[1/Aug/2019 Updated] New 137q MS-101 Practice Test With Free VCE Share From PassLeader

New Updated MS-101 Exam Questions from PassLeader MS-101 PDF dumps! Welcome to download the newest PassLeader MS-101 VCE dumps: https://www.passleader.com/ms-101.html (137 Q&As)

Keywords: MS-101 exam dumps, MS-101 exam questions, MS-101 VCE dumps, MS-101 PDF dumps, MS-101 practice tests, MS-101 study guide, MS-101 braindumps, Microsoft 365 Mobility and Security Exam

P.S. New MS-101 dumps PDF: https://drive.google.com/open?id=1sFmn9dFNysQ7vB81xG2ETWkNUxgpyxtK

P.S. New MS-100 dumps PDF: https://drive.google.com/open?id=113hPFkj6VGzLeH3Y491UBbKqwrKldJuu

NEW QUESTION 116
Your network contains an Active Directory forest named contoso.local. You have a Microsoft 365 subscription. You plan to implement a directory synchronization solution that will use password hash synchronization. From the Microsoft 365 admin center, you verify the contoso.com domain name. You need to prepare the environment for the planned directory synchronization solution. What should you do first?

A.    From the public DNS zone of contoso.com, add a new mail exchanger (MX) record.
B.    From Active Directory Domains and Trusts, add contoso.com as a UPN suffix.
C.    From the Microsoft 365 admin center, verify the contoso.local domain name.
D.    From Active Directory Users and Computers, modify the UPN suffix for all users.

Answer: B

NEW QUESTION 117
You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. The tenant includes a user named User1. You enable Azure AD Identity Protection. You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege. To which role should you add User1?

A.    Security reader
B.    Compliance administrator
C.    Reports reader
D.    Global administrator

Answer: A

NEW QUESTION 118
Your company has a Microsoft Office 365 tenant. You suspect that several Office 365 features were recently updated. You need to view a list of the features that were recently updated in the tenant.
Solution: You use Message center in the Microsoft 365 admin center.
Does this meet the goal?

A.    Yes
B.    No

Answer: A

NEW QUESTION 119
Your network contains a single Active Directory domain and two Microsoft Azure Active Directory (Azure AD) tenants. You plan to implement directory synchronization for both Azure AD tenants. Each tenant will contain some of the Active Directory users. You need to recommend a solution for the planned directory synchronization. What should you include in the recommendation?

A.    Deploy two servers that run Azure AD Connect.
Then filter the users for each tenant by using organizational unit (OU)-based filtering.
B.    Deploy one server that runs Azure AD Connect.
Then specify two sync groups.
C.    Deploy one server that runs Azure AD Connect.
Then filter the users for each tenant by using organizational unit (OU)-based filtering.
D.    Deploy one server that runs Azure AD Connect.
Then filter the users for each tenant by using domain-based filtering.

Answer: A
Explanation:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies#multiple-azure-ad-tenants

NEW QUESTION 120
You have a Microsoft 365 subscription. You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Azure Active Directory admin center, you create a trusted location and a conditional access policy.
Does this meet the goal?

A.    Yes
B.    No

Answer: B
Explanation:
This solution applies to users accessing Azure Active Directory, not to users accessing SharePoint Online. Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Conditional-Access-in-SharePoint-Online-and-OneDrive-for/ba-p/46678

NEW QUESTION 121
You have a Microsoft 365 subscription. All users have their email stored in Microsoft Exchange Online. In the mailbox of a user named User1, you need to preserve a copy of all the email messages that contain the word ProjectX. What should you do?

A.    From the Security & Compliance admin center, create a label and a label policy.
B.    From the Exchange admin center, create a mail flow rule.
C.    From the Security & Compliance admin center, start a message trace.
D.    From Exchange admin center, start a mail flow message trace.

Answer: A
Explanation:
https://docs.microsoft.com/en-us/azure/information-protection/configure-policy-classification

NEW QUESTION 122
You have a Microsoft 365 subscription. You recently configured a Microsoft SharePoint Online tenant in the subscription. You plan to create an alert policy. You need to ensure that an alert is generated only when malware is detected in more than five documents stored in SharePoint Online during a period of 10 minutes. What should you do first?

A.    Enable Microsoft Office 365 Cloud App Security.
B.    Deploy Windows Defender Advanced Threat Protection (Windows Defender ATP).
C.    Enable Microsoft Office 365 Analytics.

Answer: B

NEW QUESTION 123
You have a Microsoft 365 subscription. You plan to enable Microsoft Azure Information Protection. You need to ensure that only the members of a group named PilotUsers can protect content. What should you do?

A.    Run the Add-AadrmRoleBasedAdministrator cmdlet.
B.    Create an Azure Information Protection policy.
C.    Configure the protection activation status for Azure Information Protection.
D.    Run the Set-AadrmOnboardingControlPolicy cmdlet.

Answer: D
Explanation:
If you don’t want all users to be able to protect documents and emails immediately by using Azure Rights Management, you can configure user onboarding controls by using the Set-AadrmOnboardingControlPolicy.
https://docs.microsoft.com/en-us/azure/information-protection/activate-service

NEW QUESTION 124
You have a Microsoft 365 subscription. From the Security & Compliance admin center, you create a role group named US eDiscovery Managers by copying the eDiscovery Manager role group. You need to ensure that the users in the new role group can only perform content searches of mailbox content for users in the United States.
Solution: From Windows PowerShell, you run the New-AzureRmRoleAssignment cmdlet with the appropriate parameters.
Does this meet the goal?

