You have an Azure subscription.

You have a Microsoft 365 tenant.
The Azure Active Directory (Azure AD) tenant contains the groups shown in the following table.

In Azure AD. you add a new enterprise application named Appl. Which groups can you assign to App1?

A. Group1 and Group2 only

B. Group2 only

C. Group3 only

D. Group1 only

E. Group1 and Group4

Your network contains an on-premises Active Directory domain that sync to an Azure Active Directory (Azure AD) tenant. The tenant contains the shown in the following table.

A. User1 only

B. User1 and User 3 only

C. User1, and User2 only

D. User1, User2, and User3

You have a Microsoft 365 E5 subscription.
You need to create a dynamic user group that will include all the users that do NOT have a department defined in their user profile.
How should you complete the membership rule? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You have a Microsoft 365 E5 subscription that contains two users named User1 and User2.
You need to ensure that User1 can create access reviews for groups, and that User2 can review the history report for all the completed access reviews. The solution must use the principle of least privilege.
Which role should you assign to each user? To answer, drag the appropriate roles to the correct users. Each role may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

You have an Azure subscription.
You are evaluating enterprise software as a service (SaaS) apps.
You need to ensure that the apps support automatic provisioning of Microsoft Entra users.
Which specification should the apps support?

A. WS-Fed

B. SCIM 2.0

C. LDAP3

D. OAuth 2.0

You have an Azure AD tenant named contoso.com that contains the resources shown in the following table.
You create a user named Admin 1.

You need to ensure that Admin can enable Security defaults for contoso.com.
What should you do first?

A. Configure Identity Governance

B. Delete Package1

C. Delete CAPolicy1

D. Assign Admin1 the Authentication administrator role for Au1

You have a Microsoft 365 tenant.
All users have mobile phones and laptops. The users frequently work from remote locations that do not have Wi-Fi access or mobile phone connectivity. While working from the remote locations, the users connect their laptop to a wired network that has internet access.
You plan to implement multi-factor authentication (MFA).
Which MFA authentication method can the users use from the remote location?

A. a notification through the Microsoft Authenticator app

B. an app password

C. Windows Hello for Business

D. SMS

You have an Azure subscription named Sub1 that contains two resource groups named RG1 and RG2. Sub1 contains the users shown in the following table.

You have an Azure Active Directory (Azure AD) tenant that contains the objects shown in the following table.

Which objects can you add as eligible in Azure Privileged identity Management (PIM) for an Azure AD role?

A. User1 only

B. User1 and Identity1 only

C. User1. Guest1, and Identity

D. User1 and Guest1 only

You have a Microsoft Entra tenant that contains the users shown in the following table.

You have an Azure Active Directory Premium P2 tenant.
You create a Log Analytics workspace.
You need to ensure that you can view Azure Active Directory (Azure AD) audit log information by using Azure Monitor.
What should you do first?

A. Run the Set-AzureADTenantDetail cmdlet

B. Create an Azure AD workbook.

C. Modify the Diagnostics settings for Azure AD

D. Run the Get-AzureADAuditDirectoryLogs cmdlet