Microsoft MS-500 Microsoft 365 Security Administration Exam Practice Test

Page: 1 / 14
Total 280 questions

Question 1

Your network contains an on-premises Active Directory domain and a Microsoft 365 subscription.

You plan to deploy a hybrid Azure Active Directory (Azure AD) tenant that has Azure AD Identity Protection risk policies enabled.

You need to configure Azure AD Connect to support the planned deployment.

Which Azure AD Connect authentication method should you select?



Answer : C

Question 2

You have a Microsoft 365 subscription.

You need to recommend a passwordless authentication solution that uses biometric authentication.

What should you include in the recommendation?



Answer : A

Question 3

You have a Microsoft 365 tenant that is linked to a hybrid Azure Active Directory (Azure AD) tenant named contoso.com.

You need to enable Azure AD Seamless Single Sign-On (Azure AD SSO) for contoso.com.

What should you use?



Answer : A

Question 4

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 E5 subscription that contains a user named User1.

The Azure Active Directory (Azure AD) Identity Protection risky users report identifies User1.

For User1, you select Confirm user compromised.

User1 can still sign in.

You need to prevent User1 from signing in. The solution must minimize the impact on users at a lower risk level.

Solution: You configure the sign-in risk policy to block access when the sign-in risk level is high.

Does this meet the goal?



Answer : B

Question 5

You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains the users shown in the following table.

You discover that several security alerts are visible from the Microsoft Defender for Identity portal.

You need to identify which users in contoso.com can close the security alerts.

Which users should you identify?



Answer : A

Question 6

You haw a Microsoft 365 subscription that contains the users shown in the following table.

You need to ensure that User1, User2 , and User3 can use self-service password reset (SSPR). The solution must not affect User 4.

Solution: You enable SSPR for Group2

.

Does this meet the goal?



Answer : A

Question 7

You haw a Microsoft 365 subscription that contains the users shown in the following table.

You need to ensure that User1, User2 , and User3 can use self-service password reset (SSPR). The solution must not affect User 4.

Solution: You enable SSPR for Group3.

.

Does this meet the goal?



Answer : B

Page:    1 / 14   
Total 280 questions