CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. MS-100

Free MS-100 Exam Braindumps (page: 29)

Page 29 of 98
PDF with 464 Questions

HOTSPOT (Drag and Drop is not supported)
You have an Active Directory domain named Adatum.com that is synchronized to Azure Active Directory as shown in the exhibit.



Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Group Writeback is enabled in the Azure AD Connect con guration so groups created in Azure Active Directory will be synchronized to the on- premise Active
Directory. A security group created in Azure Active Directory will be synchronized to the on-premise Active Directory as a security group. Device Writeback is enabled in the Azure AD Connect con guration so computers joined to the Azure Active Directory will be synchronized to the on-premise
Active Directory. They will sync to the RegisteredDevices container in the on-premise Active Directory.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-device-writeback



HOTSPOT (Drag and Drop is not supported)
Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com that includes the users shown in the following table.



Group2 is a member of Group1.
You assign O ce 365 Enterprise E3 license to User2 as shown in the User2 Licensing exhibit.



You assign O ce 365 Enterprise E3 licenses to Group1 as shown in the Group1 Licensing exhibit.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Group-based licensing currently does not support groups that contain other groups (nested groups). If you apply a license to a nested group, only the immediate rst-level user members of the group have the licenses applied.
Therefore, the license granted to Group1 will not lter down to Group2.
Box 1: Yes.
User1 is in Group1 which has been assigned a license to use Exchange Online.
Box 2: No
User2 has been assigned a license to use SharePoint online. However, the license to use Exchange Online does not apply to User2.

Box 3: No
The license to use Exchange Online is granted to Group1. However, the license granted to Group1 will not lter down to Group2. Therefore, User3 will not be licensed to use Exchange Online.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/licensing-group-advanced



You have a Microsoft 365 subscription.
You view the service advisories shown in the following exhibit.



You need to ensure that users who administer Microsoft SharePoint Online can view the advisories to investigate service health issues.
Which role should you assign to the users?

  1. Compliance administrator
  2. Message Center reader
  3. Reports reader
  4. Service administrator

Answer(s): D

Explanation:

People who are assigned the global admin or service administrator role can view service health. To allow Exchange, SharePoint, and Skype for Business admins to view service health, they must also be assigned the Service admin role. For more information about roles that can view service health.


Reference:

https://docs.microsoft.com/en-us/o ce365/enterprise/view-service-health



You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. The tenant includes a user named
User1.
You enable Azure AD Identity Protection.
You need to ensure that User1 can review the list in Azure AD Identity Protection of users agged for risk. The solution must use the principle of least privilege.
To which role should you add User1?

  1. Security reader
  2. User administrator
  3. Owner
  4. Global administrator

Answer(s): A

Explanation:

The risky sign-ins reports are available to users in the following roles:
Security Administrator
Global Administrator
Security Reader
Of the three roles listed above, the Security Reader role has the least privilege.
Note:
There are several versions of this question in the exam. The question has three possible correct answers:
1. Security Reader
2. Security Administrator
3. Global Administrator
Other incorrect answer options you may see on the exam include the following:
1. Service Administrator.
2. Reports Reader
3. Compliance Administrator


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-risky-sign-ins



Page 29 of 98



Post your Comments and Discuss Microsoft MS-100 exam with other Community members:

Elan commented on March 05, 2024
Nice to see this kind of websites. thanks
BAHRAIN
upvote

SYED NASEEMUDDIN commented on December 14, 2023
i need the 100 question and answer.
SAUDI ARABIA
upvote

Rotciv commented on June 13, 2023
MS-100 exam written and passed! I like the application as well
SOUTH AFRICA
upvote

Murchu commented on March 14, 2023
This dump was a lifesaver and gave me the confidence I needed to pass my exam.
UNITED STATES
upvote

George commented on March 02, 2022
My 4th purchase from this site and I have passed all my exams.
UNITED STATES
upvote

Rohit commented on February 28, 2021
The content of this study guide is very helpful. I really appreicate the free test engine. The Xengine App provided for free is a lifesaver.
INDIA
upvote

Hizkia commented on April 20, 2020
Very professional team. The support replied and answered my questions in less than 2 hours. Pretty impressed!
FRANCE
upvote