Topic 5, Misc. Questions
You have a Microsoft 365 subscription that contains a user named User1.
You need to ensure that User1 can search the Microsoft 365 audit logs from the Security & Compliance admin center.
Which role should you assign to User1?
A.
View-Only Audit Logs in the Security & Compliance admin center
B.
View-Only Audit Logs in the Exchange admin center
C.
Security reader in the Azure Active Directory admin center
D.
Security Reader in the Security & Compliance admin center
View-Only Audit Logs in the Exchange admin center
You have a Microsoft 365 subscription that contains the users shown in the following table.
You need to configure group-based licensing to meet the following requirements:
To all users, deploy an Office 365 E3 license without the Power Automate license option.
To all users, deploy an Enterprise Mobility + Security E5 license.
To the users in the research department only, deploy a Power BI Pro license.
To the users in the marketing department only, deploy a Visio Plan 2 license.
What is the minimum number of deployment groups required?
A.
1
B.
2
C.
3
D.
4
E.
5
3
Explanation:
One for all users, one for the research department, and one for the marketing department.
Note: What are Deployment Groups?
With Deployment Groups, you can orchestrate deployments across multiple servers and perform rolling updates, while ensuring high availability of your application throughout. You can also deploy to servers on-premises or virtual machines on Azure or any cloud, plus have end-to-end traceability of deployed artifact versions down to the server level.
Reference:
https://devblogs.microsoft.com/devops/deployment-groups-is-now-generally-availablesharing-of-targets-and-more
You enable the Azure AD Identity Protection weekly digest email.
You create the users shown in the following table.
Which users will receive the weekly digest email automatically?
A.
Admin2, Admin3, and Admin4 only
B.
Admin1, Admin2, Admin3, and Admin4
C.
Admin2 and Admin3 only
D.
Admin3 only
E.
Admin1 and Admin3 only
Admin1 and Admin3 only
By default, all Global Admins receive the email. Any newly created Global Admins, Security Readers or Security Administrators will automatically be added to the recipients list.
You have a Microsoft 365 subscription that contains the alerts shown in the following table.
Which properties of the alerts can you modify?
A.
Status only
B.
Status and Comment only
C.
Status and Severity only
D.
Status, Severity, and Comment only
E.
Status, Severity, Comment and Category
Status and Comment only
You have a Microsoft 365 subscription.
You need to add additional onmicrosoft.com domains to the subscription. The additional domains must be assignable as email addresses for users.
What is the maximum number of onmicrosoft.com domains the subscription can contain?
A.
1
B.
2
C.
5
D.
10
5
You are limited to five onmicrosoft.com domains in your Microsoft 365 environment, so make sure to check for spelling and to assess your need if you choose to create a new one.
You have a Microsoft 365 E5 subscription that contains the users shown in the following table.
You have a Microsoft 365 subscription that uses Microsoft Defender for Cloud Apps.
You configure a session control policy to block downloads from SharePoint Online sites.
Users report that they can still download files from SharePoint Online sites.
You need to ensure that file download is blocked while still allowing users to browse SharePoint Online sites.
What should you configure?
A.
an access policy
B.
a data loss prevention (DLP) policy
C.
an activity policy
D.
a Conditional Access policy
an access policy
You have a Microsoft 365 E5 subscription.
Conditional Access is configured to block high-risk sign-ins for all users.
All users are in France and are registered for multi-factor authentication (MFA).
Users in the media department will travel to various countries during the next month.
You need to ensure that if the media department users are blocked from signing in while traveling, the users can remediate the issue without administrator intervention.
What should you configure?
A.
an exclusion group
B.
the MFA registration policy
C.
named locations
D.
self-service password reset (SSPR)
self-service password reset (SSPR)
Explanation:
Self-remediation with self-service password reset
If a user has registered for self-service password reset (SSPR), then they can also remediate their own user risk by performing a self-service password reset.
Reference:
https://learn.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identityprotection-remediate-unblock
You have a Microsoft 365 E5 subscription.
You define a retention label that has the following settings:
• Retention period 7 years
• Start the retention period bated on: When items were created
You need to prevent the removal of the label once the label K applied to a lie What should you select in the retention label settings?
A.
Retain items even If users delete
B.
Mark items as a record
C.
Mark items as a regulatory record
D.
Retain items forever
Mark items as a record
Note: This question is part of a series of questions that present the same scenario.
Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Teams Service Administrator role.
Does this meet the goal?
A.
Yes
B.
No
No
Explanation:
You need to assign the Security Administrator role.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp?view=o365-worldwide
You have an Azure AD tenant that contains the users shown in the following table.
You have a Microsoft 365 subscription.
You deploy the anti-phishing policy shown in the following exhibit. Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
| Page 11 out of 26 Pages |
| Previous |