Get Full Version of the Exam
Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com that includes the users shown in the following table.
Group2 is a member of Group1.
You assign a Microsoft Office 365 Enterprise E3 license to Group1. You need to identity how many Office 365 E3 licenses are assigned. What should you identify?
You have a Microsoft 365 subscription that uses a default domain named contoso.com. The domain contains the users shown in the following table.
The domain contains conditional access policies that control access to a cloud app named App1. The policies are configured as shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 subscription. All users have client computers that run Windows 10 and have Microsoft Office 365 ProPlus installed.
Some users in the research department work for extended periods of time without an Internet connection.
How many days can the research department users remain offline before they are prevented from editing Office documents?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are
connected to your on-premises network.
Solution: From the Device Management admin center, you a trusted location and compliance policy.
Does this meet the goal?
Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
Your company has on-premises servers and a Microsoft Azure Active Directory (Azure AD) tenant.
Several months ago, the Azure AD Connect Health agent was installed on all the servers. You review the health status of all the servers regularly.
Recently, you attempted to view the health status of a server named Server1 and discovered that the server is NOT listed on the Azure Active Directory Connect Servers list.
You suspect that another administrator removed Server1 from the list. You need to ensure that you can view the health status of Server1.
What are two possible ways to achieve the goal? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
From Windows PowerShell, run the Register-AzureADConnectHealthSyncAgent cmdlet.
From Azure Cloud shell, run the Connect-AzureAD cmdlet.
From Server1, change the Azure AD Connect Health services Startup type to Automatic (Delayed Start) .
From Server1, change the Azure AD Connect Health services Startup type to Automatic .
From Server1, reinstall the Azure AD Connect Health agent.
Your company has an on premises Microsoft Exchange Server 2016 organization and a Microsoft 365 Enterprise subscription. You plan to migrate mailboxes and groups to Exchange Online.
You start a new migration batch.
Users report *low performance when they use the on premises Exchange Server organization. You discover that the migration is causing the slow performance.
You need to reduce the impact of the mailbox migration on the end-users. What should you do?
Create a mail flow rule.
Configure back pressure
Modify the migration endpoint setting
Create a throttling policy.
You can reduce the maximum number of concurrent mailbox migrations.
Your company has a Microsoft 365 subscription that contains the users shown in the following
You need to identify which users can perform the following administrative tasks:
Modify the password protection policy. Create guest user accounts.
Which users should you identify for each task? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Your network contains an Active Directory domain named contoso.com. The domain contains five domain controllers.
You purchase Microsoft 365 and plan to implement several Microsoft 365 services.
You need to identify an authentication strategy for the planned Microsoft 365 deployment. The solution must meet the following requirements:
Ensure that users can access Microsoft 365 by using their on-premises credentials. Use the existing server infrastructure only.
Store all user passwords on-premises only. Be highly available.
Which authentication strategy should you identify?
pass-through authentication and seamless SSO
pass-through authentication and seamless SSO with password hash synchronization
password hash synchronization and seamless SSO
You recently migrated your on-premises email solution to Microsoft Exchange Online and are evaluating which licenses to purchase.
You want the members of two groups named IT and Managers to be able to use the features shown in the following table.
The IT group contains 50 users. The Managers group contains 200 users.
You need to recommend which licenses must be purchased for the planned solution. The solution must minimize licensing costs.
Which licenses should you recommend?
250 Microsoft 365 E3 only
50 Microsoft 365 E 3 and 200 Microsoft 365 E5
250 Microsoft 365 E5 only
200 Microsoft 365 E3 and 50 Microsoft 365 E5
You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You have three applications App1, App2, App3. The Apps use files that have the same file
Your company uses Windows Information Protection (WIP). WIP has the following configurations: Windows Information Protection mode: Silent
Protected apps: App1 Exempt apps: App2
From App1, you create a file named File1.
What is the effect of the configurations? To answer, select the appropriate options in the answer area.