Skip Navigation Links
 

Microsoft - MS-101: Microsoft 365 Mobility and Security

Sample Questions

Question: 249
Measured Skill: Manage Microsoft 365 Governance and Compliance (35-40%)

A Microsoft Office 365 user in your organization has made a terrible mistake in their OneDrive for Business and they need to restore the entirety of their OneDrive to an earlier point in time.

How can you help them do this?

AYou can't, they'll have to restore whatever they can from the recycle bin and previous versions.
B Use PowerShell to restore each item in their OneDrive programmatically to an earlier version.
C Use a third-party backup product.
D Use Files Restore from the settings (gear) icon in their OneDrive.

Correct answer: D

Explanation:

We should use the "Restore your OneDrive" option from the settings gear.



Restore your OneDrive allows to undo all changes to a given point in time for a maximum of 30 days.



Reference: Restore your OneDrive

Question: 250
Measured Skill: Manage Microsoft 365 Governance and Compliance (35-40%)

Your company has a Microsoft 365 E3 subscription. All users have Exchange Online licenses assigned.

A member of your organization's compliance team needs to be able to place an in-place hold on mailbox content.

Which role should you assign?

ACompliance data administrator from Azure AD
B Exchange admin from the Microsoft 365 admin center
C eDiscovery Manager from the Security & Compliance admin center
D Compliance Management in the Exchange admin center

Correct answer: C

Explanation:

In previous versions of Exchange, the notion of legal hold is to hold all mailbox data for a user indefinitely or until when hold is removed. In Exchange Online, In-Place Hold includes a new model that allows you to specify the following parameters:

  • What to hold: You can specify which items to hold by using query parameters such as keywords, senders and recipients, start and end dates, and also specify the message types such as email messages or calendar items that you want to place on hold.

  • How long to hold: You can specify a duration for items on hold.

To create a query-based In-Place Hold, a user requires both the Mailbox Search and Legal Hold roles to be assigned directly or via membership in a role group that has both roles assigned. To create an In-Place Hold without using a query, which places all mailbox items on hold, you must have the Legal Hold role assigned. The Discovery Management role group is assigned both roles.

The Organization Management role group is assigned the Legal Hold role. Members of the Organization Management role group can place an In-Place Hold on all items in a mailbox, but can't create a query-based In-Place Hold.

Another solution is, to assign the eDiscovery Manager role group from the Security & Compliance center.



Reference: In-Place Hold and Litigation Hold

Reference: Assign eDiscovery permissions in the Security & Compliance Center



Question: 251
Measured Skill: Implement Modern Device Services (40-45%)

Your company has a Microsoft 365 E3 subscription. The company plans, to deploy Windows 10 to new devices by using Windows Autopilot.

Before your company can begin using Windows Autopilot to deploy Windows to new devices, what must you configure?

AA device configuration profile in Microsoft Endpoint Manager admin center
B A deployment profile in Microsoft Endpoint Manager admin center
C An Apple MDM push certificate in Microsoft Endpoint Manager admin center
D Conditional access policies in Microsoft Endpoint Manager admin center

Correct answer: B

Explanation:

After you have created a device group, you can apply a Windows Autopilot deployment profile to each device in the group. Deployment profiles determine the deployment mode, and customize the OOBE for your end users.

Reference: Create an Autopilot deployment profile

Question: 252
Measured Skill: Implement Microsoft 365 Security and Threat Management (20-25%)

Your company has a Microsoft 365 E3 subscription. The company plans, to use Microsoft Cloud App Security to monitor Office 365 activity of their users.

You need to integrate Azure Information Protection (AIP) with Cloud App Security (CAS) to allow monitoring of Office 365 activity and files from within Cloud App Security.

What should you do first?

AConfigure Cloud App Security policies.
B Set up Cloud App Security alerts.
C Add Office 365 as a connected app in Cloud App Security.
D Upload Cloud App Security traffic logs.

Correct answer: C

Explanation:

We need to connect Microsoft Cloud App Security to our existing Office 365 account using the app connector API. This connection gives us visibility into and control over Office 365 use.



Reference: Connect Office 365 to Microsoft Cloud App Security

Question: 253
Measured Skill: Manage Microsoft 365 Governance and Compliance (35-40%)

Your company has an Active Directory Domain Services (AD DS) domain with multiple geographic locations. Your company's main office is in Seattle and includes all human resource functions.

Your company purchases a Microsoft 365 subscription and migrates all user files and mailboxes to Microsoft 365.

All company email uses Exchange Online.

You must ensure that email messages containing sensitive United States personally identifiable information (PII) can be sent between users in the Seattle office only. Administrators should be able to review reports of sent and received messages containing PII.

You need to implement a policy to accomplish this.

What should you create?

AA mail flow rule from the Exchange admin center
B An alert policy from the Security & Compliance admin center
C A thread policy from the Security & Compliance admin center
D A retention policy from the Security & Compliance admin center

Correct answer: A

Explanation:

The sensitive information types known from data loss prevention policies (DLP policies) can also be used within mail flow rules. We should create a mail flow rule that applies to all Exchange users except users of the Seattle office. We then should configure the policy to block mails that contain U.S. Personally Identifiable Information (PII) Data.



Reference: Integrating sensitive information rules with mail flow rules in Exchange Online



 
Tags: exam, examcollection, exam simulation, exam questions, questions & answers, training course, study guide, vce, braindumps, practice test
 
 

© Copyright 2014 - 2021 by cert2brain.com