The latest update and the actual 100% pass to ensure that the Microsoft 365 certified MS-500 dumps from Lead4Pass: https://www.leads4pass.com/ms-500.html (241 Q&A),
Lead4Pass provides MS-500 VCE dumps and MS-500 PDF dumps to prepare for the Microsoft 365 Certified: Modern Desktop Administrator Associate exam. 100% effective and 100% pass guaranteed.
In addition to participating in the online test! You can download a free MS-500 dumps PDF online: https://drive.google.com/file/d/14eptqOVEkGB7IdM4ZqpgcnQmk4TgdjxG/
Free Microsoft 365 Certified MS-500 exam questions and answers
The answer is announced at the end of the article
QUESTION 1
An administrator plans to deploy several Azure Advanced Threat Protection (ATP) sensors.
You need to provide the administrator with the Azure information required to deploy the sensors.
What information should you provide?
A. an Azure Active Directory Authentication Library (ADAL) token
B. the public key
C. the access key
D. the URL of the Azure ATP admin center
Reference: https://docs.microsoft.com/en-us/azure-advanced-threat-protection/workspace-portal
QUESTION 2
You are receiving email messages with “Unhealthy Identity Synchronization Notification” in the subject line. Which of the following tools would you use to investigate this issue by first reviewing the DirSync status?
A. IdFix
B. Office 354 Admin Center
C. Azure AD Connect wizard
D. Active Directory Users and Computers
E. Azure portal
Reference: https://docs.microsoft.com/en-us/office365/enterprise/identify-directory-synchronization-errors
QUESTION 3
HOTSPOT
You have a Microsoft 365 subscription that include three users named User1, User2, and User3.
A file named File1.docx is stored in Microsoft OneDrive. An automated process updates File1.docx every minute.
You create an alert policy named Policy1 as shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information
presented in the graphic.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
References: https://docs.microsoft.com/en-us/office365/securitycompliance/alert-policies
QUESTION 4
Which role should you assign to User1?
A. Global administrator
B. User administrator
C. Privileged role administrator
D. Security administrator
QUESTION 5
Which of the following Windows 10 Enterprise features provides identity protection?
A. Windows Hello
B. Credential Guard
C. Device Guard
D. Defender Antivirus
E. Defender ATP
Reference: https://docs.microsoft.com/en-us/windows/security/identity-protection/
QUESTION 6
He requires that all privileged accounts be reviewed every seven days. Users with administrative privileges must selfassess their access, however, if an administrator doesn\\’t respond within three days of receiving such a request,
privileged access must be removed.
What will you configure as the frequency on the access review?
A. One time
B. Weekly
C. Monthly
D. Quarterly
E. Annually
The question asks for “privileged accounts be reviewed every seven days”, therefore the frequency must be set to
weekly. Reference: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-toperform-security-review
QUESTION 7
Which of these are Office365 ATP attack simulator capabilities? (Choose three.)
A. Malware outbreak
B. Spam overrun
C. Spear phishing
D. Brute force password
E. Rainbow table password
F. Password spray
Reference: https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/attack-simulator
QUESTION 8
The My Library feature of the service trust portal lets you save your own documents so that you can quickly access
them on your My Library page.
A. True
B. False
QUESTION 9
You have a Microsoft 365 subscription.
You have a Microsoft SharePoint Online site named Site1. The files in Site1 are protected by using Microsoft Azure
Information Protection.
From the Security and Compliance admin center, you create a label that designates personal data.
You need to auto-apply the new label to all the content in Site1.
What should you do first?
A. From PowerShell, run Set-ManagedContentSettings.
B. From PowerShell, run Set-ComplianceTag.
C. From the Security and Compliance admin center, create a Data Subject Request (DSR).
D. Remove Azure Information Protection from the Site1 files.
References: https://docs.microsoft.com/en-us/office365/securitycompliance/apply-labels-to-personal-data-in-office-365
QUESTION 10
Use the drop-down menus to select the answer choice that completes each statement based on the information
presented in the graphic.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
QUESTION 11
NOTE: This question is a part of a series of questions that present the same scenario. For each of the following
statements, select the best response (s) to the question or statement below. Each answer is worth one point.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen. You have user accounts con gured as in the exhibit. You\\’ve con gured an Azure AD
Identity Protection risk policy as in the second exhibit. Azure AD Identity Protection determines that all instances in this case represents a high risk.
Which of the actions below will be performed on User4\\’s account?
A. User account will be blocked
B. User account will be allowed access
C. User account will be required to change password
D. User account will be prompted for MFA
We\\’re dealing with a user risk policy because the policy states password reset to be triggered. Sign-in risk policies can
trigger MFA. With sign-in risk, user risk and conditional access policies, exclusions take precedence over inclusions. If a
password reset is triggered by the user risk policy and the user is not registered for SSPR, the account is simply blocked
(disabled). A call to the helpdesk/ administrator is required to enable the account. Sign-in risk, user risk and conditional
access policies can all be applied to Azure AD B2B guest accounts, however, if a password reset is triggered, the
account is blocked (disabled) regardless of SSPR registration in the guest user\\’s home tenant. Reference: https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-risk-policies
QUESTION 12
Your network contains an on-premises Active Directory domain. The domain contains the servers shown in the following table.
You plan to implement Azure Advanced Threat Protection (ATP) for the domain. You install an Azure ATP standalone
sensor on Server1.
You need to monitor the domain by using Azure ATP. What should you do?
A. Configure port mirroring for Server1.
B. Install the Microsoft Monitoring Agent on DC1.
C. Install the Microsoft Monitoring Agent on Server1.
D. Configure port mirroring for DC1.
Reference: https://docs.microsoft.com/en-us/azure-advanced-threat-protection/configure-port-mirroring
QUESTION 13
HOTSPOT
You have a Microsoft 365 subscription that uses an Azure Active Directory (Azure AD) tenant named contoso.com.
OneDrive stores files that are shared with external users. The files are configured as shown in the following table.
You create a data loss prevention (DLP) policy that applies to the content stored in OneDrive accounts. The policy
contains the following three rules:
1.
Rule1:
2.
Conditions: Label1, Detect content that\\’s shared with people outside my organization
3.
Actions: Restrict access to the content for external users
4.
User notifications: Notify the user who last modified the content
5.
User overrides: On
6.
Priority: 0
1.
Rule2:
2.
Conditions: Label1 or Label2
3.
Actions: Restrict access to the content
4.
Priority: 1
1.
Rule3:
2.
Conditions: Label2, Detect content that\\’s shared with people outside my organization
3.
Actions: Restrict access to the content for external users
4.
User notifications: Notify the user who last modified the content
5.
User overrides: On
6.
Priority: 2
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
Verify answer
| Q1 | Q2 | Q3 | Q4 | Q5 | Q6 | Q7 | Q8 | Q9 | Q10 | Q11 | Q12 | Q13 |
| D | B | IMAGE | C | B | B | CDF | B | D | IMAGE | A | D | IMAGE |
Continue to follow to get more free updates…
By using the Lead4Pass MS-500 dumps with PDF and VCE, 100% of the first pass the exam is guaranteed: https://www.leads4pass.com/ms-500.html (241 Q&As, VCE, and PDF)
ps. Lead4Pass shares a part of MS-500 dumps PDF for free: https://drive.google.com/file/d/14eptqOVEkGB7IdM4ZqpgcnQmk4TgdjxG/