[Apr 2021] Microsoft MS-100 exam dumps and online practice questions are available from Lead4Pass

Table Of Content:

1. Microsoft MS-100 Dumps Pdf
2. Microsoft MS-100 Dumps Youtube
3. Microsoft MS-100 Dumps Practice Test
4. Microsoft Discount Code 2021

The latest updated Microsoft MS-100 exam dumps and free MS-100 exam practice questions and answers! Latest updates from Lead4Pass Microsoft MS-100 Dumps PDF and MS-100 Dumps VCE, Lead4Pass MS-100 exam questions updated and answers corrected! Get the full Microsoft MS-100 dumps from https://www.leads4pass.com/ms-100.html (VCE&PDF)

^{[Latest MS-100 PDF for free]} Share the Microsoft MS-100 Dumps PDF for free From Lead4pass MS-100 Dumps part of the distraction collected on Google Drive shared by Lead4pass
https://drive.google.com/file/d/1Pb1o_0ZWZN44NldaLRAp2ZfVph7_HYU4/

^{[Latest Lead4pass MS-100 Youtube]} Share the latest Microsoft MS-100 exam practice questions and answers for free from Led4Pass Dumps viewed online by Youtube Videos

https://youtube.com/watch?v=-xIH_oUtc_M

The latest updated Microsoft MS-100 Exam Practice Questions and Answers Online Practice Test is free to share from Lead4Pass (Q1-Q13)

QUESTION 1
You have a Microsoft 365 subscription.
You have the devices shown in the following table.

You need to onboard the devices to Windows Defender Advanced Threat Protection (ATP). The solution must avoid
installing software on the devices whenever possible.
Which onboarding method should you use for each operating system? To answer, drag the appropriate methods to the
correct operating systems. Each method may be used once, more than once, or not at all. You may need to drag the
split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Box 1:
To onboard down-level Windows client endpoints to Microsoft Defender ATP, you\\’ll need to:
Configure and update System Center Endpoint Protection clients.
Install and configure Microsoft Monitoring Agent (MMA) to report sensor data to Microsoft Defender ATP
Box 2:
For Windows 10 clients, the following deployment tools and methods are supported:
Group Policy
System Center Configuration Manager
Mobile Device Management (including Microsoft Intune)
Local script
Box 3:
Windows Server 2016 can be onboarded by using Azure Security Centre. When you add servers in the Security Centre,
the Microsoft Monitoring Agent is installed on the servers.
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/onboard-downlevel-windowsdefender-advanced-threat-protection
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/configure-endpoints-windowsdefender-advanced-threat-protection
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/configure-server-endpointswindows-defender-advanced-threat-protection

 

QUESTION 2
SIMULATION
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few
minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a
live environment. While most functionality will be available to you as it would be in a live environment, some
functionality
(e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn\\’t matters how you
accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as
much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you
are
able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to
the lab.
You may now click next to proceed to the lab.
Lab information
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign-in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username:
[email protected]
Microsoft 365 Password: *yfLo7Ir2andyIf the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser
tab.
The following information is for technical support purposes only:
Lab Instance: 10811525
You plan to invite several guest users to access the resources in your organization.
You need to ensure that only guests who have an email address that uses the @contoso.com suffix can connect to the
resources in your Microsoft 365 tenant.
A. See below.
Correct Answer: A
You need to add contoso.com as an allowed domain in the ‘External collaboration settings’.
1.
Go to the Azure Active Directory admin center.
2.
Select Users then select ‘User settings’.
3.
Under External Users, select the ‘Manage external collaboration settings.
4.
Under ‘Collaboration restrictions’, select the ‘Allow invitations only to the specified domains (most restrictive)’ option.
5.
Under, Target Domains, type in the domain name ‘contoso.com’
6.
Click the Save button at the top of the screen to save your changes.
References: https://docs.microsoft.com/en-us/azure/active-directory/b2b/allow-deny-list

 

QUESTION 3
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains
a unique solution that might meet the stated goals. Some question sets might have more than one correct solution,
while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
You have a Microsoft 365 subscription.
You discover that some external users accessed content on a Microsoft SharePoint site. You modify the SharePoint
sharing policy to prevent sharing outside your organization.
You need to be notified if the SharePoint policy is modified in the future.
Solution: From the Security and Compliance admin center, you create a threat management policy.
Does this meet the goal?
A. Yes
B. No
Correct Answer: A
We can create a threat management policy to alert us when the sharing policy is changed.
Create a new Alert policy > under Category select Threat Management > under `Activity is\\’ scroll down to the `Site
administration activities\\’ and select `Changed a sharing policy\\’.

