Home » MS-100 Microsoft 365 Identity and Services – Exam A

Instructies

  1. Alle 40 vragen moeten worden ingevuld.
  2. Er zijn geen strikvragen.
  3. Je moet ten minste 32 vragen goed beantwoorden om te slagen

1. Your company has a Microsoft Office 365 tenant. You suspect that several Office 365 features were recently updated. You need to view a list of the features that were recently updated in the tenant. Solution: You review the Security & Compliance report in the Microsoft 365 admin center.*
Does this meet the goal?
2. You recently migrated your on-premises email solution to Microsoft Exchange Online and are evaluating which licenses to purchase. You want the members of two groups named IT and Managers to be able to use the features shown in the following table.*

The IT group contains 50 users. The Managers group contains 200 users. You need to recommend which licenses must be purchased for the planned solution. The solution must minimize licensing costs.
Which licenses should you recommend?
3. You have a Microsoft 365 tenant that contains Microsoft Exchange Online. You plan to enable calendar sharing with a partner organization named adatum.com. The partner organization also has a Microsoft 365 tenant. You need to ensure that the calendar of every user is available to the users in adatum.com immediately.*
What should you do?
4. Your company has an on-premises Microsoft Exchange Server 2016 organization and a Microsoft 365 Enterprise subscription. You plan to migrate mailboxes and groups to Exchange Online. You start a new migration batch. Users report slow performance when they use the on-premises Exchange Server organization. You discover that the migration is causing the slow performance. You need to reduce the impact of the mailbox migration on the end-users.*
What should you do?
5. You have a Microsoft 365 subscription. You need to prevent phishing email messages from being delivered to your organization.*
What should you do?
6. You have a Microsoft 365 subscription. A new corporate security policy states that you must automatically send DLP incident reports to the users in the legal department. You need to schedule the email delivery of the reports. The solution must ensure that the reports are sent as frequently as possible.*
How frequently can you share the reports?
7. Your company has a Microsoft 365 subscription. You need to identify all the users in the subscription who are licensed for Microsoft Office 365 through a group membership. The solution must include the name of the group used to assign the license.*
What should you use?
8. Your company has a Microsoft 365 subscription. You upload several archive PST files to Microsoft 365 by using the Security & Compliance admin center. A month later, you attempt to run an import job for the PST files. You discover that the PST files were deleted from Microsoft 365. What is the most likely cause of the files being deleted? More than one answer choice may achieve the goal.*
Select the BEST answer.
9. Your company has a main office and 20 branch offices in North America and Europe. Each branch office connects to the main office by using a WAN link. All the offices connect to the Internet and resolve external host names by using the main office connections. You plan to deploy Microsoft 365 and to implement a direct Internet connection in each office. You need to recommend a change to the infrastructure to provide the quickest possible access to Microsoft 365 services. What is the best recommendation to achieve the goal? More than one answer choice may achieve the goal.*
Select the BEST answer.
10. Your network contains an Active Directory forest named adatum.local. The forest contains 500 users and uses adatum.com as a UPN suffix. You deploy a Microsoft 365 tenant. You implement directory synchronization and sync only 50 support users. You discover that five of the synchronized users have usernames that use a UPN suffix of onmicrosoft.com. You need to ensure that all synchronized identities retain the UPN set in their on-premises user account.*
What should you do?
11. Your company has on-premises servers and a Microsoft Azure Active Directory (Azure AD) tenant. Several months ago, the Azure AD Connect Health agent was installed on all the servers. You review the health status of all the servers regularly. Recently, you attempted to view the health status of a server named Server1 and discovered that the server is NOT listed on the Azure Active Directory Connect Servers list. You suspect that another administrator removed Server1 from the list. You need to ensure that you can view the health status of Server1.*
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
12. You have a Microsoft 365 subscription. You suspect that several Microsoft Office 365 applications or services were recently updated. You need to identify which applications or services were recently updated.*
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
13. Your company has a Microsoft Office 365 tenant. You suspect that several Office 365 features were recently updated. You need to view a list of the features that were recently updated in the tenant. Solution: You use Monitoring and reports from the Compliance admin center.*
Does this meet the goal?
14. Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure a pilot for co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager. Solution: You add Device1 to an Active Directory group.*
Does this meet the goal?
15. Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure a pilot for co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager. Solution: Define a Configuration Manager device collection as the pilot collection. Add Device1 to the collection.*
Does this meet the goal?
16. Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure a pilot for co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager. Solution: You create a device configuration profile from the Intune admin center.*
Does this meet the goal?
17. You have a Microsoft 365 subscription. You configure a data loss prevention (DLP) policy. You discover that users are incorrectly marking content as false positive and bypassing the DLP policy. You need to prevent the users from bypassing the DLP policy.*
What should you configure?
18. Your company uses on-premises Windows Server File Classification Infrastructure 9FCI). Some documents on the on-premises file servers are classifies as Confidential. You migrate the files from the on-premises file servers to Microsoft SharePoint Online. You need to ensure that you can implement data loss prevention (DLP) policies for the uploaded files based on the Confidential classification.*
What should you do first?
19. Your company has 10 offices. The network contains an Active Directory domain named contoso.com. The domain contains 500 client computers. Each office is configured as a separate subnet. You discover that one of the offices has the following:*
• Computers that have several preinstalled applications Computers that use nonstandard computer names
• Computers that have Windows 10 preinstalled
• Computers that are in a workgroup
You must configure the computers to meet the following corporate requirements:
• All the computers must be joined to the domain.
• All the computers must have computer names that use a prefix of CONTOSO.
• All the computers must only have approved corporate applications installed.

