Microsoft MS-102 Exam Practice Test Instant Access

Question 1

Your company has digitally signed applications.

You need to ensure that Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) considers the digitally signed applications safe and never analyzes them.

What should you create in the Microsoft Defender Security Center?

Aa custom detection rule

Ban allowed/blocked list rule

Can alert suppression rule

Dan indicator

Answer : D

https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/manage-indicators

Question 2

You have a Microsoft 365 subscription.

All users have their email stored in Microsoft Exchange Online.

In the mailbox of a user named User1. you need to preserve a copy of all the email messages that contain the word ProjectX.

What should you do first?

AFrom the Exchange admin center create a mail flow rule.

BFrom Microsoft 365 Defender, start a message trace.

CFrom Microsoft Defender for Cloud Apps, create an activity policy.

DFrom the Microsoft Purview compliance portal, create a label and a label policy.

Answer : D

Question 3

You have a Microsoft 365 E5 subscription. You plan to use Microsoft Entra ID Protection.

You need to ensure that account passwords must be changed if account credential. What should you configure?

APassword protection

Bself-service password reset (SSPR)

Ca sign-in risk policy

Da user risk policy

Answer : D

Question 4

On which server should you use the Defender for identity sensor?

AServer1

BServer2

CServer3

DServer4

EServers5

Answer : A

However, if the case study had required that the DCs can't have any s/w installed, then the answer would have been a standalone sensor on Server2. In this scenario, the given answer is correct. BTW, ATP now known as Defender for Identity.

Overview

Question 5

You have a Microsoft 365 E5 subscription that contains the labels shown in the following table.

You have the items shown in the following table.

Which items can you view in Content explorer?

AFile1 only

BFile1 and File2 only

CFile1 and Mail! only

DFile2 and Mail2 only

EFile1, File2, Mail1, and Mail2

Answer : C

Question 6

You have a Microsoft 365 E5 subscription that contains a user named User1. You create an anti-phishing policy named Policy! that has the following settings:

* Include these users, groups and domains: User1

* Phishing email threshold: 3 - More Aggressive

User1 receives the email messages shown in the following table.

Which messages are phishing email?

AMail4 only

BMail3 and Mail4 only

CMail2, Mail3, and Mail4 only

DMail1, Mail2, Mail3, and Mail4

Answer : B

Question 7

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 E5 subscription that contains a user named User1.

You need to enable User1 to create Compliance Manager assessments.

Solution: From the Microsoft 365 admin center, you assign User1 the Compliance data admin role.

Does this meet the goal?

AYes

BNo

Answer : B

https://github.com/MicrosoftDocs/microsoft-365-docs/blob/public/microsoft-365/security/office-365-security/permissions-in-the-security-and-compliance-center.md

Microsoft 365 Administrator MS-102 Exam Practice Test