 

QUESTION 4
HOTSPOT
Your network contains an on-premises Active Directory domain named contoso.com.
Your company purchases a Microsoft 365 subscription and establishes a hybrid deployment of Azure Active Directory
(Azure AD) by using password hash synchronization. Device writeback is disabled in Azure AD Connect.
You create a new user named User10 on-premises and a new user named User20 in Azure AD.
You need to identify where an administrator can reset the password of each new user.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Correct Answer:

If a user account is created in the on-premise Active Directory and synchronized to Azure Active Directory, you can
reset the password of the user account in the on-premise Active Directory only. If a user account is created in Azure
Active Directory, you can reset the password of the user account in the Azure Active Directory only.

 

QUESTION 5
Your company has a Microsoft 365 subscription.
You need to identify all the users in the subscription who are licensed for Microsoft Office 365 through a group
membership. The solution must include the name of the group used to assign the license.
What should you use?
A. the Licenses blade in the Azure portal
B. Reports in the Microsoft 365 admin center
C. Active users in the Microsoft 365 admin center
D. Reports in Security and Compliance
Correct Answer: A
In the Azure AD Admin Center, select Azure Active Directory then select Licenses to open the Licenses blade. From
there you need to click on the `Managed your purchased licenses link\\’. Select a license you want to view, for example
Office 365 E3. This will then display a list of all users with that license. In the `Assignment Paths\\’ column, it will say
`Direct\\’ for a license that has been assigned directly to a user or `Inherited (Group Name)\\’ for a license that has been
assigned through a group.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/licensing-groups-assign

 

QUESTION 6
You have a Microsoft 365 subscription.
From the Security and Compliance admin center, you create a content search of all the mailboxes that contain the word
ProjectX.
You need to export the results of the content search. What do you need to download the report?
A. an export key
B. a password
C. a user certificate
D. a certification authority (CA) certificate
Correct Answer: A
When you export a report, the data is temporarily stored in a unique Azure Storage area in the Microsoft cloud before
it\\’s downloaded to your local computer. To download the report from the Azure Storage Area, you need an export key.
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/export-a-content-search-report

 

QUESTION 7
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains
a unique solution that might meet the stated goals. Some question sets might have more than one correct solution,
while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
Your company has a Microsoft Office 365 tenant.
You suspect that several Office 365 features were recently updated.
You need to view a list of the features that were recently updated in the tenant.
Solution: You use Dashboard in Security and Compliance.
Does this meet the goal?
A. Yes
B. No
Correct Answer: B
Depending on what your organization\\’s Office 365 subscription includes, the Dashboard in Security and Compliance
includes several widgets, such as Threat Management Summary, Threat Protection Status, Global Weekly Threat
Detections, Malware, etc. It does not display a list of the features that were recently updated in the tenant so this
solution does not meet the goal.
To meet the goal, you need to use the Message center in the Microsoft 365 admin center. Reference:
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/security-dashboard
https://docs.microsoft.com/en-us/office365/admin/manage/message-center?view=o365-worldwide

 

QUESTION 8
You have a Microsoft 365 subscription.
A new corporate security policy states that you must automatically send DLP incident reports to the users in the legal
department.
You need to schedule the email delivery of the reports. The solution must ensure that the reports are sent as frequently
as possible.
How frequently can you schedule the delivery of the reports?
A. hourly
B. monthly
C. weekly
D. daily
Correct Answer: C
From the Dashboard in the Security and Compliance center, you can view various reports including the DLP Incidents
report. From there you can configure a schedule to email the reports. In the schedule configuration, there are two
choices for the frequency: Weekly or Monthly. Therefore, to ensure that the reports are sent as frequently as possible,
you need to select Weekly.
Reference: https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/create-a-schedule-for-a-report

 

QUESTION 9
You have a Microsoft Azure Active Directory (Azure AD) tenant that contains the users shown in the following table.

Your company uses Windows Defender Advanced Threat Protection (ATP). Windows Defender ATP contains the roles
shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct
selection is worth one point.
Hot Area:

Box 1:
Yes. User1 is in Group1 which is assigned to Role1. Device1 is in the device group named ATP1 which Group1 has
access to. Role1 gives Group1 (and User1) View Data Permission. This is enough to view Device1 in Windows Security
Center.
Box 2:
Yes. User2 is in Group2 which is assigned to Role2. Role2 gives Group2 (and User2) View Data Permission. This is
enough to sign in to Windows Security Center.
Box 3:
Yes. User3 is in Group3 which is assigned the Windows ATP Administrator role. Someone with a Microsoft Defender
ATP Global administrator role has unrestricted access to all machines, regardless of their machine group association
and
the Azure AD user groups assignments.
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/user-roles
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/rbac

 

