Topic 4: Misc. Questions
You have an Azure Active Directory (Azure AD) tenant that contains a user named User1.
An administrator deletes User1.
You need to identity the following:
• How many days after the account of User1 is deleted can you restore the account?
• Which is the least privileged role that can be used to restore User1?
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You have an Azure subscription that uses Azure AD Privileged Identity Management (PIM).
You need to identify users that are eligible for the Cloud Application Administrator role.
Which blade in the Privileged Identity Management settings should you use?
A. Azure resources
B. Privileged access groups
C. Review access
D. Azure AD roles
You have an Azure subscription.
From Entitlement management, you plan to create a catalog named Catalog1 that will
contain a custom extension.
What should you create first and what should you use to distribute Catalog1? To answer,
select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You have a Microsoft 365 ES subscription that user Microsoft Defender for Cloud Apps and
Yammer.
You need prevent users from signing in to Yammer from high-risk locations.
What should you do in the Microsoft Defender for Cloud Apps portal?
A. Create an access Policy
B. Create an activity policy
C. Unsanction Yammer
D. Create an anomaly detection policy
A user named User1 attempts to sign in to the tenant by entering the following incorrect passwords:
You have an Azure AD tenant and a .NET web app named App1.
You need to register App1 for Azure AD authentication.
What should you configure for App1?
A. the executable name
B. the bundle ID
C. the package name
D. the redirect URI
You have a Microsoft 365 subscription that contains the following:
A. Create an access package
B. Create a catalog
C. Create an administrative unit
D. Configure an app registration
Note: This question is part of a series of questions that present the same scenario. Each
question in the series contains a unique solution that might meet the stated goals. Some
question sets might have more than one correct solution, while others might not have a
correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result,
these questions will not appear in the review screen.
You have an Azure Active Directory (Azure AD) tenant that syncs to an Active Directory
forest.
You discover that when a user account is disabled in Active Directory, the disabled user
can still authenticate to Azure AD for up to 30 minutes.
You need to ensure that when a user account is disabled in Active Directory, the user
account is immediately prevented from authenticating to Azure AD.
Solution: You configure password writeback.
Does this meet the goal?
A. Yes
B. No
You have a Microsoft Entra tenant that contains a terms of use (ToU) named Terms1. You create a Conditional Access policy named Policy1 to deploy Terms1. You need to configure Policy1 to require users to accept Terms1. Which settings should you configure for Policy1?
A. Conditions
B. Session
C. Grant
D. Target resources
You have Microsoft Entra tenant that contains a group named Group3 and an administrative unit named Department1. Department has the users shown in the Users exhibit. (Click the Users tab.)
You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains
an Azure AD enterprise application named App1.
A contractor uses the credentials of user1@outlook.com.
You need to ensure that you can provide the contractor with access to App1. The
contractor must be able to authenticate as user1@outlook.com.
What should you do?
A. Run the New-AzureADMSInvitation cmdlet
B. Configure the External collaboration settings
C. Add a WS-Fed identity provider
D. Implement Azure AD Connect
You have an Azure subscription that contains the resources shown in the following table.
| Page 5 out of 26 Pages |
| Previous |