Skip Navigation Links
 

Microsoft - MS-100: Microsoft 365 Identity and Services

Sample Questions

Question: 308
Measured Skill: Plan Office 365 Workloads and Applications (10-15%)

You have a Microsoft SharePoint Online site and an on-premises file server. The site contains the files shown in the following table.



The file server contains the files shown in the following table.



You migrate D:\Folder1 and D:\Folder2 to the Documents library by using the SharePoint Migration Tool as shown in the following exhibit.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

(NOTE: Each correct selection is worth one point.)

www.cert2brain.com

AThere will be two versions of File1.docx in the Documents library: Yes
There will be two copies of File2.xlsx in the Documents library: Yes
There will be a single copy of File3.pptx in the Documents library: Yes
B There will be two versions of File1.docx in the Documents library: Yes
There will be two copies of File2.xlsx in the Documents library: Yes
There will be a single copy of File3.pptx in the Documents library: No
C There will be two versions of File1.docx in the Documents library: No
There will be two copies of File2.xlsx in the Documents library: Yes
There will be a single copy of File3.pptx in the Documents library: No
D There will be two versions of File1.docx in the Documents library: No
There will be two copies of File2.xlsx in the Documents library: Yes
There will be a single copy of File3.pptx in the Documents library: Yes
E There will be two versions of File1.docx in the Documents library: No
There will be two copies of File2.xlsx in the Documents library: No
There will be a single copy of File3.pptx in the Documents library: Yes
F There will be two versions of File1.docx in the Documents library: No
There will be two copies of File2.xlsx in the Documents library: No
There will be a single copy of File3.pptx in the Documents library: No

Correct answer: E

Explanation:

The SharePoint document library does already contain files named File1.docx and File2.xlsx. The two files will skipped by the SharePoint migration tool without an error message. Files that already exist in the target storage are excluded from the migration to allow incremental migrations.

Reference: Incremental migration



Question: 309
Measured Skill: Plan Office 365 Workloads and Applications (10-15%)

You have an on-premises Microsoft Exchange Server organization that contains 500 mailboxes and a third-party email archive solution.

You have a Microsoft 365 tenant that contains a user named User1.

You plan to use the User1 account to perform a PST import of the archive mailboxes to the tenant.

Which two roles does User1 require to perform the import?

(The solution must use the principle of least privilege. Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.)

AMail Recipients
B Exchange admin
C Records Management
D Mailbox Import Export
E eDiscovery Manager

Correct answer: A, D

Explanation:

You can use the Import service in the Microsoft 365 Compliance admin center to quickly bulk-import PST files to Exchange Online mailboxes in your organization. There are two ways you can import PST files to Office 365:

  • Network upload  - Upload the PST files over the network to a temporary Azure Storage location in the Microsoft cloud. Then you use the Office 365 Import service to import the PST data to mailboxes in your organization.

  • Drive shipping  - Copy the PST files to a BitLocker-encrypted hard drive and then physically ship the drive to Microsoft. When Microsoft receives the hard drive, data center personnel upload the data to a temporary Azure Storage location in the Microsoft cloud. Then you use the Office 365 Import service to import the data to mailboxes in your organization.

You have to be assigned the Mailbox Import Export role in Exchange Online to import PST files to Microsoft 365 mailboxes. By default, this role isn't assigned to any role group in Exchange Online. You can add the Mailbox Import Export role to the Organization Management role group. Or you can create a role group, assign the Mailbox Import Export role, and then add yourself as a member.

Also, to create import jobs in the Microsoft 365 compliance center, one of the following must be true:

  • You have to be assigned the Mail Recipients role in Exchange Online. By default, this role is assigned to the Organization Management and Recipient Management roles groups.

    Or

  • You have to be a global administrator in your organization.

Tip

Consider creating a new role group in Exchange Online that's specifically intended for importing PST files. For the minimum level of privileges required to import PST files, assign the Mailbox Import Export and Mail Recipients roles to the new role group, and then add members.

References:

Overview of importing your organization's PST files

Use network upload to import your organization's PST files to Microsoft 365



Question: 310
Measured Skill: Plan Office 365 Workloads and Applications (10-15%)

You have a Microsoft 365 subscription that contains a user named User1.

You need to ensure that User1 receives Microsoft 365 feature and service updates before the updates are released to all users.

What should you do in the Microsoft 365 admin center?

AModify the privileged access management settings.
B Modify Office software download settings.
C Modify the Release preferences settings.
D Submit a new service request.

Correct answer: C

Explanation:

We can enable the targeted release for selected users from the release preferences options in the Microsoft 365 organization profile



Question: 311
Measured Skill: Manage Access and Authentication (20-25%)

You have a Microsoft 365 E5 subscription linked to an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains the users shown in the following table.



Password writeback is disabled in Azure AD Connect.

You enable self-service password reset (SSPR) for Group1.

You configure password protection for contoso.com as shown in the following exhibit.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

(NOTE: Each correct selection is worth one point.)

www.cert2brain.com

AUser1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
B User1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
C User1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
D User1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
E User1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: Yes
F User1 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User2 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No
User3 can use SSPR to set his password to VerRYC0MplexPa55w.rd: No

Correct answer: C

Explanation:

When a user changes or resets their password, the new password is checked for strength and complexity by validating it against the combined list of terms from the global and custom banned password lists.

Even if a user's password contains a banned password, the password may be accepted if the overall password is otherwise strong enough. A newly configured password goes through the steps described in the referenced Microsoft Docs article to assess its overall strength to determine if it should be accepted or rejected.

The new password (VeRYC0MplexPa55w.rd) will be normalized to verycomplexpa55w.rd. The new password will pass the fuzzy matching and the substring matching and will be validated as a valid new password.

User1 is an Azure AD identity. User1 can reset his password.

User2 is an on-premises Active Directory identity. Since password writeback is disabled, User2 cannot reset his password. For federated users whose passwords are synchronized, the source of authority for the passwords is on-premises. As a result, SSPR updates only the on-premises passwords. Password hash synchronization back to Azure AD is scheduled for every 2 minutes.

User3 is a guest account using a Microsoft account. User3 cannot use SSPR to reset his password.

References:

Eliminate bad passwords using Azure Active Directory Password Protection

Tutorial: Enable users to unlock their account or reset passwords using Azure Active Directory self-service password reset



Question: 312
Measured Skill: Manage Access and Authentication (20-25%)

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.



You configure a multi-factor authentication (MFA) registration policy that has the following settings:
  • Assignments:
    • Include: Group1
    • Exclude: Group2
  • Access controls: Require Azure MFA registration
  • Enforce Policy: On
You create a conditional access policy that has the following settings:
  • Name: Policy1
  • Assignments:
    • Include: Group2
    • Exclude: Group1
  • Access controls: Grant, Require multi-factor authentication
  • Enable policy: On
For each of the following statements, select Yes if the statement is true. Otherwise, select No.

(NOTE: Each correct selection is worth one point.)

www.cert2brain.com

AUser1 will be required to use MFA on the next sign-in: Yes
User2 will be required to use MFA on the next sign-in: Yes
User3 will be required to use MFA on the next sign-in: Yes
B User1 will be required to use MFA on the next sign-in: Yes
User2 will be required to use MFA on the next sign-in: Yes
User3 will be required to use MFA on the next sign-in: No
C User1 will be required to use MFA on the next sign-in: Yes
User2 will be required to use MFA on the next sign-in: No
User3 will be required to use MFA on the next sign-in: Yes
D User1 will be required to use MFA on the next sign-in: No
User2 will be required to use MFA on the next sign-in: Yes
User3 will be required to use MFA on the next sign-in: No
E User1 will be required to use MFA on the next sign-in: No
User2 will be required to use MFA on the next sign-in: Yes
User3 will be required to use MFA on the next sign-in: Yes
F User1 will be required to use MFA on the next sign-in: No
User2 will be required to use MFA on the next sign-in: No
User3 will be required to use MFA on the next sign-in: No

Correct answer: E

Explanation:

Azure Active Directory Identity Protection Multi-Factor Authentication registration policy will prompt your users to register the next time they sign in interactively and they will have 14 days to complete registration. During this 14-day period, they can bypass registration if MFA is not required as a condition, but at the end of the period they will be required to register before they can complete the sign-in process.

The Multi-Factor Authentication registration policy applies to User1 only. The MFA Auth Status of User1 is disabled. User1 will be prompted to register for MFA on the next sign-in. But, because the conditional access policy does not apply to User1, User1 can bypass MFA registration for a period of 14 days.

Neither the MFA registration policy nor the conditional access policy apply to User2. User2 is exempt from both assignments. The MFA Auth Status of User2 is enabled. If User2 has registered authentication methods such as a phone number or an email address, he will be prompted to use MFA on the next sign-in. If User2 has not registered authentication methods yet, he will be prompted to register and use an authentication method on the next sign-in. Because his MFA status is enabled, he cannot bypass the process.

User3 is subject to the conditional access policy. The policy requires MFA to grant access. User3 will be prompted to register and use MFA on the next sign-in.

References:

How To: Configure the Azure AD Multi-Factor Authentication registration policy

Enable per-user Azure AD Multi-Factor Authentication to secure sign-in events





 
Tags: exam, examcollection, exam simulation, exam questions, questions & answers, training course, study guide, vce, braindumps, practice test
 
 

© Copyright 2014 - 2021 by cert2brain.com