- (Exam Topic 5)
You have a Microsoft 365 subscription. You have a user named User1. You need to ensure that User1 can place a hold on all mailbox content. What permission should you assign to User1?
Correct Answer:
B
To create a query-based In-Place Hold, a user requires both the Mailbox Search and Legal Hold roles to be assigned directly or via membership in a role group that has both roles assigned. To create an In-Place Hold without using a query, which places all mailbox items on hold, you must have the Legal Hold role assigned. The Discovery Management role group is assigned both roles.
Reference:
https://docs.microsoft.com/en-us/Exchange/permissions/feature-permissions/policy-and-compliance-permissions
- (Exam Topic 5)
You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. You add an app named App1 to the enterprise applications in contoso.com.
You need to configure self-service for App1. What should you do first?
Correct Answer:
C
The provisioning mode (manual or automatic) needs to be configured for an app before you can enable self-service application access.
References:
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/manage-self-service-access
- (Exam Topic 5)
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn’t matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
You may now click next to proceed to the lab. Lab information
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username: admin@LODSe878763.onmicrosoft.com
Microsoft 365 Password: m3t^We$Z7&xy
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The following information is for technical support purposes only:
Lab Instance: 11440873
You need to add Adele Vance to a group named Managers. The solution must ensure that you can grant permissions to Managers.
To answer, sign in to the Microsoft 365 portal.
Solution:
You need to create a group named Managers and add Adele Vance to the group. To ensure that you can grant permissions to the Managers group, the group needs to be a Security Group.
* 1. Sign in to the Microsoft 365 Admin Center.
* 2. In the left navigation pane, expand the Groups section then select Groups.
* 3. Click the ‘Add a group’ link.
* 4. For the group type, select Security and click Next.
* 5. Enter ‘Managers’ in the Name field and click Next.
* 6. Click the ‘Create Group’ button to create the Managers group.
* 7. In the list of groups, select the Managers group.
* 8. Click the Members link.
* 9. Click the ‘View all and manage members link’.
* 10. Click the ‘Add Members’ button.
* 11. Select Adele Vance and click the Save button.
* 12. Click the Close button to close the group page.
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
You are developing an app that will query the tenant for the names of all the Microsoft Teams teams in the organization. What permission will the app require? Your solution must follow the principle of least privilege.
Correct Answer:
D
- (Exam Topic 5)
Your company has a Microsoft 365 subscription that has multi-factor authentication configured for all users. Users on the network report that they are prompted for multi-factor authentication multiple times a day.
You need to reduce the number of times the users are prompted for multi-factor authentication on their company-owned devices.
What should you do?
Correct Answer:
B
The remember Multi-Factor Authentication feature for devices and browsers that are trusted by the user is a free feature for all Multi-Factor Authentication users. Users can bypass subsequent verifications for a specified number of days, after they've successfully signed-in to a device by using Multi-Factor Authentication. The feature enhances usability by minimizing the number of times a user has to perform two-step verification on the same device.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings
