Microsoft MS-600 Exam Practice Test Instant Access

Question 1

You are building a Microsoft Outlook add-in.

Which object should you use to save a user's preferences between sessions and devices?

AlocalStorage

BRoamingSettlngs

CCustomXMLParts

DCustomProperties

Answer : B

The user's Exchange server mailbox where the add-in is installed. Because these settings are stored in the user's server mailbox, they can 'roam' with the user and are available to the add-in when it is running in the context of any supported client accessing that user's mailbox.

https://docs.microsoft.com/en-us/office/dev/add-ins/outlook/manage-state-and-settings-outlook

Question 2

You have a single-page application (SPA) named TodoListSPA and a server-based web app named TodoListService.

The permissions for the TodoListSPA API are configured as shown in the TodoListSPA exhibit. (Click the TodoListSPA tab.)

The permissions for the TodoListService API are configured as shown in the TodoListService exhibit (Click the TodoListService tab.)

You need to ensure that TodoListService can access a Microsoft OneDrive file of the signed-in user. The solution must use the principle of least privilege.

Which permission request should you configure?

Athe sites. Read.All delegated permission for TodoListSPA

Bthe sites.Read.ah application permission for TodoListSPA

Cthe sites.Read.ah application permission for TodoListService

Dthe sites.Read.ah delegated permission for TodoListService

Answer : C

Question 3

How can you validate that the JSON notification message is sent from the Microsoft Graph service?

AThe ClientState must match the value provided when subscribing.

BThe user_guid must map to a user ID in the Azure AD tenant of the customer.

CThe tenant ID must match the tenant ID of the customer's Office 365 tenant.

DThe subscription ID must match the Azure subscription used by ADatum.

Answer : A

clientState specifies the value of the clientState property sent by the service in each notification. The maximum length is 128 characters. The client can check that the notification came from the service by comparing the value of the clientState property sent with the subscription with the value of the clientState property received with each notification.

Note: A subscription allows a client app to receive notifications about changes to data in Microsoft Graph.

Question 4

You are developing an outgoing webhook in Microsoft Teams.

In the service that receives the outgoing webhook request, what should you validate to ensure that calls are coming from Microsoft Teams?

Athe HTTP hmac header

Bthe Microsoft Teams client cookies

Cthe Microsoft Graph API

Dthe bearer token

Answer : A

A Hash-based Message Authentication Code (HMAC) is a security token used to authenticate calls between Teams and the designated outside service, such as an outgoing webhook request. The HMAC security token doesn't expire and is unique for each configuration.

https://docs.microsoft.com/en-us/microsoftteams/platform/webhooks-and-connectors/how-to/add-outgoing-webhook

Question 5

You have a custom API that is secured by using Azure Active Directory (Azure AD). You need to call the API from within a SharePoint Framework (SPFx) web part. Which object should you use to call the API?

AAadHttpClient

BMSGraphClient

CSPMttpCHent

DXMLHttpRequest

Answer : B

By using the AadHttpClient, you can easily connect to APIs secured by using Azure AD without having to implement the OAuth flow yourself.

https://docs.microsoft.com/en-us/sharepoint/dev/spfx/use-aadhttpclient

Question 6

You need to ensure that users can initiate private conversations with HRBot. The solution must meet the technical requirements for HRApp. How should you configure the HRApp manifest?

AIn the configurableTabs section, add groupchat to the scopes collection.

BIn the bots section, add personal to the scopes collection.

CIn the staticTabs section, add personal to the scopes collection.

DIn the bots section, change the scopes collection value from rea-s to personal.

Answer : C

Question 7

You are developing a daemon application that reads all the emails in the Inbox of a specific Microsoft 365 mailbox. Some emails contain meeting dates and room mailbox names. The application has the following requirements:

* Move each processed email to a subfolder in the mailbox.

* If an email contains meeting data, create an event in the corresponding room mailbox calendar.

Which Microsoft Graph permissions should you grant for the application?

ACalendars.ReadWrite.Shared and Mail.ReadHrite delegated permissions

BCalendars.ReadWrite and Mail.Read application permissions

CCalendars.ReadWrite and Mail.ReadWrite delegated permissions

DCalendars.ReadWrite and Mail.ReadWrite application permissions

Answer : D

https://docs.microsoft.com/en-us/graph/permissions-reference

Microsoft MS-600 Building Applications and Solutions with Microsoft 365 Core Services Exam Practice Test