Microsoft MS-500 Exam Questions Instant Access

Question 1

You have a Microsoft 365 subscription.

A security manager receives an email message every time a data loss prevention (DLP) policy match occurs.

You need to limit alert notifications to actionable DLP events.

What should you do?

AFrom the Security & Compliance admin center, modify the Policy Tips of a DLP policy.

BFrom the Cloud App Security admin center, apply a filter to the alerts.

CFrom the Security & Compliance admin center, modify the User overrides settings of a DLP policy.

DFrom the Security & Compliance admin center, modify the matched activities threshold of an alert policy.

Answer : D

https://docs.microsoft.com/en-us/office365/securitycompliance/alert-policies

Question 2

You have a Microsoft 365 E5 subscription.

You create a data loss prevention (OLP) policy and select Use Notifications to inform your users and help educate them on the proper use of sensitive info.

Which apps will show the policy tip?

AOutlook on the web and Outlook Win32 only

BOutlook Win32 and Outlook for lOS and Android only Outlook Win32 only

COutlook for iOS and Android only

DOutlook on the web, Outlook Win32, and Outlook for iOS and Android

EOutlook on the web only

Answer : A

Question 3

You have a Microsoft 365 E5 subscription

You need to use Microsoft Cloud App Security to identify documents stored in Microsoft SharePomt Online that contain proprietary information.

What should you create in Cloud App Security?

Aa data source and a file policy

Ba data source and an app discovery policy

Can app connector and an app discovery policy

Dan app connector and a We policy

Answer : B

Question 4

You have a Microsoft 365 subscription.

You create an Advanced Threat Protection (ATP) safe attachments policy.

You need to configure the retention duration for the attachments in quarantine.

Which type of threat management policy should you create?

AAnti-malware

BDKIM

CAnti-spam

DATP anti-phishing

Answer : A

Question 5

Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.

When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.

Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.

Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.

Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.

Username and password

Use the following login credentials as needed:

To enter your username, place your cursor in the Sign in box and click on the username below.

To enter your password, place your cursor in the Enter password box and click on the password below.

Microsoft 365 Username:

admin@LODSe00019@onmicrosoft.com

Microsoft 365 Password: #HSP.ug?$p6un

If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.

The following information is for technical support only:

Lab instance: 11122308

You need to create a retention policy that contains a data label. The policy must delete all Microsoft Office 365 content that is older than six months.

To complete this task, sign in to the Microsoft 365 admin center.

AExplanation:
Creating Office 356 labels is a two-step process. The first step is to create the actual label which includes the name, description, retention policy, and classifying the content as a record. Once this is completed, the second step requires the deployment of a label using a labelling policy which specifies the specific location to publish and applying the label automatically.
To create an Office 365 label, following these steps:
1. Open Security and Compliance Centre;
2. Click on Classifications;
3. Click on Labels;
4. The label will require configuration including: name your label (Name), add a description for the admins (Description for Admins), add a description for the users (Description for Users);
5. Click Next once the configuration is completed;
6. Click Label Settings on the left-hand side menu;
7. The Label Settings will need to be configured. On this screen, you can toggle the Retention switch to either ''on'' or ''off''. If you choose ''on'', then you can answer the question ''When this label is applied to content'' with one of two options. The first option is to Retain the Content. From the pick boxes, you can choose the length of retention and upon the end of the retention, the action that will take place. The three actions are to delete the data, trigger an approval flow for review, or nothing can be actioned. The second option is to not retain the data after a specified amount of time or based on the age of the data; and
8. The label has now been created.
To create a label policy, follow these steps:
1. Open Security and Compliance Centre;
2. Click on Data Governance, Retention;
3. Choose Label Policies box at the top of the screen; and
4. There are now two options. The first is to Publish Labels. If your organization wants its end users to apply the label manually, then this is the option you would choose. Note that this is location based. The second option is to Auto-apply Labels. With Auto-apply, you would have the ability to automatically apply a label when it meets the specified criteria.

Answer : A

https://www.maadarani.com/office-365-classification-and-retention-labels/

Question 6

An administrator configures Azure AD Privileged Identity Management as shown in the following exhibit.

What should you do to meet the security requirements?

AChange the Assignment Type for Admin2 to Permanent

BFrom the Azure Active Directory admin center, assign the Exchange administrator role to Admin2

CFrom the Azure Active Directory admin center, remove the Exchange administrator role to Admin1

DChange the Assignment Type for Admin1 to Eligible

Answer : D

Question 7

You have a Microsoft 165 E5 subscription.

You need to enable support for sensitivity labels in Microsoft SharePoint Online.

What should you use?

Athe SharePoint admin center

Bthe Microsoft 365 admin center

Cthe Microsoft 365 compliance center

Dthe Azure Active Directory admin

Answer : B

Microsoft 365 Security Administration MS-500 Exam Questions