QUESTION 10
Your network contains an Active Directory forest. The forest contains two domains named contoso.com and
adatum.com.
Your company recently purchased a Microsoft 365 subscription.
You deploy a federated identity solution to the environment.
You use the following command to configure contoso.com for federation.
Convert-MsolDomaintoFederated ?domain name contoso.com
In the Microsoft 365 tenant, an administrator adds and verifies the adatum.com domain name.
You need to configure the adatum.com Active Directory domain for federated authentication.
Which two actions should you perform before you run the Azure AD Connect wizard? Each correct answer presents part
of the solution.
NOTE: Each correct selection is worth one point.
A. From Windows PowerShell, run the Convert-MsolDomaintoFederated?domain name contoso.com
?upportMultipleDomain command.
B. From Windows PowerShell, run the New-MsolFederatedDomain?upportMultipleDomain -DomainName contoso.com
command.
C. From Windows PowerShell, run the New-MsolFederatedDomain -DomainName adatum.com command.
D. From Windows PowerShell, run the Update-MSOLFederatedDomain?domain name contoso.com
?upportMultipleDomain command.
E. From the federation server, remove the Microsoft Office 365 relying on party trust.
Correct Answer: AE
When the Convert-MsolDomaintoFederated ?domain name contoso.com command was run, a relying party trust was
created.
Adding a second domain (adatum.com in this case) will only work if the SupportMultipleDomain switch was used when
the initial federation was configured by running the Convert-MsolDomaintoFederated ?domain name contoso.com
command.
Therefore, we need to start again by removing the relying party trust then running the Convert-MsolDomaintoFederated
command again with the SupportMultipleDomain switch.

 

QUESTION 11
You publish an enterprise application named App1 that processes financial data.
You need to ensure that access to App1 is revoked for users who no longer require viewing the processed financial
data.
What should you configure?
A. an owner
B. an app protection policy
C. an access review
D. a conditional access policy
Correct Answer: C
Reference: https://docs.microsoft.com/en-us/azure/active-directory/governance/create-access-review

 

QUESTION 12
HOTSPOT
Your company has an Azure Active Directory (Azure AD) tenant named contoso.com and a Microsoft 365 subscription.
Contoso.com contains the users shown in the following table.

You add an enterprise application named App1 to contoso.com.
You configure the following self-service settings for App1:
Allow users to request access to this application is set to Yes.
To which group should assign users to be added is set to Group1.
Who is allowed to approve access to this application is set to User2.
Require approval before granting access to this application is set to Yes.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct
selection is worth one point.
Hot Area:

Correct Answer:

Box 1: Yes.
User1 can request access to App1 because “Allow users to request access to this application” is set to Yes.
Box 2: No.
User2 is an approver. If User2 requests access to App1, he will still need to approve the request before he is added to
Group1.
Box 3: Yes.
User2 can approve requests for App1 because “Who is allowed to approve access to this application” is set to User2.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/manage-self-service-access

 

QUESTION 13
SIMULATION
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few
minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a
live environment. While most functionality will be available to you as it would be in a live environment, some
functionality
(e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn\\’t matters how you
accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as
much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you
are
able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to
the lab.
You may now click next to proceed to the lab.
Lab information
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign inbox and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username:
[email protected]
Microsoft 365 Password: 3andYWyjse-6-d
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser
tab.
The following information is for technical support purposes only:
Lab Instance: 10887751
You need to modify Christie Cline to meet the following requirements:
Christie Cline must be able to view the service dashboard and the Microsoft Office 365 Message center.
Christie Cline must be able to create Microsoft support requests.
The solution must use the principle of least privilege.
A. See below.
Correct Answer: A
You need to assign Christie the ‘Service Support Admin’ role.
1.
In the Microsoft 365 Admin Center, click ‘Roles’.
2.
Scroll down to the Service Support Admin role and click on the role name.
3.
Click the ‘Assigned Admins’ link.
4.
Click the ‘Add’ button.
5.
Start typing the name Christie then select her account when it appears.
6.
Click Save.
References: https://docs.microsoft.com/en-US/azure/active-directory/users-groups-roles/directory-assign-admin-roles

Lead4Pass Microsoft Coupon Code 2021

Fulldumps shares the latest updated Microsoft MS-100 exam exercise questions, MS-100 dumps pdf for free.
All exam questions and answers come from the Lead4pass exam dumps shared part! Lead4pass updates throughout the year and shares a portion of your exam questions for free to help you understand the exam content and enhance your exam experience! Get the full Microsoft MS-100 exam dumps questions at https://www.leads4pass.com/ms-100.html (pdf&vce)

ps.
Get free Microsoft MS-100 dumps PDF online: https://drive.google.com/file/d/1Pb1o_0ZWZN44NldaLRAp2ZfVph7_HYU4/