps

A.

Microsoft Defender for Cloud Apps

Answers
B.

Microsoft Defender for Cloud

B.

Microsoft Defender for Cloud

Answers
C.

Azure Arc

C.

Azure Arc

Answers
D.

Azure Information Protection

D.

Azure Information Protection

Answers
Suggested answer: D

Question 434

Report
Export
Collapse

Your network contains an Active Directory forest.

You deploy Microsoft 365.

You plan to implement directory synchronization.

You need to recommend a security solution for the synchronized identities. The solution must meet the following requirements:

* Users must be able to authenticate successfully to Microsoft 365 services if Active Directory becomes unavailable.

* User passwords must be 10 characters or more.

Solution: Implement pass-through authentication and configure Microsoft Entra Password protection. Does this meet the goal?

A.

Yes

A.

Yes

Answers
B.

No

B.

No

Answers
Suggested answer: B

Question 435

Report
Export
Collapse

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Endpoint and Microsoft Intune.

All devices run Windows 11 and are Microsoft Entra joined.

You are alerted to a zero-day attack.

You need to identify which devices were affected by the attack and send a request to Intune administrators to update the affected devices.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

A.

From Incidents & alerts, select the latest incident.

A.

From Incidents & alerts, select the latest incident.

Answers
B.

From Vulnerability management, open the security recommendation.

B.

From Vulnerability management, open the security recommendation.

Answers
C.

Select the affected devices and request remediation.

C.

Select the affected devices and request remediation.

Answers
D.

From Threat analytics, view the list of vulnerable devices.

D.

From Threat analytics, view the list of vulnerable devices.

Answers
Suggested answer: B, C

Question 436

Report
Export
Collapse

Your company has a Microsoft Entra tenant named contoso.com and a Microsoft 365 subscription. All users use Windows 10 devices to access Microsoft 365 apps. All the devices are in a workgroup.

You plan to implement passwordless sign-in to contoso.com.

You need to recommend changes to the infrastructure for the planned implementation. What should you include in the recommendation?

A.

Deploy the Microsoft Entra Connect provisioning agent.

A.

Deploy the Microsoft Entra Connect provisioning agent.

Answers
B.

Join all the devices to contoso.com.

B.

Join all the devices to contoso.com.

Answers
C.

Deploy Microsoft Entra Application Proxy.

C.

Deploy Microsoft Entra Application Proxy.

Answers
D.

Deploy the Microsoft Authenticate app.

D.

Deploy the Microsoft Authenticate app.

Answers
Suggested answer: D

Question 437

Report
Export
Collapse

You have a Microsoft 365 E5 subscription that contains a user named User1. You create an anti-phishing policy named Policy! that has the following settings:

* Include these users, groups and domains: User1

* Phishing email threshold: 3 - More Aggressive

User1 receives the email messages shown in the following table.

Which messages are phishing email?

A.

Mail4 only

A.

Mail4 only

Answers
B.

Mail3 and Mail4 only

B.

Mail3 and Mail4 only

Answers
C.

Mail2, Mail3, and Mail4 only

C.

Mail2, Mail3, and Mail4 only

Answers
D.

Mail1, Mail2, Mail3, and Mail4

D.

Mail1, Mail2, Mail3, and Mail4

Answers
Suggested answer: B

Question 438

Report
Export
Collapse

You have a Microsoft 365 E5 subscription. You create a data loss prevention (DLP) policy named DLP1.

You need to ensure that endpoint rule actions are available in the advanced DLP rules for DLP1. To which location should you apply DLP1?

A.

Instances

A.

Instances

Answers
B.

Devices

B.

Devices

Answers
C.

OneDrive accounts

C.

OneDrive accounts

Answers
D.

On-premises repositories

D.

On-premises repositories

Answers
Suggested answer: B

Question 439

Report
Export
Collapse

You have a Microsoft 365 E5 subscription and use Microsoft Defender for Endpoint Defender for Endpoint has tamper protection enabled.

You have a device named Device1 that is onboarded to Defender for Endpoint. You need to configure antivirus and real-time protection for Device1.

What should you do in the Microsoft Defender portal?

A.

Enable troubleshooting mode.

A.

Enable troubleshooting mode.

Answers
B.

Initiate a live response session.

B.

Initiate a live response session.

Answers
C.

Isolate Device1.

C.

Isolate Device1.

Answers
D.

Create a device group.

D.

Create a device group.

Answers
Suggested answer: A

Question 440

Report
Export
Collapse

You have a Microsoft 365 E5 subscription. Administrators are issued FID02 security keys.

You need to create a Conditional Access policy that will use a FID02 security key as an authentication method. Which Access controls option should you select for the policy?

A.

Require token protection for sign-in sessions

A.

Require token protection for sign-in sessions

Answers
B.

Require approved client app

B.

Require approved client app

Answers
C.

Require authentication strength

C.

Require authentication strength

Answers
D.

Require multifactor authentication

D.

Require multifactor authentication

Answers
Suggested answer: C
Total 467 questions
Go to page: of 47
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms