Microsoft MS-102 Online Practice Questions and Exam Preparation

Microsoft MS-102 Online Questions & Answers

• Question 451:

  Your network contains an Active Directory domain named adatum.com that is synced to Azure AD.

  The domain contains 100 user accounts.

  The city attribute for all the users is set to the city where the user resides.

  You need to modify the value of the city attribute to the three-letter airport code of each city.

  What should you do?

  A. From Azure Cloud Shell, run the Get-MsolUser and Set-MsolUser cmdlets.
  B. From Windows PowerShell on a domain controller, run the Get-MgUser and Update-MgUser cmdlets.
  C. From Active Directory Administrative Center, select the Active Directory users, and then modify the Properties settings.
  D. From Azure Cloud Shell, run the Get-MgUser and Update-MgUser cmdlets.
  C. From Active Directory Administrative Center, select the Active Directory users, and then modify the Properties settings.

• Question 452:

  HOTSPOT

  From the Microsoft 365 compliance center, you configure a data loss prevention (DLP) policy for a Microsoft SharePoint Online site named Site1. Site1 contains the roles shown in the following table.

  

  Prvi creates the files shown in the exhibit. (Click the Exhibit tab.)

  

  Which files can User1 and User2 open? To answer, select the appropriate options in the answer area.

  NOTE: Each correct selection is worth one point.

  

  

• Question 453:

  You have a Microsoft 365 E5 subscription and use Microsoft Defender for Endpoint Defender for Endpoint has tamper protection enabled.

  You have a device named Device1 that is onboarded to Defender for Endpoint. You need to configure antivirus and real-time protection for Device1.

  What should you do in the Microsoft Defender portal?

  A. Enable troubleshooting mode.
  B. Initiate a live response session.
  C. Isolate Device1.
  D. Create a device group.
  A. Enable troubleshooting mode.

• Question 454:

  You need to ensure that all the sales department users can authenticate successfully during Project1 and Project2.

  Which authentication strategy should you implement for the pilot projects?

  A. pass-through authentication
  B. pass-through authentication and seamless SSO
  C. password hash synchronization and seamless SSO
  D. password hash synchronization
  C. password hash synchronization and seamless SSO

• Question 455:

  HOTSPOT

  You have a Microsoft 365 E3 subscription.

  You plan to launch Attack simulation training for all users.

  Which social engineering technique and training experience will be available? To answer, select the appropriate options in the answer area.

  NOTE: Each correct selection is worth one point.

  

  

• Question 456:

  You have a Microsoft 365 tenant.

  You plan to enable BitLocker Disk Encryption (BitLocker) automatically for all Windows 10 devices that enroll in Microsoft Intune.

  What should you use?

  A. an attack surface reduction (ASR) policy
  B. an app configuration policy
  C. a device compliance policy
  D. a device configuration profile
  D. a device configuration profile

  ---

  Explanation

  https://docs.microsoft.com/en-us/mem/intune/protect/encrypt-devices

• Question 457:

  HOTSPOT

  You need to meet the technical requirement for log analysis.

  What is the minimum number of data sources and log collectors you should create from Microsoft Cloud App Security? To answer, select the appropriate options in the answer area.

  NOTE: Each correct selection is worth one point.

  

  

  ---

  References:

  https://docs.microsoft.com/en-us/cloud-app-security/discovery-docker

• Question 458:

  Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

  After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

  Your network contains an Active Directory domain.

  You deploy a Microsoft Entra tenant.

  Another administrator configures the domain to synchronize to the Microsoft Entra tenant

  You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to the Microsoft Entra tenant. All the other user accounts synchronized successfully.

  You review Microsoft Entra Connect Health and discover that all the user account synchronizations completed successfully.

  You need to ensure that the 10 user accounts are synchronized to the Microsoft Entra tenant.

  Solution: From Microsoft Entra Connect you modify the Microsoft Entra credentials.

  Does this meet the goal?

  A. Yes
  B. No
  B. No

• Question 459:

  DRAG DROP

  You have a Microsoft 365 E5 subscription that contains two security groups named Group1 and Group2. You need to recommend an authentication solution that meets the following requirements:

  1. Members of Group1 must be able to authenticate by using a hardware token.

  2. Members of Group2 must be able to authenticate by using a public key infrastructure (PKI).

  Which authentication method should you recommend for each group? To answer, drag the appropriate methods to the correct groups. Each method may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

  NOTE: Each correct selection is worth one point.

  Select and Place:

  

  

• Question 460:

  You have a Microsoft 365 subscription. You have a user named User1.

  You need to ensure that Used can place a hold on all mailbox content.

  What permission should you assign to User1?

  A. the Information Protection administrator ide from the Azure Active Directory admin center.
  B. the eDiscovery Manager tote from the Microsoft 365 compliance center.
  C. the Compliance Management role from the Exchange admin center.
  D. the User management administrator role from the Microsoft 365 admin center.
  B. the eDiscovery Manager tote from the Microsoft 365 compliance center.