Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MS-102 > DECK 1 > Flashcards

DECK 1 Flashcards

1
Q

Ensure future mailboxes in a tenant use a certain email address. Use ….-EmailAddressPolicy

Update-OfflineAddress Book command does as it says.

A

-Set

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Have a hybrid enviro. SSPR fails. Users told to contact admin. Why happening? Reason is Password write-back needs…

Wanna change account lockout time? change what?

A

-to be configured to allow on premise AD acct to utilize SSPR
-Reset account lockout counter after

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Defender’s Alert classification tool allows defining what?

What DNS record must be created when adding a domain name for a project?

How to ensure users can authenticate to cloud if AD unavailable?

A

-rule that trigger true or false matches

-TXT to verify an entity has control over whatever DNS records

-password hash sync and sso

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

pass through auth is simple and doesn’t store passwords in cloud

pass through access goes from cloud to AD, password hash sync goes from?

PHS is true SSO because auth takes place in Azure AD without?

A

-AD to cloud

-communicating back to on premises

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Security Readers can ONLY view things in Microsoft Purview. What can they view?

Role manages spam, notifications, false positive reporting etc

Role manages retention of records

A

-Compliance reports (DLP, Audits, Threat protection)

-Hygiene Management

Records Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

import on prem LDAP directory users into 365 with a .csv file. Required properties are?

User can view advisories in message center service health issues with what role?

A

-username and display name

-service support admin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

difference between eligible assignments and active?

Microsoft recommends approval process for eligible members because?

A

-eligible= must activate to use role, active= can use role right away

-assignments active w/out approval= security risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

if in Tenant properties, no global privacy contact listed, who MS contact if there’s a data breach?

Only this role can add domains into tenants?

365 Business Premium licenses can be singly assigned.

A

-Global admin

-Global admin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Pass hash auth is set to never expire meaning users can continue to access cloid with expired creds. But…

Dont want to enforce AD pword policies AND have sign in type not native to Entra? Use what auth?

When a password changes with password hash sync on premises, the changes happens ALSO in the cloud.

A

-must change password when back on corpnet.

-Password Hash sync

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Password hash sync has sign in recovery and leaked…

Pass thru auth enforces what during sign in?

A

-credential reports

User level AD security policies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

remove user’s from restricted entities list in Microsoft…

what action can be performed to limit what departments can/can’t click on links?

A

-Defender

-safe links policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Security Admins have less privilege than Organization management role.

Correct policy type to send admins email when a user receives email w/malware?

A

-alert

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does the configuration analyzer do?

modern authentication changes exchange auth settings via MFA and…

Microsoft recommends turning off basic auth

A

-compare exchange online protection policies to MS recommendations

-conditional access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Azure Premium P1 is used to set up what kind of access?

A

-conditional

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Pass through authentication has agents that connect outbound to

Microsoft 365 Defender has a service call’d Microsoft Defender for…

A

Microsoft Entra

-Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

CONNECT ON PREMISES w/ENTRA TENANT via AZURE AD CONNECT

-Contoso.local is a default name and needs to be changed to a custom domain name on MS Entra portal

-Create local UPN suffix where?

-user logon names (also known as….) need to change to match Entra tenant domain name.

A

-on local Active Directory

-UPN

17
Q

By default, Azure AD Connect syncs…

-The…dashboard shows recommendations and advisories to keep apps safe and working

A

-ALL OBJECTS

-Health

18
Q

SERVICE HEALTH (found in “HEALTH” tab in 365 Admin Center)

  • can untick what you don’t want to see notifications about

-can also see history of…

WINDOWS REALEASE ISSUES

-is found where?

A

-issues

-health tab in 365 admin center

19
Q

Tool that identifies and remedies object errors in prep for AZURE AD/ENTRA migration

-Users using said tool can be as lowly as domain users. Won’t be able to edit anything, due to…

A

-IdFix

-POLP

20
Q

Support and Recovery Assistant checks what?

….labels can be applied to any user/email, security, 365 or distribution group within Entra.

A

-DNS and mail flow ensuring mail polices work fine.

-Sensitivity

21
Q

MICROSOFT PURVIEW

-need to enable co-authoring of files w/sensitivity labels in Entra. go where in purview?

-Need to auto encrypt files in Sharepoint and OneDrive. Go where in Purview?

create DLP policy that applies to all available locations. Use what policy?

A

-Settings

-Information protection

-Sensitive info types

22
Q

Microsoft….require TWO retention policies (private and public channel chats)

OneDrive, Exchange, and Sharepoint can all have a single retention policy covering them all

A

-Teams

23
Q

Defines sensitive data based on existing data samples

With DLP, owners can see ALL files, regardless of rule. Also, ….file types are not supported by DLP

(important to know what files types are supported by DLP)

A

-trainable classifier

-bmp

24
Q

IdFix tells you about sync problems when syncing on premise with Entra but it doesn’t…

Password admins can reset the passwords of who only?

A

-remediate. It tells YOU how to remediate

-non admins and other Password admins

25
Q

User admins can change the usernames of who?

To change user attributes (such as city), use the Get-ADUser and Set-ADUser cmdlets

A

-other non-admin users

26
Q

Adoption Score is found in what section of 365 admin?

Guest users can only be added in Microsoft…

AZURE AD PIM can do what two things?

A

-Reports

Entra.

  1. require approval before a role assignment
  2. give a user admin access for a certain amount of time
27
Q

With a 365 E5 subscription , only a 365 group can be restored upon being deleted and the retention period is…

ORG SETTINGS (found in 365 admin blade) contain what? ORG SETTINGS SET FOR ENTIRE ORGANIZATION

A

-7 days

-Setting for services you have based on your licenses.

28
Q

Security and Privacy (365 Admin Blade > ORG SETTINGS contains what?

ORGANIZATION PROFILE (365 Admin Blade > ORG SETTINGS contains custom themes, help desk info, and ….

A

-Password expiry settings, SSPR, Pronouns, etc.

-keyboard shortcuts

29
Q

In the Health section of 365 Admin Blade, there’s a Dashboard that shows what?

You can also report issues in Service Health and view issue history

A

-Health issue with Microsoft services

MS-102 (2 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions