DRAG DROP

Your company purchases a cloud app named App1.

You need to ensure that you can use Microsoft Cloud App Security to block downloads in App1. App1 supports session controls.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

HOTSPOT

Your company has a Microsoft 365 subscription.

You need to configure Microsoft 365 to meet the following requirements:

1.

Malware found in email attachments must be quarantined for 20 days.

2.

The email address of senders to your company must be verified.

Which two options should you configure in the Security and Compliance admin center? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

You need to meet the requirement for the legal department

Which three actions should you perform in sequence from the Security and Compliance admin center?

To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.

You need to provide a user with the ability to sign up for Microsoft Store for Business for contoso.com. The solution must use the principle of least privilege.

Which role should you assign to the user?

A. Cloud application administrator

B. Application administrator

C. Global administrator

D. Service administrator

Your network contains an on-premises Active Directory domain that syncs to Azure Active Directory (Azure AD).

The domain contains two servers named Server1 and Server2 that run Windows Server 2016. Server1 has the File Server Resource Manager role service installed.

You need to configure Server1 to use the Azure Rights Management (Azure RMS) connector.

You install the Microsoft Management connector on Server1.

What should you do next on Server1?

A. Run the GenConnectorConfig.ps1 script.

B. Configure the URL of the AIPMigrated group.

C. Enable BitLocker Drive Encryption (BitLocker).

D. Install a certification authority (CA).

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your network contains an on-premises Active Directory domain. The domain contains domain controllers that run Windows Server 2019. The functional level of the forest and the domain is Windows Server 2012 R2.

The domain contains 100 computers that run Windows 10 and a member server named Server1 that runs Windows Server 2012 R2.

You plan to use Server1 to manage the domain and to configure Windows 10 Group Policy settings.

You install the Group Policy Management Console (GPMC) on Server1.

You need to configure the Windows Update for Business Group Policy settings on Server1.

Solution: You raise the domain functional level to Windows Server 2019. You copy the Group Policy Administrative Templates from a Windows 10 computer to the Netlogon share on all the domain controllers.

Does this meet the goal?

A. Yes

B. No

Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.

You have a Microsoft 365 E3 subscription that includes Windows 10 Pro Microsoft Azure Active Directory (Azure AD) joined devices.

You have been tasked with upgrading the edition of the Windows 10 devices to Enterprise. Your strategy should allow for the upgrade to occur upon the users' next sign-in, with minimum interruption for the users.

Solution: You make use of Windows Update to achieve your goal.

Does the solution meet the goal?

A. Yes

B. No

You have a Microsoft 365 E5 tenant.

You create a retention label named Retention1 as shown in the following exhibit.

When users attempt to apply Retention1, the label is unavailable. You need to ensure that Retention1 is available to all the users. What should you do?

A. Create a new label policy

B. Modify the Authority type setting for Retention!

C. Modify the Business function/department setting for Retention 1.

D. Use a file plan CSV template to import Retention1.

You have a Microsoft 365 E5 tenant that contains two groups named Group1 and Group2.

You need to prevent the members of Group1 from communicating with the members of Group2 by using Microsoft Teams. The solution must comply with regulatory requirements and must not affect other users in the tenant.

What should you use?

A. administrative units in Azure Active Directory (Azure AD)

B. information barriers

C. moderated distribution groups

D. communication compliance policies

You have a Microsoft 365 tenant.

You plan to implement Endpoint Protection device configuration profiles.

Which platform can you manage by using the profiles?

A. Android

B. Android Enterprise

C. CentOS Linux

D. macOS