A.    Yes
B.    No

Answer: B
Explanation:
https://docs.microsoft.com/en-us/powershell/module/azurerm.resources/new-azurermroleassignment?view=azurermps-6.13.0

NEW QUESTION 125
You have a Microsoft 365 subscription. From the Security & Compliance admin center, you create a role group named US eDiscovery Managers by copying the eDiscovery Manager role group. You need to ensure that the users in the new role group can only perform content searches of mailbox content for users in the United States.
Solution: From the Security & Compliance admin center, you modify the roles of the US eDiscovery Managers role group.
Does this meet the goal?

A.    Yes
B.    No

Answer: B

NEW QUESTION 126
You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. In the tenant, you create a user named User1. You need to ensure that User1 can publish retention labels from the Security & Compliance admin center. The solution must use the principle of least privilege. To which role group should you add User1?

A.    Security Administrator
B.    Records Management
C.    Compliance Administrator
D.    eDiscovery Manager

Answer: B
Explanation:
https://docs.microsoft.com/en-us/office365/securitycompliance/file-plan-manager

NEW QUESTION 127
Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD). You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch). You configure pilot co-management. You add a new device named Device1 to the domain. You install the Configuration Manager client on Device1. You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager.
Solution: Define a Configuration Manager device collection as the pilot collection. Add Device1 to the collection.
Does this meet the goal?

A.    Yes
B.    No

Answer: B

NEW QUESTION 128
You are deploying Microsoft Intune. You successfully enroll Windows 10 devices in Intune. When you try to enroll an iOS device in Intune, you get an error. You need to ensure that you can enroll the iOS device in Intune.
Solution: You configure the Mobility (MDM and MAM) settings.
Does this meet the goal?

A.    Yes
B.    No

Answer: B

NEW QUESTION 129
You have a Microsoft 365 subscription. You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Device Management admin center, you create a trusted location and a compliance policy.
Does this meet the goal?

A.    Yes
B.    No

Answer: B
Explanation:
Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Conditional-Access-in-SharePoint-Online-and-OneDrive-for/ba-p/46678

NEW QUESTION 130
Hotspot
You have Microsoft 365 subscription. You create an alert policy as shown in the following exhibit:

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

Answer:

Explanation:
The Aggregation settings has a 120 minute window.

NEW QUESTION 131
Hotspot
You have a new Microsoft 365 subscription. A user named User1 has a mailbox in Microsoft Exchange Online. You need to log any changes to the mailbox folder permissions of User1. Which command should you run? (To answer, select the appropriate options in the answer area.)

Answer:

Explanation:
To enable auditing for a single mailbox (in this example, belonging to Holly Sharp), use this PowerShell command: Set-Mailbox username -AuditEnabled $true.
https://support.microsoft.com/en-us/help/4026501/office-auditing-in-office-365-for-admins
https://docs.microsoft.com/en-us/powershell/module/exchange/mailboxes/set-mailbox?view=exchange-ps

NEW QUESTION 132
Your company has 10 offices. The network contains an Active Directory domain named contoso.com. The domain contains 500 client computers. Each office is configured as a separate subnet. You discover that one of the offices has the following:
– Computers that have several preinstalled applications
– Computers that use nonstandard computer names
– Computers that have Windows 10 preinstalled
– Computers that are in a workgroup
You must configure the computers to meet the following corporate requirements:
– All the computers must be joined to the domain
– All the computers must have computer names that use a prefix of CONTOSO
– All the computers must only have approved corporate applications installed
You need to recommend a solution to redeploy the computers. The solution must minimize the deployment time. What should you recommend?

A.    a provisioning package
B.    wipe and load refresh
C.    Windows Autopilot
D.    an in-place upgrade

Answer: A
Explanation:
By using a Provisioning, IT administrators can create a self-contained package that contains all of the configuration, settings, and apps that need to be applied to a device.
Incorrect:
Not C: With Windows Autopilot the user can set up pre-configure devices without the need consult their IT administrator.
Not D: Use the In-Place Upgrade option when you want to keep all (or at least most) existing applications.
https://docs.microsoft.com/en-us/windows/deployment/windows-10-deployment-scenarios
https://docs.microsoft.com/en-us/windows/deployment/windows-autopilot/windows-autopilot

NEW QUESTION 133
You have a Microsoft 365 subscription. You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Microsoft 365 admin center, you configure the Organization profile settings.
Does this meet the goal?

A.    Yes
B.    No

Answer: B
Explanation:
Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Conditional-Access-in-SharePoint-Online-and-OneDrive-for/ba-p/46678A

NEW QUESTION 134
……


Download the newest PassLeader MS-101 dumps from passleader.com now! 100% Pass Guarantee!

MS-101 PDF dumps & MS-101 VCE dumps: https://www.passleader.com/ms-101.html (137 Q&As) (New Questions Are 100% Available and Wrong Answers Have Been Corrected! Free VCE simulator!)

P.S. New MS-101 dumps PDF: https://drive.google.com/open?id=1sFmn9dFNysQ7vB81xG2ETWkNUxgpyxtK

P.S. New MS-100 dumps PDF: https://drive.google.com/open?id=113hPFkj6VGzLeH3Y491UBbKqwrKldJuu