Skip Navigation Links
 

Microsoft - MS-100: Microsoft 365 Identity and Services

Sample Questions

Question: 293
Measured Skill: Plan Office 365 Workloads and Applications (10-15%)

You manage multiple devices by using Microsoft Endpoint Manager. The devices run on the following operating systems:
  • Android 8.0, Android 8.1.0, and Android 9
  • iOS 12 and iOS 13
  • MacOS 10.14
  • Windows 10
You need to deploy Microsoft 365 apps to the devices.

From the Microsoft Endpoint Manager admin center, what is the minimum number of apps you should create?

A1
B 3
C 4
D 7

Correct answer: C

Explanation:

We need to add the Microsoft 365 apps for each operating system family and create a separate assignment to devices or users for each Microsoft 365 apps version.

Reference: Add apps to Microsoft Intune

Question: 294
Measured Skill: Plan Office 365 Workloads and Applications (10-15%)

You have a hybrid deployment of Microsoft 365 that contains the users shown in the following table.



You have an on-premises web app named AppA. Group1 has permissions to access AppA.

You configure an Azure Active Directory (Azure AD) Application Proxy.

You add an Application Proxy entry for AppA as shown the following exhibit.



You assign the AppA enterprise application in Azure to Group2.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

(NOTE: Each correct selection is worth one point.)

www.cert2brain.com

AUser1 can access AppA by using the external URL: Yes
User2 can access AppA in the My Apps portal: Yes
User3 can access AppA by using the external URL: Yes
B User1 can access AppA by using the external URL: Yes
User2 can access AppA in the My Apps portal: Yes
User3 can access AppA by using the external URL: No
C User1 can access AppA by using the external URL: Yes
User2 can access AppA in the My Apps portal: No
User3 can access AppA by using the external URL: Yes
D User1 can access AppA by using the external URL: No
User2 can access AppA in the My Apps portal: Yes
User3 can access AppA by using the external URL: No
E User1 can access AppA by using the external URL: No
User2 can access AppA in the My Apps portal: No
User3 can access AppA by using the external URL: Yes
F User1 can access AppA by using the external URL: No
User2 can access AppA in the My Apps portal: No
User3 can access AppA by using the external URL: No

Correct answer: D

Explanation:

User1 is a member of Group2. The enterprise app is assigned to Group2. However, the authentication method is "Passthrough" so the authentication will be passed to the on-premises web app. Only Group1 has access to the web app. Therefore, User1 will not be able to access the web app.

User2 is a member of Group1 and Group2. The enterprise app is assigned to Group2. The authentication method is "Passthrough" so the authentication will be passed to the on-premises web app. Group1 has access to the web app. Therefore, User2 will be able to access the web app from the MyApps portal.

User3 is a member of Group1. Group1 has access to the web app so User3 could access the app on-premises. However, the enterprise app is assigned to Group2 which User3 is not a member of. Therefore, User3 will not be able to access the external URL of the web app.

Note: Assigning AppA as an Azure enterprise application to Group2, makes AppA available to the members of Group2 from the MyApps portal.



Question: 295
Measured Skill: Manage User Identity and Roles (35-40%)

You have a hybrid deployment of Microsoft 365 and an Azure Active Directory (Azure AD) tenant. The tenant contains the users shown in the following table.



Password protection in Azure AD is configured as shown in the following exhibit.



Which users will be prevented from using the word “Contoso” as part of their password?

AUser1 only
B User1 and User2 only
C User1 and User3 only
D User1, User2, and User3

Correct answer: B

Explanation:

The password protection applies to on-premises Active Directory identities and to Azure AD identities. Microsoft accounts are not affected, since their passwords are neither stored in Windows AD nor Azure AD.

Note: It is important to note that Azure AD Password Protection can only validate passwords during password change or set operations. Passwords that were accepted and stored in Active Directory prior to the deployment of Azure AD Password Protection will never be validated and will continue working as-is. Over time, all users and accounts will eventually start using Azure AD Password Protection-validated passwords as their existing passwords expire normally. Accounts configured with "password never expires" are exempt from this.

Reference: Azure AD Password Protection is now generally available!

Question: 296
Measured Skill: Design and Implement Microsoft 365 Services (25-30%)

You have a Microsoft 365 subscription and a DNS domain. The domain is hosted by a third-party DNS service.

You plan to add the domain to the subscription.

You need to use Microsoft Exchange Online to send and receive emails for the domain.

Which type of DNS record should you add to the DNS zone of the domain for each task?

