Microsoft Microsoft Certifications MS-102 Questions & Answers

• Question 171:

  Your company has digitally signed applications.

  You need to ensure that Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) considers the digitally signed applications safe and never analyzes them.

  What should you create in the Microsoft Defender Security Center?

  A. a custom detection rule

  B. an allowed/blocked list rule

  C. an alert suppression rule

  D. an indicator

  Correct Answer: D

  Reference:

  https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender- atp/manage-indicators

• Question 172:

  You have a Microsoft 365 E5 subscription.

  Al users have Mac computers. ATI the computers are enrolled in Microsoft Endpoint Manager and onboarded to Microsoft Defender for Endpoint.

  You need to configure Microsoft Defender for Endpoint on the computers.

  What should you create from the Endpoint Management admin center?

  A. a Microsoft Defender for Endpoint baseline profile

  B. an update policy for iOS

  C. a device configuration profile

  D. a mobile device management (MDM) security baseline profile

  Correct Answer: D

• Question 173:

  You have a Microsoft 365 subscription that uses Microsoft Defender for Office 365.

  A Built-in protection preset security policy is applied to the subscription.

  Which two policy types will be applied by the Built-in protection policy? Each correct answer presents a complete solution.

  NOTE: Each correct selection is worth one point.

  A. Anti-malware

  B. Anti-phishing

  C. Safe Attachments

  D. Anti-spam

  E. Safe Links

  Correct Answer: CE

• Question 174:

  You have a Microsoft 365 E5 tenant that contains the resources shown in the following table.

  

  To which resources can you apply a sensitivity label by using an auto-labeling policy?

  A. Mailbox1 and Site1 only

  B. Mailbox1, Account1, and Site1 only

  C. Account1 and Site1 only

  D. Mailbox1, Account1, Site1, and Channel1

  E. Account1, Site1, and Channel1 only

  Correct Answer: E

  Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels?view=o365- worldwide

• Question 175:

  You have a Microsoft 365 subscription.

  You need to create a data loss prevention (DLP) policy that is configured to use the Set headers action.

  To which location can the policy be applied?

  A. OneDrive accounts

  B. Exchange email

  C. Teams chat and channel messages

  D. SharePoint sites

  Correct Answer: B

• Question 176:

  You have a Microsoft 365 subscription.

  You view the Service health Overview as shown in the following exhibit.

  

  You need to ensure that a user named User1 can view the advisories to investigate service health issues.

  Which role should you assign to User1?

  A. Message Center Reader

  B. Reports Reader

  C. Service Support Administrator

  D. Compliance Administrator

  Correct Answer: C

  Service Support admin

  Assign the Service Support admin role as an additional role to admins or users who need to do the following in addition to their usual admin role:

  -Open and manage service requests

  -View and share message center posts

  -Monitor service health

  Incorrect:

  * Message center reader

  Assign the Message center reader role to users who need to do the following:

  -Monitor message center notifications

  -Get weekly email digests of message center posts and updates

  -Share message center posts

  - Have read-only access to Azure AD services, such as users and groups

  * Reports reader

  Assign the Reports reader role to users who need to do the following:

  - View usage data and the activity reports in the Microsoft 365 admin center

  -

  Get access to the Power BI adoption content pack

  -

  Get access to sign-in reports and activity in Azure AD

  -View data returned by Microsoft Graph reporting API Reference: https://learn.microsoft.com/en-us/microsoft-365/admin/add-users/about-admin- roles?view=o365-worldwide

• Question 177:

  Your company has a Microsoft 365 subscription.

  You need to identify all the users in the subscription who are licensed for Office 365 through a group membership. The solution must include the name of the group used to assign the license.

  What should you use?

  A. Active users in the Microsoft 365 admin center

  B. Reports in Microsoft Purview compliance portal

  C. the Licenses blade in the Microsoft Entra admin center

  D. Reports in the Microsoft 365 admin center

  Correct Answer: C

  There is no license report in "Reports in the Microsoft 365 admin center". https://entra.microsoft.com > Billing > Licenses > All Products > Open License > Licensed groups

• Question 178:

  You have a Microsoft 365 E5 subscription.

  You plan to create a data loss prevention (DLP) policy that will be applied to all available locations.

  Which conditions can you use in the DLP rules of the policy?

  A. sensitive info types

  B. content search queries

  C. keywords

  D. sensitivity labels

  Correct Answer: A

  The correct answer is A. sensitive info types.

  Sensitive info types are predefined patterns that can help you identify and protect sensitive data, such as credit card numbers, social security numbers, bank account numbers, and so on1. You can use sensitive info types as conditions in your DLP rules to detect and protect data that matches these patterns. For example, you can create a DLP rule that blocks the external sharing of documents that contain credit card numbers2. B, C, and D are incorrect because they are not valid conditions for DLP rules in Office

• Question 179:

  You have a Microsoft 365 E5 subscription.

  You need to create Conditional Access policies to meet the following requirements:

  All users must use multi-factor authentication (MFA) when they sign in from outside the corporate network.

  Users must only be able to sign in from outside the corporate network if the sign-in originates from a compliant device.

  All users must be blocked from signing in from outside the United States and Canada.

  Only users in the RandD department must be blocked from signing in from both Android and iOS devices.

  Only users in the finance department must be able to sign in to an Azure AD enterprise application named App1. All other users must be blocked from signing in to App1.

  What is the minimum number of Conditional Access policies you should create?

  A. 3

  B. 4

  C. 5

  D. 6

  E. 7

  F. 8

  Correct Answer: B

  *

  Only users in the finance department must be able to sign in to an Azure AD enterprise application named App1. All other users must be blocked from signing in to App1.

  One Policy.

  *

  Only users in the RandD department must be blocked from signing in from both Android and iOS devices.

  One Policy.

  *

  Users must only be able to sign in from outside the corporate network if the sign-in originates from a compliant device.

  All users must use multi-factor authentication (MFA) when they sign in from outside the corporate network.

  One policy

  *

  All users must be blocked from signing in from outside the United States and Canada. Only users in the RandD department must be blocked from signing in from both Android One Policy Reference: https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/plan- conditional-access

• Question 180:

  You have a Microsoft 365 E5 subscription.

  You create an account for a new security administrator named SecAdmin1.

  You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.

  Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the Exchange Administrator role.

  Does this meet the goal?

  A. Yes

  B. No

  Correct Answer: B

  You need to assign the Security Administrator role. Reference:

  https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp