MS-100 Flashcards

1
Q

After your company migrates their on-premises email solution to Microsoft Exchange Online, you are tasked with assessing which licenses to acquire.

You are informed that licenses acquired for the company’s IT and Managers groups should allow for the following;

• The IT group needs to have access to the Microsoft Azure Active Directory (Azure AD) Privileged Identity Management.
• Both the IT and Managers groups should have access to Microsoft Azure Active Directory (Azure AD) conditional access.
You need to make sure that the licensing costs are kept to a minimum. Which two of the following options should you recommend? (Choose two)
A. You should acquire Microsoft 365 E3 licenses for the Managers group members.
B. You should acquire Microsoft 365 E5 licenses for the Managers group members.
C. You should acquire Microsoft 365 E3 licenses for the IT group members.
D. You should acquire Microsoft 365 E5 licenses for the Managers group members.

A

Answer: A, D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Your company’s Microsoft 365 tenant includes Microsoft Exchange Online.

You have been tasked with enabling calendar sharing with a partner organization, who also has a Microsoft 365 tenant.

You have to make sure that users in the partner organization has access to the calendar of every user instantly.

Which of the following actions should you take?
A. Configure a conditional access policy via Exchange admin center.
B. Configure a new organization relationship via Exchange admin center.
C. Configure the sharing settings via Exchange admin center.
D. Run the Set-SPOSite cmdlet.

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

After acquiring a Microsoft 365 Enterprise subscription, you are tasked with migrating your company’s Microsoft Exchange Server 2016 mailboxes and groups to Exchange Online.

You have started a new migration batch. You, subsequently, receive complaints from on- premises Exchange Server users about slow performance.

Your analysis shows that the issue has resulted from the migration. You want to make sure that the effect the mailbox migration has on users is decreased.

Solution: You create a label policy. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

After acquiring a Microsoft 365 Enterprise subscription, you are tasked with migrating your company’s Microsoft Exchange Server 2016 mailboxes and groups to Exchange Online.

You have started a new migration batch. You, subsequently, receive complaints from on- premises Exchange Server users about slow performance.

Your analysis shows that the issue has resulted from the migration. You want to make sure that the effect the mailbox migration has on users is decreased.

Solution: You create a mail flow rule. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

After acquiring a Microsoft 365 Enterprise subscription, you are tasked with migrating your company’s Microsoft Exchange Server 2016 mailboxes and groups to Exchange Online.

You have started a new migration batch. You, subsequently, receive complaints from on- premises Exchange Server users about slow performance.

Your analysis shows that the issue has resulted from the migration. You want to make sure that the effect the mailbox migration has on users is decreased.

Solution: You modify the migration endpoint settings.

Does the solution meet the goal?

A. Yes
B. No

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

You need to consider the underlined segment to establish whether it is accurate. You company has a Microsoft 365 subscription.
To prevent your company from receiving phishing email messages, create a new mail flow rule.

Select “No adjustment required” if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

A. No adjustment required
B. Label policy.
C. Threat management policy.
D. Spam filter policy.

A

Answer: C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

You work for a company manages all their identities in the cloud.

After acquiring a new domain name, you are tasked with making sure that the primary email address of all new mailboxes uses the new domain.

Which of the following is the Microsoft Exchange Online PowerShell cmdlet that you should run?

A. Update-EmailAddressPolicy
B. Update-OfflineAddressBook
C. Set-AddressBookPolicy
D. Set-EmailAddressPolicy

A

Answer: D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

You are responsible for your company’s Microsoft 365 subscription.

The company introduces a security policy that requires DLP incident reports to be automatically sent to legal department users.
You are required to configure the reports to be delivered via email as often you can. Which of the following is the option you should use?

A. Annually
B. Monthly
C. Weekly
D. Quarterly

A

Answer: C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

You have been tasked with detecting all users in your company’s Microsoft 365 subscription who has a Microsoft Office 365 license as a result of belonging to a group.

You need to make sure that the group used to assign the license is included in your results. Which of the following actions should you take?

A. You should access the Azure portal, and navigate to the Licenses blade.
B. You should access the Microsoft 365 admin center, and navigate to the Products blade.
C. You should access the Azure portal, and navigate to the Monitor blade.
D. You should access the Microsoft 365 admin center, and navigate to the Users blade.

