Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MS-500 > Topic 5 > Flashcards

Topic 5 Flashcards

1
Q

Question #1

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below.

Each answer is worth one point. After you answer a question in this section, you will NOT be able to return to it.

As a result, these questions will not appear in the review screen.

Your company’s head of IT Security has instructed you to put a continual privileged access review system in place.

He requires that all privileged accounts be reviewed every seven days.

Users with administrative privileges must self-assess their access, however, if an administrator doesn’t respond within three days of receiving such a request, privileged access must be removed.

What tool will you use to implement his requirements?

A

• B. Azure AD Privileged Identity Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Question #2

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below.

Each answer is worth one point.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your company’s head of IT Security has instructed you to put a continual privileged access review system in place. He requires that all privileged accounts be reviewed every seven days.

Users with administrative privileges must self-assess their access, however, if an administrator doesn’t respond within three days of receiving such a request, privileged access must be removed.

What will you configure as the frequency on the access review?

A

• B. Weekly

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Question #3

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below.

Each answer is worth one point. After you answer a question in this section, you will NOT be able to return to it.

As a result, these questions will not appear in the review screen.

Your company’s head of IT Security has instructed you to put a continual privileged access review system in place. He requires that all privileged accounts be reviewed every seven days.

Users with administrative privileges must self-assess their access, however, if an administrator doesn’t respond within three days of receiving such a request, privileged access must be removed.

What will you select for the Reviewers option of the access review?

A

• B. Members

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Question #4

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below.

Each answer is worth one point. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your company’s head of IT Security has instructed you to put a continual privileged access review system in place. He requires that all privileged accounts be reviewed every seven days.

Users with administrative privileges must self-assess their access, however, if an administrator doesn’t respond within three days of receiving such a request, privileged access must be removed.

Where would you configure what happens if a reviewer doesn’t respond to the request?

A

• A. Upon completion settings

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response(s) to the question or statement below. Each answer is worth one point.
After you answer a question in this section, you will NOT be able to return to it.

As a result, these questions will not appear in the review screen.

Your company’s head of IT Security has instructed you to put a continual privileged access review system in place. He requires that all privileged accounts be reviewed every seven days.

Users with administrative privileges must self-assess their access, however, if an administrator doesn’t respond within three days of receiving such a request, privileged access must be removed.

What would you select for the If reviewers don't respond option?

A
  • B. Remove access
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Question #6 Topic 5

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below.

Each answer is worth one point. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are configuring a Windows Server 2016 server in your environment that will be a domain controller.

You want to enable the following security products on the new server: Azure ATP - Defender ATP - Azure Sentinel - Which of the following will you download and install on the server?

Each answer is part of the complete solution. (Choose two.)

A

• A. Microsoft Management Agent

• C. Sensor setup package

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Question #7

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response (s) to the question or statement below. Each answer is worth one point.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are configuring a Windows Server 2016 server in your environment that will be a domain controller.

You want to enable the following security products on the new server:

Azure ATP - Defender ATP - Azure Sentinel - Which of the following items will you require for the configuration on the server? (Choose all that apply.)

A

• B. Workspace key from Azure ATP console

• C. Workspace ID from Defender ATP console

• D. Workspace key from Defender ATP console

• E. Workspace ID from Sentinel console

• F. Workspace key from Sentinel console

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Question #8

NOTE: This question is a part of a series of questions that present the same scenario.

For each of the following statements, select the best response(s) to the question or statement below. Each answer is worth one point.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are configuring a Windows Server 2016 server in your environment that will be a domain controller.

You want to enable the following security products on the new server:

Azure ATP -

Defender ATP -

Azure Sentinel -
How will you configure the Microsoft Management Agent on the server? (Choose all that apply.)

A
  • *• C. Workspace ID from Defender ATP console**
  • *• D. Workspace key from Defender ATP console**
  • *• E. Workspace ID from Sentinel console**
  • *• F. Workspace key from Sentinel console**
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Question #9 Topic 5

You are configuring Azure Active Directory and need to synchronize on-premises Active Directory user accounts, but your security officer does not want passwords or their derivatives to be stored in the cloud at all.

Which options are available to you? (Choose two.)

A

• B. AAD Connect with pass-through authentication (PTA)

• D. AAD Connect with AD federation (AD FS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Question #10 Topic 5

Which of the following Windows 10 Enterprise features provides biometric identity access control?

A

• A. Windows Hello

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Question #11 Topic 5

You have deployed AIP in your organization.

You are trying to discover, classify and protect existing data in your organization.

You have deployed AIP scanner to a server named Bigbrother1.

Which of the following are valid targets in for your AIP Scanner deployment? (Choose two.)

A

• A. UNC path over SMB protocol

• B. Local storage on BigBrother1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Question #12
You are the global administrator of your organization’s M365 subscription.

You have created a data subject request case and you are reviewing the search results, but you see the following message in place of the expected results:

You don’t have permissions to preview, ask the administrator to assign them.

Where would you assign yourself the appropriate permissions?

A

• C. Office 365 Security & Compliance Center

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Question #13 Topic 5

What is the maximum number of days you can allow users to remember their MFA sessions?

A

• C. 60 days

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Question #14 Topic 5

The exhibit shows the O365 Security & Compliance Center interface.

Where would you start a Data Subject Request (DSR) search?

A

• D. Data privacy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Question #15

You’ve deployed WIP in silent mode, what is the user experience?

A

• D. Sensitive data is not blocked

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Question #16

You are configuring Conditional Access App Control (CAAC) for SharePoint Online to prevent printing and downloading of content when the sire is accessed from unmanaged devices.

You start by configuring the appropriate conditional access policy in Azure Active Directory.

You also need to configure the correct policy in Microsoft Cloud App Security.

Which CAS policy do you create?

A

• D. Session policy

17
Q

Question #17

The Customer lockbox feature helps you control how an administrator can access customer data.
NOTE: Change (or not) the highlighted section of the following statement to make it true.

A
  • B. A Microsoft support engineer
18
Q

Question #18

Who participates in the shared responsibility model in the compliance manager? (Choose two.)

A
  • A. Microsoft
  • C. Customer
19
Q

Question #19 Topic 5

When you enable in-place archiving for a user’s mailbox in O365, which of the following will happen for the user’s mailbox?

A
  • C. All email older than 2 years will be immediately moved to the archive mailbox.
20
Q

Question #20 Topic 5

Your organization has decided that user’s personal mobile devices are not to be enrolled or managed by your organization’s Intune Mobile Device Management (MDM) solution.

Furthermore, your organization requires you to protect the organization’s data, including data on users’ personal mobile devices.
Which of the following is the best course of action in this scenario?

A
  • D. Deploy Intune Mobile Application Management policies to protect corporate data on users’ devices
21
Q

Question #21 Topic 5

How long are messages sent to Office 365 Quarantine retained before being purged?

A
  • B. 30 days
22
Q

Question #22 Topic 5

A
23
Q

Question #23 Topic 5

A
24
Q

Question #24

A
25
Q

Question #25 Topic 5

A
26
Q

Question #26 Topic 5

A
27
Q

Question #27 Topic 5

A
28
Q

Question #28

A
29
Q

Question #29

A
30
Q

Question #30 Topic 5

A

MS-500 (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions