Microsoft MS-500 Exam Practice Test Instant Access

Question 1

You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site1 and the data loss prevention (DIP) policies in following table.

All the policies are assigned to Site1.

You need to ensure that if a user uploads a document to Site1 that matches all the rules, the user will be shown the Tip 2 policy tip.

What should you do?

AEnable additional processing Of the policies if is a match for Rule1.

BChange the priority Of DLP2 to 3.

CChange the priority of DLP2 to 0

DPrevent additional processing of the policies if there is a match for Rule2.

Answer : C

Question 2

You have a Microsoft 365 that uses Microsoft ShareP0*int Online.

You need to ensure that users can only share files with users at specified partner companies. The solution must minimize administrative effort.

What should you do?

AAllow only in specific security groups to share externally.

BSet File and folder links to people.

CLimit external by domain

DSet External sharing to New and existing guest

Answer : A

Question 3

You have a Microsoft 365 E5 subscription that contains the devices shown in the following table.

You Plan to use the encryption report in Microsoft Endpoint Manager to view devices that have encryption enabled.

Which devices will be included in the encryption report?

ADevice1 only

BDevice1 and Device2 Only

CDevice1 and Device4 Only

DDevice1, Device2 and Device4 Only

EDevice1, Device2, Device 3 and Device 4

Answer : C

Question 4

You have a hybrid deployment of Azure Active Directory (Azure AD) that contains two users named User1 and User2.

You need to assign Role Based Access Control (RBAC) roles to User1 and User2 to meet the following requirements:

Use the principle of least privilege

Enable User1 to view sync errors by using Azure AD Connect Health

Enable User2 to configure Azure Active Directory Connect Health Settings

Which two roles should you assign?

AThe Monitoring Readers role in Azure AD Connect Health to User1

BThe Security reader role in Azure AD to User 1

CThe Reports reader role in Azure AD to User 1

DThe Contributor role in Azure AD Connect Health to User 2

EThe Monitoring Contributor role in Azure Connect Health to User 2

FThe Security operator role in Azure AD to User2

Answer : B, D

Question 5

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

You enable Customer Lockbox.

Which users will be notified when a Microsoft support engineer requests access to the organization?

AAdmin1, Admin2. and Admin3

BAdmin2only

CAdmin2 and Admin3 only

DAdmin1 and Admin2 only

Answer : D

Question 6

You have a Microsoft 365 E5 subscription.

You create a data loss prevention (OLP) policy and select Use Notifications to inform your users and help educate them on the proper use of sensitive info.

Which apps will show the policy tip?

AOutlook on the web and Outlook Win32 only

BOutlook Win32 and Outlook for lOS and Android only Outlook Win32 only

COutlook for iOS and Android only

DOutlook on the web, Outlook Win32, and Outlook for iOS and Android

EOutlook on the web only

Answer : A

Question 7

You have a Microsoft 365 subscription that contains a Microsoft 365 group named Group1. Group1 contains 100 users and has dynamic user membership.

All users have Windows 10 devices and use Microsoft SharePoint Online and Exchange Online.

You create a sensitivity label named Label and publish Label 1 as the default label for Group!.

You need to ensure that the users in Group1 must apply Label! to their email and documents.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

AInstall the Azure Information Protection unified labeling client on the Windows 10 devices.

BFrom the Microsoft 365 Compliance center, modify the settings of the Label1 policy.

CInstall the Active Directory Rights Management Services (AD RMS) client on the Windows 10 devices.

DFrom the Microsoft 365 Compliance center, create an auto-labeling policy.

EFrom the Azure Active Directory admin center, set Membership type for Group1 to Assigned.

Answer : D, E

Microsoft MS-500 Microsoft 365 Security Administration Exam Practice Test