- (Exam Topic 5)
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of
tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username: admin@abc.com
Microsoft 365 Password: xxxxxx
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The following information is for technical support purposes only.
Lab Instance: XXXXXX
You need to prevent email messages that contain attachments that have the .js file extension from being delivered to any recipients in your organization.
To complete this task, sign in to the Microsoft 365 admin center.
Solution:
Some conditions require you to specify values. For example, if you select The sender is... condition, you mustspecify a sender address. If you're adding a word or phrase, note that trailing spaces are not allowed.
If the condition you want isn't listed, or if you need to add exceptions, select More options. Additional conditions and exceptions will be listed.
If you don't want to specify a condition, and want this rule to apply to every message in your organization, select [Apply to all messages] condition.
- In Do the following..., select the action you want the rule to take on messages matching the criteria from the list of available actions:
Some of the actions will require you to specify values. For example, if you select the Forward the message
for approval to... condition, you will need to select a recipient in your organization.
If the condition you want isn't listed, select More options. Additional conditions will be listed.
- Specify how rule match data for this rule is displayed in the Data Loss Prevention (DLP) reports and the protection reports.
- Set the mode for the rule. You can use one of the two test modes to test the rule without impacting mail flow. In both test modes, when the conditions are met, an entry is added to the message trace:
Enforce: This turns on the rule and it starts processing messages immediately. All actions on the rule will be performed.
Test with Policy Tips: This turns on the rule, and any Policy Tip actions ( Notify the sender with a Policy Tip) will be sent, but no actions related to message delivery will be performed. Data Loss Prevention (DLP) is required in order to use this mode.
Test without Policy Tips: Only the Generate incident report action will be enforced. No actions related to message delivery are performed.
Exchange Online admins can create mail flow rules in the Exchange admin center (EAC) at Mail flow
>Rules. You need permissions to do this procedure. After you start to create a new rule, you can see the full list of attachment-related conditions by clicking More options >Any attachment under Apply this rule if. The
attachment-related options are shown in the following diagram.
Graphical user interface, application Description automatically generated with medium confidence
Reference:
https://docs.microsoft.com/en-us/exchange/security-and-compliance/mail-flow-rules/manage-mail-flow-rules https://docs.microsoft.com/en-us/exchange/security-and-compliance/mail-flow-rules/inspect-message-attachmen
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has a Microsoft Exchange Server 2019 hybrid deployment that contains two Mailbox servers named MBX1 and MBX2.
The company has the departments shown in the following table.
From the on-premises organization, outbound email is sent directly to the Internet by using DNS lookups. You are informed that some sales department users send email messages that are identified as spam.
You need to automatically block the sales department users from repeatedly sending spam. Solution: You run the Install-AntispamAgents.psl PowerShell script on the MBX1 Mailbox server. Does this meet the goal?
Correct Answer:
B
Reference:
https://docs.microsoft.com/en-us/exchange/antispam-and-antimalware/antispam-protection/antispam-on-mailbox
- (Exam Topic 5)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft Exchange Online tenant that contains 1,000 mailboxes.
All the users in the sales department at your company are in a group named Sales.
The company is implementing a new policy to restrict the use of email attachments for the users in the Sales group.
You need to prevent all email messages that contain attachments from being delivered to the users in the Sales group.
Solution: You modify the Exchange Online Protection (EOP) settings. Does this meet the goal?
Correct Answer:
B
You can block common attachments (attachments commonly used as malware) in EOP but not all attachments as required in this question. Instead, you should create a mail flow rule.
Reference:
https://docs.microsoft.com/en-us/exchange/security-and-compliance/mail-flow-rules/common-attachmentblocki
- (Exam Topic 2)
You need to recommend a procedure for closing the Brussels office that meets the technical requirements. What should you recommend?
Correct Answer:
C
References:
https://docs.microsoft.com/en-us/exchange/architecture/mailbox-servers/manage-mailbox-moves?
view=exchserver-2019
https://theitbros.com/move-exchange-mailboxes-to-another-database/
- (Exam Topic 5)
You have a Microsoft Exchange Online tenant that contains a public folder named CustomerSupport. You need to access CustomerSupport by using Outlook on the web. Which section in Outlook on the web should you add CustomerSupport?
Correct Answer:
C