MD-102 Microsoft Exam Questions and Free Practice Test

Question 49

- (Exam Topic 4)
You have a Microsoft 365 tenant.
You have devices enrolled in Microsoft Intune.
You assign a conditional access policy named Policy1 to a group named Group1. Policy! restricts devices marked as noncompliant from accessing Microsoft OneDrive for Business.
You need to identify which noncompliant devices attempt to access OneDrive for Business. What should you do?

A. From the Microsoft Entra admin center, review the Conditional Access Insights and Reporting workbook.

B. From the Microsoft Intune admin center, review Device compliance report.

C. From the Microsoft Intune admin center, review the Noncompliant devices report.

D. From the Microsoft Intune admin center, review the Setting compliance report.

Correct Answer:C

Question 50

- (Exam Topic 4)
Your network contains an Active Directory domain. The domain contains 2,000 computers that run Windows 10. You implement hybrid Azure AD and Microsoft Intune.
You need to automatically register all the existing computers to Azure AD and enroll the computers in Intune. The solution must minimize administrative effort.
What should you use?

A. an Autodiscover address record

B. a Group Policy object (GPO)

C. an Autodiscover service connection point (SCP)

D. a Windows Autopilot deployment profile

Correct Answer:D

Question 51

- (Exam Topic 4)
You have an Azure subscription.
You have an on-premises Windows 11 device named Device 1. You plan to monitor Device1 by using Azure Monitor.
You create a data collection rule (DCR) named DCR1 in the subscription. To what should you associate DCR1 ?

A. Azure Network Watcher

B. Device1

C. a Log Analytics workspace

D. a Monitored Object

Correct Answer:B
To monitor Device1 by using Azure Monitor, you should associate DCR1 with Device1. A data collection rule (DCR) defines the data collection process in Azure Monitor, such as what data to collect, how to transform it, and where to send it. A DCR can be associated with multiple virtual machines and specify different data sources, such as Azure Monitor Agent, custom logs, or Azure Event Hubs1. To associate a DCR with a virtual machine, you need to install the Azure Monitor Agent on the machine and then select the DCR from the list of available rules2. You can also use Azure Policy to automatically install the agent and associate a DCR with any virtual machines or virtual machine scale sets as they are created in your subscription3.
The other options are not correct for this scenario because:
MD-102 dumps exhibit Azure Network Watcher is a service that provides network performance monitoring and diagnostics for Azure resources. It is not related to data collection rules or Azure Monitor4.
A Log Analytics workspace is a destination where you can send the data collected by a data collection rule. It is not an entity that you can associate a DCR with5.
MD-102 dumps exhibit A Monitored Object is not a valid term in the context of Azure Monitor or data collection rules. References: Data collection rules in Azure Monitor, Configure data collection for Azure Monitor Agent, U
Azure Policy to install Azure Monitor Agent and associate with a DCR, What is Azure Network
Watcher?, Log Analytics workspaces in Azure Monitor

Question 52

- (Exam Topic 4)
You have a Microsoft 365 subscription that uses Microsoft Intune and contains 100 Windows 10 devices. You need to create Intune configuration profiles to perform the following actions on the devices:
• Deploy a custom Start layout.
• Rename the local Administrator account.
Which profile type template should you use for each action? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
MD-102 dumps exhibit
Solution:

Does this meet the goal?

A. Yes

B. No

Correct Answer:A

Question 53

- (Exam Topic 4)
You have a Microsoft 365 subscription that contains a user named User1. The subscription contains devices enrolled in Microsoft intune as shown in the following table.
MD-102 dumps exhibit
Microsoft Edge is available on all the devices.
Intune has the device compliance policies shown in the following table.

The Compliance policy settings are configured as shown in the exhibit. (Click the Exhibit tab.) You create the following Conditional Access policy:

• Name: Policy1
• Assignments
o Users and groups: User1
o Cloud apps or actions: Office 365 SharePoint Online
• Access controls
o Grant Require device to be marked as compliant
• Enable policy: On
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
MD-102 dumps exhibit
Solution:

Does this meet the goal?

A. Yes

B. No

Correct Answer:A

Question 54

- (Exam Topic 4)
You have a computer named Computed that has Windows 10 installed. You create a Windows PowerShell script named config.psl.
You need to ensure that config.psl runs after feature updates are installed on Computer5. Which file should you modify on Computer5?

A. LiteTouch.wsf

B. SetupConfig.ini

C. Unattendb*

D. Unattend.xml

Correct Answer:B
SetupConfig.ini is a file that can be used to customize the behavior of Windows Setup during feature updates. You can use this file to specify commands or scripts that run before or after the installation process. To run a PowerShell script after a feature update, you can use the PostOOBE parameter in SetupConfig.ini and specify the path to the script file. References: [SetupConfig.ini reference]

START MD-102 EXAM