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

You have previously accessed the Security & Compliance admin center to upload a number of archive PST files to Microsoft 365.

When you try to run an import job for the PST files 45 days later, you find that they have been removed from Microsoft 365.

Which of the following is the number of days that Microsoft 365 retains PST file before deleting them automatically?

A. 1 day.
B. 30 days.
C. 15 days.
D. 45 days.

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

You need to consider the underlined segment to establish whether it is accurate.

You have been tasked with deploying a Windows 10 Enterprise image to a large number of Windows 8.1 devices. These devices are joined to an Active Directory domain.

You use the in-place upgrade Windows 10 deployment method for the task.

Select “No adjustment required” if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

What should you recommend?

A. No adjustment required.
B. Windows Autopilot
C. Windows Update
D. Azure AD Connect

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company currently has an on-premises Active Directory forest.

You have been tasked with assessing the application of Microsoft 365 and the utilization of an authentication strategy.

You have been informed that the authentication strategy should permit sign in via smart card- based certificates, and also permitting the use of SSO to connect to on-premises and Microsoft 365 services.

Solution: You recommend the use of pass-through authentication and seamless SSO with password hash synchronization as the authentication strategy.

Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company currently has an on-premises Active Directory forest.

You have been tasked with assessing the application of Microsoft 365 and the utilization of an authentication strategy.

You have been informed that the authentication strategy should permit sign in via smart card- based certificates, and also permitting the use of SSO to connect to on-premises and Microsoft 365 services.

Solution: You recommend the use of password hash synchronization and seamless SSO as the authentication strategy.

Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company currently has an on-premises Active Directory forest.

You have been tasked with assessing the application of Microsoft 365 and the utilization of an authentication strategy.

You have been informed that the authentication strategy should permit sign in via smart card- based certificates, and also permitting the use of SSO to connect to on-premises and Microsoft 365 services.

Solution: You recommend the use of federation with Active Directory Federation Services (AD FS) as the authentication strategy.

Does the solution meet the goal?

A. Yes
B. No

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Your company’s Microsoft Azure Active Directory (Azure AD) tenant includes four users. Three of the users are each configured with the Password administrator, Security administrator, and the User administrator roles respectively. The fourth user has no role configured.

Which of the following are the users that are able to reset the password of the fourth user?
A. The users with the Password administrator and the User administrator roles.
B. The users with the Security administrator and the User administrator roles.
C. The users with the Password administrator and the Security administrator roles.
D. The user with the Password administrator role only.

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Your network contains an Active Directory domain that spans a number of cities and a multitude of users.

After acquiring Microsoft 365, you intend to deploy quite a few Microsoft 365 services.

You want to make sure that pass-through authentication and seamless SSO can be used in your environment. You also decide that Azure AD Connect won’t be configured to be in staging mode.

With regards to redundancy limits, which of the following is the maximum amount of servers that can run Azure AD Connect?

A. 1
B. 3
C. 5
D. 7

A

Answer: A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Your network contains an Active Directory domain that spans a number of cities and a multitude of users.

After acquiring Microsoft 365, you intend to deploy quite a few Microsoft 365 services.

You want to make sure that pass-through authentication and seamless SSO can be used in your environment. You also decide that Azure AD Connect won’t be configured to be in staging mode.

With regards to redundancy limits, which of the following is the most amount of servers that can run standalone Authentication Agents?

A. 7
B. 9
C. 11
D. 13

A

Answer: C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Your company’s Microsoft Azure Active Directory (Azure AD) tenant includes four users that are configured with the Privileged role administrator, the User administrator, the Security administrator, and the Billing administrator roles respectively.

A security group has been included in the tenant for the purpose of managing administrative accounts.

Which of the four roles can be used to create a guest user account?

A. The Privileged role administrator role.
B. The User administrator role.
C. The Security administrator role.
D. The Billing administrator role.

A

Answer: B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Your company’s Microsoft Azure Active Directory (Azure AD) tenant includes four users that are configured with the Privileged role administrator, the User administrator, the Security administrator, and the Billing administrator roles respectively.

A security group has been included in the tenant for the purpose of managing administrative accounts.

Which of the four roles can be used to add a user with the Security administrator role to the security group?

A. The Privileged role administrator role.
B. The User administrator role.
C. The Security administrator role.
D. The Billing administrator role.

A

Answer: B

20
Q

Your company has an Active Directory domain as well as a Microsoft Azure Active Directory (Azure AD) tenant.

After configuring directory synchronization for all users in the organization, you configure a number of new user accounts to be created automatically.

You want to run a command to make sure that the new user accounts synchronize to Azure AD in the shortest time required.

Which of the following is the command that you should use?

A. New-ADSyncRule
B. Set-ADSyncSchedulerConnectorOverride
C. Start-ADSyncSyncCycle
D. Set-ADSyncSchema

A

Answer: C

21
Q

Your company’s Microsoft Azure Active Directory (Azure AD) tenant includes four users. Two of the users are configured with the Global administrator, Password administrator roles respectively. A third user has both the Security administrator and the Guest inviter roles configured. The fourth user has no roles configured.

Which of the following is the user that has the necessary permissions to alter the password protection policy? (Choose all that apply)

A. The user with the Global administrator role.
B. The user with the Password administrator role.
C. The user with the Security administrator and Guest inviter roles.
D. The user with no roles.

A

Answer: A

22
Q

Your company’s Microsoft Azure Active Directory (Azure AD) tenant includes four users. Two of the users are configured with the Global administrator, Password administrator roles

respectively. A third user has both the Security administrator and the Guest inviter roles configured. The fourth user has no roles configured.

Which of the following is the user that has the necessary permissions to create guest users? (Choose all that apply)

A. The user with the Global administrator role.
B. The user with the Password administrator role.
C. The user with the Security administrator and Guest inviter roles.
D. The user with no roles.

A

Answer: A, C

23
Q

You have been tasked with enable Microsoft Azure Information Protection for your company’s Microsoft 365 subscription.

You are informed that only the members of a group, named Group1, are able to protect content. To achieve your goal, you plan to run a PowerShell cmdlet.

Which of the following is the cmdlet you should run?

A. The Add-AadrmRoleBaseAdministrator cmdlet.
B. The Set-AadrmDoNotTrackUserGroup cmdlet.
C. The Clear-AadrmSuperUserGroup cmdlet.
D. The Set-AadrmOnboardingControlPolicy cmdlet.

A

Answer: D

24
Q

Your company has acquired Microsoft 365 for their Active Directory domain, which includes five domain controllers.

Prior to implementing a number of Microsoft 365 services, you are tasked with making use of an authentication solution that allows users to access Microsoft 365 by using their on- premises credentials. The solution should also only make use of the current server infrastructure. Furthermore, must allow for all user passwords to only be stored on-premises, and be highly available.

Solution: You configure the use of password hash synchronization only. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

25
Q

Your company has acquired Microsoft 365 for their Active Directory domain, which includes five domain controllers.

Prior to implementing a number of Microsoft 365 services, you are tasked with making use of an authentication solution that allows users to access Microsoft 365 by using their on- premises credentials. The solution should also only make use of the current server infrastructure. Furthermore, must allow for all user passwords to only be stored on-premises, and be highly available.

Solution: You configure the use of pass-through authentication only. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

26
Q

Your company has acquired Microsoft 365 for their Active Directory domain, which includes five domain controllers.

Prior to implementing a number of Microsoft 365 services, you are tasked with making use of an authentication solution that allows users to access Microsoft 365 by using their on- premises credentials. The solution should also only make use of the current server infrastructure. Furthermore, must allow for all user passwords to only be stored on-premises, and be highly available.

Solution: You configure the use of pass-through authentication and seamless SSO. Does the solution meet the goal?

A. Yes
B. No

A

Answer: A

27
Q

Your company has a Microsoft Azure Active Directory (Azure AD) tenant with multi-factor authentication enabled.

You have also configured the Allow users to submit fraud alerts, and the Block user when fraud is reported settings to ON.

A tenant user has submitted a fraud alert for his account.

Which of the following is the length of time that the user’s account will automatically be blocked for?

A. 24 hours
B. 90 days
C. 1 month
D. 1 week

A

Answer: B

28
Q

Your company has a Microsoft Azure Active Directory (Azure AD) tenant with multi-factor authentication enabled.

You have also configured the Allow users to submit fraud alerts, and the Block user when fraud is reported settings to ON.

A tenant user has submitted a fraud alert for his account. After receiving an alert call, the user needs to enter a special code followed by #.

Which of the following is default special code?

A. 0
B. 9
C. 0000
D. 1234

A

Answer: A

29
Q

Your company has a Microsoft Office 365 subscription with a number of Microsoft SharePoint Online sites.

Currently, users are able to invite external users to access files on the SharePoint sites. You are tasked with making sure that users are only able to authenticated guest users to the SharePoint sites.

Which of the following actions should you take?

A. You should create a threat management policy via the Security & Compliance admin center.
B. You should run the Set-SPOSite cmdlet.
C. You should run the Add-SPOUser cmdlet.
D. You should modify the sharing settings via the SharePoint admin center.

A

Answer: D

30
Q

Your company has a Microsoft 365 subscription.

You have been tasked with configuring external collaboration settings for your company’s Microsoft Azure Active Directory (Azure AD) tenant.

You want to make sure that authorized users are able to create guest users in the tenant. Which of the following actions should you take?

Which setting should you modify?

A. You should make sure that the Guests can invite setting is set to NO.
B. You should make sure that the Guest users permissions are limited setting is set to Yes.
C. You should make sure that the Members can invite setting is set to NO.
D. You should make sure that the Admins and users in the guest inviter role can invite setting is set to Yes.

A

Answer: D

31
Q

After acquiring a Microsoft 365 subscription, you configure the use of Microsoft Azure Multi- Factor Authentication (MFA) for all users in the Azure Active Directory (Azure AD) tenant.

You want to produce a report that includes all the users who finished the Azure MFA registration process. You want to make use of an Azure Cloud Shell cmdlet.

Which of the following is the cmdlet you should use?

A. Get-AzureADUser
B. Get-MsolUser
C. New-AzureADMSInvitation
D. Set-MsolUserPrincipalName

A

Answer: B

32
Q

You need to consider the underlined segment to establish whether it is accurate.

You have recently configured a conditional access policy to force mobile device users to use multi-factor authentication when accessing Microsoft SharePoint.

To check who used multi-factor authentication to authenticate, you view the Usage reports from Azure Active Directory admin center.

Select “No adjustment required” if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

A. No adjustment required
B. user sign-ins
C. event logs
D. audit logs

A

Answer: B

33
Q

Your company has an Enterprise E5 subscription of Microsoft 365.

You have been tasked with making sure that sales department users are compelled to make use of multi-factor authentication for all cloud-based applications.

Which of the following actions should you take?

A. You should create an DLP.
B. You should create a new app registration.
C. You should create a session policy.
D. You should create a sign-in risk policy.

A

Answer: D

34
Q

Your company has a Microsoft 365 subscription.

After implementing Active Directory Federation Services (AD FS), you are instructed to configure AD FS user authentication auditing.

You are preparing to run the Register-AzureADConnectHealthSyncAgent cmdlet. Which of the following is the server that the cmdlet should be run from?

NOTE: Each correct selection is worth one point.

A. A member server.
B. A domain controller.
C. An Azure AD Connect server.
E. An AD FS server.

A

Answer: C

35
Q

You need to consider the underlined segment to establish whether it is accurate.

Your company has deployed a Microsoft 365 tenant and to implemented multi-factor authentication.

They have four offices, of which one houses the R&D department. You have been asked to make sure that multi-factor authentication is compulsory only for users in the office houses the R&D department.

You create a conditional access policy.

Select “No adjustment required” if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

A. No adjustment required
B. password protection
C. DLP
D. label

A

Answer: A

36
Q

Your company has configured all user email to be stored in Microsoft Exchange Online.

You have been tasked with keeping a duplicate of all the email messages from a specified user that includes a specific word.

Solution: You start by creating a spam filter policy via the Security & Compliance admin center. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

37
Q

Your company has configured all user email to be stored in Microsoft Exchange Online.

You have been tasked with keeping a duplicate of all the email messages from a specified user that includes a specific word.

Solution: You start by initiating a message trace via the Security & Compliance admin center. Does the solution meet the goal?

A. Yes
B. No

A

Answer: B

38
Q

Your company has configured all user email to be stored in Microsoft Exchange Online.

You have been tasked with keeping a duplicate of all the email messages from a specified user that includes a specific word.

Solution: You start by creating a label and label policy via the Security & Compliance admin center.

Does the solution meet the goal?

A. Yes
B. No

A

Answer: A

39
Q

Your company has a Microsoft 365 subscription.

You have previously created a group that includes users who send email messages to external users on a regular basis. The group’s manager would like to group wants to examine messages that include attachments at random.

You are required to make sure that the manager can achieve his goal, but only make ten out of a hundred messages accessible to him.

You need to provide the manager with the ability to review messages that contain attachments sent from the Support group users to external users. The manager must have access to only 10 percent of the messages.

Which of the following should you create?

A. A label policy.
B. A conditional access policy.
C. A DLP policy.
D. A supervisor policy.

A

Answer: D

40
Q

You need to consider the underlined segment to establish whether it is accurate. Your company has recently acquired a new sales application.

You navigate to the Discovered apps page in Cloud Discovery via Microsoft Cloud App Security to check the application’s score. You then notice that a number of the applications have a low score as a result of omitted domain registration and consumer popularity data.

You want to make sure that the score is not affected by the omitted data. You have to configure app tags via the Cloud Discover settings
Select “No adjustment required” if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

What should you configure from the?

A. No adjustment required
B. a label
C. App Connector flow
D. a custom key

A

Answer: A

41
Q

You have been tasked with migrating your company’s on-premises Microsoft Exchange Server 2013 organization to Microsoft 365.

You plan to make use of the cutover migration method.

Which of the following is the maximum recommended number of mailboxes that you should migrate?

A. 2000
B. 1000
C. 150
D. 75

A

Answer: C

42
Q

You have recently created a Microsoft 365 Enterprise subscription and assigned all users licenses for all products.

You want to configure all Microsoft Office 365 ProPlus installations to be done via a network share. You also want to make sure that users are prevented from using the Internet to install Office 365 ProPlus.

Which of the following is the type of file that you should create? NOTE: Each correct selection is worth one point.

A. An HTML download file.
B. An XML download file.
C. An HTTP download file.
D. An EXE download file.

A

Answer: B

43
Q

You have recently created a Microsoft 365 subscription.

You have prepared an XML file for the upcoming Microsoft Office 365 ProPlus deployment.

The Channel attribute for the OfficeClientEdition attribute is set to Broad, while the Channel attribute for the Updates element is set to Targeted.

Which of the following the following is the frequency with which the installation of Office 365 ProPlus feature updates will occur?

A. Weekly.
B. Monthly
C. Six monthly
D. Annually

A

Answer: C

44
Q

You have recently created a Microsoft 365 subscription.

You have prepared an XML file for the upcoming Microsoft Office 365 ProPlus deployment.

The Channel attribute for the OfficeClientEdition attribute is set to Broad, while the Channel attribute for the Updates element is set to Targeted.

Which of the following the following are the months of the year that security updates will be installed?

A. January and July.
B. March and September
C. June and December
D. April and October

A

Answer: B

45
Q

Your company’s network contains two Active Directory forests, with two domains configured per forest. All workstations are domain-joined and have Windows 10 installed.

You have created a Microsoft Azure Active Directory (Azure AD) tenant in preparation for configuring Hybrid Azure AD join for the workstations.
You want to make sure that the tenant can be discovered by the workstations. Which of the following should you create in each forest?

A. A migration endpoint.
B. A new conditional access policy.
C. A new trust relationship.
D. A new service connection point (SCP).

A

Answer: D

46
Q

After your company acquires a Microsoft 365 subscription, they instruct you to move all email data from their corporate Gmail to Microsoft Exchange Online.

The migration will be done via the Exchange admin center. Which of the following is the migration method you should use?

A. Exchange Hybrid
B. IMAP migration
C. Cutover
D. Express migration

A

Answer: B

47
Q

After your company acquires a Microsoft 365 subscription, they instruct you to move all email data from their corporate Gmail to Microsoft Exchange Online.

The migration will be done via the Exchange admin center.

Which of the following is TRUE with regards to the data included in the migration?

A. All data will be migrated.
B. Only email data will be migrated.
C. Email and task data will be migrated.
D. Email and contact data will be migrated.

A

Answer: B