MS-101 Online Practice Questions and Answers

DRAG DROP

Your company has a Microsoft 365 E5 tenant.

Users access resources in the tenant by using both personal and company-owned Android devices. Company policies requires that the devices have a threat level of medium or lower to access Microsoft Exchange Online mailboxes.

You need to recommend a solution to identify the threat level of the devices and to control access of the devices to the resources.

What should you include in the solution for each device type? To answer, drag the appropriate components to the correct devices. Each component may be used once, more than once, or not at all. You may need to drag the split bar between

panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Select and Place:

HOTSPOT

You have a Microsoft Office 365 subscription.

You need to delegate eDiscovery tasks as shown in the following table.

The solution must follow the principle of the least privilege.

To which role group should you assign each user? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have a Microsoft 365 ES tenant.

You have the alerts shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic. NOTE: Each correct selection is worth one point.

Hot Area:

The users at your company use Dropbox Business to store documents. The users access Dropbox Business by using the MyApps portal.

You need to ensure that user access to Dropbox Business is authenticated by using a Microsoft 365 identity. The documents must be protected if the data is downloaded to a device that is not trusted.

What should you do?

A. From the Device Management admin center, configure conditional access settings.

B. From the Azure Active Directory admin center, configure the device settings.

C. From the Azure Active Directory admin center, configure the organizational relationships settings.

D. From the Device Management admin center, configure Exchange on-premises access settings.

You have a Microsoft 365 tenant.

You discover that administrative tasks are unavailable in the Microsoft Office 365 audit logs of the tenant.

You run the Get-AdminAuditLogConfig cmdlet and receive the following output:

You need to ensure that administrative tasks are logged in the Office 365 audit logs. Which attribute should you modify?

A. TestCmdletLoggingEnabled

B. UnifiedAuditLogIngestionEnabled

C. AdminAuditLogEnabled

You have a Microsoft 365 subscription.

All users have their email stored in Microsoft Exchange Online.

In the mailbox of a user named User1, you need to preserve a copy of all the email messages that contain the word ProjectX.

What should you do first?

A. From the Security and Compliance admin center, create a data loss prevention (DLP) policy.

B. From the Security and Compliance admin center, create a label and label policy.

C. From the Security and Compliance admin center, create, create a label and a label policy.

D. From the Security and Compliance admin center, start a message trace.

E. From the Exchange admin center, start a mail flow message trace

You have a Microsoft 365 subscription that uses Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).

All the devices in your organization are onboarded to Microsoft Defender ATP.

You need to ensure that an alert is generated if malicious activity was detected on a device during the last 24 hours.

What should you do?

A. From Alerts queue, create a suppression rule and assign an alert

B. From the Security and Compliance admin center, create an audit log search

C. From Advanced hunting, create a query and a detection rule

D. From the Security and Compliance admin center, create a data loss prevention (DLP) policy

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

Your company has a Microsoft 365 subscription.

You are required to configure a policy from the Exchange admin center that alerts you when users receive infected documents via email.

Solution: You create a DLP policy.

Does the solution meet the goal?

A. Yes

B. No

You need to consider the underlined segment to establish whether it is accurate.

To place a hold on all mailbox content, the eDiscovery Manager role is required as a minimum. Select "No adjustment required" if the underlined segment is accurate. If the underlined segment is inaccurate, select the accurate option.

A. No adjustment required.

B. eDiscovery Administrator

C. Compliance Administrator

D. Organization Management

You have a Microsoft 365 tenant that contains the groups shown in the following table.

You plan to create a new Windows 10 Security Baseline profile. To which groups can you assign to the profile?

A. Group3 only

B. Group1 and Group3 only

C. Group2 and Group3 only

D. Group1, Group2, and Group3