Free MS-102 Sample Questions — Microsoft 365 Administrator

You have a Microsoft 365 E5 subscription. You need to use Microsoft Defender for Cloud Apps to monitor user mailbox activities. What should you do?

• A. Create an activity policy
• B. Create an access policy
• C. Enable mailbox audit logging
• D. Create an app connector for Microsoft 365

You have a Microsoft 365 E5 subscription. You plan to implement a data loss prevention (DLP) strategy by using Microsoft Purview. You need to recommend a classification method for a DLP condition. The classification method must automatically recognize document types based on existing documents in Microsoft SharePoint Online. What should you recommend?

• A. sensitive information types (SITs)
• B. sensitivity labels
• C. trainable classifiers
• D. exact data match (EDM) classifiers

You have two Microsoft 365 tenants. Users have accounts in both tenants. You plan to deploy a single device to each user. Each device will contain the Microsoft Authenticator app. You need to ensure that the users can use their device to authenticate to both tenants by using passwordless authentication. Which platform should you provide?

• A. iOS
• B. Android
• C. Windows
• D. macOS

You have a Microsoft 365 subscription that contains an Azure AD tenant named contoso.com. The tenant includes a user named User1. You enable Azure AD Identity Protection. You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege. To which role should you add User1?

• A. Compliance Administrator
• B. Security Reader
• C. Reports Reader
• D. User Administrator

You have a Microsoft 365 E5 subscription. You plan to configure Privileged Identity Management (PIM) for the User Administrator role in Microsoft Entra. You need to ensure that a user can make a role assignment request for the User Administrator role only during the next six months. How should you configure the assignment?

• A. Set Assignment type to Eligible
• B. Set Assignment type to Active
• C. Set Allow permanent active to assignment Yes
• D. Set Allow permanent eligible assignment to Yes

You have a Microsoft 365 E5 subscription and use Microsoft Defender for Office 365. You need to create a policy that will quarantine messages containing attachments that match .apk and .appx extensions. Which type of policy should you configure?

• A. anti-malware
• B. anti-phishing
• C. Safe Attachments
• D. anti-spam

You have a Microsoft 365 E5 subscription that contains the following user: Name: User1 - UPN: [email protected] - Email address: [email protected] MFA enrollment status: Disabled - When User1 attempts to sign in to Outlook on the web by using the [email protected] email address, the user cannot sign in. You need to ensure that User1 can sign in to Outlook on the web by using [email protected]. What should you do?

• A. Assign an MFA registration policy to User1
• B. Reset the password of User1
• C. Add an alternate email address for User1
• D. Modify the UPN of User1

You have a Microsoft 365 ES subscription. On Monday, you create a new user named User1. On Tuesday, User1 signs in for the first time and perform the following actions: • Signs in to Microsoft Exchange Online from an anonymous IP address. • Signs in to Microsoft SharePoint Online from a device in New York City. • Establishes Remote Desktop connections to hosts in Berlin and Hong Kong, and then signs in to SharePoint Online from the Remote Desktop connections. Which types of sign-in risks will Azure AD Identity Protection detect for User1?

• A. anonymous IP address and atypical travel only
• B. anonymous IP address only
• C. unfamiliar sign-in properties and atypical travel only
• D. anonymous IP address and unfamiliar sign-in properties only
• E. anonymous IP address, atypical travel, and unfamiliar sign-in properties

You have a Microsoft 365 E5 subscription. You are evaluating Microsoft Defender for Cloud Apps. Which two types of policy rely on Conditional Access App Control? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

• A. app discovery policy
• B. OAuth app policy
• C. access policy
• D. file policy
• E. session policy
• F. activity policy

You have a Microsoft 365 subscription. You suspect that several Microsoft Office 365 applications or services were recently updated. You need to identify which applications or services were recently updated. What are two possible ways to achieve the goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

• A. From the Microsoft 365 admin center, review the Service health blade
• B. From the Microsoft 365 admin center, review the Message center blade
• C. From the Microsoft 365 admin center, review the Products blade
• D. From the Microsoft 365 Admin mobile app, review the messages

You have a Microsoft 365 E5 subscription. The subscription contains users that have the following types of devices: • Windows 10 • Android • iOS On which devices can you configure the Endpoint DLP policies?

• A. Windows 10 only
• B. Windows 10 and Android only
• C. Windows 10 and iOS only
• D. Windows 10, Android, and iOS

You have a Microsoft 365 E5 subscription that is linked to an Azure AD tenant named contoso.com. You purchase 100 Microsoft 365 Business Voice add-on licenses. You need to ensure that the members of a group named Voice are assigned a Microsoft 365 Business Voice add-on license automatically. What should you do?

• A. From the Licenses page of the Microsoft 365 admin center, assign the licenses
• B. From the Microsoft Entra admin center, modify the settings of the Voice group
• C. From the Microsoft 365 admin center, modify the settings of the Voice group

You have an on-premises server named Server1 that runs Windows Server. You have a Microsoft 365 E5 subscription and use Microsoft Defender for Cloud Apps. You plan to configure Cloud Discovery and enable automatic log upload. You need to ensure that you can run the log collector on Server1. What should you install on Server1?

• A. the Microsoft Graph PowerShell SDK
• B. NET Framework 4.8
• C. Docker
• D. the Azure Connected Machine agent

You have a Microsoft 365 E5 subscription. You create a Conditional Access policy that blocks access to an app named App1 when users trigger a high-risk sign-in event. You need to reduce false positives for impossible travel when the users sign in from the corporate network. What should you configure?

• A. exclusion groups
• B. multi-factor authentication (MFA)
• C. named locations
• D. user risk policies

You have a Microsoft 365 subscription. You need to create a data loss prevention (DLP) policy that is configured to use the Set headers action. To which location can the policy be applied?

• A. Exchange email
• B. OneDrive accounts
• C. SharePoint sites
• D. Teams chat and channel messages

You have a Microsoft E5 subscription. You need to ensure that administrators who need to manage Microsoft Exchange Online are assigned the Exchange Administrator role for five hours at a time. What should you implement?

• A. Azure AD Privileged Identity Management (PIM)
• B. a conditional access policy
• C. a communication compliance policy
• D. Azure AD Identity Protection
• E. groups that have dynamic membership

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains 1,000 Windows 10 devices. You perform a proof of concept (PoC) deployment of Microsoft Defender for Endpoint for 10 test devices. During the onboarding process, you configure Microsoft Defender for Endpoint-related data to be stored in the United States. You plan to onboard all the devices to Microsoft Defender for Endpoint. You need to store the Microsoft Defender for Endpoint data in Europe. What should you do first?

• A. Delete the workspace
• B. Create a workspace
• C. Onboard a new device
• D. Offboard the test devices

You use Microsoft Defender for Office 365. You plan to automate an attack simulation campaign. Any users that fail the simulation must take additional training based on the simulation results. What is the maximum number of days the training will be available to the users after the simulation?

• A. 7
• B. 15
• C. 30
• D. 45

You have a Microsoft 365 E5 subscription. You need to compare the current Safe Links configuration to the Microsoft recommended configurations. What should you use?

• A. Microsoft Purview
• B. Azure AD Identity Protection
• C. Microsoft Secure Score
• D. the configuration analyzer

You have a Microsoft 365 subscription that contains 500 Windows devices enrolled in Microsoft Intune. You need to ensure that you can review vulnerability management recommendations for the devices. The solution must minimize administrative effort. Which policy template should you select in the Microsoft Defender portal?

• A. Microsoft Defender Antivirus
• B. Windows Security Experience
• C. Endpoint Detection and Response
• D. Device Control