Microsoft MS-102 Exam Practice Test Instant Access

Question 1

You enable the Azure AD Identity Protection weekly digest email.

You create the users shown in the following table.

Which users will receive the weekly digest email automatically?

AAdmin2, Admin3, and Admin4 only

BAdmin1, Admin2, Admin3, and Admin4

CAdmin2 and Admin3 only

DAdmin3 only

EAdmin1 and Admin3 only

Answer : E

By default, all Global Admins receive the email. Any newly created Global Admins, Security Readers or

Security Administrators will automatically be added to the recipients list.

Question 2

You need to meet the compliance requirements for the Windows 10 devices.

What should you create from the Intune admin center?

Aa device compliance policy

Ba device configuration profile

Can application policy

Dan app configuration policy

Answer : C

Question 3

You have a Microsoft 365 E5 subscription that uses Azure Advanced Threat Protection (ATP).

You need to create a detection exclusion in Azure ATP.

Which tool should you use?

Athe Security & Compliance admin center

BMicrosoft Defender Security Center

Cthe Microsoft 365 admin center

Dthe Azure Advanced Threat Protection portal

Ethe Cloud App Security portal

Answer : D

https://docs.microsoft.com/en-us/defender-for-identity/what-is

https://docs.microsoft.com/en-us/defender-for-identity/excluding-entities-from-detections

Question 4

You need to ensure that all the sales department users can authenticate successfully during Project1 and Project2.

Which authentication strategy should you implement for the pilot projects?

Apass-through authentication

Bpass-through authentication and seamless SSO

Cpassword hash synchronization and seamless SSO

Dpassword hash synchronization

Answer : C

Project1: During Project1, the mailboxes of 100 users in the sales department will be moved to Microsoft 365.

Project2: After the successful completion of Project1, Microsoft Teams & Skype for Business will be enabled in Microsoft 365 for the sales department users.

After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically.

Fabrikam does NOT plan to implement identity federation.

After the planned migration to Microsoft 365, all users must continue to authenticate to their mailbox and to SharePoint sites by using their UPN.

You need to enable password hash synchronization to enable the users to continue to authenticate to their mailbox and to SharePoint sites by using their UPN.

You need to enable SSO to enable all users to be signed in to on-premises and cloud-based applications automatically.

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/choose-ad-authn

Question 5

Your on-premises network contains an Active Directory domain.

You have a Microsoft 365 E5 subscription.

You plan to implement a hybrid configuration that has the following requirements:

* Minimizes the number of times users are prompted for credentials when they access Microsoft 365 resources

* Supports the use of Azure AD Identity Protection

You need to configure Azure AD Connect to support the planned implementation. Which two options should you select? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

APassword Hash Synchronization

BPassword writeback

CDirectory extension attribute sync

DEnable single sign-on

EPass-through authentication

Answer : A, B

Question 6

You have a Microsoft 365 subscription.

You have the retention policies shown in the following table.

Both policies are applied to a Microsoft SharePoint site named Site1 that contains a file named File1.docx.

File1.docx was created on January 1, 2022 and last modified on January 31,2022. The file was NOT modified again.

When will File1.docx be deleted automatically?

AJanuary 1,2023

BJanuary 1,2024

CJanuary 31, 2023

DJanuary 31, 2024

Enever

Answer : D

Retention wins over deletion.

Note:

Explanation for the four different principles:

1. Retention wins over deletion. Content won't be permanently deleted when it also has retention settings to retain it. While this principle ensures that content is preserved for compliance reasons, the delete process can still be initiated (user-initiated or system-initiated) and consequently, might remove the content from users' main view. However, permanent deletion is suspended.

2. Etc.

https://learn.microsoft.com/en-us/microsoft-365/compliance/retention

Question 7

You have an Azure AD tenant.

You have 1,000 computers that run Windows 10 Pro and are joined to Azure AD.

You purchase a Microsoft 365 E3 subscription.

You need to deploy Windows 10 Enterprise to the computers. The solution must minimize administrative effort.

What should you do?

AFrom the Microsoft Endpoinf Manager admin center, create a Windows Autopilot deployment profile. Assign the profile to all the computers. Instruct users to restart their computer and perform a network restart.

BEnroll the computers in Microsoft Intune. Create a configuration profile by using the Edition upgrade and mode switch template. From the Microsoft Endpoint Manager admin center, assign the profile to all the computers and instruct users to restart their computer.

CFrom Windows Configuration Designer, create a provisioning package that has an EditionUpgrade configuration and upload the package to a Microsoft SharePoint Online site. Instruct users to run the provisioning package from SharePoint Online.

DFrom the Azure Active Directory admin center, create a security group that has dynamic device membership. Assign licenses to the group and instruct users to sign in to their computer.

Answer : B

Microsoft MS-102 Microsoft 365 Administrator Exam Practice Test