You need to recommend a solution to redeploy the computers. The solution must minimize the deployment time.
20. You have a Microsoft 365 subscription. You recently configured a Microsoft SharePoint Online tenant in the subscription. You plan to create an alert policy. You need to ensure that an alert is generated only when malware is detected in more than five documents stored in SharePoint Online during a period of 10 minutes.*
What should you do first?
21. You have a Microsoft 365 tenant. You have a line-of-business application named App1 that users access by using the My Apps portal. After some recent security breaches, you implement a conditional access policy for App1 that uses Conditional Access App Control. You need to be alerted by email if impossible travel is detected for a user of App1. The solution must ensure that alerts are generated for App1 only.*
What should you do?
22. Your network contains an on-premises Active Directory domain. Your company has a security policy that prevents additional software from being installed on domain controllers. You need to monitor a domain controller by using Microsoft Azure Advanced Threat Protection (ATP).*
What should you do? More than once choice may achieve the goal. Select the BEST answer.
23. You implement Microsoft Azure Advanced Threat Protection (Azure ATP). You have an Azure ATP sensor configured as shown in the following exhibit.*

How long after the Azure ATP cloud service is updated will the sensor update?
24. Your company has a Microsoft 365 E3 subscription. All devices run Windows 10 Pro and are joined to Microsoft Azure Active Directory (Azure AD). You need to change the edition of Windows 10 to Enterprise the next time users sign in to their computer. The solution must minimize downtime for the users.*
What should you use?
25. Your company has a Microsoft 365 subscription. Your plan to add 100 newly hired temporary users to the subscription next week. You create the user accounts for the new users. You need to assign licenses to the new users.*

Which command should you run?
26. Your network contains an Active Directory domain and a Microsoft Azure Active Directory (Azure AD) tenant. The network uses a firewall that contains a list of allowed outbound domains. You begin to implement directory synchronization. You discover that the firewall configuration contains only the following domain names in the list of allowed domains:*
• *.microsoft.com
• *.office.com

Directory synchronization fails.
You need to ensure that directory synchronization completes successfully. What is the best approach to achieve the goal? More than one answer choice may achieve the goal.
27. Your network contains an on-premises Active Directory forest. You are evaluating the implementation of Microsoft 365 and the deployment of an authentication strategy. You need to recommend an authentication strategy that meets the following requirements: Allows users to sign in by using smart card-based certificates Allows users to connect to on-premises and Microsoft 365 services by using SSO*
Which authentication strategy should you recommend?
28. Your network contains an Active Directory domain named adatum.com that is synced to Microsoft Azure Active Directory (Azure AD). The domain contains 100 user accounts. The city attribute for all the users is set to the city where the user resides. You need to modify the value of the city attribute to the three-letter airport code of each city.*
What should you do?
29. You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. The tenant includes a user named User1. You enable Azure AD Identity Protection. You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege.*
To which role should you add User1?
30. Your network contains three Active Directory forests. You create a Microsoft Azure Active Directory (Azure AD) tenant. You plan to sync the on-premises Active Directory to Azure AD. You need to recommend a synchronization solution. The solution must ensure that the synchronization can complete successfully and as quickly as possible if a single server fails. The company’s security policy states the following:*
What should you include in the recommendation?
31. Your company has 10,000 users who access all applications from an on-premises data center. You plan to create a Microsoft 365 subscription and to migrate data to the cloud. You plan to implement directory synchronization. User accounts and group accounts must sync to Microsoft Azure Active Directory (Azure AD) successfully. You discover that several user accounts fail to sync to Azure AD. You need to identify which user accounts failed to sync. You must resolve the issue as quickly as possible.*
What should you do?
32. Your network contains an Active Directory forest. The forest contains two domains named contoso.com and adatum.com. Your company recently purchased a Microsoft 365 subscription. You deploy a federated identity solution to the environment. You use the following command to configure contoso.com for federation. Convert-MsolDomaintoFederated –DomainName contoso.com In the Microsoft 365 tenant, an administrator adds and verifies the adatum.com domain name. You need to configure the adatum.com Active Directory domain for federated authentication.*
Which two actions should you perform before you run the Azure AD Connect wizard? Each correct answer presents part of the solution.
33. Your network contains a single Active Directory domain and two Microsoft Azure Active Directory (Azure AD) tenants. You plan to implement directory synchronization for both Azure AD tenants. Each tenant will contain some of the Active Directory users. You need to recommend a solution for the planned directory synchronization.*
What should you include in the recommendation?
34. Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com that contains a user named User1. You suspect that an imposter is signing in to Azure AD by using the credentials of User1. You need to ensure that an administrator named Admin1 can view all the sign in details of User1 from the past 24 hours.*
To which three roles should you add Admin1? Each correct answer presents a complete solution.
35. You have a Microsoft 365 subscription. You plan to enable Microsoft Azure Information Protection. You need to ensure that only the members of a group named PilotUsers can protect content.*
What should you do?
36. Your company has a Microsoft 365 subscription. You need to identify which users performed the following privileged administration tasks:*
• Deleted a folder from the second-stage Recycle Bin if Microsoft SharePoint
• Opened a mailbox of which the user was not the owner
• Reset a user password

What should you use?
37. You have a Microsoft 365 subscription. You have a user named User1. You need to ensure that User1 can place a hold on all mailbox content.*
What permission should you assign to User1?
38. Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. You sign up for Microsoft Store for Business. The tenant contains the users shown in the following table.*

Microsoft Store for Business has the following Shopping behavior settings:
• Allow users to shop is set to On.
• Make everyone a Basic Purchaser is set to Off.
You need to identify which users can install apps from the Microsoft for Business private store.

Which users should you identify?
39. You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. In the tenant, you create a user named User1. You need to ensure that User1 can publish retention labels from the Security & Compliance admin center. The solution must use the principle of least privilege.*
To which role group should you add User1?
40. Your company has a Microsoft 365 E5 subscription. Users in the research department work with sensitive data. You need to prevent the research department users from accessing potentially unsafe websites by using hyperlinks embedded in email messages and documents. Users in other departments must not be restricted.*
What should you do from the Security & Compliance admin center?

Uitgelicht

Waarom is Cyber Security zo belangrijk?

De digitalisering blijft toenemen en biedt veel kansen voor bedrijven, niet alleen in de IT-sector maar in alle sectoren. Dit betekent ook dat cybercriminaliteit toeneemt. Gegevens worden digitaal opgeslagen voor…

Lees verder »

Linden-IT winst samen met Consortium FlexValue aanbesteding Belastingdienst

Utrecht – Afgelopen tijd heeft FlexValue samen met haar vaste partners een bijzondere prestatie neergezet. FlexValue is geselecteerd als leverancier voor de flexibele IT-inhuur door de Belastingdienst. In oktober 2021…

Lees verder »

Windows 11 is er!

Het wachten is voorbij! Het is 5 oktober en dat betekend dat je eindelijk kan upgraden naar het nieuwe Windows 11-besturingssysteem! Er is veel te ontdekken in over deze nieuwe…

Lees verder »

Hoe kunnen we je helpen?

Laat ons weten hoe we kunnen bereiken.

Vacature is toegevoegd aan je favorieten!

Vacature is verwijderd uit je favorieten!