(To answer, drag the appropriate records to the correct tasks. Each record may be used once, more than once, or not at all. NOTE: Each correct selection is worth one point.)

www.cert2brain.com

ARoute email for the domain to Exchange Online: A
Enable Microsoft Outlook to auto discover the Exchange Online server for the domain: SRV
Help prevent spam for the domain: MX
B Route email for the domain to Exchange Online: MX
Enable Microsoft Outlook to auto discover the Exchange Online server for the domain: CNAME
Help prevent spam for the domain: TXT
C Route email for the domain to Exchange Online: CNAME
Enable Microsoft Outlook to auto discover the Exchange Online server for the domain: TXT
Help prevent spam for the domain: A
D Route email for the domain to Exchange Online: SRV
Enable Microsoft Outlook to auto discover the Exchange Online server for the domain: MX
Help prevent spam for the domain: CNAME

Correct answer: B

Explanation:

An MX resource record is used to determine which server(s) is responsible for receiving e-mails and with which priority. MX stands for Mail Exchanger. It is quite common for multiple MX entries to be set for a domain name. The entries can be weighted by specifying the priority. The lower the number selected for the priority, the higher the priority of the mail server. When delivering messages, the mail server with the highest priority is given priority. If this cannot be reached, the mail server with the next highest priority is addressed.

Exchange clients query the configuration of the mailbox server using a special autodiscover service. The address of the service is published via a DNS entry with the default name autodiscover.domain.tld. When using Exchange Online, the Autodiscover record is an alias (CNAME) record pointing to autodiscover.outlook.com.

To reduce the likelihood that outgoing mails from your own domain will be categorized as spam by the recipient, the servers authorized to send mail can be published in a Sender Policy Framework (SPF) entry. The receiving server compares the IP address of the sending server with the list of authorized servers and can thus determine whether the message is legitimate or spam. SPF records are created as TXT records.

Reference: External Domain Name System records for Office 365

Question: 297
Measured Skill: Design and Implement Microsoft 365 Services (25-30%)

Your organization has a network that is configured as a Windows Active Directory (AD) domain. The domain is named contoso.com.

The domain contains an on-premises Exchange 2007 mail server that supports 1000 users.

You purchase a Microsoft 365 Enterprise E3 subscription. Gradually migration to Exchange Online is planned. There are three main items required to be migrated: User inboxes, contacts, and calendar items.

Which migration method do you choose to make sure it is the appropriate migration path in this situation?

ACutover migration
B Staged migration
C Hybrid migration
D IMAP migration

Correct answer: B

Explanation:

There are many paths to migrate data from an on-premises email organization to Exchange Online in Office 365. When planning a migration to Exchange Online, a common question is about how to improve the performance of data migration and optimize migration velocity.

Frequently used migration methods:

IMAP Migration
You can use the Exchange Administration Center (EAC) or the Exchange Management Shell to migrate the contents of users' mailboxes from an IMAP messaging system to their Exchange Online mailboxes. This includes migrating your mailboxes from other hosted email services, such a Gmail or Yahoo Mail.
 
Cutover Migration
Using a cutover migration, you migrate all on-premises mailboxes to Exchange Online over a few days. You would use this migration type if you plan to move your entire email organization to Office 365 and manage user accounts in Office 365. You can migrate a maximum of 2,000 mailboxes from your on-premises Exchange organization to Exchange Online using a cutover migration. The mail contacts and distribution groups in your on-premises Exchange organization are also migrated.
 
Staged Migration
As part of a Microsoft 365 or Office 365 deployment, you can migrate the contents of user mailboxes from a source email system to Microsoft 365 or Office 365. When you do this over time, it's called a staged migration. A staged migration is recommended when:

  • Your source email system is Microsoft Exchange Server 2003 or Microsoft Exchange Server 2007.

Hybrid Deployment (Remote Move Migration)
A hybrid deployment offers organizations the ability to extend the feature-rich experience and administrative control they have with their existing on-premises Microsoft Exchange organization to the cloud. A hybrid deployment provides the seamless look and feel of a single Exchange organization between an on-premises Exchange Server 2013 or 2010 organization and Exchange Online in Microsoft Office 365. In addition, a hybrid deployment can serve as an intermediate step to moving completely to an Exchange Online organization.
 

References:

Ways to migrate multiple email accounts to Office 365

What you need to know about a staged email migration





 
Tags: exam, examcollection, exam simulation, exam questions, questions & answers, training course, study guide, vce, braindumps, practice test
 
 

© Copyright 2014 - 2021 by cert2brain.com