Microsoft MS-500 Exam Practice Test Instant Access

Question 1

You have a Microsoft 365 subscription.

Some users access Microsoft SharePoint Online from unmanaged devices.

You need to prevent the users from downloading, printing, and synching files.

What should you do?

ARun the Set-SPODataConnectionSetting cmdlet and specify the AssignmentCollection
parameter

BFrom the SharePoint admin center, configure the Access control settings

CFrom the Microsoft Azure portal, create an Azure Active Directory (Azure AD) Identity Protection sign-in risk policy

DFrom the Microsoft Azure portal, create an Azure Active Directory (Azure AD) conditional access policy

Answer : B

Question 2

You have a Microsoft 365 subscription.

You need to create data loss prevention (DLP) queries in Microsoft SharePoint Online to find sensitive data stored in sites.

Which type of site collection should you create first?

ARecords Center

BCompliance Policy Center

CeDiscovery Center

DEnterprise Search Center

EDocument Center

Answer : C

https://support.office.com/en-us/article/overview-of-data-loss-prevention-in-sharepoint-server-2016-80f907bbb944-448d-b83d-8fec4abcc24c

Question 3

Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.

When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.

Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.

Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.

Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.

Username and password

Use the following login credentials as needed:

To enter your username, place your cursor in the Sign in box and click on the username below.

To enter your password, place your cursor in the Enter password box and click on the password below.

Microsoft 365 Username:

admin@LODSe244001@onmicrosoft.com

Microsoft 365 Password: &=Q8v@2qGzYz

If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.

The following information is for technical support only:

Lab instance: 11032396

You need to ensure that each user can join up to five devices to Azure Active Directory (Azure AD).

To complete this task, sign in to the Microsoft Office 365 admin center.

AExplanation:
After signing into the Microsoft 365 admin center, click Admin centers > Azure Active Directory > Devices.
Navigate to Device Settings.
Set the Users may join devices to Azure AD setting to All.
Set the Additional local administrators on Azure AD joined devices setting to None.
Set the Users may register their devices with Azure AD setting to All.
Leave the Require Multi-Factor Auth to join devices setting on it default setting.
Set the Maximum number of devices setting to 5.
Set the Users may sync settings and app data across devices setting to All.
Click the Save button at the top left of the screen.

Answer : A

https://docs.microsoft.com/en-us/azure/active-directory/devices/device-management-azure-portal

https://docs.microsoft.com/en-us/microsoft-365/compliance/use-your-free-azure-ad-subscription-in-office-365?view=o365-worldwide

Question 4

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these

questions will not appear in the review screen.

You have a Microsoft 365 tenant. You create a label named CompanyConfidential in Microsoft Azure

Information Protection.

You add CompanyConfidential to a global policy.

A user protects an email message by using CompanyConfidential and sends the label to several external

recipients. The external recipients report that they cannot open the email message.

You need to ensure that the external recipients can open protected email messages sent to them.

Solution: You modify the encryption settings of the label.

Does this meet the goal?

AYes

BNo

Answer : B

Question 5

Your company uses Microsoft Azure Advanced Threat Protection (ATP).

You enable the delayed deployment of updates for an Azure ATP sensor named Sensor1.

How long after the Azure ATP cloud service is updated will Sensor1 be updated?

A7 days

B24 hours

C1 hour

D48 hours

E12 hours

Answer : B

Note: The delay period was 24 hours. In ATP release 2.62, the 24 hour delay period has been increased to 72 hours.

Question 6

You have a Microsoft 365 subscription that includes a user named User1.

You have a conditional access policy that applies to Microsoft Exchange Online. The conditional access policy

is configured to use Conditional Access App Control.

You need to create a Microsoft Cloud App Security policy that blocks User1 from printing from Exchange

Online.

Which type of Cloud App Security policy should you create?

Aan app permission policy

Ban activity policy

Ca Cloud Discovery anomaly detection policy

Da session policy

Answer : D

Question 7

You have a Microsoft 365 subscription.

You need to recommend a passwordless authentication solution that uses biometric authentication.

What should you include in the recommendation?

AWindows Hello for Business

Ba smart card

Cthe Microsoft Authenticator app

Da PIN

Answer : A

https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-overview

Microsoft 365 Security Administration MS-500 Exam Practice Test