[Free] EnsurePass Microsoft MS-500 Real Exam Dumps Questions 31-40

Get Full Version of the Exam
http://www.EnsurePass.com/MS-500.html

Question No.31

You have a Microsoft 365 subscription.

You create and run a content search from the Security amp; Compliance admin center. You need to download the results of the content search.

What should you obtain first?

  1. an export key

  2. a password

  3. a certificate

  4. a pin

Correct Answer: A

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/export-search-results

Question No.32

You have a Microsoft 365 subscription.

You need to create data loss prevention (DLP) queries in Microsoft SharePoint Online to find sensitive data stored in sites.

Which type of site collection should you create first?

  1. Records Center

  2. Compliance Policy Center

  3. eDiscovery Center

  4. Enterprise Search Center

  5. Document Center

Correct Answer: C

Explanation:

https://support.office.com/en-us/article/overview-of-data-loss-prevention-in-sharepoint-server- 2016-80f907bbb944-448d-b83d-8fec4abcc24c

Question No.33

HOTSPOT

You configure Microsoft Azure Active Directory (Azure AD) Connect as shown in the following exhibit.

image

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.34

You have a hybrid Microsoft 365 environment. All computers run Windows 10 and are managed

by using Microsoft Intune.

You need to create a Microsoft Azure Active Directory (Azure AD) conditional access policy that will allow only Windows 10 computers marked as compliant to establish a VPN connection to the on-premises network.

What should you do first?

  1. From the Azure Active Directory admin center, create a new certificate

  2. Enable Application Proxy in Azure AD

  3. From Active Directory Administrative Center, create a Dynamic Access Control policy

  4. From the Azure Active Directory admin center, configure authentication methods

Correct Answer: A

Explanation:

https://docs.microsoft.com/en-us/windows-server/remote/remote-access/vpn/ad-ca-vpn- connectivitywindows10

Question No.35

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant. You create a label named CompanyConfidential in Microsoft Azure Information Protection.

You add CompanyConfidential to a global policy.

A user protects an email message by using CompanyConfidential and sends the label to several external recipients. The external recipients report that they cannot open the email message.

You need to ensure that the external recipients can open protected email messages sent to them. Solution: You modify the encryption settings of the label.

Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.36

You have a Microsoft 365 E5 subscription and a hybrid Microsoft Exchange Server organization.

Each member of a group named Executive has an on-premises mailbox. Only the Executive group members have multi-factor authentication (MFA) enabled. Each member of a group named Research has a mailbox in Exchange Online.

You need to use Microsoft Office 365 Attack simulator to model a spear-phishing attack that targets the Research group members.

The email address that you intend to spoof belongs to the Executive group members. What should you do first?

  1. From Azure ATP admin center, configure the primary workspace settings

  2. From the Microsoft Azure portal, configure the user risk settings in Azure AD Identity Protection

  3. Enable MFA for the Research group members

  4. Migrate the Executive group members to Exchange Online

Correct Answer: C

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/attack-simulator

Question No.37

HOTSPOT

You have a Microsoft 365 subscription.

You are creating a retention policy named Retention1 as shown in the following exhibit. You apply Retention1 to SharePoint sites and OneDrive accounts.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.38

HOTSPOT

You have a Microsoft 365 subscription that include three users named User1, User2, and User3.

A file named File1.docx is stored in Microsoft OneDrive. An automated process updates File1.docx every minute.

You create an alert policy named Policy1 as shown in the following exhibit.

image

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.39

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 subscription that contains the users shown in the following table.

image

You discover that all the users in the subscription can access Compliance Manager reports. The Compliance Manager Reader role is not assigned to any users.

You need to recommend a solution to prevent a user named User5 from accessing the Compliance Manager reports.

Solution: You recommend assigning the Compliance Manager Reader role to User1. Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.40

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant. You create a label named CompanyConfidential in Microsoft Azure Information Protection.

You add CompanyConfidential to a global policy.

A user protects an email message by using CompanyConfidential and sends the label to several external recipients. The external recipients report that they cannot open the email message.

You need to ensure that the external recipients can open protected email messages sent to them.

Solution: You create a new label in the global policy and instruct the user to resend the email message.

Does this meet the goal?

  1. Yes

  2. No

Correct Answer: A

>

Get Full Version of the Exam
MS-500 Dumps
MS-500 VCE and PDF

admin

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.