MS-102 Exam Questions

Total 310 Questions

Last Updated Exam : 16-Dec-2024

Topic 5, Misc. Questions

You have a Microsoft 365 E5 subscription that contains the groups shown in the following table.






You have a Microsoft 365 tenant.
You create a retention label as shown in the Retention Label exhibit. (Click the Retention Label tab.)






You have a Microsoft 365 subscription. You have a user named User1.
You need to ensure that Used can place a hold on all mailbox content.
What permission should you assign to User1?

 


A.

the Information Protection administrator ide from the Azure Active Directory admin
center.


B.

the eDiscovery Manager tote from the Microsoft 365 compliance center.


C.

the Compliance Management role from the Exchange admin center.


D.

the User management administrator role from the Microsoft 365 admin center.





B.
  

the eDiscovery Manager tote from the Microsoft 365 compliance center.



Your company purchases a cloud app named App1.
You need to ensure that you can use Microsoft Cloud App Security to block downloads in App1. App1 supports session controls.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.






You have a Microsoft 365 subscription that contains a user named User1.
User1 requires admin access to perform the following tasks:
Manage Microsoft Exchange Online settings.
Create Microsoft 365 groups.
You need to ensure that User1 only has admin access for eight hours and requires approval before the role assignment takes place.
What should you use?


A.

zure AD Identity Protection


B.

Microsoft Entra Verified ID


C.

Conditional Access


D.

Azure AD Privileged Identity Management (PJM)





D.
  

Azure AD Privileged Identity Management (PJM)



Privileged Identity Management provides time-based and approval-based role activation to mitigate the risks of excessive, unnecessary, or misused access permissions on resources that you care about. Here are some of the key features of Privileged Identity Management:

Provide just-in-time privileged access to Azure AD and Azure resources
Assign time-bound access to resources using start and end dates
Require approval to activate privileged roles
Enforce multi-factor authentication to activate any role
Use justification to understand why users activate
Get notifications when privileged roles are activated
Conduct access reviews to ensure users still need roles
Download audit history for internal or external audit
Prevents removal of the last active Global Administrator and Privileged Role Administrator role assignments.

Reference:
https://docs.microsoft.com/en-us/azure/active-directory/privileged-identitymanagement/pim-configure

You have a Microsoft 365 subscription.
From Microsoft 365 Defender, you create a role group named US eDiscovery Managers by copying the eDiscovery Manager role group.

You need to ensure that the users in the new role group can only perform content searches of mailbox content for users in the United States.

Solution: From Windows PowerShell, you run the New-complianceSecurityFilter cmdlet with the appropriate parameters.

Does this meet the goal?


A.

Yes


B.

No





A.
  

Yes



You have a Microsoft 365 E5 tenant that contains 500 Android devices enrolled in Microsoft Intune. You need to use Microsoft Endpoint Manager to deploy a managed Google Play app to the devices.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.






You have a Microsoft 365 tenant that contains devices enrolled in Microsoft Intune. The devices are configured as shown in the following table.
You plan to perform the following device management tasks in Microsoft Endpoint

Manager:
Deploy a VPN connection by using a VPN device configuration profile.
Configure security settings by using an Endpoint Protection device configuration profile.
You support the management tasks.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.






 

You have an Azure AD tenant and a Microsoft 365 E5 subscription. The tenant contains the users shown in the following table.

You plan to implement Microsoft Defender for Endpoint.
You verify that role-based access control (RBAC) is turned on in Microsoft Defender for Endpoint.
You need to identify which user can view security incidents from the Microsoft 365 Defender portal.
Which user should you identify?


A.

User1


B.

User2


C.

User3


D.

User4





A.
  

User1



You need to notify the manager of the human resources department when a user in the department shares a file or folder from the departments Microsoft SharePoint Online site. What should you do?


A.

From the SharePoint Online site, create an alert.


B.

From the SharePoint Online admin center, modify the sharing settings.


C.

From the Microsoft 365 Defender portal, create an alert policy.


D.

From the Microsoft Purview compliance portal, create a data loss prevention (DLP) policy.





C.
  

From the Microsoft 365 Defender portal, create an alert policy.




Microsoft MS-102 Exam Details


Exam Code: MS-102
Exam Name: Microsoft 365 Administrator Exam
Certification Name: Microsoft 365 Certified: Enterprise Administrator Expert Certification
Certification Provider: Microsoft