MD100 Test Questions Flashcards

1
Q

PC is not activated.
You need to ensure that the user can activate Computer1.

A

D - Use local Autopilot to RESET on C1 then activate C1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

The company the following requirements:
✑ The new computers must be upgraded to Windows 10 Enterprise automatically.
✑ The new computers must be joined to Azure AD automatically when the user starts the new computers for the first time.
✑ The users must not be required to accept the End User License Agreement (EULA).

A

D - Use Windows Autopilot

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

None of the new computers are activated.
You need to activate the computers without connecting the network to the Internet.
What should you do?

A

B - KMS - Key Management Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Clean upgrade - migrate users’ settings 2 actions.

A

DE - scanstate.exe c:\Windows.old - loadstate.exe c:\Windows

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

You deploy an application named Application1 to Computer1.
You need to assign credentials to Application1.
You need to meet the following requirements:
✑ Ensure that the credentials for Application1 cannot be used by any user to log on to Computer1.
✑ Ensure that the principle of least privilege is maintained.
What should you do?

A

B - Create a user account for Application1 and assign that user account the Deny log on locally user right

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

BitLocker - User needs Recovery Key

A

C - Go to https://account.activedirectory.windowsazure.com and view the user account profile.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

C1 F1 view list of files on F1 - Provide users in Group 1 view F1 w/least privilege is maintained.

A

C - Assign the List folder permissions for the Folder1 folder to Group1.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

✑ Log users that access C:\Folder1.
✑ Log users that modify and delete files in C:\Folder1.

A

A - From the properties of C:\Folder1, configure the Auditing settings.
D - From the Audit Policy in the local Group Policy, you configure Audit object access
NOTE: Files and folders are objects and are audited through object access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Configure Computer1 to use a user account sign in automatically when the computer is started. The user must not be prompted for a username and password.

A

C - Edit Registry
NOTE: In the registry, add a default user name and a default password in the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon sbukey.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

BitLocker - Enabled on client PC’s even though TPM chip is only installed a some of them - By GPO

A

C -
1. Enable the Require additional authentication at startup policy setting.
2. Select the Allow BitLocker without a compatible TPM check box.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

You need to view the IP addresses of any remote computer that Computer1 has an active TCP connection to. Should you do?

A

C - In Windows Administrative Tools, open Resource Monitor.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Bootmgr is missing.
You need to be able to start Computer1.

A

A - Start the computer in recovery mode and run the bootrec /rebuildbcd command.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Mobile Devices - Windows updates may only be download when mobile devices are connected to Wi-Fi. ✑ Access to email and the Internet must be possible at all times.

A

B - Open the Setting app and select Network & Internet.
Then select Change connection properties and set the Metered connection option for cellular network connections to On.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

You have a computer named Computer1 that has a folder named C:\Folder1.
You want to use File History to protect C:\Folder1.
Solution: You enable File History on Computer1. You then enable archiving for Folder1.

A

B - No
NOTES: File History only backs up copies of files that are in Libraries, and Desktop folders and the OneDrive files available offline on your PC. If you have files or folders elsewhere that you want backed up, you can add them to one of these folders.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

You have a computer named Computer1 that has a folder named C:\Folder1.
You want to use File History to protect C:\Folder1.
Solution: You enable File History on Computer1. You then encrypt the contents of Folder1

A

B - No
NOTES: File History only backs up copies of files that are in Libraries, and Desktop folders and the OneDrive files available offline on your PC. If you have files or folders elsewhere that you want backed up, you can add them to one of these folders.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

You need to configure Computer1to receive preview builds of Windows 10 as soon as they are available.
You open the Update & Security section in the Settings app.

A

Windows Insider Program

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

You want to use Event Viewer on Computer1 to view the event logs on Computer2.

A

C -
1. On Computer1
2. Log on as a domain administrator.
3. Open Event Viewer
4. Select the Connect to another computer option.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

You need to apply the custom Start layout to the domain-joined computers. The solution must minimize administrative effort.
Which three actions should you perform in sequence?

A
  1. Export layout to a PPKG file
  2. Copy to the layout file to a network share
  3. Create GPO and configure the Start Layout settings
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q
  • Uses Microsoft Edge as the default browser
  • Minimizes the attack surface of the computer
  • Supports joining Microsoft Azure Active Directory (Azure AD)
  • Only allows the installation of applications from the Microsoft Store
A

A - Windows 10 Pro in S mode
NOTES: Windows 10 in S mode is a version of Windows 10 that’s streamlined for security and performance, while providing a familiar Windows experience. To increase security, it allows only apps from the Microsoft Store, and requires Microsoft Edge for safe browsing.
Azure AD Domain join is available for Windows 10 Pro in S mode and Windows 10 Enterprise in S mode. It’s not available in Windows 10 Home in S mode.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

On Computer1, you perform a clean installation of Windows 10 without formatting the drives.
You need to migrate the settings of User1 from Windows 8.1 to Windows 10.

A

ScanState.exe c:\Windows.old subfolders
LoadState.exe c:\Windows subfolders
NOTE: USMT includes these two tools

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

You discover that a user used the Service1 account to sign in to Computer1 and deleted some files. You need to ensure that the identity used by Application1 cannot be used by a user to sign in to sign in to the desktop on Computer1. The solution must use the principle of least privilege.
Solution: On Computer1, you configure Application1 to sign in as the LocalSystem account and select the Allow service to interact with desktop check box. You delete the Service1 account.

A

B - No
NOTES: Configuring Application1 to sign in as the LocalSystem account would ensure that the identity used by Application1 cannot be used by a user to sign in to the desktop on Computer1. However, this does not use the principle of least privilege. The LocalSystem account has full access to the system. Therefore, this solution does not meet the goal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

You discover that a user used the Service1 account to sign in to Computer1 and deleted some files.
You need to ensure that the identity used by Application1 cannot be used by a user to sign in to sign in to the desktop on Computer1. The solution must use the principle of least privilege.
Solution: On Computer1, you assign Service1 the Deny log on locally user right.

A

A - Yes
NOTES: By using the Service1 account as the identity used by Application1, we are applying the principle of least privilege as required in this question.
However, the Service1 account could be used by a user to sign in to the desktop on the computer. To sign in to the desktop on the computer, an account needs the log on locally right which all user accounts have by default. Therefore, we can prevent this by assigning Service1 the deny log on locally user right.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

You discover that a user used the Service1 account to sign in to Computer1 and deleted some files.
You need to ensure that the identity used by Application1 cannot be used by a user to sign in to sign in to the desktop on Computer1. The solution must use the principle of least privilege.
Solution: On Computer1, you assign Service1 the Deny log on as a service user right.

A

B - No
NOTES: A service account needs the log on as a service user right. When you assign an account to be used by a service, that account is granted the log on as a service user right. Therefore, assigning Service1 the deny log on as a service user right would mean the service would not function.
To sign in to the desktop on the computer, an account needs the log on locally right which all user accounts have by default. To meet the requirements of this question, we need to assign Service1 the deny log on locally user right, not the deny log on as a service user right.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

A user named User1 purchases a new computer and joins the computer to Azure AD.
User1 is not able to use Windows Hello for Business on his computer. User1 sign-in options are shown on the exhibit. (Click the Exhibit tab.)

A

A - Purchase an infrared (IR) camera.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

MDT - Microsoft Deployment Kit - You need to ensure that the Hyper-V feature is enabled on the computers during the deployment.
What are two possible ways to achieve this goal?

A

C - Add a custom command to the Unattend.xml file
E - Add a task sequence step that runs dism.exe.
NOTES: A common way to add a feature such as Hyper-V in MDT is to use the Install Roles and Features task sequence action. However, that is not an option in this question.
The two valid options are to a command to the Unattend.xml file or to add a task sequence step that runs dism.exe.
To add Hyper-V using dism.exe, you would run the following dism command:
DISM /Online /Enable-Feature /All /FeatureName:Microsoft-Hyper-V

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Your company purchases a Microsoft 365 subscription.
You need to migrate the Documents folder of users to Microsoft OneDrive for Business.
What should you configure?

A

A - One Drive Group Policy settings
NOTES: You need to configure a Group Policy Object (GPO) with the OneDrive settings required to redirect the Documents folder of each user to Microsoft 365.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

User1 creates a Microsoft account.
User1 needs to sign in to cloud resources by using the Microsoft account without being prompted for credentials.
Which settings should User1 configure?

A

B - Email & app accounts in the Settings app
NOTES: Open the Setting app, select Accounts then select Email and accounts. Here you can add accounts for the cloud resources and configure the login credentials for the accounts. If you configure the accounts with the login credentials of the Microsoft account, you wonג€™t be prompted for credentials when you open the apps.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

The computer fails to activate.
You suspect that the activation server has an issue.
You need to identify which server hosts KMS.
How should you complete the command?

A

Type: NSLookup.exe
_vlmcs._tcp.Adatum.com - SRV

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

You sign in to Computer1 and create a user named User1.
You create a file named LayoutModification.xml in the C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\folder. LayoutModification.xml contains the following markup.

A

You sign in to Computer1 - taskbar contains - Defaults apps only
User1 to Computer1 - Default apps and MS Paint

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

You have a workgroup computer named Computer1 that runs Windows 10.
You need to add Computer1 to contoso.com.
What should you use?

A

C - The Settings app
NOTES: You join a computer to a domain, including an Azure AD domain in the Settings panel in Windows 10, under System->About

31
Q

You need to configure a picture password.
What should you do?

A

B - From the Settings app, configure the Sign-in options.

32
Q

You need to configure Windows Hello for sign-in to Computer1 by using a physical security key.
What should you use?

A

B - USB device that supports FIDO2

33
Q

Which two users can be configured to sign in by using their Microsoft account?

A

D - User4 (Member of Users)
E - User5 (Member of Admin)

34
Q

You mount an image from Image1.wim to a folder named C:\Mount.
You need to add the French language pack to the mounted image.
How should you complete the command?

A

Dism.exe
C:\Mount

35
Q

You need to perform a Windows 10 in-place upgrade on Computer1.
Solution: You copy the Windows 10 installation media to a network share. From Windows 8.1 on Computer1, you run setup.exe from the network share.
Does this meet the goal?

A

B - No

36
Q

Computer1 has apps that are compatible with Windows 10.
You need to perform a Windows 10 in-place upgrade on Computer1.
Solution: You copy the Windows 10 installation media to a Microsoft Deployment Toolkit (MDT) deployment share. You create a task sequence, and then you run the MDT deployment wizard on Computer1.
Does this meet the goal?

A

A - Yes

37
Q

You need to perform a Windows 10 in-place upgrade on Computer1.
Solution: You add Windows 10 startup and install images to a Windows Deployment Services (WDS) server. You start Computer1 by using WDS and PXE, and then you initiate the Windows 10 installation.
Does this meet the goal?

A

B - No
NOTES: Use Microsoft Deployment Toolkit (MDT) instead.

38
Q

The user signs in to the computer by using the Azure AD account. The user discovers the activation error shown in the following exhibit.

A

A - In Azure AD, assign a Windows 10 Enterprise license to the user.

39
Q

You create a taskbar modification file named LayoutModification.xml.
You need to ensure that LayoutModification.xml will apply to all users who sign in to Computer1.
To which folder should you copy LayoutModification.xml?

A

C - C:\Users\Default\AppData\Local\Microsoft\Windows\Shell\

40
Q

The computer of the user fails to be activated.
Which command should you run on the computer to initiate activation?

A

Slmgr.vbs /alto
NOTES: To activate online, type slmgr.vbs /ato.

41
Q

You plan to upgrade the Windows 8.1 computers to Windows 10 by using the MDT deployment wizard.
You need to create a deployment share on Server1.
What should you do on Server1, and what are the minimum components you should add to the MDT deployment share?

A
  1. On Server1 - Install the Windows Assessment and Deployment Kit (Windows ADK)
  2. Add to the MDT Deployment Share - Win10 image and task sequence only
    NOTES:
    Box 1: Install the Windows ADK -
    Box 2: Add Windows 10 image and create a task sequence to upgrade to Windows 10.
42
Q

You download and install the Windows Assessment and Deployment Kit (Windows ADK).
You need to create a bootable WinPE USB drive.
What should you do first?

A

D - Download and install the WinPE add-on.
NOTES: WinPE used to be included in the Windows ADK. However, it is now provided as an add-on so the first step is to download and install the add-on.

43
Q

PC1 - Win10 Pro
PC2 - Win10 Pro Workstation
PC3 - Win10 Enterprise
You need to identify which computers support the features.
✑ BitLocker Drive Encryption (BitLocker)
✑ Microsoft Application Virtualization (App-V)

A

BitLocker - Computers123
App-V - Computer 3

44
Q

PC1 Win8 Enterprise
PC2 Win Pro
PC3 Win Pro for Workstation
On which computers can you perform an in-place upgrade to Windows 10 Enterprise?

A

D - Computers 123

45
Q

You have a workgroup computer named Computer1 that runs Windows 10. Computer1 contains five local user accounts.

A

B - From the Local Group Policy Editor, modify the Desktop settings. [1] [1]

46
Q

You need to force activation on the computer.
Which command should you run?

A

D - slmgr /ato

47
Q

You install Windows 10 Pro on a computer named CLIENT1 and join the device to an Active Directory domain.
You need to ensure that all per-user services are disabled on CLIENT1. The solution must minimize administrative effort.
What should you use?

A

D- Group Policy preferences

48
Q

You plan to install Windows 10 Pro by using an answer file.
You open Windows System Image Manager.
You need to create an answer file.
What should you do first?

A

C -
1. Install the WinPE add-on for the Windows Assessment and Deployment Kit (Windows ADK).

49
Q

You need to create a Start menu layout file. The solution must meet the following requirements:
✑ Contain an app group named Contoso Apps that has several pinned items. Contoso Apps must be locked from user modification.
✑ Ensure that users can customize other parts of the Start screen.
✑ Minimize administrative effort.
Which four actions should you perform in sequence?

A
  1. Deploy the start layout
  2. On a reference computer, customize the Start Menu
  3. Export the start layout to a file
  4. Modify the defaultlayoutoveride. xml element
50
Q

You need to create Windows 10 unattended answer file.
What should you do first?

A

A - From File Explorer, copy Install.wim from drive E to drive D.

51
Q

C1 - Semi-Annual Check (SAC)
C2 - Long Term Service Channel - LTSC 2016

Both computers have applications installed and contain user data.
You plan to configure both computers to run Windows 10 Enterprise LTSC 2019 and to retain all the existing applications and data.
You need to recommend a method to deploy Windows 10 Enterprise LTSC 2019 to the computers. The solution must minimize effort to install and configure the applications.
What should you include in the recommendation for each computer?

A

C1 - Clean installation
C2 - In place upgrade

52
Q

You have a computer that runs Windows 10 Home.
You need to upgrade the computer to Windows 10 Enterprise as quickly as possible. The solution must retain the user settings.

A

B - Perform an in-place upgrade to Windows Pro.

53
Q

You capture a Windows 10 image file from a reference device.
You need to generate catalog files and answer files for the deployment.
What should you use for each file?

A

Catalog File - Windows SIM - Windows System Image Manager
Answer File - Windows SIM - Windows System Image Manager

54
Q

The relevant services on Computer1 are shown in the following table.

A

C - Service 156

55
Q

Your company has an isolated network used for testing. The network contains 20 computers that run Windows 10. The computers are in a workgroup. During testing, the computers must remain in the workgroup.
You discover that none of the computers are activated.
You need to recommend a solution to activate the computers without connecting the network to the Internet.

A

B - KMS Key Managment Service

56
Q

You have 10 new Windows 10 devices.
You plan to deploy a provisioning package that will configure a wireless network profile.
You need to ensure that a support technician can install the provisioning package on the devices. The solution must use the principle of least privilege.
To which group should you add the support technician?

A

D - Administrators

57
Q

You have a computer that runs Windows 10 and has the Windows Assessment and Deployment Kit (Windows ADK) installed.
You need to perform the following tasks:
✑ Prepare a Windows PE (WinPE) working directory.
✑ Add scripting support to a WinPE image.
✑ Mount and unmount a WinPE image.
Which command should you use for each task?

A

Copype.cmd
Dism.exe
Dism.exe

58
Q

You have a computer that runs Windows 10 Home.
You need to upgrade the computer to Windows 10 Enterprise as quickly as possible. The solution must retain the user settings.
What should you do first?

A

B - Perform an in-place upgrade to Windows Pro.

59
Q

You plan to deploy Windows 10 Enterprise to company-owned devices.
You capture a Windows 10 image file from a reference device.
You need to generate catalog files and answer files for the deployment.
What should you use for each file? To answer, select the appropriate options in the answer area.

A

Catalog File - Windows Sims (Windows System Image Manager)
Answer File - Windows Sims (Windows System Image Manager)

60
Q

Your company has an isolated network used for testing. The network contains 20 computers that run Windows 10. The computers are in a workgroup. During testing, the computers must remain in the workgroup.
You discover that none of the computers are activated.
You need to recommend a solution to activate the computers without connecting the network to the Internet.
What should you include in the recommendation?

A

B - Key Management Service (KMS)
NOTES: You can configure one of the computers as a Key Management Service (KMS) host and activate the KMS host by phone. The other computers in the isolated network can then activate using the KMS host.

61
Q

You have 10 new Windows 10 devices.
You plan to deploy a provisioning package that will configure a wireless network profile.
You need to ensure that a support technician can install the provisioning package on the devices. The solution must use the principle of least privilege.
To which group should you add the support technician?

A

D - Administrators

62
Q

You have a Windows 10 device.
You need to enable an experimental feature in Microsoft Edge.
What should you enter in the address bar?

A

A - edge://flags

63
Q

You have a computer that runs Windows 10 and hosts four Hyper-V virtual machines that run Windows 10.
You upgrade the computer to Windows 11.
You need to ensure that the virtual machines support hibernation.

A

D - Update the configuration version of the virtual machines.

64
Q

A feature update is installed on Computer1.
You need to use the Go back recovery option to revert to the previous version.
For how many days will the Go back option be available?

A

A - 10 days

65
Q

You install Windows 10 Pro on a computer named CLIENT1 and join the device to an Active Directory domain.
You need to ensure that all per-user services are disabled on CLIENT1. The solution must minimize administrative effort.

A

A - SC command

66
Q

You have a computer named Client1 that runs Windows 10.
Client1 was upgraded from Windows 8.1.
You need to delete the Windows.old folder from the C drive.

What should you use?

A

D - Temporary files in the Storage settings of the Settings app

67
Q

You have a computer named Computer1 that has the following configurations:

  • RAM: 4 GB
  • CPU: 1.6 GHz
  • Hard drive: 128 GB
  • Operating system: Windows 10 Pro in S mode

You need to upgrade Computer1 to Windows 11.

A

C - Switch out of S mode

68
Q

You have a computer named Computer1 that runs Windows 10.
You need to configure User Account Control (UAC) to prompt administrators for their credentials.
Which settings should you modify?

A

C - Security Options in Local Group Policy Editor

69
Q

You have several computers that run Windows 10. The computers are in a workgroup.
You need to prevent users from using Microsoft Store apps on their computer.
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.

A

B - From Administrative Templates in the local Group Policy, configure the Store settings.
D - From Security Settings in the local Group Policy, configure Application Control Policies.

70
Q

You have a computer named Computer1 that runs Windows 10.
You need to prevent standard users from changing the wireless network settings on Computer1. The solution must allow administrators to modify the wireless network settings.

A

C - Local Group Policy Editor

71
Q

You have a computer named Computer1 that runs Windows 10. Computer1 contains a folder named Folder1.
You need to log any users who take ownership of the files in Folder1.
Which two actions should you perform?

A. Modify the folder attributes of Folder1.
B. Modify the Advanced Security Settings for Folder1.
C. From a Group Policy object (GPO), configure the Audit Sensitive Privilege Use setting.
D. From a Group Policy object (GPO), configure the Audit File System setting.
E. Install the Remote Server Administration Tools (RSAT).

A

B - Modify the Advanced Security Settings for Folder1.
C - From a Group Policy object (GPO), configure the Audit Sensitive Privilege Use setting.

72
Q

You are a network administrator at your company.
The company uses an application that checks for network connectivity to a server by sending a ping request to the IPv6 address of the server. If the server replies, the application loads.
A user cannot open the application.
You manually send the ping request from the computer of the user and the server does not reply. You send the ping request from your computer and the server replies.
You need to ensure that the ping request works from the user’s computer.
Which Windows Defender firewall rule is a possible cause of the issue?

A

D - File and Printer Sharing (Echo Request ICMPv6-In)

73
Q
A