Free Test
Question: / 10
Quiz
Question 1/101/10
You need to recommend a solution for the user administrators that meets the security requirements
for auditing.
Which blade should you recommend using from the Azure Active Directory admin center?
for auditing.
Which blade should you recommend using from the Azure Active Directory admin center?
Select the answer:Select the answer
1 correct answerA.
Sign-ins
B.
Azure AD Identity Protection
C.
Authentication methods
D.
Access review
Quiz
Question 2/102/10
An administrator configures Azure AD Privileged Identity Management as shown in the following
exhibit.
What should you do to meet the security requirements?
exhibit.
What should you do to meet the security requirements?
Select the answer:Select the answer
1 correct answerA.
Change the Assignment Type for Admin2 to Permanent
B.
From the Azure Active Directory admin center, assign the Exchange administrator role to Admin2
C.
From the Azure Active Directory admin center, remove the Exchange administrator role to Admin1
D.
Change the Assignment Type for Admin1 to Eligible
Quiz
Question 3/103/10
HOTSPOT
You plan to configure an access review to meet the security requirements for the workload
administrators. You create an access review policy and specify the scope and a group.
Which other settings should you configure? To answer, select the appropriate options in the answer
area.
NOTE: Each correct selection is worth one point.
You plan to configure an access review to meet the security requirements for the workload
administrators. You create an access review policy and specify the scope and a group.
Which other settings should you configure? To answer, select the appropriate options in the answer
area.
NOTE: Each correct selection is worth one point.
Check the image below to see the right answer:Select the answer
1 correct answerOption is correct.
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
Quiz
Question 4/104/10
HOTSPOT
You need to recommend an email malware solution that meets the security requirements.
What should you include in the recommendation? To answer, select the appropriate options in the
answer area.
NOTE: Each correct selection is worth one point.
You need to recommend an email malware solution that meets the security requirements.
What should you include in the recommendation? To answer, select the appropriate options in the
answer area.
NOTE: Each correct selection is worth one point.
Check the image below to see the right answer:Select the answer
1 correct answerOption is correct.
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
Quiz
Question 5/105/10
You need to recommend a solution to protect the sign-ins of Admin1 and Admin2.
What should you include in the recommendation?
What should you include in the recommendation?
Select the answer:Select the answer
1 correct answerA.
a device compliance policy
B.
an access review
C.
a user risk policy
D.
a sign-in risk policy
Quiz
Question 6/106/10
HOTSPOT
You install Azure ATP sensors on domain controllers.
You add a member to the Domain Admins group. You view the timeline in Azure ATP and discover
that information regarding the membership change is missing.
You need to meet the security requirements for Azure ATP reporting.
What should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You install Azure ATP sensors on domain controllers.
You add a member to the Domain Admins group. You view the timeline in Azure ATP and discover
that information regarding the membership change is missing.
You need to meet the security requirements for Azure ATP reporting.
What should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Check the image below to see the right answer:Select the answer
1 correct answerOption is correct.
Reference:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-advanced-audit-policy
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
Reference:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-advanced-audit-policy
TESTLET-1.
Fabrikam inc.
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam
has 5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid
Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user
applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove
the malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed
every seven days. If an administrator fails to respond to an access request within three days, access
must be removed
Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks
for up to three hours at a time. Global administrators must be exempt from this requirement
Users must be prevented from inviting external users to view company data. Only global
administrators and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to
Azure AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
Quiz
Question 7/107/10
You need to recommend a solution that meets the technical and security requirements for sharing
data with the partners.
What should you include in the recommendation? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
data with the partners.
What should you include in the recommendation? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
Select multiple answer: (Choose 2)Select the answer
2 correct answersA.
Create an access review.
B.
Assign the Global administrator role to User1.
C.
Assign the Guest inviter role to User1.
D.
Modify the External collaboration settings in the Azure Active Directory admin center.
Quiz
Question 8/108/10
You need to resolve the issue that targets the automated email messages to the IT team.
Which tool should you run first?
Which tool should you run first?
Select the answer:Select the answer
1 correct answerA.
Synchronization Service Manager
B.
Azure AD Connect wizard
C.
Synchronization Rules Editor
D.
IdFix
Quiz
Question 9/109/10
You need to create Group2.
What are two possible ways to create the group?
What are two possible ways to create the group?
Select multiple answer: (Choose 2)Select the answer
2 correct answersA.
an Office 365 group in the Microsoft 365 admin center
B.
a mail-enabled security group in the Microsoft 365 admin center
C.
a security group in the Microsoft 365 admin center
D.
a distribution list in the Microsoft 365 admin center
E.
a security group in the Azure AD admin center
Quiz
Question 10/1010/10
Which IP address space should you include in the MFA configuration?
Select the answer:Select the answer
1 correct answerA.
131.107.83.0/28
B.
192.168.16.0/20
C.
172.16.0.0/24
D.
192.168.0.0/20
Looking for more questions?Buy now
Microsoft 365 Security Administration Practice test unlocks all online simulator questions
Thank you for choosing the free version of the Microsoft 365 Security Administration practice test! Further deepen your knowledge on Microsoft Simulator; by unlocking the full version of our Microsoft 365 Security Administration Simulator you will be able to take tests with over 280 constantly updated questions and easily pass your exam. 98% of people pass the exam in the first attempt after preparing with our 280 questions.
BUY NOWWhat to expect from our Microsoft 365 Security Administration practice tests and how to prepare for any exam?
The Microsoft 365 Security Administration Simulator Practice Tests are part of the Microsoft Database and are the best way to prepare for any Microsoft 365 Security Administration exam. The Microsoft 365 Security Administration practice tests consist of 280 questions and are written by experts to help you and prepare you to pass the exam on the first attempt. The Microsoft 365 Security Administration database includes questions from previous and other exams, which means you will be able to practice simulating past and future questions. Preparation with Microsoft 365 Security Administration Simulator will also give you an idea of the time it will take to complete each section of the Microsoft 365 Security Administration practice test . It is important to note that the Microsoft 365 Security Administration Simulator does not replace the classic Microsoft 365 Security Administration study guides; however, the Simulator provides valuable insights into what to expect and how much work needs to be done to prepare for the Microsoft 365 Security Administration exam.
BUY NOWMicrosoft 365 Security Administration Practice test therefore represents an excellent tool to prepare for the actual exam together with our Microsoft practice test . Our Microsoft 365 Security Administration Simulator will help you assess your level of preparation and understand your strengths and weaknesses. Below you can read all the quizzes you will find in our Microsoft 365 Security Administration Simulator and how our unique Microsoft 365 Security Administration Database made up of real questions:
Info quiz:
- Quiz name:Microsoft 365 Security Administration
- Total number of questions:280
- Number of questions for the test:50
- Pass score:80%
You can prepare for the Microsoft 365 Security Administration exams with our mobile app. It is very easy to use and even works offline in case of network failure, with all the functions you need to study and practice with our Microsoft 365 Security Administration Simulator.
Use our Mobile App, available for both Android and iOS devices, with our Microsoft 365 Security Administration Simulator . You can use it anywhere and always remember that our mobile app is free and available on all stores.
Our Mobile App contains all Microsoft 365 Security Administration practice tests which consist of 280 questions and also provide study material to pass the final Microsoft 365 Security Administration exam with guaranteed success. Our Microsoft 365 Security Administration database contain hundreds of questions and Microsoft Tests related to Microsoft 365 Security Administration Exam. This way you can practice anywhere you want, even offline without the internet.
BUY NOW