Cisco®
Oracle
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. MS-102

Free Microsoft MS-102 Exam Questions (page: 13)

Page 13 of 85
PDF with 428 Questions
View Related Case Study

Your company has a Microsoft Entra tenant named contoso.com that includes the users shown in the following table.


Group2 is a member of Group1.
You assign a Microsoft 365 Enterprise E3 license to Group1. How many Microsoft 365 E3 licenses are assigned?

  1. 1
  2. 2
  3. 3
  4. 4

Answer(s): C

Explanation:

Group-based licensing currently does not support groups that contain other groups (nested groups). If you apply a license to a nested group, only the immediate first-level user members of the group have the licenses applied. Therefore, User2 will not be assigned a license.
When Microsoft Entra ID assigns group licenses, any users without a specified usage location inherit the location of the directory. Therefore, User3 will be assigned a license and his usage location will be set to the location of the directory.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/licensing-groups-assign
https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/licensing-group-advanced



View Related Case Study

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft Entra admin center, you assign SecAdmin1 the Teams Administrator role. Does this meet the goal?

  1. Yes
  2. No

Answer(s): B

Explanation:

You need to assign the Security Administrator role.
Note: Role groups in Microsoft Defender for Office 365 and Microsoft Purview compliance
The table in this section lists the default role groups that are available in the Microsoft Defender portal and the Microsoft Purview compliance portal, and the roles that are assigned to the role groups by default.
* Security Administrator
Members have access to many security features of Identity Protection Center, Privileged Identity Management, Monitor Microsoft 365 Service Health, and the Defender and compliance portals.
By default, this role group may not appear to have any members. However, the Security Administrator role from Microsoft Entra ID is assigned to this role group. Therefore, this role group inherits the capabilities and membership of the Security Administrator role from Microsoft Entra ID.
Also:
Security Administrator
This is a privileged role. Users with this role have permissions to manage security-related features in the Microsoft Defender portal, Microsoft Entra ID Protection, Microsoft Entra Authentication, Azure Information Protection, and Microsoft Purview compliance portal.


Reference:

https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/scc-permissions https://learn.microsoft.com/en-us/azure/active-directory/roles/permissions-reference#security-administrator



View Related Case Study

HOTSPOT (Drag and Drop is not supported)
You have a Microsoft 365 subscription that contains the users shown in the following table.


The Global Administrator role has the Privileged Identity Management (PIM) settings shown in the following table.


For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Box 1: Yes
Yes- User1 must provide justification to activate the Global Administrator role.
User1 has the Global Administrator role as Eligible. We see: Require justification on activation: Yes
Box 2: Yes
Yes - User2 must perform multifactor authentication (MFA) to activate the Global Administrator role.
User2 has the Global Administrator role as Assigned. We see: On activation, require Azure MFA
Box 3: No
No - After eight hours, User3 will be no longer able to activate the Global Administrator role.
User3 has the Global Administrator role as Eligible. We see: Expire eligible assignment after 15 Days



View Related Case Study

HOTSPOT (Drag and Drop is not supported)
You have a Microsoft 365 subscription.
You need to identify all users that have an Enterprise Mobility + Security plan, and then provide a list of the users in the CSV format.
Which settings should you use in the Microsoft 365 admin center, and which option should you select? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Box 1: Licenses Settings
How to Export Microsoft 365 User License Report Using Microsoft 365 Admin Center
1. Login to the Microsoft 365 admin center.
2. Navigate to Users» Active Users.
3. From the filter icon at the top, select Licensed users.


You can get a list of all licensed users in Office 365 along with their licenses as shown above.
Box 2: Export Users Option


Reference:

https://admindroid.com/how-to-get-user-license-report-in-microsoft-365



View Related Case Study

HOTSPOT (Drag and Drop is not supported)
You have a Microsoft 365 subscription that contains two administrative units named AU1 and AU2. The subscription contains the users shown in the following table.


The subscription contains the groups shown in the following table.


For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:




Box 1: Yes
Yes - User1 can reset the password of User2.
User1 is a User Administrator with scope of AU1. User2 is in AU1.
Note: The "User administrator" role grants the ability to reset passwords. Box 2: Yes
Yes - User2 can modify the membership of Group1.
User2 is in AU1.
User2 is a Global Administrator. Group1 is in AU2.
Note: Global Administrator – manage access to all the administrative features in Microsoft Entra ID. Box 3: No
No - User1 can reset the password of User3.
User1 is a User Administrator with scope of AU1. User3 is not a member of AU1.
Note: Adding a group to an administrative unit brings the group itself into the management scope of the administrative unit, but not the members of the group. In other words, an administrator scoped to the administrative unit can manage properties of the group, such as group name or membership, but they cannot manage properties of the users or devices within that group (unless those users and devices are separately added as members of the administrative unit).


Reference:

https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/administrative-units



Viewing page 13 of 85



Post your Comments and Discuss Microsoft MS-102 exam prep with other Community members:

MS-102 Exam Discussions & Posts