MS-102 Microsoft Exam Questions and Free Practice Test

Question 25

- (Topic 6)
You have a Microsoft 365 E5 subscription that contains the users shown in the following table.
MS-102 dumps exhibit
You plan to create a Conditional Access policy that will use GPS-based named locations. Which users can the policy protect?

A. User2 and User4 only

B. User1 and User3 only

C. Userl1 only

D. User1, User2. User3. and User4

Correct Answer:C

Question 26

- (Topic 6)
You have a Microsoft 365 subscription.
You register two applications named App1 and App2 to Azure AD.
You need to ensure that users who connect to App1 require multi-factor authentication (MFA). MFA is required only for App1. What should you do?

A. From the Microsoft Entra admin center, create a conditional access policy

B. From the Microsoft 365 admin center, configure the Modem authentication settings.

C. From the Enterprise applications blade of the Microsoft Entra admin center, configure the Users settings.

D. From Multi-Factor Authentication, configure the service settings.

Correct Answer:A
Use Conditional Access policies
If your organization has more granular sign-in security needs, Conditional Access policies can offer you more control. Conditional Access lets you create and define policies that react to sign in events and request additional actions before a user is granted access to an application or service.
Reference:
https://learn.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/set-up-multi-factor-authentication

Question 27

HOTSPOT - (Topic 6)
You have a Microsoft 365 E5 subscription.
You have an Azure AD tenant named contoso.com that contains the following users:
• Admin1
• Admin2
• User1
Contoso.com contains an administrative unit named AIM that has no role assignments. User1 is a member of AU1. You create an administrative unit named AU2 that does NOT have any members or role assignments. For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
MS-102 dumps exhibit
Solution:

Does this meet the goal?

A. Yes

B. No

Correct Answer:A

Question 28

HOTSPOT - (Topic 6)
HOTSPOT
You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1. Site1 has he files in the following table.
MS-102 dumps exhibit
The Site1 users are assigned the roles shown in the following table.

You create a data less prevention (DLP) policy names Policy1 as shown in the following exhibit.

How many files will be visible to user1 and User2 after Policy' is applied to answer, selected select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
MS-102 dumps exhibit
Solution:

Does this meet the goal?

A. Yes

B. No

Correct Answer:A

Question 29

- (Topic 6)
You have a Microsoft 365 E5 tenant.
You plan to deploy a monitoring solution that meets the following requirements:
✑ Captures Microsoft Teams channel messages that contain threatening or violent language.
✑ Alerts a reviewer when a threatening or violent message is identified.
What should you include in the solution?

A. Data Subject Requests (DSRs)

B. Insider risk management policies

C. Communication compliance policies

D. Audit log retention policies

Correct Answer:C

Question 30

- (Topic 6)
You have a Microsoft 365 tenant that contains 500 Windows 10 devices and a Microsoft Endpoint Manager device compliance policy.
You need to ensure that only devices marked as compliant can access Microsoft Office 365 apps.
Which policy type should you configure?

A. conditional access

B. account protection

C. attack surface reduction (ASR)

D. Endpoint detection and response

Correct Answer:A
Reference:
https://docs.microsoft.com/en-us/mem/intune/protect/device-compliance-get-started

START MS-102 EXAM