Exams > Microsoft > MS-101: Microsoft 365 Mobility and Security
MS-101: Microsoft 365 Mobility and Security
Page 3 out of 37 pages Questions 21-30 out of 368 questions
Question#21

DRAG DROP
-

You have a Microsoft 365 E5 subscription and an on-premises server named Server1.

You plan to configure automatic log upload for continuous reports in Microsoft Defender for Cloud Apps.

You download a Docker log collector image to Server1.

You need integrate Defender for Cloud Apps with the log collector.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Discover Answer Hide Answer

Answer:

Question#22

HOTSPOT
-

You have a Microsoft 365 subscription that contains an Endpoint data loss prevention (Endpoint DLP) policy named Policy1 and the devices shown in the following table.



For Policy1, the Audit or restrict activities on devices settings are configured as shown in the Activities exhibit. (Click the Activities tab.)



For Policy1, the Allow override from Endpoint devices settings are configured as shown in the Devices exhibit. (Click the Devices tab.)



Test users discover that they cannot copy data to their network shares while working remotely.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Discover Answer Hide Answer

Answer:

Question#23

You have an on-premises network that has several legacy applications. The applications perform LDAP queries against an existing directory service.

You are migrating the on-premises infrastructure to a cloud-only infrastructure.

You need to recommend an identity solution for the infrastructure that supports the legacy applications. The solution must minimize the administrative effort to maintain the infrastructure.

Which identity service should you include in the recommendation?

  • A. Azure Active Directory (Azure AD) B2C
  • B. Active Directory Domain Services (AD DS)
  • C. Azure Active Directory (Azure AD)
  • D. Azure Active Directory Domain Services (Azure AD DS)
Discover Answer Hide Answer

Answer: D

Question#24

HOTSPOT
-

You have a hybrid cloud infrastructure.

You plan to deploy the Azure applications shown in the following table.



What should you use to meet the requirement of each app? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Discover Answer Hide Answer

Answer:

Question#25

HOTSPOT
-

You have a Microsoft 365 E5 subscription that uses Microsoft Intune.

You have the Azure AD security groups shown in the following table.



You have the Windows 10 devices shown in the following table.



You deploy Microsoft 365 Apps for enterprise as shown in the following exhibit.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Discover Answer Hide Answer

Answer:

Question#26

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You discover that some external users accessed content on a Microsoft SharePoint site. You modify the SharePoint sharing policy to prevent sharing outside your organization.
You need to be notified if the SharePoint sharing policy is modified in the future.
Solution: From the Security & Compliance admin center, you create a threat management policy.
Does this meet the goal?

  • A. Yes
  • B. No
Discover Answer Hide Answer

Answer: B
From the Security & Compliance admin center, Alerts, you create a new alert policy.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/alert-policies

Question#27

You have a Microsoft 365 subscription.
You need to be notified if users receive email containing a file that has a virus.
What should you do?

  • A. From the Exchange admin center, create an in-place eDiscovery & hold.
  • B. From the Security & Compliance admin center, create a safe attachments policy.
  • C. From the Security & Compliance admin center, create a data loss prevention (DLP) policy.
  • D. From the Security & Compliance admin center, create an alert policy.
Discover Answer Hide Answer

Answer: D
Reference:
https://docs.microsoft.com/en-us/office365/securitycompliance/alert-policies

Question#28

You have a Microsoft 365 E5 subscription.
You plan to deploy Microsoft Defender for Cloud Apps.
You need to ensure that Microsoft Defender for Cloud Apps can differentiate between internal and external users.
What should you do?

  • A. From the Microsoft 365 admin center, configure the Org settings.
  • B. From the Microsoft 365 admin center, configure the default domain.
  • C. From the Microsoft Defender for Cloud Apps portal, add a list of managed domains.
  • D. From the Microsoft Defender for Cloud Apps portal, configure the Organization details.
Discover Answer Hide Answer

Answer: C
Reference:
https://docs.microsoft.com/en-us/defender-cloud-apps/general-setup

Question#29

You have a Microsoft Azure Active Directory (Azure AD) tenant.
The organization needs to sign up for Microsoft Store for Business. The solution must use the principle of least privilege.
Which role should you assign to the user?

  • A. Global administrator
  • B. Cloud application administrator
  • C. Application administrator
  • D. Service administrator
Discover Answer Hide Answer

Answer: A
Reference:
https://docs.microsoft.com/en-us/microsoft-store/sign-up-microsoft-store-for-business

Question#30

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You discover that some external users accessed content on a Microsoft SharePoint site. You modify the SharePoint sharing policy to prevent sharing outside your organization.
You need to be notified if the SharePoint sharing policy is modified in the future.
Solution: From the SharePoint site, you create an alert.
Does this meet the goal?

  • A. Yes
  • B. No
Discover Answer Hide Answer

Answer: A
From the Security & Compliance admin center, Alerts, you create a new alert policy.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/alert-policies

chevron rightPrevious Nextchevron right