MS-102 Free Practice Test

- (Topic 1)
On which server should you install the Azure ATP sensor?

1. A. Server 1
2. B. Server 2
3. C. Server 3
4. D. Server 4
5. E. Server 5

Correct Answer: A
References:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-capacity-planning
However, if the case study had required that the DCs can't have any s/w installed, then the answer would have been a standalone sensor on Server2. In this scenario, the given answer is correct. BTW, ATP now known as Defender for Identity.

- (Topic 6)
You have a Microsoft 365 E5 subscription that contains a user named User1 You create a retention label named Retention1 that is published to all locations.
You need to ensure that User1 can label email messages by using Retention1 as soon as possible.
Which cmdlet should you run in Microsoft Exchange Online PowerShell?

1. A. Start-MpScan
2. B. Start-Process
3. C. Start-ManagedFolderAsslstant
4. D. Start-AppBackgroundTask

Correct Answer: C

- (Topic 6)
You have a Microsoft E5 subscription.
You need to ensure that administrators who need to manage Microsoft Exchange Online are assigned the Exchange Administrator role for five hours at a time.
What should you implement?

1. A. Azure AD Privileged Identity Management (PIM)
2. B. a conditional access policy
3. C. a communication compliance policy)
4. D. Azure AD Identity Protection
5. E. groups that have dynamic membership

Correct Answer: A
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-change-default-settings

HOTSPOT - (Topic 3)
You plan to implement the endpoint protection device configuration profiles to support the planned changes.
You need to identify which devices will be supported, and how many profiles you should implement.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

HOTSPOT - (Topic 6)
HOTSPOT
You have a Microsoft 365 E3 subscription.
You plan to launch Attack simulation training for all users.
Which social engineering technique and training experience will be available? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Solution:
Box 1: Credential Harvest
Attack simulation training offers a subset of capabilities to E3 customers as a trial. The trial offering contains the ability to use a Credential Harvest payload and the ability to select 'ISA Phishing' or 'Mass Market Phishing' training experiences. No other capabilities are part of the E3 trial offering.
Note: In Attack simulation training, multiple types of social engineering techniques are available:
Credential Harvest Malware Attachment Link to Malware
Etc.
Box 2: Mass Market Phishing

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A