[Free] 2019(Nov) EnsurePass Microsoft MS-500 Dumps with VCE and PDF 11-20

Get Full Version of the Exam
http://www.EnsurePass.com/MS-500.html

Question No.11

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant. You create a label named CompanyConfidential in Microsoft Azure Information Protection.

You add CompanyConfidential to a global policy.

A user protects an email message by using CompanyConfidential and sends the label to several external recipients. The external recipients report that they cannot open the email message.

You need to ensure that the external recipients can open protected email messages sent to them.

Solution: You modify the encryption settings of the label.

Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.12

DRAG DROP

You have a Microsoft 365 subscription.

A customer requests that you provide her with all documents that reference her by name.

You need to provide the customer with a copy of the content.

Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

image

Correct Answer:

image

Question No.13

You have a Microsoft 365 subscription.

You need to create data loss prevention (DLP) queries in Microsoft SharePoint Online to find sensitive data stored in sites.

Which type of site collection should you create first?

  1. Records Center

  2. Compliance Policy Center

  3. eDiscovery Center

  4. Enterprise Search Center

  5. Document Center

Correct Answer: C

Explanation:

https://support.office.com/en-us/article/overview-of-data-loss-prevention-in-sharepoint-server- 2016-80f907bbb944-448d-b83d-8fec4abcc24c

Question No.14

HOTSPOT

You have a Microsoft 365 subscription that uses a default domain name of contoso.com.

The multi-factor authentication (MFA) service settings are configured as shown in the exhibit. (Clock the Exhibit tab.)

image

In contoso.com, you create the users shown in the following table.

image

What is the effect of the configuration? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.15

You have a Microsoft 365 tenant.

You have 500 computers that run Windows 10.

You plan to monitor the computers by using Windows Defender Advanced Threat Protection (Windows Defender ATP) after the computers are enrolled in Microsoft Intune.

You need to ensure that the computers connect to Windows Defender ATP.

How should you prepare Intune for Windows Defender ATP?

  1. Configure an enrollment restriction

  2. Create a device configuration profile

  3. Create a conditional access policy

  4. Create a Windows Autopilot deployment profile

Correct Answer: B

Explanation:

https://docs.microsoft.com/en-us/intune/advanced-threat-protection

Question No.16

You have a Microsoft 365 subscription.

You need to enable auditing for all Microsoft Exchange Online users.

What should you do?

  1. From the Exchange admin center, create a journal rule

  2. Run the Set-MailboxDatabase cmdlet

  3. Run the Set-Mailbox cmdlet

  4. From the Exchange admin center, create a mail flow message trace rule.

Correct Answer: C

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/enable-mailbox-auditing

Question No.17

Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 E5 subscription that is associated to a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.

You use Active Directory Federation Services (AD FS) to federate on-premises Active Directory and the tenant. Azure AD Connect has the following settings:

image

Source Anchor: objectGUID

image

Password Hash Synchronization: Disabled

image

Password writeback: Disabled

image

Directory extension attribute sync: Disabled

image

Azure AD app and attribute filtering: Disabled

image

Exchange hybrid deployment: Disabled

image

User writeback: Disabled

You need to ensure that you can use leaked credentials detection in Azure AD Identity Protection.

Solution: You modify the Source Anchor settings.

Does that meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.18

You have a Microsoft 365 subscription.

You create an Advanced Threat Protection (ATP) safe attachments policy to quarantine malware.

You need to configure the retention duration for the attachments in quarantine.

Which type of threat management policy should you create from the Securityamp;Compliance admin center?

  1. ATP anti-phishing

  2. DKIM

  3. Anti-spam

  4. Anti-malware

Correct Answer: D

Question No.19

You have a hybrid Microsoft 365 environment.

All computers run Windows 10 Enterprise and have Microsoft Office 365 ProPlus installed. All the computers are joined to Active Directory.

You have a server named Server1 that runs Windows Server 2016. Server1 hosts the telemetry database. You need to prevent private details in the telemetry data from being transmitted to Microsoft.

What should you do?

  1. On Server1, run readinessreportcreator.exe

  2. Configure a registry on Server1

  3. Configure a registry on the computers

  4. On the computers, run tdadm.exe

Correct Answer: C

Question No.20

You have a Microsoft 365 E5 subscription and a hybrid Microsoft Exchange Server organization.

Each member of a group named Executive has an on-premises mailbox. Only the Executive group members have multi-factor authentication (MFA) enabled. Each member of a group named Research has a mailbox in Exchange Online.

You need to use Microsoft Office 365 Attack simulator to model a spear-phishing attack that

targets the Research group members.

The email address that you intend to spoof belongs to the Executive group members. What should you do first?

  1. From Azure ATP admin center, configure the primary workspace settings

  2. From the Microsoft Azure portal, configure the user risk settings in Azure AD Identity Protection

  3. Enable MFA for the Research group members

  4. Migrate the Executive group members to Exchange Online

Correct Answer: C

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/attack-simulator

Get Full Version of the Exam
MS-500 Dumps
MS-500 VCE and PDF

This entry was posted in MS-500 Dumps 2019-11 and tagged , , , , , . Bookmark the permalink.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.