• Home
  • Articles
  • Updated Feb-2022 Pass MS-101 Exam - Real Practice Test Questions [Q60-Q75]

Updated Feb-2022 Pass MS-101 Exam - Real Practice Test Questions [Q60-Q75]

Share

Updated Feb-2022 Pass MS-101 Exam - Real Practice Test Questions

Download Free Microsoft MS-101 Real Exam Questions


Further Career-booming Opportunities

As excelling in MS-101 leads to the highest-level certificate one can earn in this track, the only option for gaining further career-boosting opportunities is to broaden your skillset. Thus, certification holders can opt for MCSE: Productivity Solutions Expert that requires knowledge of Windows Server. Also, the knowledge acquired during reining for MS-101 will be helpful when preparing for Azure certifications.


Microsoft MS-101: Exam Topics

This Microsoft test will measure the skills and knowledge of the candidates in selected technical areas. These skills can be found in the objectives of the certification exam. So, Microsoft MS-101 covers the following domains:

Implementing Modern Device Services: 30-35%

  • Planning Windows 10 Deployment: the examinees should be able to demonstrate their expertise in planning for Windows as a Service; planning the relevant deployment methods for Windows 10 Enterprise; evaluating and deploying additional security features for Windows 10.
  • Planning for Apps & Devices: this topic requires the individuals’ skills in creating and configuring Microsoft Store for Business; planning app deployment, device co-management, device monitoring, device profiles, mobile device security, and Mobile Application Management.
  • Implementing MDM (Mobile Device Management): this skill area will evaluate the ability of the students to plan for Mobile Device Management, customize the integration of MDM with Azure Active Directory, and set device enrollment restrictions for the users.
  • Managing the Device Compliance: this domain will measure your competence in planning for device compliance; designing, creating, and managing Conditional Access Policies; configuring the device compliance policy.

 

NEW QUESTION 60
You implement Microsoft Azure Advanced Threat Protection (Azure ATP).
You have an Azure ATP sensor configured as shown in the following exhibit.

How long after the Azure ATP cloud service is updated will the sensor update?

  • A. 7days
  • B. 12 hours
  • C. 1 hour
  • D. 24 hours
  • E. 48 hours

Answer: D

Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-whats-new

 

NEW QUESTION 61
You have device compliance policies shown in the following table.

The device compliance state for each policy is shown in the following table.

NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

 

NEW QUESTION 62
You are testing a data loss prevention (DLP) policy to protect the sharing of credit card information with external users.
During testing, you discover that a user can share credit card information with external users by using email. However, the user is prevented from sharing files that contain credit card information by using Microsoft SharePoint Online.
You need to prevent the user from sharing the credit card information by using email and SharePoint.
What should you configure?

  • A. the status of the DLP policy
  • B. the conditions of the DLP policy rule
  • C. the user overrides of the DLP policy rule
  • D. the locations of the DLP policy

Answer: D

Explanation:
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/office365/securitycompliance/data-loss-prevention-policies

 

NEW QUESTION 63
You have an Azure subscription and an on-premises Active Directory domain. The domain contains 50 computers that run Windows 10.
You need to centrally monitor System log events from the computers.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/learn/quick-collect-windows-computer

 

NEW QUESTION 64
You have a Microsoft 365 tenant.
You plan to create a retention policy as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 65
You deploy Microsoft Azure Information Protection.
You need to ensure that a security administrator named SecAdmin1 can always read and inspect data protected by Azure Rights Management (Azure RMS).
What should you do?

  • A. From Windows PowerShell, enable the super user feature and assign the role to SecAdmin1.
  • B. From the Security & Compliance admin center, add User1 to the eDiscovery Manager role group.
  • C. From the Azure Active Directory admin center, add User1 to the Security Reader role group.
  • D. From the Security & Compliance admin center, add User1 to the Compliance Administrator role group.

Answer: A

Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/azure/information-protection/configure-super-users

 

NEW QUESTION 66
You create a Microsoft 36S subscription.
You need to create a deployment plan for Microsoft Azure Advanced Threat Protection (ATP).
Which five actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Answer:

Explanation:

Explanation:
References:
https://blog.ahasayen.com/azure-advanced-threat-protection-deployment/

 

NEW QUESTION 67
You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You have three applications named App1, App2, and App3 that have the same file format.
Your company uses Windows Information Protection (WIP). WIP has the following configurations:
Windows Information Protection mode: Silent
Protected apps: App1
Exempt apps: App2
From App1, you create a file named File1.
What is the effect of the configurations? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 68
You have a Microsoft 365 subscription.
You are planning a threat management solution for your organization.
You need to minimize the likelihood that users will be affected by the following threats:
Opening files in Microsoft SharePoint that contain malicious content
Impersonation and spoofing attacks in email messages
Which policies should you create in the Security & Compliance admin center? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

References:
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp#configure-atp-policies

 

NEW QUESTION 69
HOTSPOT
You need to meet the technical requirements and planned changes for Intune.
What should you do? To answer, select the appropriate options is the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Answer:

Explanation:

Section: [none]
Explanation/Reference:
https://docs.microsoft.com/en-us/intune/windows-enroll
Testlet 3
Case Study
Overview
ADatum Corporation is an international financial services company that has 5,000 employees.
ADatum has six offices: a main office in New York and five branch offices in Germany, the United Kingdom, France, Spain, and Italy.
All the offices are connected to each other by using a WAN link. Each office connects directly to the Internet.
Existing Environment
Current Infrastructure
ADatum recently purchased a Microsoft 365 subscription.
All user files are migrated to Microsoft 365.
All mailboxes are hosted in Microsoft 365. The users in each office have email suffixes that include the country of the user, for example, [email protected] or [email protected].
Each office has a security information and event management (SIEM) appliance. The appliance comes from three different vendors.
ADatum uses and processes Personally Identifiable Information (PII).
Problem Statements
ADatum entered into litigation. The legal department must place a hold on all the documents of a user named User1 that are in Microsoft 365.
Requirements
Business Goals
ADatum wants to be fully compliant with all the relevant data privacy laws in the regions where is operates.
ADatum wants to minimize the cost of hardware and software whenever possible.
Technical Requirements
ADatum identifies the following technical requirements:
* Centrally perform log analysis for all offices.
* Aggregate all data from the SIEM appliances to a central cloud repository for later analysis.
* Ensure that a SharePoint administrator can identify who accessed a specific file stored in a document library.
* Provide the users in the finance department with access to Service assurance information in Microsoft Office 365.
* Ensure that documents and email messages containing the PII data of European Union (EU) citizens are preserved for 10 years.
* If a user attempts to download 1,000 or more files from Microsoft SharePoint Online within 30 minutes, notify a security administrator and suspend the user's user account.
* A security administrator requires a report that shown which Microsoft 365 users signed in. Based on the report, the security administrator will create a policy to require multi-factor authentication when a sign-in is high risk.
* Ensure that the users in the New York office can only send email messages that contain sensitive U.S. PII data to other New York office uses. Email messages must be monitored to ensure compliance. Auditors in the New York office must have access to reports that show the sent and received email messages containing sensitive U.S. PII data.

 

NEW QUESTION 70
Your company is based in the United Kingdom (UK).
Users frequently handle data that contains Personally Identifiable Information (PII).
You create a data loss prevention (DLP) policy that applies to users inside and outside the company. The policy is configured as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

References:
https://docs.microsoft.com/en-us/office365/securitycompliance/data-loss-prevention-policies

 

NEW QUESTION 71
You purchase a new Microsoft 365 subscription.
You create 100 users who are assigned Microsoft 365 E3 licenses.
From the Security & Compliance admin center, you enable auditing.
Six months later, a manager sends you an email message asking the following questions:
* Question1: Who created a team named Team1 14 days ago?
* Question2: Who signed in to the mailbox of User1 30 days ago?
* Question3: Who changed the site collection administrators of a site 60 days ago?
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

References:
https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance?
https://docs.microsoft.com/en-us/office365/securitycompliance/enable-mailbox-auditing

 

NEW QUESTION 72
You have three devices enrolled in Microsoft Intune as shown in the following table.


For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

 

NEW QUESTION 73
You purchase a new Microsoft 365 subscription.
You create 100 users who are assigned Microsoft 365 E3 licenses.
From the Security & Compliance admin center, you enable auditing.
Six months later, a manager sends you an email message asking the following questions:
* Question1: Who created a team named Team1 14 days ago?
* Question2: Who signed in to the mailbox of User1 30 days ago?
* Question3: Who changed the site collection administrators of a site 60 days ago?
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

References:
https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance?
https://docs.microsoft.com/en-us/office365/securitycompliance/enable-mailbox-auditing

 

NEW QUESTION 74
You deploy Microsoft Azure Information Protection.
You need to ensure that a security administrator named SecAdmin1 can always read and inspect data protected by Azure Rights Management (Azure RMS).
What should you do?

  • A. From the Security & Compliance admin center, add SecAdmin1 to the eDiscovery Manager role group.
  • B. From Windows PowerShell, enable the super user feature and assign the role to SecAdmin1.
  • C. From the Azure Active Directory admin center, add SecAdmin1 to the Security Reader role group.
  • D. From the Security & Compliance admin center, add SecAdmin1 to the Compliance Administrator role group.

Answer: B

Explanation:
Section: [none]
Explanation:
The super user feature of the Azure Rights Management service from Azure Information Protection ensures that authorized people and services can always read and inspect the data that Azure Rights Management protects for your organization. However, the super user feature is not enabled by default. The PowerShell cmdlet Enable-AadrmSuperUserFeature is used to manually enable the super user feature.
References:
https://docs.microsoft.com/en-us/azure/information-protection/configure-super-users

 

NEW QUESTION 75
......

MS-101 Dumps 100 Pass Guarantee With Latest Demo: https://passguide.validtorrent.com/MS-101-valid-exam-torrent.html

Related Articles

more
Microsoft MS-101 Certification Practice Exam

Copyright © 2026 ValidTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy