Practice Free MS-102 Exam Online Questions
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goats. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint. and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the SharePoint Administrator role.
Does this meet the goal?
- A . Yes
- B . No
Your network contains an Active Directory forest named contoso.local.
You purchase a Microsoft 365 subscription.
You plan to move to Microsoft 365 and to implement a hybrid deployment solution for the next 12 months.
You need to prepare for the planned move to Microsoft 365.
What is the best action to perform before you implement directory synchronization? More than one answer choice may achieve the goal. Select the BEST answer.
- A . Purchase a third-party X.509 certificate.
- B . Create an external forest trust.
- C . Rename the Active Directory forest.
- D . Purchase a custom domain name.
D
Explanation:
The first thing you need to do before you implement directory synchronization is to purchase a custom domain name. This could be the domain name that you use in your on-premise Active Directory if it’s a routable domain name, for example, contoso.com.
If you use a non-routable domain name in your Active Directory, for example contoso.local, you’ll need to add the routable domain name as a UPN suffix in Active Directory.
Incorrect:
Not C: No need to rename the Active Directory forest. As we use a non-routable domain name contoso.local, we just need to add the routable domain name as a UPN suffix in Active Directory.
Reference: https://docs.microsoft.com/en-us/office365/enterprise/set-up-directory-synchronization
You have a Microsoft 365 subscription.
You need to be notified to your personal email address when a Microsoft Exchange Online service issue occurs.
What should you do?
- A . From the Microsoft 365 admin center, customize the Service health settings.
- B . From the Microsoft Outlook client configure an Inbox rule.
- C . From the Microsoft 365 admin center, update the technical contact details.
- D . From the Exchange admin center, create a contact.
You have a new Microsoft 365 E5 tenant.
You need to enable an alert policy that will be triggered when an elevation of Microsoft Exchange Online administrative privileges is detected.
What should you do first?
- A . Enable auditing.
- B . Enable Microsoft 365 usage analytics.
- C . Create an Insider risk management policy.
- D . Create a communication compliance policy.
A
Explanation:
Microsoft Purview auditing solutions provide an integrated solution to help organizations effectively respond to security events, forensic investigations, internal investigations, and compliance obligations. Thousands of user and admin operations performed in dozens of Microsoft 365 services and solutions are captured, recorded, and retained in your organization’s unified audit log. Audit records for these events are searchable by security ops, IT admins, insider risk teams, and compliance and legal investigators in your organization. This capability provides visibility into the activities performed across your Microsoft 365 organization.
Note: Permissions alert policies
Example: Elevation of Exchange admin privilege
Generates an alert when someone is assigned administrative permissions in your Exchange Online organization. For example, when a user is added to the Organization Management role group in Exchange Online.
Reference:
https://learn.microsoft.com/en-us/microsoft-365/compliance/audit-solutions-overview
https://learn.microsoft.com/en-us/microsoft-365/compliance/alert-policies
You have a Microsoft 365 E5 subscription that contains a user named User1 You create a retention label named Retention1 that is published to all locations.
You need to ensure that User1 can label email messages by using Retention1 as soon as possible.
Which cmdlet should you run in Microsoft Exchange Online PowerShell?
- A . Start-MpScan
- B . Start-Process
- C . Start-ManagedFolderAsslstant
- D . Start-AppBackgroundTask
You have a Microsoft 365 subscription that uses Security & Compliance retention policies.
You implement a preservation lock on a retention policy that is assigned to all executive users.
Which two actions can you perform on the retention policy? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point?
- A . Add locations to the policy
- B . Reduce the duration of policy
- C . Remove locations from the policy
- D . Extend the duration of the policy
- E . Disable the policy
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
From the Microsoft 365 Defender, you create a role group named US eDiscovery Managers by copying the eDiscovery Manager role group.
You need to ensure that the users in the new role group can only perform content searches of mailbox content for users in the United States.
Solution: From the Microsoft 365 Defender, you modify the roles of the US eDiscovery Managers role group.
Does this meet the goal?
- A . Yes
- B . No
You have a Microsoft 365 E5 subscription. You need to create a mail-enabled contact.
Which portal should you use?
- A . the Microsoft Entra admin center
- B . the Intune admin center
- C . the Microsoft Purview compliance portal
- D . the Exchange admin center
You need to meet the technical requirement for large-volume document retrieval.
What should you create?
- A . a data loss prevention (DLP) policy from the Security & Compliance admin center
- B . an alert policy from the Security & Compliance admin center
- C . a file policy from Microsoft Cloud App Security
- D . an activity policy from Microsoft Cloud App Security
D
Explanation:
Reference: https://docs.microsoft.com/en-us/office365/securitycompliance/activity-policies-and-alerts
You need to meet the technical requirement for large-volume document retrieval.
What should you create?
- A . a data loss prevention (DLP) policy from the Security & Compliance admin center
- B . an alert policy from the Security & Compliance admin center
- C . a file policy from Microsoft Cloud App Security
- D . an activity policy from Microsoft Cloud App Security
D
Explanation:
Reference: https://docs.microsoft.com/en-us/office365/securitycompliance/activity-policies-and-alerts