Microsoft MS-500 Exam Practice Test Instant Access

Question 1

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

You need to prevent users in the finance department from sharing files with users in the research department. Which type of policy should you configure?

AConditional Access

Binsider risk management

Cinformation barrier

Dcommunication compliance

Answer : A

Question 2

You have a Microsoft 365 E5 subscription that contains a user named Used.

You need to ensure that User! can use the Microsoft 365 compliance center to search audit logs and identify which users were added to Microsoft 365 role groups. The solution must use the principle of least privilege.

To which role group should you add User1?

ASecurity Reader

BView-Only Organization Management

COrganization Management

DCompliance Management

Answer : C

Question 3

You have a Microsoft 365 E5 subscription that has Microsoft Defender for Cloud Apps enabled. You need to create an alert in Defender for Cloud Apps when source code is shared externally.

Which type of policy should you create?

ACloud Discovery anomaly detection

Bfile

Caccess

Dactivity

Answer : B

Question 4

You have a Microsoft 365 subscription that contains a user named Used.

You need to assign User1 permissions to search Microsoft Office 365 audit logs.

What should you use?

Athe Azure Active Directory admin center

Bthe Microsoft 365 Compliance center

Cthe Microsoft 365 Defender portal

Dthe Exchange admin center

Answer : A

Question 5

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

You enable Customer Lockbox.

Which users will be notified when a Microsoft support engineer requests access to the organization?

AAdmin1, Admin2. and Admin3

BAdmin2only

CAdmin2 and Admin3 only

DAdmin1 and Admin2 only

Answer : D

Question 6

You have a Microsoft 365 tenant that has modern authentication enabled.

You have Windows 10, MacOS. Android, and iOS devices that are managed by using Microsoft Endpoint Manager. Some users have older email client applications that use Basic authentication to connect to Microsoft Exchange Online. You need to implement a solution to meet the following security requirements-

* Allow users to connect to Exchange Online only by using email client applications that support modern authentication protocols based on OAuth 2.0.

* Block connections to Exchange Online by any email client applications that do NOT support modern authentication.

What should you implement?

Aa conditional access policy in Azure Active Directory (Azure AD)

Ban OAuth app policy m Microsoft Defender for Cloud Apps

Ca compliance policy in Microsoft Endpoint Manager

Dan application control profile in Microsoft Endpoint Manager

Answer : C

Question 7

You have a Microsoft 365 E5 subscription that uses Azure Active Directory (Azure AD) Privileged identity Management (PIM). A user named User! is eligible for the User Account Administrator role. You need User! to request to activate the User Account Administrator role. From where should User1 request to activate the role?

Athe My Access portal

Bthe Microsoft 365 Defender portal

Cthe Azure Active Directory admin center

Dthe Microsoft 365 admin center