Microsoft MS-100 Real Exam Questions Guaranteed Updated Dump from ExamsLabs
Verified Pass MS-100 Exam in First Attempt Guaranteed
What Are The Pre-requisite for The Exam?
As we have already told that MS-100 leads to an expert-level certification, one must know about great prior expertise required. The vendor suggests owning any of the below-mentioned certificates before taking up the Microsoft MS-100 test:
- Microsoft 365 Certified: Modern Desktop Administrator Associate
- Microsoft 365 Certified: Security Administrator Associate
- Microsoft 365 Certified: Teams Administrator Associate
- Microsoft 365 Certified: Messaging Administrator Associate
- MCSE: Productivity Solutions Expert
NEW QUESTION 164
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory forest.
You deploy Microsoft 365.
You plan to implement directory synchronization.
You need to recommend a security solution for the synchronized identities. The solution must meet the following requirements:
* Users must be able to authenticate successfully to Microsoft 365 services if Active Directory becomes unavailable.
* Users passwords must be 10 characters or more.
Solution: Implement password hash synchronization and configure password protection in the Azure AD tenant.
Does this meet the goal?
- A. Yes
- B. No
Answer: B
NEW QUESTION 165
Your company has 500 client computers that run Windows 10.
You plan to deploy Microsoft Office 365 ProPlus to all the computers.
You create the following XML file for the planned deployment.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 166
You have a Microsoft 365 subscription.
Your company purchases a new financial application named App1.
From Cloud Discovery in Microsoft Cloud App Security, you view the Discovered apps page and discover that many applications have a low score because they are missing information about domain registration and consumer popularity.
You need to prevent the missing information from affecting the score.
What should you configure from the Cloud Discover settings?
- A. App tags
- B. Default behavior
- C. Score metrics
- D. Organization details
Answer: A
Explanation:
References:
https://docs.microsoft.com/en-us/cloud-app-security/discovered-app-queries
NEW QUESTION 167
You have a Microsoft 365 subscription.
You have a group named Support. Users in the Support group frequently send email messages to external users.
The manager of the Support group wants to randomly review messages that contain attachments.
You need to provide the manager with the ability to review messages that contain attachments sent from the Support group users to external users. The manager must have access to only 10 percent of the messages.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/office365/securitycompliance/supervision-policies
NEW QUESTION 168
Your network contains an on-premises Active Directory domain named Contoso.com.
Your company purchase a Microsoft 365 subscription and establishes a hybrid deployment of Azure Active Directory (Azure AD) by using password hash synchronization.
You need to identify where an administrator can reset the password of each new user.
What should you identify? To answer, select the appropriate option in the area.
NOTE: Each correct selection is worth point.
Answer:
Explanation:
NEW QUESTION 169
Your company has a Microsoft 365 subscription that contains the users shown in the following table.
You need to identify which users can perform the following administrative tasks:
Modify the password protection policy.
Create guest user accounts.
Which users should you identify for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-password-ban-bad-on-premises-operations
NEW QUESTION 170
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You discover that some external users accessed content on a Microsoft SharePoint site. You modify the SharePoint sharing policy to prevent sharing outside your organization.
You need to be notified if the SharePoint policy is modified in the future.
Solution: From the SharePoint admin center, you modify the sharing settings.
Does this meet the goal?
- A. Yes
- B. No
Answer: B
Explanation:
Explanation
NEW QUESTION 171
You have a Microsoft 365 subscription.
You view the service advisories shown in the following exhibit.
You need to ensure that a user named User1 can view the advisories to investigate service health issues.
Which role should you assign to User1?
- A. Message Center reader
- B. Service administrator
- C. Reports reader
- D. Compliance administrator
Answer: B
Explanation:
People who are assigned the global admin or service administrator role can view service health. To allow Exchange, SharePoint, and Skype for Business admins to view service health, they must also be assigned the Service admin role.
Reference:
https://docs.microsoft.com/en-us/office365/enterprise/view-service-health
NEW QUESTION 172
Your company has a Microsoft 365 subscription.
You upload several archive PST files to Microsoft 365 by using the Security & Compliance admin center.
A month later, you attempt to run an import job for the PST files.
You discover that the PST files were deleted from Microsoft 365.
What is the most likely cause of the files being deleted? More than one answer choice may achieve the
goal. Select the BEST answer.
- A. The size of the PST files exceeded a storage quota and caused the files to be deleted.
- B. Another administrator deleted the PST files.
- C. PST files are deleted automatically from Microsoft 365 after 30 days.
- D. The PST files were corrupted and deleted by Microsoft 365 security features.
Answer: C
Explanation:
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/office365/securitycompliance/faqimporting-pst-files-to-office-365
NEW QUESTION 173
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You need to assign User2 the required roles to meet the security requirements.
Solution: From the Office 365 admin center, you assign User2 the Security Reader role.
From the Exchange admin center, you assign User2 the Help Desk role.
Does this meet the goal?
- A. Yes
- B. NO
Answer: B
NEW QUESTION 174
Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com that contains the users shown in the following table.
You need to identify which users can perform the following administrative tasks:
Reset the password of User4.
Modify the value for the manager attribute of User4.
Which users should you identify for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
Box 1:
A Password Administrator or a User Administrator can reset the password non-administrative users.
Box 2: A User Administrator can configure other attributes such as the Manager attribute of non-administrative users.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles
NEW QUESTION 175
You have retention policies in Microsoft 365 as shown in the following table.
Policy1 is configured as shown in the Policy1 exhibit. (Click the Policy1 tab.) Policy1
Policy1 is configured as shown in the Policy2 exhibit. (Click the Policy2 tab.) Policy2
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Reference:
https://docs.microsoft.com/en-us/office365/securitycompliance/retention-policies#the-principles-of-retention-or-what-takes-precedence
NEW QUESTION 176
You have a Microsoft 365 Enterprise subscription.
You have a conditional access policy to force multi-factor authentication when accessing Microsoft SharePoint from a mobile device.
You need to view which users authenticated by using multi-factor authentication.
What should you do?
- A. From the Microsoft 365 admin center, view the Usage reports.
- B. From the Microsoft 365 admin center, view the Security & Compliance reports.
- C. From the Azure Active Directory admin center, view the audit logs.
- D. From the Azure Active Directory admin center, view the user sign-ins.
Answer: D
Explanation:
With the sign-ins activity report in the Azure portal, you can get the information you need to determine how your environment is doing.
The sign-ins report can provide you with information about the usage of managed applications and user sign-in activities, which includes information about multi-factor authentication (MFA) usage. The MFA data gives you insights into how MFA is working in your organization. It enables you to answer questions like:
* Was the sign-in challenged with MFA?
* How did the user complete MFA?
* Why was the user unable to complete MFA?
* How many users are challenged for MFA?
* How many users are unable to complete the MFA challenge?
* What are the common MFA issues end users are running into?
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-reporting
NEW QUESTION 177
You need to meet the security requirement for the vendors.
What should you do?
- A. From the Azure portal, add an identity provider.
- B. From Azure Cloud Shell, run the Set-AzureADUserExtension cmdlet.
- C. From Azure Cloud Shell, run the New-AzureADUsercmdlet and specify the -UserPrincipalName parameter.
- D. From the Azure portal, create guest accounts.
Answer: D
Explanation:
Section: [none]
Explanation:
* Vendors must be able to authenticate by using their Microsoft account when accessing Contoso resources.
You can invite guest users to the directory, to a group, or to an application. After you invite a user through any of these methods, the invited user's account is added to Azure Active Directory (Azure AD), with a user type of Guest. The guest user must then redeem their invitation to access resources. An invitation of a user does not expire.
The invitation will include a link to create a Microsoft account. The user can then authenticate using their Microsoft account. In this question, the vendors already have Microsoft accounts so they can authenticate using them.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/b2b/add-users-administrator
NEW QUESTION 178
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has a Microsoft Office 365 tenant.
You suspect that several Office 365 features were recently updated.
You need to view a list of the features that were recently updated in the tenant.
Solution: You use Monitoring and reports from the Compliance admin center.
Does this meet the goal?
- A. Yes
- B. No
Answer: B
Explanation:
Explanation
Depending on what your organization's Office 365 subscription includes, the Dashboard in Security & Compliance includes several widgets, such as Threat Management Summary, Threat Protection Status, Global Weekly Threat Detections, Malware, etc. The Compliance admin center in Microsoft 365 contains much of the same information but also includes additional entries focusing on alerts, data insights.
The Monitoring and reports section from the Compliance admin center does not display a list of the features that were recently updated in the tenant so this solution does not meet the goal.
To meet the goal, you need to use Message center in the Microsoft 365 admin center.
Reference:
https://docs.microsoft.com/en-us/office365/admin/manage/message-center?view=o365-worldwide
NEW QUESTION 179
Your company has a hybrid deployment of Microsoft 365.
Users authenticate by using pass-through authentication. Several Microsoft Azure AD Connect Authentication Agents are deployed.
You need to verify whether all the Authentication Agents are used for authentication.
What should you do?
- A. From Performance Monitor, use the Kerberos authentications counter.
- B. From the Azure portal, use the Diagnostics settings on the Monitor blade.
- C. From Performance Monitor, use the #PTA authentications counter.
- D. From the Azure portal, use the Troubleshoot option on the Pass-through authentication page.
Answer: D
Explanation:
Section: [none]
Explanation:
On the Troubleshoot page, you can view how many agents are configured. If you click on the agents link, you can view the status of each agent. Each agent will have a status of Active or Inactive.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/tshoot-connect-pass-through-authentication
NEW QUESTION 180
You have an Active Directory domain named Adatum.com that is synchronized to Azure Active Directory as shown in the exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE:Each correct selection is worth one point.
Answer:
Explanation:
Explanation
Group Writeback is enabled in the Azure AD Connect configuration so groups created in Azure Active Directory will be synchronized to the on-premise Active Directory. A security group created in Azure Active Directory will be synchronized to the on-premise Active Directory as a security group.
Device Writeback is enabled in the Azure AD Connect configuration so computers joined to the Azure Active Directory will be synchronized to the on-premise Active Directory. They will sync to the RegisteredDevices container in the on-premise Active Directory.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-device-writeback
NEW QUESTION 181
......
Download Real Microsoft MS-100 Exam Dumps Test Engine Exam Questions: https://www.examslabs.com/Microsoft/Microsoft-365/best-MS-100-exam-dumps.html
Free MS-100 Sample Questions and 100% Cover Real Exam Questions : https://drive.google.com/open?id=1kvU_msClR-M8zG1OhAuV7lFJh6zuy74O